Overview

URLhungryforhungry.blogspot.com/2008/09/blog-post_25.html
IP 142.250.74.161 (United States)
ASN#15169 GOOGLE
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-23 23:38:23 UTC
StatusLoading report..
IDS alerts0
Blocklist alert7
urlquery alerts No alerts detected
Tags None

Domain Summary (38)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
ocsp.sectigo.com (1) 487 2019-11-29 11:50:24 UTC 2021-09-17 20:05:40 UTC 104.18.32.68
wavybew6oq-dsn.algolia.net (2) 0 No data No data 91.109.27.87 Domain (algolia.net) ranked at: 295619
r.srvtrck.com (2) 45104 2015-03-03 12:59:37 UTC 2022-11-23 10:06:42 UTC 104.19.169.96
banners.copyscape.com (1) 160359 2012-06-18 23:24:47 UTC 2020-05-14 19:54:26 UTC 184.86.15.80
www1.widgetserver.com (5) 0 No data No data 99.83.136.84 Domain (widgetserver.com) ranked at: 501429
www.ask2use.com (5) 0 2012-10-30 12:15:40 UTC 2020-11-17 06:14:36 UTC 45.84.204.248 Unknown ranking
jimmyjackbob.googlepages.com (1) 0 2013-08-31 13:36:45 UTC 2015-09-18 04:05:43 UTC 172.217.21.179 Domain (googlepages.com) ranked at: 331870
www2.blogblog.com (1) 546768 2012-06-19 12:10:02 UTC 2020-05-06 23:24:00 UTC 142.250.74.105
dipaka-ead.com (2) 0 2022-10-31 13:23:43 UTC 2022-11-23 08:23:12 UTC 3.208.247.235 Unknown ranking
lookandfind.me (2) 35702 2021-03-08 12:58:51 UTC 2022-11-23 10:47:39 UTC 5.9.110.29
www.lusini.com (41) 0 2015-03-24 12:07:04 UTC 2015-03-24 12:07:04 UTC 34.141.11.154 Unknown ranking
www.linkbux.com (1) 157995 2021-02-23 07:08:23 UTC 2022-11-23 05:16:48 UTC 198.11.181.248
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
4.bp.blogspot.com (1) 11215 2013-05-06 20:18:52 UTC 2020-05-06 03:21:52 UTC 142.250.74.161
sites.google.com (1) 3163 2015-02-20 14:17:37 UTC 2022-11-23 07:31:09 UTC 142.250.74.142
www.googletagmanager.com (1) 75 2013-05-22 02:07:37 UTC 2022-11-23 08:22:51 UTC 142.250.74.168
checkout.lusini.com (2) 0 2021-02-24 11:53:26 UTC 2022-11-22 19:56:56 UTC 79.99.85.209 Unknown ranking
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-23 05:36:31 UTC 34.102.187.140
www.blogblog.com (1) 28878 2012-05-22 07:35:04 UTC 2020-05-06 23:24:00 UTC 142.250.74.105
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 35.163.49.154
img-getpocket.cdn.mozilla.net (7) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
www.awin1.com (1) 14049 2012-07-02 19:46:12 UTC 2020-04-11 09:34:15 UTC 2.21.192.211
cdn.cookielaw.org (7) 502 2014-05-20 23:23:17 UTC 2022-11-23 06:37:55 UTC 104.16.148.64
res.cloudinary.com (16) 2520 2012-10-03 08:31:44 UTC 2020-04-25 16:54:56 UTC 151.101.85.137
apis.google.com (2) 105 2013-05-30 23:17:44 UTC 2020-05-14 13:59:47 UTC 142.250.74.174
hungryforhungry.blogspot.com (4) 0 2014-01-15 10:49:58 UTC 2015-10-08 18:01:21 UTC 142.250.74.161 Unknown ranking
ocsp.pki.goog (7) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.35
www.blogger.com (4) 8975 2012-05-22 07:35:03 UTC 2020-05-05 09:48:25 UTC 142.250.74.105
resources.blogblog.com (3) 13274 2018-07-01 19:33:30 UTC 2020-04-09 16:15:03 UTC 142.250.74.105
cdn.widgetserver.com (4) 0 2012-05-22 02:51:28 UTC 2022-11-23 10:47:22 UTC 45.33.23.183 Domain (widgetserver.com) ranked at: 501429
direct-collect.dy-api.eu (2) 378868 2020-02-17 13:00:27 UTC 2022-11-23 13:52:33 UTC 52.28.214.205
r3.o.lencr.org (11) 344 No data No data 23.36.77.32
www.linkwithin.com (2) 115766 2015-10-18 23:57:58 UTC 2020-03-18 12:13:58 UTC 3.19.188.212
d38psrni17bvxu.cloudfront.net (1) 0 2022-11-17 23:18:15 UTC 2022-11-23 12:07:35 UTC 54.230.245.138 Unknown ranking
clever-redirect.com (1) 0 2021-02-09 06:24:33 UTC 2022-11-23 10:47:39 UTC 78.46.197.88 Unknown ranking
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-23 05:36:46 UTC 34.117.237.239
pagead2.googlesyndication.com (1) 101 2021-02-20 15:52:05 UTC 2022-11-23 12:39:14 UTC 216.58.207.226
ocsp.digicert.com (5) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-23 2 hungryforhungry.blogspot.com/2008/09/blog-post_25.html Phishing
2022-11-23 2 hungryforhungry.blogspot.com/js/cookienotice.js Phishing
2022-11-23 2 cdn.widgetserver.com/syndication/subscriber/InsertWidget.js Phishing
2022-11-23 2 cdn.widgetserver.com/ Phishing
2022-11-23 2 cdn.widgetserver.com/mtm/async/.eJxdjEsOwiAQhu_CshJwqTWexVA6BRJeDtMWY7y7oK7 (...) Phishing
2022-11-23 2 d38psrni17bvxu.cloudfront.net/scripts/js3.js Malware
2022-11-23 2 www1.widgetserver.com/ls.php Malware

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 142.250.74.161
Date UQ / IDS / BL URL IP
2023-02-03 04:26:07 +0000 0 - 0 - 1 almayasabdam.blogspot.com/2017/12/whats-chris (...) 142.250.74.161
2023-02-03 04:25:08 +0000 0 - 0 - 2 deamoresyrelaciones.blogspot.com/2011/02/mi-c (...) 142.250.74.161
2023-02-02 23:04:20 +0000 0 - 1 - 0 enricroig2015.blogspot.com.es/2014/06/antoni- (...) 142.250.74.161
2023-02-01 14:02:23 +0000 0 - 0 - 0 statements-docsbankstatement-org-za.translate (...) 142.250.74.161
2023-01-21 16:46:31 +0000 0 - 0 - 1 wytike.page.link/pQhBiPQ2o7GVemxA8 142.250.74.161


Last 5 reports on ASN: GOOGLE
Date UQ / IDS / BL URL IP
2023-02-08 13:13:37 +0000 0 - 3 - 0 auth.sysco.biz/insertNewPassword.php/?mail=m. (...) 34.117.4.157
2023-02-08 13:07:57 +0000 0 - 0 - 16 jogosinfantisroblox.blogspot.com/search/label (...) 142.250.74.1
2023-02-08 13:04:37 +0000 0 - 2 - 6 newfoundfriend.xyz/dl/E0IDMIIGB2.exe 35.205.61.67
2023-02-08 12:52:15 +0000 0 - 1 - 0 download-installer.cdn.mozilla.net/pub/thunde (...) 34.117.35.28
2023-02-08 12:29:36 +0000 0 - 1 - 0 assets.4flow.cloud/SF4604MCNR.zip 35.210.179.60


Last 5 reports on domain: hungryforhungry.blogspot.com
Date UQ / IDS / BL URL IP
2022-12-13 14:52:30 +0000 0 - 0 - 8 hungryforhungry.blogspot.com/2007/12/blog-pos (...) 142.250.74.161
2022-12-06 09:46:04 +0000 0 - 0 - 7 hungryforhungry.blogspot.com/2007/03/cheeseca (...) 172.217.21.161
2022-12-06 08:11:49 +0000 0 - 0 - 9 hungryforhungry.blogspot.com/2007/03/9307.html 142.250.74.161
2022-11-29 14:28:56 +0000 0 - 0 - 2 hungryforhungry.blogspot.com/2008/12/blog-pos (...) 142.250.74.161
2022-11-26 06:32:27 +0000 0 - 0 - 5 hungryforhungry.blogspot.com/2009/03/blog-pos (...) 142.250.74.161


No other reports with similar screenshot

JavaScript

Executed Scripts (45)

Executed Evals (2)
#1 JavaScript::Eval (size: 345) - SHA256: 26c213593aea107d8ef83d99d554c7ff0cb94d912cbf4fbe1b91a1400ec5776e
(function() {
    var b = decodeURIComponent;
    a: {
        var c = "OptanonConsent\x3d";
        for (var e = document.cookie.split(";"), d = 0; d < e.length; d++) {
            for (var a = e[d];
                " " == a.charAt(0);) a = a.substring(1);
            if (0 == a.indexOf(c)) {
                c = a.substring(c.length, a.length);
                break a
            }
        }
        c = ""
    }
    b = b(c);
    return "" != b && -1 !== b.indexOf(",C0003:") ? "1" == b.split(",C0003:")[1].substring(0, 1) ? "1" : "0" : "0"
})();
#2 JavaScript::Eval (size: 345) - SHA256: 2610c38f07753018ac49699c503f80f4a2e4bb7725d2b310e4115596559882b7
(function() {
    var b = decodeURIComponent;
    a: {
        var c = "OptanonConsent\x3d";
        for (var e = document.cookie.split(";"), d = 0; d < e.length; d++) {
            for (var a = e[d];
                " " == a.charAt(0);) a = a.substring(1);
            if (0 == a.indexOf(c)) {
                c = a.substring(c.length, a.length);
                break a
            }
        }
        c = ""
    }
    b = b(c);
    return "" != b && -1 !== b.indexOf(",C0002:") ? "1" == b.split(",C0002:")[1].substring(0, 1) ? "1" : "0" : "0"
})();

Executed Writes (0)


HTTP Transactions (153)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F3EBA265EE64870B2F822F1511B36C747D763C382557789CDAD8BE1D3B52D1F5"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5217
Expires: Thu, 24 Nov 2022 01:05:07 GMT
Date: Wed, 23 Nov 2022 23:38:10 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5947
Cache-Control: max-age=131533
Date: Wed, 23 Nov 2022 23:38:10 GMT
Etag: "637df674-1d7"
Expires: Fri, 25 Nov 2022 12:10:23 GMT
Last-Modified: Wed, 23 Nov 2022 10:31:16 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 23 Nov 2022 23:17:13 GMT
cache-control: public,max-age=3600
age: 1257
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    4d7e4eed097b9c4e5d509419f1cfc85a
Sha1:   290bb3d428a7c6330e2e3d73a952b16f820896c8
Sha256: 0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A62ECEDCB0953814F982237818A3D902FDCA501F82B675629D28B5D476E0FBFA"
Last-Modified: Mon, 21 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6861
Expires: Thu, 24 Nov 2022 01:32:31 GMT
Date: Wed, 23 Nov 2022 23:38:10 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: 34TwvFMGkBeo6CO65qDMOI9rXaoNi9cAdClP90V1z9yhvk+az3svkn1e/4Wf7KphiZaLgnDtRqg=
x-amz-request-id: 80JRKJMJNETN9TS9
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 23 Nov 2022 22:40:10 GMT
age: 3480
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 23 Nov 2022 23:38:10 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 23 Nov 2022 23:11:11 GMT
cache-control: public,max-age=3600
age: 1619
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2067
Cache-Control: max-age=122590
Date: Wed, 23 Nov 2022 23:38:10 GMT
Etag: "637de2ad-1d7"
Expires: Fri, 25 Nov 2022 09:41:20 GMT
Last-Modified: Wed, 23 Nov 2022 09:06:53 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /2008/09/blog-post_25.html HTTP/1.1 
Host: hungryforhungry.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Expires: Wed, 23 Nov 2022 23:38:10 GMT
Date: Wed, 23 Nov 2022 23:38:10 GMT
Cache-Control: private, max-age=0
Last-Modified: Sun, 20 Nov 2022 12:05:52 GMT
ETag: W/"1469004e89fc628c036d055ede6cd0f31373b084de2d9c1803455f82ce5a349b"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 42948
Server: GSE


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4428)
Size:   42948
Md5:    371dc7b5a718575992d901c4e2bd20cc
Sha1:   22965a284eabc1990399a456cedd3b63ac43b46d
Sha256: 8f9c82f0e80a980b23ee8a1825b716bc4de9a8e41d925a9806103191d71513ca

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 23 Nov 2022 23:38:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 23 Nov 2022 23:38:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.105
HTTP/2 200 OK
content-type: text/css
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 20:32:38 GMT
expires: Wed, 22 Nov 2023 20:32:38 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 22 Nov 2022 12:53:21 GMT
age: 97532
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30596)
Size:   6620
Md5:    6f46e6f68353c7911fe34f31faa1518f
Sha1:   ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
Sha256: 0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
                                        
                                            GET /static/v1/widgets/2342155703-widgets.js HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         142.250.74.105
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 16:02:03 GMT
expires: Tue, 21 Nov 2023 16:02:03 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Nov 2022 00:52:59 GMT
age: 200167
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2221)
Size:   56726
Md5:    1217c8e34acb09c7cea97bae4d386ea1
Sha1:   55ee17703d0a7710943e93913bacb49220d98b4b
Sha256: c2f23437ab938096bf8b40de8b08c4f27bb880b7ef8588481ec5ccc08b58870b
                                        
                                            GET /img/icon18_edit_allbkg.gif HTTP/1.1 
Host: resources.blogblog.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         142.250.74.105
HTTP/2 200 OK
content-type: image/gif
                                        
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 162
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 14:43:55 GMT
expires: Tue, 29 Nov 2022 14:43:55 GMT
cache-control: public, max-age=604800
last-modified: Mon, 21 Nov 2022 15:52:34 GMT
age: 118455
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 18 x 18\012- data
Size:   162
Md5:    c991641178ff05adf0d004298b5eafa9
Sha1:   d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
Sha256: ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b
                                        
                                            GET /js/platform.js HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Wed, 23 Nov 2022 23:38:10 GMT
expires: Wed, 23 Nov 2022 23:38:10 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1279)
Size:   20984
Md5:    7ac44ef24e267df17ff72f195b252806
Sha1:   62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
Sha256: aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61
                                        
                                            GET /img/blank.gif HTTP/1.1 
Host: resources.blogblog.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/

search
                                         142.250.74.105
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 43
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 22 Nov 2022 16:44:33 GMT
Expires: Tue, 29 Nov 2022 16:44:33 GMT
Cache-Control: public, max-age=604800
Last-Modified: Mon, 21 Nov 2022 19:52:12 GMT
Age: 111217


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    325472601571f31e1bf00674c368d335
Sha1:   2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
Sha256: b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
                                        
                                            GET /img/blogger_logo_round_35.png HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/

search
                                         142.250.74.105
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2531
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 23 Nov 2022 03:08:05 GMT
Expires: Wed, 30 Nov 2022 03:08:05 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 22 Nov 2022 16:52:39 GMT
Age: 73805


--- Additional Info ---
Magic:  PNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced\012- data
Size:   2531
Md5:    838622483cbfed35380b4705f19d7cca
Sha1:   7de684136affc969a24d61927afc18905cf2fc36
Sha256: 183923f8c8c3960dce8ad9722cf55a30d19b321b721741bd9e2ab6ae1f1ae72a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 23 Nov 2022 23:38:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /img/blank.gif HTTP/1.1 
Host: resources.blogblog.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         142.250.74.105
HTTP/2 200 OK
content-type: image/gif
                                        
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 43
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 05:49:50 GMT
expires: Wed, 30 Nov 2022 05:49:50 GMT
cache-control: public, max-age=604800
last-modified: Tue, 22 Nov 2022 23:52:52 GMT
age: 64100
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    325472601571f31e1bf00674c368d335
Sha1:   2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
Sha256: b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
                                        
                                            GET /js/cookienotice.js HTTP/1.1 
Host: hungryforhungry.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/2008/09/blog-post_25.html

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 23 Nov 2022 10:47:22 GMT
Expires: Wed, 30 Nov 2022 10:47:22 GMT
Cache-Control: public, max-age=604800
Last-Modified: Wed, 23 Nov 2022 07:50:07 GMT
Age: 46248


--- Additional Info ---
Magic:  ASCII text
Size:   2026
Md5:    c4e1ed83d89245089b8a1203be20a377
Sha1:   f3940e1215b89300ef97d57a25993f25243b8688
Sha256: afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /icon/link_red.gif HTTP/1.1 
Host: www.ask2use.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/

search
                                         45.84.204.248
HTTP/1.1 301 Moved Permanently
content-type: text/html
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-length: 707
date: Wed, 23 Nov 2022 23:38:10 GMT
server: LiteSpeed
location: https://www.ask2use.com/icon/link_red.gif
platform: hostinger
content-security-policy: upgrade-insecure-requests


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size:   707
Md5:    1304294c0823ca486542ba408ed761e3
Sha1:   b2a70fb2d810ca13985882e6981f33998823e83e
Sha256: 3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
                                        
                                            GET /images/cs-gr-3d-88x31.gif HTTP/1.1 
Host: banners.copyscape.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/

search
                                         184.86.15.80
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Apache/2.2.15 (CentOS)
Last-Modified: Mon, 12 Oct 2015 10:29:00 GMT
ETag: "640cf-95e-521e5cc28b300"
Accept-Ranges: bytes
Content-Length: 2398
Date: Wed, 23 Nov 2022 23:38:10 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 88 x 31\012- data
Size:   2398
Md5:    4ae2b67a4cf70a78f029a03d24571899
Sha1:   7d87e7419ec57b6c28e373dd2d9b177ff28ad2cd
Sha256: 51245b05f6ca3dfca5a2a0688ce3deb938e09c393d783e037c90ad255a165143
                                        
                                            GET /Recent_posts_widget_blogger.js HTTP/1.1 
Host: jimmyjackbob.googlepages.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/

search
                                         172.217.21.179
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Location: http://sites.google.com/site/jimmyjackbob/Recent_posts_widget_blogger.js
Date: Wed, 23 Nov 2022 23:38:10 GMT
Server: ghs
Content-Length: 269
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size:   269
Md5:    81232fc3781a39a981c6c72e9a48ba97
Sha1:   26f15a71aabae97e15fa05fa9b805b61376ac53a
Sha256: 10b85695364b524dad70daaba8c28fa00e2c5ca19cfeee15c53fdb625bc81017
                                        
                                            GET /icon/perm_red.gif HTTP/1.1 
Host: www.ask2use.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/

search
                                         45.84.204.248
HTTP/1.1 301 Moved Permanently
content-type: text/html
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-length: 707
date: Wed, 23 Nov 2022 23:38:10 GMT
server: LiteSpeed
location: https://www.ask2use.com/icon/perm_red.gif
platform: hostinger
content-security-policy: upgrade-insecure-requests


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size:   707
Md5:    1304294c0823ca486542ba408ed761e3
Sha1:   b2a70fb2d810ca13985882e6981f33998823e83e
Sha256: 3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
                                        
                                            GET /icon/logo.gif HTTP/1.1 
Host: www.ask2use.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/

search
                                         45.84.204.248
HTTP/1.1 301 Moved Permanently
content-type: text/html
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-length: 707
date: Wed, 23 Nov 2022 23:38:10 GMT
server: LiteSpeed
location: https://www.ask2use.com/icon/logo.gif
platform: hostinger
content-security-policy: upgrade-insecure-requests


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size:   707
Md5:    1304294c0823ca486542ba408ed761e3
Sha1:   b2a70fb2d810ca13985882e6981f33998823e83e
Sha256: 3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
                                        
                                            GET /icon/notes.gif HTTP/1.1 
Host: www.ask2use.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/

search
                                         45.84.204.248
HTTP/1.1 301 Moved Permanently
content-type: text/html
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-length: 707
date: Wed, 23 Nov 2022 23:38:10 GMT
server: LiteSpeed
location: https://www.ask2use.com/icon/notes.gif
platform: hostinger
content-security-policy: upgrade-insecure-requests


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size:   707
Md5:    1304294c0823ca486542ba408ed761e3
Sha1:   b2a70fb2d810ca13985882e6981f33998823e83e
Sha256: 3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
                                        
                                            GET /icon/contact.gif HTTP/1.1 
Host: www.ask2use.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/

search
                                         45.84.204.248
HTTP/1.1 301 Moved Permanently
content-type: text/html
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-length: 707
date: Wed, 23 Nov 2022 23:38:10 GMT
server: LiteSpeed
location: https://www.ask2use.com/icon/contact.gif
platform: hostinger
content-security-policy: upgrade-insecure-requests


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size:   707
Md5:    1304294c0823ca486542ba408ed761e3
Sha1:   b2a70fb2d810ca13985882e6981f33998823e83e
Sha256: 3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
                                        
                                            GET /_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 57794
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 09:56:18 GMT
expires: Thu, 23 Nov 2023 09:56:18 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 01 Nov 2022 15:24:55 GMT
age: 49312
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (580)
Size:   57794
Md5:    813b15c3004464f6bd39fd0773b04757
Sha1:   bd2218fe1e647f61132aad70d29cd91fd0416f26
Sha256: 446c6d83404c0fc4bc1ca6e1c0895f9400309185a534b3f4b6d500e668efeadf
                                        
                                            GET /pagead/js/google_top_exp.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/

search
                                         216.58.207.226
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Wed, 23 Nov 2022 08:04:05 GMT
Expires: Wed, 07 Dec 2022 08:04:05 GMT
Cache-Control: public, max-age=1209600
ETag: 13036835877489095579
Age: 56045


--- Additional Info ---
Magic:  ASCII text
Size:   67
Md5:    9bbc3ca32ec951a484589ce0e6b4db73
Sha1:   753d6f6183b33b2dee5dde2208fca91c17f5bb13
Sha256: b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
                                        
                                            GET /widget.js HTTP/1.1 
Host: www.linkwithin.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/

search
                                         3.19.188.212
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 23 Nov 2022 23:38:10 GMT
Content-Length: 162
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   162
Md5:    1b7c22a214949975556626d7217e9a39
Sha1:   d01c97e2944166ed23e47e4a62ff471ab8fa031f
Sha256: 340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87
                                        
                                            GET /dyn-css/authorization.css?targetBlogID=35543344&zx=ff24c47a-9327-4858-aba5-a9856b6362a8 HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         142.250.74.105
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                        
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 23 Nov 2022 23:38:10 GMT
last-modified: Wed, 23 Nov 2022 23:38:10 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  very short file (no magic)
Size:   21
Md5:    a62e4d501434033d5d177e67d3aafdd0
Sha1:   34f7300c9ed47334cf10826d57af785321e3138b
Sha256: b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 23 Nov 2022 23:38:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 23 Nov 2022 23:38:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /feeds/comments/default?alt=json-in-script&callback=showrecentcomments HTTP/1.1 
Host: hungryforhungry.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/2008/09/blog-post_25.html

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Cross-Origin-Resource-Policy: cross-origin
Server: blogger-renderd
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Content-Encoding: gzip
Content-Length: 7430
X-Frame-Options: SAMEORIGIN
Date: Wed, 23 Nov 2022 23:38:11 GMT
Expires: Wed, 23 Nov 2022 23:38:12 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
Last-Modified: Mon, 01 Aug 2022 18:13:06 GMT
ETag: W/"ab30207457a0947c8c272bbb5598935a4aed14db009c8dfaafe4969b27feca6e"
Age: 0


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (42748)
Size:   7430
Md5:    c7a234c75f43a6cae08d2fe078c6df2d
Sha1:   6f4aa8422e91420c6d950996faa3de49a6565767
Sha256: bed50deb89ba3642c6cb5939237711ce714b27d4ced32335d5c66396f97e34bc
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 23 Nov 2022 23:38:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /pixel.png HTTP/1.1 
Host: www.linkwithin.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/

search
                                         3.19.188.212
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 23 Nov 2022 23:38:11 GMT
Content-Length: 83
Last-Modified: Thu, 18 Jun 2020 22:02:28 GMT
Connection: keep-alive
ETag: "5eebe474-53"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Size:   83
Md5:    ca1dba98f5e46c0e7a1549b3d8af9b93
Sha1:   37284bda145ed93cee64997e3d6688cae7d98468
Sha256: 88021da4a13d993a2c94e4d8ddc9bd98b34985d806371e71e0531b37b8a0e081
                                        
                                            GET /no565/corner_main_left.gif HTTP/1.1 
Host: www.blogblog.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/

search
                                         142.250.74.105
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 121
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 22 Nov 2022 08:17:40 GMT
Expires: Tue, 29 Nov 2022 08:17:40 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 22 Nov 2022 04:50:59 GMT
Age: 141631


--- Additional Info ---
Magic:  GIF image data, version 89a, 12 x 12\012- data
Size:   121
Md5:    ab1ba5d2a21f493eeb993bee5d85e148
Sha1:   f262b70cf55f4661ae9ac9bf82b12b477b87f322
Sha256: b6783f5294ee60f509f45baa57ad4beaaa2d0bbb6ad0913f019e8a5264d33128
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: uKS5i6NdJvyBX+uUR1r1uw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         35.163.49.154
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: pQlmdBDY5NyL+KD++6H47IdVHvI=

                                        
                                            GET /no565/corner_sidebar_left.gif HTTP/1.1 
Host: www2.blogblog.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/

search
                                         142.250.74.105
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 122
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 23 Nov 2022 08:06:35 GMT
Expires: Wed, 30 Nov 2022 08:06:35 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 22 Nov 2022 07:51:00 GMT
Age: 55896


--- Additional Info ---
Magic:  GIF image data, version 89a, 12 x 12\012- data
Size:   122
Md5:    4c730193eea5df357d1bde22619077a9
Sha1:   494f3926077d1457ef448a60dd8bcab4e16b37e4
Sha256: efa22c826a3d042f330fcdd25feba79f543f8c869e01fbc32409328885df1524
                                        
                                            GET /_v2lkGN6klbI/S0eJkTo9JLI/AAAAAAAAAfg/vlPAfFjaxzg/S779/header1.JPG HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="header1.JPG"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 37247
X-XSS-Protection: 0
Date: Wed, 23 Nov 2022 23:38:11 GMT
Expires: Thu, 24 Nov 2022 10:47:22 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v265"
Age: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 779x195, components 3\012- data
Size:   37247
Md5:    b91073758e2c91409f3736422d8c810f
Sha1:   89d2e3b801b15ba463f1f01a8492ae0faa7d3aaf
Sha256: 9fa67d5a9fbaa23a47d05ee0a8e794f0bb4f5f50feb20e3668df1420eb3b06db
                                        
                                            GET /feeds/posts/default?orderby=published&alt=json-in-script&callback=showrecentposts HTTP/1.1 
Host: hungryforhungry.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/2008/09/blog-post_25.html

search
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
ETag: W/"ad79b9c5c99ee32cc45fa40133ea9f054f89ecff0a2ace3f71941fe0f9993a02"
Date: Wed, 23 Nov 2022 23:38:11 GMT
Server: blogger-renderd
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
Vary: Accept-Encoding
Expires: Wed, 23 Nov 2022 23:38:12 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Sun, 20 Nov 2022 12:05:52 GMT
Content-Length: 31017
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (56128)
Size:   31017
Md5:    271d8cbc9628349737eafc29780c54b8
Sha1:   2a1d51073002b22ca6f81f5e7e14728fe0d6b203
Sha256: 1b9a72236d46024812c958979391d2322279b337c3886be7d87c2a4b7d40d899
                                        
                                            GET /syndication/subscriber/InsertWidget.js HTTP/1.1 
Host: cdn.widgetserver.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/

search
                                         45.33.23.183
HTTP/1.1 200 OK
content-type: application/javascript
                                        
server: openresty/1.13.6.1
date: Wed, 23 Nov 2022 23:38:11 GMT
content-length: 157
last-modified: Wed, 07 Mar 2018 18:30:37 GMT
etag: "5aa02fcd-9d"
accept-ranges: bytes
connection: close


--- Additional Info ---
Magic:  ASCII text
Size:   157
Md5:    67e216a27dda24bdcb086c2385b0cb99
Sha1:   17141c80f5d32bec3691c5ab24741d8b7dd5f0c6
Sha256: 9dc433b2142d3ba0803fcffa53f19d34da26996d20c829df6d694bc887325dd7

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /site/jimmyjackbob/Recent_posts_widget_blogger.js HTTP/1.1 
Host: sites.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hungryforhungry.blogspot.com/
Connection: keep-alive

search
                                         142.250.74.142
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html; charset=UTF-8
                                        
Location: https://sites.google.com/site/jimmyjackbob/Recent_posts_widget_blogger.js
Content-Encoding: gzip
Date: Wed, 23 Nov 2022 23:38:11 GMT
Expires: Wed, 23 Nov 2022 23:38:11 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 206
Server: GSE


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Size:   206
Md5:    62f17a5c9eb9a5ec59ab0af4b722f714
Sha1:   de1e9f476e6e573c6d5eb05d39031ce2df9f9dd8
Sha256: fe269197944fbe306e6ab64c4ee8c9b1f750c0ad2a4dff5970cebc9bf615f300
                                        
                                            GET / HTTP/1.1 
Host: cdn.widgetserver.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/
Upgrade-Insecure-Requests: 1

search
                                         45.33.23.183
HTTP/1.1 200 OK
content-type: text/html; charset=utf-8
                                        
server: openresty/1.13.6.1
date: Wed, 23 Nov 2022 23:38:11 GMT
content-length: 4792
vary: Accept-Language
content-language: en
connection: close


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (334)
Size:   4792
Md5:    3f6e02f18406992a1db1b60f46b4e931
Sha1:   1d90436a1e7d45a3771146fbb8bed4330d15046a
Sha256: a95074a14e612e8e433bee6bda8b8f75bd7b8c5d4ff02dd3fe2b6e6db95458ee

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: cdn.widgetserver.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.widgetserver.com/

search
                                         45.33.23.183
HTTP/1.1 200 OK
content-type: image/gif
                                        
server: openresty/1.13.6.1
date: Wed, 23 Nov 2022 23:38:11 GMT
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
connection: close


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /mtm/async/.eJxdjEsOwiAQhu_CshJwqTWexVA6BRJeDtMWY7y7oK7cff_zyVZ0bGSScabQlIaNEBZAwCYsUR6ltGs0-FgSfkFMPpmSEwmdQp_aVOgWVYA20XMUu5sNUAHcAHunv2sNmVpOUElaCp6rnL3TilyKsnbnUP_d4C_361GcuQvKgFSbW364w5T5IIdPfmKvN42ERe8:1oxzJj:43X84O-1SuhcmZLg9BM9Vx5Qc3g/1/ HTTP/1.1 
Host: cdn.widgetserver.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://cdn.widgetserver.com/
Connection: keep-alive

search
                                         45.33.23.183
HTTP/1.1 200 OK
content-type: text/html; charset=utf-8
                                        
server: openresty/1.13.6.1
date: Wed, 23 Nov 2022 23:38:12 GMT
content-length: 252
x-mtm-path: 4
x-mtm-prov: 1:4.01;70:0.00
x-mtm-rd: 0.65
vary: Accept-Language
content-language: en
set-cookie: mtm_delivered=WyJjZG4ud2lkZ2V0c2VydmVyLmNvbSIsImh0dHA6Ly93d3cxLndpZGdldHNlcnZlci5jb20vP3RtPTEmc3ViaWQ0PTE2NjkyNDY2OTEuMDE5MzUyMDAwMCZLVzE9RXVyb3BlJTIwRGVkaWNhdGVkJTIwU2VydmVycyZLVzI9Tm9yd2F5JTIwRGVkaWNhdGVkJTIwU2VydmVycyZLVzM9UmVnaW9uYWwlMjBEZWRpY2F0ZWQlMjBTZXJ2ZXJzJktXND1Mb2NhbCUyMERlZGljYXRlZCUyMFNlcnZlcnMmS1c1PUN1c3RvbSUyMERlZGljYXRlZCUyMFNlcnZlcnMmc2VhcmNoYm94PTAmYmFja2ZpbGw9MCIsMSwiMjAyMi0xMS0yMyAyMzozODoxMiIsMSwiMTY2OTI0NjY5MS4wMTkzNTIwMDAwIiwxLG51bGwsbnVsbF0:1oxzJk:flGj50dqlXBnUYjNtX4i72JCZd8; expires=Thu, 24-Nov-2022 00:38:12 GMT; Max-Age=3600; Path=/
connection: close


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   252
Md5:    aaa999d355eaf9e7cc97f74d5f9a18b7
Sha1:   9680050a3ac4218a0d572a47906dc499e535ee0a
Sha256: 4189de67ef66748d73fd3166985c32f4f997ab990691ce85e5f593099f45e0e7

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6103
Expires: Thu, 24 Nov 2022 01:19:55 GMT
Date: Wed, 23 Nov 2022 23:38:12 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6103
Expires: Thu, 24 Nov 2022 01:19:55 GMT
Date: Wed, 23 Nov 2022 23:38:12 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6103
Expires: Thu, 24 Nov 2022 01:19:55 GMT
Date: Wed, 23 Nov 2022 23:38:12 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6103
Expires: Thu, 24 Nov 2022 01:19:55 GMT
Date: Wed, 23 Nov 2022 23:38:12 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6103
Expires: Thu, 24 Nov 2022 01:19:55 GMT
Date: Wed, 23 Nov 2022 23:38:12 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8089
x-amzn-requestid: f4b5f150-a5dc-40bf-93b9-394c294a51cb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEmkRFSnIAMF5vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e8481-74454bee1a1ec6d506f3d75b;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 20:37:21 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ZVv8iTGCYV-IiBJ6KwNSG1ZWSEwClaQopUejSqZq0S1wd782lRoyKA==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:57:19 GMT
age: 6053
etag: "318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8089
Md5:    c8f6118fc03f31862ff68fef8a2b9a7f
Sha1:   318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73
Sha256: cdd4d44f05cc524d7f2b1d6d792ecd8a9a933e52ecb7685a7d7ea786a510ef39
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7YSXUV-LZpsI7vciFhuqt1EVr6YRkhxcOgMg8z8bxLcOE01_baf6Gg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:47:06 GMT
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
age: 6666
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7993
Md5:    92c78302bcce1568eb6a5563100b932c
Sha1:   43d1dec7fc06879988c9c3cadd800cc8145df988
Sha256: 0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7462
x-amzn-requestid: 1f6fb14d-83e0-43d3-9dab-5bc83af1a7c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwV3HV9oAMFs9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9425-634d43db6308e0be596aa5a0;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GW5UTfY7-TwPWTno9z1e21a2cA9fmU7GfHFYWdL-zQvMLxeq-S9Trg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 22:03:54 GMT
age: 5658
etag: "a7d9135f9d01ba13c3cdaf8b038c70212f159297"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7462
Md5:    b4157f2c5c3c77ce699324ecb08f47c7
Sha1:   a7d9135f9d01ba13c3cdaf8b038c70212f159297
Sha256: 2305f7afee95bb34d9e8dbff571c6b146ba7b694be96e9e925c32d1f41785916
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5070
x-amzn-requestid: d86d95ad-9b78-4047-82e7-04e83a97e330
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwViF1GIAMF_PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9423-10809ba1634776171cf79cb8;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:03 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8rbsN9OVJmneT9ov-Q7V4RB8DP5UWhhn-7cnukHiBpl06zmMM0zJTg==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:57:20 GMT
age: 6052
etag: "89accd230fba95fe0049678070817b36ead015fa"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5070
Md5:    0856fdb55f19f03a1bec38b3d6e0ac77
Sha1:   89accd230fba95fe0049678070817b36ead015fa
Sha256: 17c6e6f9bb8f4261fff2dc2a43ed994986418761624b8afead768e89927594f2
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08efdc1b-e7ef-4a2f-b199-9a633b00cef5.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8748
x-amzn-requestid: 864da50a-44bb-4d20-b499-08c2a140871e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCtENmoAMFqKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-2705cc956f2c2aa5535533b0;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: xT0IorkRpXysoYMnugcrV40YaAxoRPjLmkPcv1ElteP_-rNZ1c6fog==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:57:20 GMT
etag: "a1fbb6da386cf2eef8b76a65438cf9c6bd741f7a"
age: 6052
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8748
Md5:    28381329eca6c426a8b05fcdef4aafcc
Sha1:   a1fbb6da386cf2eef8b76a65438cf9c6bd741f7a
Sha256: 4fc8414d39bbaacb1e6575924bd0bbb9373d78b177022f7d3c6457829abffd06
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F707b8d34-3bd2-4793-9e17-c60d0b285f84.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9828
x-amzn-requestid: bf2f8429-416d-40d4-a237-7593ee26c27a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEv0KHywIAMFvtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e934d-349e1dcc595b1be906a83577;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bQcpPUgu6eN6PQeLMGWwBlf01iHj77_aXHjKmh8SH7HsWlUX6kipDg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:57:23 GMT
age: 6049
etag: "9355a16a81b11e024dd2c5c0024aba1121fff925"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9828
Md5:    dc118bae963b381ce5450890130ecf15
Sha1:   9355a16a81b11e024dd2c5c0024aba1121fff925
Sha256: cb5bc2cc49e05c133434eeb725690b3e32a0d3c6b75074582f941eee3bf7e1c1
                                        
                                            GET /?tm=1&subid4=1669246691.0193520000&KW1=Europe%20Dedicated%20Servers&KW2=Norway%20Dedicated%20Servers&KW3=Regional%20Dedicated%20Servers&KW4=Local%20Dedicated%20Servers&KW5=Custom%20Dedicated%20Servers&searchbox=0&backfill=0 HTTP/1.1 
Host: www1.widgetserver.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.widgetserver.com/
Upgrade-Insecure-Requests: 1

search
                                         99.83.136.84
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 23 Nov 2022 23:38:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Redirect: zeropark_zeroclick
X-Template: tpl_CleanPeppermintBlack_twoclick
X-Language: norwegian
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2262)
Size:   2511
Md5:    185ce4cd4deeba2d791db840dba0d4f8
Sha1:   7d17e10f4a7eaf2a7c5652207c68d57f98a24a07
Sha256: 30e3bf447457125c9d1c2b840509d4ac6c2ecc920ea2a1a665585f1e290dcaf0
                                        
                                            GET /scripts/js3.js HTTP/1.1 
Host: d38psrni17bvxu.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.widgetserver.com/

search
                                         54.230.245.138
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 1134
Connection: keep-alive
Server: nginx
Date: Wed, 23 Nov 2022 04:54:34 GMT
Last-Modified: Tue, 17 Aug 2021 09:17:22 GMT
Accept-Ranges: bytes
ETag: "611b7ea2-46e"
X-Cache: Hit from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: HOMiIFMLj5QOXwiUQ3Bt82mvnUyEhZ0DMg2fshPZEWbaXINy3AWj7Q==
Age: 67418


--- Additional Info ---
Magic:  ASCII text, with very long lines (506)
Size:   1134
Md5:    64b79b43df8fbf2c5d082964b9116a68
Sha1:   dc3c763519baf0f4c32bb60bfc429651a491ea01
Sha256: c57e9feec209e3ea5eb1d75a1ba6fa277242a3df250055be8446052b51e58637

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /track.php?domain=widgetserver.com&toggle=browserjs&uid=MTY2OTI0NjY5Mi4zODM3OjFkNzAzNTU5ODY1NjM2NzYxNTIwMWZhY2FjNDAxMTY3NWMyYmIzMTBhYzgzYTM5NDM4ZjJiMjRjNzJlNzJmNjk6NjM3ZWFlZTQ1ZGFiYg%3D%3D HTTP/1.1 
Host: www1.widgetserver.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.widgetserver.com/?tm=1&subid4=1669246691.0193520000&KW1=Europe%20Dedicated%20Servers&KW2=Norway%20Dedicated%20Servers&KW3=Regional%20Dedicated%20Servers&KW4=Local%20Dedicated%20Servers&KW5=Custom%20Dedicated%20Servers&searchbox=0&backfill=0

search
                                         99.83.136.84
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 23 Nov 2022 23:38:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Custom-Track: browserjs
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Access-Control-Allow-Origin: *
Content-Encoding: gzip

                                        
                                            POST /ls.php HTTP/1.1 
Host: www1.widgetserver.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 2214
Origin: http://www1.widgetserver.com
Connection: keep-alive
Referer: http://www1.widgetserver.com/?tm=1&subid4=1669246691.0193520000&KW1=Europe%20Dedicated%20Servers&KW2=Norway%20Dedicated%20Servers&KW3=Regional%20Dedicated%20Servers&KW4=Local%20Dedicated%20Servers&KW5=Custom%20Dedicated%20Servers&searchbox=0&backfill=0

search
                                         99.83.136.84
HTTP/1.1 201 Created
Content-Type: text/javascript;charset=UTF-8
                                        
Date: Wed, 23 Nov 2022 23:38:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
X-Log-Success: 637eaee50d77663cb74393e3
Charset: utf-8
Access-Control-Allow-Origin: http://www1.widgetserver.com
Access-Control-Allow-Methods: POST, OPTIONS
Access-Control-Max-Age: 86400
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_pKsGZ9jse8MmrSRzij3dTfaR684b8YATpMGvIieCZ2znGDJ+5cJyZJ4DsQwMexX79XMAJZN3XBdUNWTap8395w==


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www1.widgetserver.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.widgetserver.com/?tm=1&subid4=1669246691.0193520000&KW1=Europe%20Dedicated%20Servers&KW2=Norway%20Dedicated%20Servers&KW3=Regional%20Dedicated%20Servers&KW4=Local%20Dedicated%20Servers&KW5=Custom%20Dedicated%20Servers&searchbox=0&backfill=0

search
                                         99.83.136.84
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Date: Wed, 23 Nov 2022 23:38:13 GMT
Content-Length: 0
Connection: keep-alive
Server: nginx
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
ETag: "5ebab1f0-0"
Accept-Ranges: bytes

                                        
                                            GET /track.php?click=8bc5311fea51f5d88ad90580a49f43a22d8f5165&domain=widgetserver.com&uid=MTY2OTI0NjY5Mi4zODM3OjFkNzAzNTU5ODY1NjM2NzYxNTIwMWZhY2FjNDAxMTY3NWMyYmIzMTBhYzgzYTM5NDM4ZjJiMjRjNzJlNzJmNjk6NjM3ZWFlZTQ1ZGFiYg%3D%3D&ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTF8fHx8fHw2MzdlYWVlNDVkYWExfHx8MTY2OTI0NjY5Mi42NjU4fDNjNTRkZWFlM2ViMDFmMGM4YjRjYmFkOTY1OGViNzQ2N2IzZWRkNTh8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXw2ZWJjYmNkNjMwYWUyZDk0NzI5ODJlY2NlZjhlZjExYzQwMjkwNDg3fDB8ZHAtdGVhbWludGVybmV0MTJfM3BofDB8MA%3D%3D&kw=&search=&pcat=&rxid=&bucket=&clientID=&adtest=off HTTP/1.1 
Host: www1.widgetserver.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.widgetserver.com/?tm=1&subid4=1669246691.0193520000&KW1=Europe%20Dedicated%20Servers&KW2=Norway%20Dedicated%20Servers&KW3=Regional%20Dedicated%20Servers&KW4=Local%20Dedicated%20Servers&KW5=Custom%20Dedicated%20Servers&searchbox=0&backfill=0

search
                                         99.83.136.84
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 23 Nov 2022 23:38:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-View-Match: true
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Access-Control-Allow-Origin: *
Content-Encoding: gzip

                                        
                                            GET /zcvisitor/e5054c07-6b87-11ed-8974-120460744261/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=4fb4e190-e7f9-11ec-be3c-128084d1ce51 HTTP/1.1 
Host: dipaka-ead.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.widgetserver.com/
Upgrade-Insecure-Requests: 1

search
                                         3.208.247.235
HTTP/1.1 200
Content-Type: text/html;charset=UTF-8
                                        
Date: Wed, 23 Nov 2022 23:38:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Server: RlNJsTIe


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   1100
Md5:    2fac70f9a0c5530d77bda8f664b26642
Sha1:   1dba41ef3dd54b86b47d3ae74d2ec0e4782f2836
Sha256: 175ab7b88a9682144f33a7ba35f88fb5dbc69731605fb17e6dbaa8d426682437
                                        
                                            GET /zcredirect?visitid=e5054c07-6b87-11ed-8974-120460744261&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false HTTP/1.1 
Host: dipaka-ead.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dipaka-ead.com/zcvisitor/e5054c07-6b87-11ed-8974-120460744261/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=4fb4e190-e7f9-11ec-be3c-128084d1ce51
Upgrade-Insecure-Requests: 1

search
                                         3.208.247.235
HTTP/1.1 200
Content-Type: text/html;charset=UTF-8
                                        
Date: Wed, 23 Nov 2022 23:38:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
redirected: JS
Server: klUkGqDR


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   360
Md5:    d79b4c692ae05ad202e8732eb5f4442d
Sha1:   5e669020cc4d8b5ec1f4cfc689dc4319193e622a
Sha256: ef378a437e5e718b04f46e5b7871b005b90b815d845ba862aa55660f824c9102
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0144450DF4387B60E94124131C8C24B8EEEA8A69DFC100CFE1C410969E91FD50"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11614
Expires: Thu, 24 Nov 2022 02:51:48 GMT
Date: Wed, 23 Nov 2022 23:38:14 GMT
Connection: keep-alive

                                        
                                            GET /s/r6?s=623619497&s2=lateritious-falcon&s3=papa-gob-1w6yeo6rq8 HTTP/1.1 
Host: clever-redirect.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dipaka-ead.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         78.46.197.88
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
referrer-policy: no-referrer
x-powered-by: PHP/7.4.27
set-cookie: 374355a5183c40cb5cc36fddfa984199=c0e11383a4a29cb0b66a1006be40d3a70e140c7d7fd45826264dde115fea1162a%3A2%3A%7Bi%3A0%3Bs%3A32%3A%22374355a5183c40cb5cc36fddfa984199%22%3Bi%3A1%3Bs%3A1%3A%221%22%3B%7D; expires=Thu, 24-Nov-2022 23:38:14 GMT; Max-Age=86400; path=/; HttpOnly
content-length: 352
date: Wed, 23 Nov 2022 23:38:14 GMT
server: Apache/2.4.52 (codeit) OpenSSL/1.1.1m PHP/7.4.27
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (352), with no line terminators
Size:   352
Md5:    f856371a3299a6e96ebf8fc0ca23ef31
Sha1:   5d62a3d7f8ef51520f76e678e6cb849a9692d6da
Sha256: 142f29cfd07cb202cd592a0dcc13c401b0693ab36adfd72cc9deaf9d0a7047c6
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "5FD9D7F1F2EDD6E8A6CDA893DB551DA6FC5CEE82174049DC56FD1FB39B8FFFAC"
Last-Modified: Mon, 21 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6208
Expires: Thu, 24 Nov 2022 01:21:42 GMT
Date: Wed, 23 Nov 2022 23:38:14 GMT
Connection: keep-alive

                                        
                                            GET /s/a?t=11&f=1&u=41ecaa9ae33de01f1e1a4b6551068474&m=lusini.com&s1=623619497&s2=lateritious-falcon&s3=papa-gob-1w6yeo6rq8&s5=wc HTTP/1.1 
Host: lookandfind.me
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         5.9.110.29
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 23 Nov 2022 23:38:14 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1k
X-Powered-By: PHP/8.1.10
Referrer-Policy: strict-origin-when-cross-origin
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with very long lines (410), with no line terminators
Size:   410
Md5:    0667d8450a853447bd23b68d436a01f3
Sha1:   6abdefecaa2bf88c0c157f4ec51cd9085aa18814
Sha256: a50cc4036557e18aaa676d55d9720518ffd6d1fbc50c8202a70a26f8a0a8be8a
                                        
                                            GET /s/r?u=https%3A%2F%2Fwww.linkbux.com%2Ftrack%3Fpid%3DLB00002126%26mid%3D41309%26url%3Dhttps%253A%252F%252Fwww.lusini.com%252F%26uid%3D582f5c8f532c96b9194c37abb6ab180a&h=acd8e229b336a0d537e62eeed237809d HTTP/1.1 
Host: lookandfind.me
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin

search
                                         5.9.110.29
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 23 Nov 2022 23:38:14 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1k
X-Powered-By: PHP/8.1.10
Referrer-Policy: strict-origin-when-cross-origin
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (324), with no line terminators
Size:   324
Md5:    3dc9544d27331757808263050e981ea6
Sha1:   b18103690d9a313351699e22ed5f83214868eeeb
Sha256: 6bb7b0b141632dacc8df24ec4081d4399452363d81f4cf9f2259b4469848138a
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4691
Cache-Control: 'max-age=158059'
Date: Wed, 23 Nov 2022 23:38:15 GMT
Etag: "637d6420-2d7"
Last-Modified: Wed, 23 Nov 2022 22:20:04 GMT
Server: ECS (amb/6BBF)
X-Cache: HIT
Content-Length: 727

                                        
                                            GET /v1/redirect?url=https%3A%2F%2Fwww.lusini.com%2F&api_key=6e214a2e5eaa4f87f699b7c54a542a6a&type=url&source=https%3A%2F%2Flookandfind.me%2F&site_id=2588750acba045468d0d6283a3c3afec&yk_tag=lb_nk46uq HTTP/1.1 
Host: r.srvtrck.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.linkbux.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         104.19.169.96
HTTP/2 302 Found
                                        
date: Wed, 23 Nov 2022 23:38:16 GMT
content-length: 0
p3p: CP="CAO PSA OUR"
set-cookie: ykuid=b9636100c1874b77b9f942dbd00bb707; Domain=.srvtrck.com; Expires=Thu, 23-Nov-2023 23:38:16 GMT; Path=/
location: /v2/go?t=ctfp3%3A3%2F3w2.dwdn6.5o0%2Fbwal5c8.5h-%3F0i8%3D32e1c%262dd2a1e54%268ldc3raf7%3De040200002040e%3D7caa3Fd%258o4.enasdl2wcwe23F8%2503%26sltchrpfc%3Df538353a2bd0d564840a6c80a7c8a2e3%26e%3Dktipc%255Ae20%253F0wa.9ubi4iec8me21%266wfr5v537410014735v52fe6k1iec83e447b%3D9ia406320dem5p2p8k7i0ccaam4c418i0a6w8wa%2Fcsateh&s=https%3A%2F%2Fwww.linkbux.com%2F&e=1&ai=eb6db0ed780f4d74954851311fa752f0&sct=0&ct=1669246696092&cu=e57fa631de884ee4abd92ac0e3308e05&sr=1&ykuid=b9636100c1874b77b9f942dbd00bb707&sc=1&cs=9d1c31454a0c2ff3e746ff9718be312d
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 76edbcca2fd6b50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

                                        
                                            GET /v2/go?t=ctfp3%3A3%2F3w2.dwdn6.5o0%2Fbwal5c8.5h-%3F0i8%3D32e1c%262dd2a1e54%268ldc3raf7%3De040200002040e%3D7caa3Fd%258o4.enasdl2wcwe23F8%2503%26sltchrpfc%3Df538353a2bd0d564840a6c80a7c8a2e3%26e%3Dktipc%255Ae20%253F0wa.9ubi4iec8me21%266wfr5v537410014735v52fe6k1iec83e447b%3D9ia406320dem5p2p8k7i0ccaam4c418i0a6w8wa%2Fcsateh&s=https%3A%2F%2Fwww.linkbux.com%2F&e=1&ai=eb6db0ed780f4d74954851311fa752f0&sct=0&ct=1669246696092&cu=e57fa631de884ee4abd92ac0e3308e05&sr=1&ykuid=b9636100c1874b77b9f942dbd00bb707&sc=1&cs=9d1c31454a0c2ff3e746ff9718be312d HTTP/1.1 
Host: r.srvtrck.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.linkbux.com/
Connection: keep-alive
Cookie: ykuid=b9636100c1874b77b9f942dbd00bb707
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.19.169.96
HTTP/2 302 Found
                                        
date: Wed, 23 Nov 2022 23:38:16 GMT
content-length: 0
location: https://www.awin1.com/awclick.php?mid=22614&id=271453&clickref2=v030400012745e57fa631de884ee4abd92ac0e3308e05&clickref3=2588750acba045468d0d6283a3c3afec&p=https%3A%2F%2Fwww.lusini.com%2F&awcr=v030400012745e57fa631de884ee4abd92ac0e3308e05-2588750acba045468d0d6283a3c3afec
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 76edbccaa8afb50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

                                        
                                            GET /awclick.php?mid=22614&id=271453&clickref2=v030400012745e57fa631de884ee4abd92ac0e3308e05&clickref3=2588750acba045468d0d6283a3c3afec&p=https%3A%2F%2Fwww.lusini.com%2F&awcr=v030400012745e57fa631de884ee4abd92ac0e3308e05-2588750acba045468d0d6283a3c3afec HTTP/1.1 
Host: www.awin1.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.linkbux.com/
Connection: keep-alive
Cookie: bId=HLEX_628f00ae0f3690.47151114
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         2.21.192.211
HTTP/1.1 302 Moved Temporarily
                                        
Content-Length: 0
Location: https://www.lusini.com/nb-no/?awc=22614_1669246696_82fad0b07b963e6b8acaab170683f597
Allow: GET
Node: Helix
P3P: policyref="http://www.awin1.com/w3c/p3p.xml", CP="NOI NID CURa ADMa PSAa HISa OUR IND UNI PUR COM NAV"
Date: Wed, 23 Nov 2022 23:38:16 GMT
Connection: keep-alive
Set-Cookie: aw22614=271453|0|0|1669246696|v030400012745e57fa631de884ee4abd92ac0e3308e05-2588750acba045468d0d6283a3c3afec|aw|0;domain=.awin1.com;path=/;expires=Friday, 23-Dec-2022 23:38:16 UTC;Secure;SameSite=None bId=HLEX_628f00ae0f3690.47151114;domain=.awin1.com;path=/;expires=Thursday, 23-Nov-2023 23:38:16 UTC;Secure;SameSite=None
Strict-Transport-Security: max-age=86400
Awin-Akamai-Rule-Set: default

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "AC1CDD12A840828EC457AFDA62F1784E301C38EF0B8586BE4D89A36EEE654BFB"
Last-Modified: Mon, 21 Nov 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13054
Expires: Thu, 24 Nov 2022 03:15:50 GMT
Date: Wed, 23 Nov 2022 23:38:16 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6146
Cache-Control: max-age=116612
Date: Wed, 23 Nov 2022 23:38:16 GMT
Etag: "637dbb6a-117"
Expires: Fri, 25 Nov 2022 08:01:48 GMT
Last-Modified: Wed, 23 Nov 2022 06:19:22 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /scripttemplates/otSDKStub.js HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lusini.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.16.148.64
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 23 Nov 2022 23:38:16 GMT
content-length: 7151
content-encoding: gzip
content-md5: e0VkrpV+7zqDAjQ/RMXPsw==
last-modified: Tue, 22 Nov 2022 16:39:23 GMT
etag: 0x8DACCA81CF94662
x-ms-request-id: 612b53d7-501e-0067-08d0-fe6b41000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 78532
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76edbccd7a1ab4f9-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (21747)
Size:   7151
Md5:    7b4564ae957eef3a8302343f44c5cfb3
Sha1:   296c38b2ae23a31d80201b32a38c02e75de27c91
Sha256: 15155c8652fe9654c2d2813743ae09ff93a469d790d3424a6b090f876b3d9bb2
                                        
                                            GET /consent/bda0c016-94be-4fd9-943a-b9c09791a327/bda0c016-94be-4fd9-943a-b9c09791a327.json HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lusini.com
Connection: keep-alive
Referer: https://www.lusini.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         104.16.148.64
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 23 Nov 2022 23:38:16 GMT
content-length: 1464
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: KFfEM9MGv/s+tixq619uBA==
last-modified: Fri, 10 Jun 2022 09:03:41 GMT
etag: 0x8DA4AC01D79686D
x-ms-request-id: c1debd73-401e-00fb-5ea9-7c10fc000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 59513
expires: Thu, 24 Nov 2022 23:38:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76edbccdbe89b505-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (3327), with no line terminators
Size:   1464
Md5:    2857c433d306bffb3eb62c6aeb5f6e04
Sha1:   b95a42da7e4ea5d1162da3b25199ce0c36b91227
Sha256: 70a94d763f52ded5a578c31e96a50a0e7582607bdff3ceb393b64481a6f73863
                                        
                                            GET /nb-no/?awc=22614_1669246696_82fad0b07b963e6b8acaab170683f597 HTTP/1.1 
Host: www.lusini.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.linkbux.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         34.141.11.154
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
age: 49218
cache-control: max-age=0,no-cache,no-store,must-revalidate
content-encoding: gzip
content-security-policy: default-src 'self' *.lusini.dev *.lusini.com *.netlify.app https://*.wistia.com https://*.wistia.net; frame-src 'self' *.lusini.dev *.netlify.app *.lusini.com http://*.lusini.dev http://*.lusini.com https://fast.wistia.com https://fast.wistia.net *.facebook.com; connect-src 'self' *.lusini.dev *.lusini.com *.netlify.app *.getform.io getform.io *.contentful.com *.algolia.net *.algolianet.com https://widgets.trustedshops.com *.doubleclick.net *.google-analytics.com *.google.com *.google.de *.cookielaw.org https://*.litix.io https://*.wistia.com https://embedwistia-a.akamaihd.net https://api.glitch.com *.onetrust.com *.bing.com https://*.dy-api.eu *.tryggehandel.net *.tryggehandel.no; img-src 'self' data: aw1n.com *.cloudinary.com *.google.de *.google.com *.lusini.dev *.lusini.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net https://glitch.com https://cdn.glitch.com https://avatars0.githubusercontent.com *.trustedshops.com *.facebook.com *.bing.com sslwidget.criteo.com dq4irj27fs462.cloudfront.net *.tryggehandel.net *.tryggehandel.no; media-src 'self' blob: data: *.cloudinary.com *.google.de https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net dq4irj27fs462.cloudfront.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.netlify.app *.googletagmanager.com *.google.com *.cookielaw.org *.google.de *.doubleclick.net *.googleadservices.net *.googleadservices.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://src.litix.io https://button.glitch.me https://*.trustedshops.com *.googleapis.com *.bing.com *.dwin1.com *.facebook.net *.tryggehandel.net *.tryggehandel.no; worker-src 'self' blob: *.wistia.com blob:; style-src 'self' 'unsafe-inline' blob: https://maxcdn.bootstrapcdn.com https://fast.wistia.com https://button.glitch.me *.googletagmanager.com; font-src 'self' data: https://*.wistia.com; frame-ancestors 'self' lusini.com *.lusini.com contentful.com *.contentful.com *.netlify.app; child-src blob:
date: Wed, 23 Nov 2022 09:57:58 GMT
etag: "17a3d8872f8d7d359ecc455b6b105399-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-content-type-options: nosniff
x-nf-request-id: 01GJKDPEYM8N97VRH1ZA9M01ZS
x-xss-protection: 1; mode=block
content-length: 70487
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8890)
Size:   70487
Md5:    6d856a2b14c3cc70b2483a57f98c9a68
Sha1:   e0b99b28102b3d94af4570337eb1be0b584a4771
Sha256: 4abece38741a93584c693ea8908e01323ca44e20db41f07afafbd4c290090b2f
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 23 Nov 2022 23:38:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "D66373B1AA78B29A015603A914F5D6C3857CCE28983C1AA89224F0A81EF1C4F2"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=866
Expires: Wed, 23 Nov 2022 23:52:42 GMT
Date: Wed, 23 Nov 2022 23:38:16 GMT
Connection: keep-alive

                                        
                                            GET /gtm.js?id=GTM-WGDM5TC HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lusini.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 23:38:16 GMT
expires: Wed, 23 Nov 2022 23:38:16 GMT
cache-control: private, max-age=900
last-modified: Wed, 23 Nov 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 95677
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (38868)
Size:   95677
Md5:    d0f3c1895644d7658446af44ad5ca471
Sha1:   f480b171fc5bd20e2403f440de7772ae501755e5
Sha256: 72777c4470f0ff57d0e40e1bedc2d979356ef23d411ec34bf371e3e625ee255d
                                        
                                            GET /lusini/image/upload/v1663235203/application/newsletter/voucher-200-rabatt.png HTTP/1.1 
Host: res.cloudinary.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lusini.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.85.137
HTTP/2 200 OK
content-type: image/png
                                        
etag: "2e31481cdda9ce90cffbf43f3ac8e24c"
last-modified: Thu, 15 Sep 2022 09:46:44 GMT
date: Wed, 23 Nov 2022 23:38:16 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;start=2022-11-23T23:38:16.689Z;desc=hit,rtt;dur=9
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 34281
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 768 x 768, 8-bit/color RGBA, non-interlaced\012- data
Size:   34281
Md5:    2e31481cdda9ce90cffbf43f3ac8e24c
Sha1:   31ff663d241be8933c2ee49c4c6f3876df38e73a
Sha256: 56a9729fa806b0050f8fb429eac66a1819e547d541edee1e649a4b4a34b12787
                                        
                                            GET /lusini/image/upload/f_auto/q_auto/v1661844249/cms/homepage/norway/trygg-no256.png HTTP/1.1 
Host: res.cloudinary.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lusini.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.85.137
HTTP/2 200 OK
content-type: image/webp
                                        
content-disposition: inline; filename="trygg-no256.webp"
etag: "234613a7e322f141e98ec16bb2934a48"
last-modified: Tue, 30 Aug 2022 07:49:56 GMT
date: Wed, 23 Nov 2022 23:38:16 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2022-11-23T23:38:16.689Z;desc=hit,rtt;dur=9
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 14064
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   14064
Md5:    234613a7e322f141e98ec16bb2934a48
Sha1:   11651382cc179a77c5ab8b3e6a788e30f1030ff9
Sha256: ba3f57f151fca523bff3f63085832b19f03a8ba74fa6e2b5aebdb3f888654d33
                                        
                                            GET /nb-no/static/roboto-v30-latin-regular-b009a76ad6afe4ebd301e36f847a29be.woff2 HTTP/1.1 
Host: www.lusini.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.lusini.com/nb-no/?awc=22614_1669246696_82fad0b07b963e6b8acaab170683f597
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         34.141.11.154
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
age: 32780
cache-control: max-age=0,no-cache,no-store,must-revalidate
content-security-policy: default-src 'self' *.lusini.dev *.lusini.com *.netlify.app https://*.wistia.com https://*.wistia.net; frame-src 'self' *.lusini.dev *.netlify.app *.lusini.com http://*.lusini.dev http://*.lusini.com https://fast.wistia.com https://fast.wistia.net *.facebook.com; connect-src 'self' *.lusini.dev *.lusini.com *.netlify.app *.getform.io getform.io *.contentful.com *.algolia.net *.algolianet.com https://widgets.trustedshops.com *.doubleclick.net *.google-analytics.com *.google.com *.google.de *.cookielaw.org https://*.litix.io https://*.wistia.com https://embedwistia-a.akamaihd.net https://api.glitch.com *.onetrust.com *.bing.com https://*.dy-api.eu *.tryggehandel.net *.tryggehandel.no; img-src 'self' data: aw1n.com *.cloudinary.com *.google.de *.google.com *.lusini.dev *.lusini.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net https://glitch.com https://cdn.glitch.com https://avatars0.githubusercontent.com *.trustedshops.com *.facebook.com *.bing.com sslwidget.criteo.com dq4irj27fs462.cloudfront.net *.tryggehandel.net *.tryggehandel.no; media-src 'self' blob: data: *.cloudinary.com *.google.de https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net dq4irj27fs462.cloudfront.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.netlify.app *.googletagmanager.com *.google.com *.cookielaw.org *.google.de *.doubleclick.net *.googleadservices.net *.googleadservices.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://src.litix.io https://button.glitch.me https://*.trustedshops.com *.googleapis.com *.bing.com *.dwin1.com *.facebook.net *.tryggehandel.net *.tryggehandel.no; worker-src 'self' blob: *.wistia.com blob:; style-src 'self' 'unsafe-inline' blob: https://maxcdn.bootstrapcdn.com https://fast.wistia.com https://button.glitch.me *.googletagmanager.com; font-src 'self' data: https://*.wistia.com; frame-ancestors 'self' lusini.com *.lusini.com contentful.com *.contentful.com *.netlify.app; child-src blob:
date: Wed, 23 Nov 2022 14:31:56 GMT
etag: "a103a7a8614bb3c7d22106b44552cae4-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-nf-request-id: 01GJKDPF6CYYP5B12AQZK2MABN
x-xss-protection: 1; mode=block
content-length: 15744
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size:   15744
Md5:    15d9f621c3bd1599f0169dcf0bd5e63e
Sha1:   7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
                                        
                                            GET /lusini/image/upload/v1652774815/application/newsletter/dish1.png HTTP/1.1 
Host: res.cloudinary.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lusini.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.85.137
HTTP/2 200 OK
content-type: image/png
                                        
etag: "7748ad00fdd1bbf92d8b6abfa17ee7d0"
last-modified: Tue, 17 May 2022 08:06:56 GMT
date: Wed, 23 Nov 2022 23:38:16 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2022-11-23T23:38:16.690Z;desc=hit,rtt;dur=9
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 143072
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 248 x 498, 8-bit/color RGBA, non-interlaced\012- data
Size:   143072
Md5:    7748ad00fdd1bbf92d8b6abfa17ee7d0
Sha1:   46cefc9cae9f2d9307cf1ffe2d176ce7b74c634b
Sha256: d41a074aab3a1e2877cb0bf210bfb3414481cbdaf2a6e9792c521908d2a174c2
                                        
                                            GET /lusini/image/upload/v1652775112/application/newsletter/dish2-mobile.png HTTP/1.1 
Host: res.cloudinary.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lusini.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.85.137
HTTP/2 200 OK
content-type: image/png
                                        
etag: "cc83864c05328eeb219606e4b9529987"
last-modified: Tue, 17 May 2022 08:11:53 GMT
date: Wed, 23 Nov 2022 23:38:16 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=0;start=2022-11-23T23:38:16.703Z;desc=hit,rtt;dur=9
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 28255
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 120 x 208, 8-bit/color RGBA, non-interlaced\012- data
Size:   28255
Md5:    cc83864c05328eeb219606e4b9529987
Sha1:   72a51a521f6dcfb56b574da405015abe8ebb2843
Sha256: e3ea5a254be318aab88d24817a7da3f862bea2028fbcfc120b1c9ca688a999b5
                                        
                                            GET /lusini/image/upload/v1652774868/application/newsletter/dish3.png HTTP/1.1 
Host: res.cloudinary.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lusini.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.85.137
HTTP/2 200 OK
content-type: image/png
                                        
etag: "8a189c54b69e2876b9ea0a3e8623223d"
last-modified: Tue, 17 May 2022 08:07:49 GMT
date: Wed, 23 Nov 2022 23:38:16 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2022-11-23T23:38:16.697Z;desc=hit,rtt;dur=9
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 172804
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 296 x 418, 8-bit/color RGBA, non-interlaced\012- data
Size:   172804
Md5:    8a189c54b69e2876b9ea0a3e8623223d
Sha1:   07efc7eca69badec35955b3a71380a2bd43c129d
Sha256: 497053cfec88bc2d9e652ecf952862847f136a001d63ea93c40038328fea6b4e
                                        
                                            GET /lusini/image/upload/v1652775112/application/newsletter/dish1-mobile.png HTTP/1.1 
Host: res.cloudinary.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lusini.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.85.137
HTTP/2 200 OK
content-type: image/png
                                        
etag: "18ef3dfc2cd7805d498c9cb3979b0703"
last-modified: Tue, 17 May 2022 08:11:53 GMT
date: Wed, 23 Nov 2022 23:38:16 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2022-11-23T23:38:16.703Z;desc=hit,rtt;dur=9
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 75933
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 386 x 128, 8-bit/color RGBA, non-interlaced\012- data
Size:   75933
Md5:    18ef3dfc2cd7805d498c9cb3979b0703
Sha1:   69025ab763ee39b0b499ecfcfd68c495fb1f153e
Sha256: ac4b28d2f6cdab8ef266c3aa0980c9861ddb7f037321a74eb2b98c583b5fcbe1
                                        
                                            GET /lusini/image/upload/c_crop,g_north,q_auto,w_1572,x_0,y_330/v1648039688/cms/mam/JL8461M002-2.jpg HTTP/1.1 
Host: res.cloudinary.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lusini.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         151.101.85.137
HTTP/2 200 OK
content-type: image/jpeg
                                        
etag: "5737eb796492dd839fe7ab9460e8aac8"
last-modified: Fri, 09 Sep 2022 13:57:58 GMT
date: Wed, 23 Nov 2022 23:38:16 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2022-11-23T23:38:16.689Z;desc=hit,rtt;dur=9
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 307555
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1572x1591, components 3\012- data
Size:   307555
Md5:    5737eb796492dd839fe7ab9460e8aac8
Sha1:   dad2919d53ca4030e7b68d37dd739231abf97c0b
Sha256: 07f53ae9ce4120d360b0464a17600b31d457823ec0dc3281e5fa47ad15ab9d14
                                        
                                            GET /lusini/image/upload/c_crop,h_387,q_auto,w_494/v1624430333/cms/magazine-article/hw-landingpage-wellness-trends-2_800x800.jpg HTTP/1.1 
Host: res.cloudinary.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lusini.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         151.101.85.137
HTTP/2 200 OK
content-type: image/jpeg
                                        
etag: "49fca4d51ec5ebce9d3560baf5f6432f"
last-modified: Fri, 09 Sep 2022 14:16:48 GMT
date: Wed, 23 Nov 2022 23:38:16 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2022-11-23T23:38:16.723Z;desc=hit,rtt;dur=7
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 32897
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 494x387, components 3\012- data
Size:   32897
Md5:    49fca4d51ec5ebce9d3560baf5f6432f
Sha1:   10d78cca593a8b4e494d4c51aca67661ecfa4255
Sha256: 506654c6642cd357de39477f61449efb37354cef230ed8a5c85c44fb730c5f29
                                        
                                            GET /lusini/image/upload/v1652774816/application/newsletter/dish2.png HTTP/1.1 
Host: res.cloudinary.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lusini.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.85.137
HTTP/2 200 OK
content-type: image/png
                                        
etag: "6c5dd3da760c3af11dfc06470728990f"
last-modified: Tue, 17 May 2022 08:06:57 GMT
date: Wed, 23 Nov 2022 23:38:16 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2022-11-23T23:38:16.690Z;desc=hit,rtt;dur=9
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 330268
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 458 x 378, 8-bit/color RGBA, non-interlaced\012- data
Size:   330268
Md5:    6c5dd3da760c3af11dfc06470728990f
Sha1:   62998a25b785c073ad844b80288310446393c195
Sha256: 657b6f07c723f53540d6ee3ab42380e0840b1ef0c21aaef7df7dbd658b769b48
                                        
                                            GET /lusini/image/upload/c_crop,g_south,h_1969,q_auto,w_1954/v1662458371/cms/mam/VE7706M011_03.jpg HTTP/1.1 
Host: res.cloudinary.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lusini.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         151.101.85.137
HTTP/2 200 OK
content-type: image/jpeg
                                        
etag: "8da044ebb23f4c9b49ce6c58ef9b6e18"
last-modified: Fri, 09 Sep 2022 14:11:00 GMT
date: Wed, 23 Nov 2022 23:38:16 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2022-11-23T23:38:16.703Z;desc=hit,rtt;dur=9
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 534841
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1954x1969, components 3\012- data
Size:   534841
Md5:    8da044ebb23f4c9b49ce6c58ef9b6e18
Sha1:   d0042157f1fe71655a82afbedcd5ea0a4296930b
Sha256: 22b3a7628401677f6c4a3bc030312480ddd63fc98c7b1aea9ffc1c7b0e215131
                                        
                                            GET /lusini/image/upload/a_hflip,c_crop,g_north,h_1733,q_auto,w_1999,y_255/v1662733865/cms/mam/VE8069M002.jpg HTTP/1.1 
Host: res.cloudinary.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lusini.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         151.101.85.137
HTTP/2 200 OK
content-type: image/jpeg
                                        
etag: "37274c15107e881aaaecd7e388b8fc41"
last-modified: Fri, 09 Sep 2022 14:35:45 GMT
date: Wed, 23 Nov 2022 23:38:16 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2022-11-23T23:38:16.719Z;desc=hit,rtt;dur=7
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 717471
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1999x1478, components 3\012- data
Size:   717471
Md5:    37274c15107e881aaaecd7e388b8fc41
Sha1:   389d91b76e35c802f1592d7bfd8e3b3622882885
Sha256: 48a251349d8d0a5940172ef8be2faffee6837ea99eaa6d3a132a35402ee3e1b8
                                        
                                            GET /track?pid=LB00002126&mid=41309&url=https://www.lusini.com/&uid=582f5c8f532c96b9194c37abb6ab180a HTTP/1.1 
Host: www.linkbux.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lookandfind.me/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         198.11.181.248
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
date: Wed, 23 Nov 2022 23:38:15 GMT
vary: Accept-Encoding
set-cookie: discuz_2132_saltkey=6GSRM6Mm; expires=Fri, 23-Dec-2022 23:38:15 GMT; Max-Age=2592000; path=/; secure; httponly discuz_2132_lang=en; path=/; secure discuz_2132_lang=en; path=/; secure
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1027
Md5:    72e357c80e3e85e4b44c704d7c224453
Sha1:   629368334b61396a9d2f118d7e182e7959a6b111
Sha256: 3a043eb53ed3b1ba257068990b18cfd0e391d7e86b18f36559eb1d5fa3a28e71
                                        
                                            GET /nb-no/static/roboto-condensed-v25-latin-regular-bb7a4e73944870e385e13741e4ab1a20.woff2 HTTP/1.1 
Host: www.lusini.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.lusini.com/nb-no/?awc=22614_1669246696_82fad0b07b963e6b8acaab170683f597
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         34.141.11.154
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
age: 32780
cache-control: max-age=0,no-cache,no-store,must-revalidate
content-security-policy: default-src 'self' *.lusini.dev *.lusini.com *.netlify.app https://*.wistia.com https://*.wistia.net; frame-src 'self' *.lusini.dev *.netlify.app *.lusini.com http://*.lusini.dev http://*.lusini.com https://fast.wistia.com https://fast.wistia.net *.facebook.com; connect-src 'self' *.lusini.dev *.lusini.com *.netlify.app *.getform.io getform.io *.contentful.com *.algolia.net *.algolianet.com https://widgets.trustedshops.com *.doubleclick.net *.google-analytics.com *.google.com *.google.de *.cookielaw.org https://*.litix.io https://*.wistia.com https://embedwistia-a.akamaihd.net https://api.glitch.com *.onetrust.com *.bing.com https://*.dy-api.eu *.tryggehandel.net *.tryggehandel.no; img-src 'self' data: aw1n.com *.cloudinary.com *.google.de *.google.com *.lusini.dev *.lusini.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net https://glitch.com https://cdn.glitch.com https://avatars0.githubusercontent.com *.trustedshops.com *.facebook.com *.bing.com sslwidget.criteo.com dq4irj27fs462.cloudfront.net *.tryggehandel.net *.tryggehandel.no; media-src 'self' blob: data: *.cloudinary.com *.google.de https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net dq4irj27fs462.cloudfront.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.netlify.app *.googletagmanager.com *.google.com *.cookielaw.org *.google.de *.doubleclick.net *.googleadservices.net *.googleadservices.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://src.litix.io https://button.glitch.me https://*.trustedshops.com *.googleapis.com *.bing.com *.dwin1.com *.facebook.net *.tryggehandel.net *.tryggehandel.no; worker-src 'self' blob: *.wistia.com blob:; style-src 'self' 'unsafe-inline' blob: https://maxcdn.bootstrapcdn.com https://fast.wistia.com https://button.glitch.me *.googletagmanager.com; font-src 'self' data: https://*.wistia.com; frame-ancestors 'self' lusini.com *.lusini.com contentful.com *.contentful.com *.netlify.app; child-src blob:
date: Wed, 23 Nov 2022 14:31:56 GMT
etag: "091ce516403fadeb7546b10de1770dda-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-nf-request-id: 01GJKDPF6EH1VH2GHK5750WZJZ
x-xss-protection: 1; mode=block
content-length: 15700
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15700, version 1.0\012- data
Size:   15700
Md5:    3d7f7413fca69bff4d231ebdc50aaab0
Sha1:   cb18e7943b6a8a0e3672d7242197c19a226b92e8
Sha256: 6b4fac99c39b9ee2693d87a2508d0c7d4b4859072966616bd1f6e18c5b2f9d36
                                        
                                            GET /nb-no/static/roboto-condensed-v25-latin-700-6c26e7ba325616ba4252428032457176.woff2 HTTP/1.1 
Host: www.lusini.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.lusini.com/nb-no/?awc=22614_1669246696_82fad0b07b963e6b8acaab170683f597
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         34.141.11.154
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
age: 32780
cache-control: max-age=0,no-cache,no-store,must-revalidate
content-security-policy: default-src 'self' *.lusini.dev *.lusini.com *.netlify.app https://*.wistia.com https://*.wistia.net; frame-src 'self' *.lusini.dev *.netlify.app *.lusini.com http://*.lusini.dev http://*.lusini.com https://fast.wistia.com https://fast.wistia.net *.facebook.com; connect-src 'self' *.lusini.dev *.lusini.com *.netlify.app *.getform.io getform.io *.contentful.com *.algolia.net *.algolianet.com https://widgets.trustedshops.com *.doubleclick.net *.google-analytics.com *.google.com *.google.de *.cookielaw.org https://*.litix.io https://*.wistia.com https://embedwistia-a.akamaihd.net https://api.glitch.com *.onetrust.com *.bing.com https://*.dy-api.eu *.tryggehandel.net *.tryggehandel.no; img-src 'self' data: aw1n.com *.cloudinary.com *.google.de *.google.com *.lusini.dev *.lusini.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net https://glitch.com https://cdn.glitch.com https://avatars0.githubusercontent.com *.trustedshops.com *.facebook.com *.bing.com sslwidget.criteo.com dq4irj27fs462.cloudfront.net *.tryggehandel.net *.tryggehandel.no; media-src 'self' blob: data: *.cloudinary.com *.google.de https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net dq4irj27fs462.cloudfront.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.netlify.app *.googletagmanager.com *.google.com *.cookielaw.org *.google.de *.doubleclick.net *.googleadservices.net *.googleadservices.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://src.litix.io https://button.glitch.me https://*.trustedshops.com *.googleapis.com *.bing.com *.dwin1.com *.facebook.net *.tryggehandel.net *.tryggehandel.no; worker-src 'self' blob: *.wistia.com blob:; style-src 'self' 'unsafe-inline' blob: https://maxcdn.bootstrapcdn.com https://fast.wistia.com https://button.glitch.me *.googletagmanager.com; font-src 'self' data: https://*.wistia.com; frame-ancestors 'self' lusini.com *.lusini.com contentful.com *.contentful.com *.netlify.app; child-src blob:
date: Wed, 23 Nov 2022 14:31:56 GMT
etag: "87750726dea6e593fed734230ea1ad2a-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-nf-request-id: 01GJKDPF6DX83EDYBEZSPXWTC9
x-xss-protection: 1; mode=block
content-length: 15660
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15660, version 1.0\012- data
Size:   15660
Md5:    d7b0b953a50fddaa88089b5b787cf719
Sha1:   2f85bc568b27659a3d6452f58f9fd7678450326d
Sha256: e79c1c1a140e6afb861074c70392db54cc65a06050de2a69162ab94eb95b0516
                                        
                                            GET /nb-no/static/roboto-v30-latin-700-227c93190fe7f82de3f802ce0b614d3b.woff2 HTTP/1.1 
Host: www.lusini.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.lusini.com/nb-no/?awc=22614_1669246696_82fad0b07b963e6b8acaab170683f597
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         34.141.11.154
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
age: 32780
cache-control: max-age=0,no-cache,no-store,must-revalidate
content-security-policy: default-src 'self' *.lusini.dev *.lusini.com *.netlify.app https://*.wistia.com https://*.wistia.net; frame-src 'self' *.lusini.dev *.netlify.app *.lusini.com http://*.lusini.dev http://*.lusini.com https://fast.wistia.com https://fast.wistia.net *.facebook.com; connect-src 'self' *.lusini.dev *.lusini.com *.netlify.app *.getform.io getform.io *.contentful.com *.algolia.net *.algolianet.com https://widgets.trustedshops.com *.doubleclick.net *.google-analytics.com *.google.com *.google.de *.cookielaw.org https://*.litix.io https://*.wistia.com https://embedwistia-a.akamaihd.net https://api.glitch.com *.onetrust.com *.bing.com https://*.dy-api.eu *.tryggehandel.net *.tryggehandel.no; img-src 'self' data: aw1n.com *.cloudinary.com *.google.de *.google.com *.lusini.dev *.lusini.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net https://glitch.com https://cdn.glitch.com https://avatars0.githubusercontent.com *.trustedshops.com *.facebook.com *.bing.com sslwidget.criteo.com dq4irj27fs462.cloudfront.net *.tryggehandel.net *.tryggehandel.no; media-src 'self' blob: data: *.cloudinary.com *.google.de https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net dq4irj27fs462.cloudfront.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.netlify.app *.googletagmanager.com *.google.com *.cookielaw.org *.google.de *.doubleclick.net *.googleadservices.net *.googleadservices.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://src.litix.io https://button.glitch.me https://*.trustedshops.com *.googleapis.com *.bing.com *.dwin1.com *.facebook.net *.tryggehandel.net *.tryggehandel.no; worker-src 'self' blob: *.wistia.com blob:; style-src 'self' 'unsafe-inline' blob: https://maxcdn.bootstrapcdn.com https://fast.wistia.com https://button.glitch.me *.googletagmanager.com; font-src 'self' data: https://*.wistia.com; frame-ancestors 'self' lusini.com *.lusini.com contentful.com *.contentful.com *.netlify.app; child-src blob:
date: Wed, 23 Nov 2022 14:31:56 GMT
etag: "d6a3121e285d7a8871d17ad26672388b-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-nf-request-id: 01GJKDPF6N9VFXJJBQ2AAHKTJV
x-xss-protection: 1; mode=block
content-length: 15860
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size:   15860
Md5:    e9f5aaf547f165386cd313b995dddd8e
Sha1:   acdef5603c2387b0e5bffd744b679a24a8bc1968
Sha256: f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
                                        
                                            GET /nb-no/app-f83120599ab9533ccd4a.js HTTP/1.1 
Host: www.lusini.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lusini.com/nb-no/?awc=22614_1669246696_82fad0b07b963e6b8acaab170683f597
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         34.141.11.154
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
accept-ranges: bytes
age: 51142
cache-control: max-age=172800,public,must-revalidate
content-encoding: br
content-security-policy: default-src 'self' *.lusini.dev *.lusini.com *.netlify.app https://*.wistia.com https://*.wistia.net; frame-src 'self' *.lusini.dev *.netlify.app *.lusini.com http://*.lusini.dev http://*.lusini.com https://fast.wistia.com https://fast.wistia.net *.facebook.com; connect-src 'self' *.lusini.dev *.lusini.com *.netlify.app *.getform.io getform.io *.contentful.com *.algolia.net *.algolianet.com https://widgets.trustedshops.com *.doubleclick.net *.google-analytics.com *.google.com *.google.de *.cookielaw.org https://*.litix.io https://*.wistia.com https://embedwistia-a.akamaihd.net https://api.glitch.com *.onetrust.com *.bing.com https://*.dy-api.eu *.tryggehandel.net *.tryggehandel.no; img-src 'self' data: aw1n.com *.cloudinary.com *.google.de *.google.com *.lusini.dev *.lusini.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net https://glitch.com https://cdn.glitch.com https://avatars0.githubusercontent.com *.trustedshops.com *.facebook.com *.bing.com sslwidget.criteo.com dq4irj27fs462.cloudfront.net *.tryggehandel.net *.tryggehandel.no; media-src 'self' blob: data: *.cloudinary.com *.google.de https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net dq4irj27fs462.cloudfront.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.netlify.app *.googletagmanager.com *.google.com *.cookielaw.org *.google.de *.doubleclick.net *.googleadservices.net *.googleadservices.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://src.litix.io https://button.glitch.me https://*.trustedshops.com *.googleapis.com *.bing.com *.dwin1.com *.facebook.net *.tryggehandel.net *.tryggehandel.no; worker-src 'self' blob: *.wistia.com blob:; style-src 'self' 'unsafe-inline' blob: https://maxcdn.bootstrapcdn.com https://fast.wistia.com https://button.glitch.me *.googletagmanager.com; font-src 'self' data: https://*.wistia.com; frame-ancestors 'self' lusini.com *.lusini.com contentful.com *.contentful.com *.netlify.app; child-src blob:
date: Wed, 23 Nov 2022 09:25:54 GMT
etag: "11829ef4a6ef8b263b8ba2f0d3869051-ssl"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-content-type-options: nosniff
x-nf-request-id: 01GJKDPF7K8C8BMM05DVZRQQDQ
x-xss-protection: 1; mode=block
content-length: 37190
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65454)
Size:   37190
Md5:    9d2f85f1b4055576192d6769d678d910
Sha1:   d261cd8b3535ea6116fd698dc9f3fecc7ae0d3b2
Sha256: 1961b4bb144e9e081b1db2f787cc23d0e9de05c73d1fa9fce13f11dbf2980981
                                        
                                            GET /nb-no/dc6a8720040df98778fe970bf6c000a41750d3ae-4c12e4f4fe3b97b4fd0b.js HTTP/1.1 
Host: www.lusini.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lusini.com/nb-no/?awc=22614_1669246696_82fad0b07b963e6b8acaab170683f597
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         34.141.11.154
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
accept-ranges: bytes
age: 33392
cache-control: max-age=172800,public,must-revalidate
content-encoding: gzip
content-security-policy: default-src 'self' *.lusini.dev *.lusini.com *.netlify.app https://*.wistia.com https://*.wistia.net; frame-src 'self' *.lusini.dev *.netlify.app *.lusini.com http://*.lusini.dev http://*.lusini.com https://fast.wistia.com https://fast.wistia.net *.facebook.com; connect-src 'self' *.lusini.dev *.lusini.com *.netlify.app *.getform.io getform.io *.contentful.com *.algolia.net *.algolianet.com https://widgets.trustedshops.com *.doubleclick.net *.google-analytics.com *.google.com *.google.de *.cookielaw.org https://*.litix.io https://*.wistia.com https://embedwistia-a.akamaihd.net https://api.glitch.com *.onetrust.com *.bing.com https://*.dy-api.eu *.tryggehandel.net *.tryggehandel.no; img-src 'self' data: aw1n.com *.cloudinary.com *.google.de *.google.com *.lusini.dev *.lusini.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net https://glitch.com https://cdn.glitch.com https://avatars0.githubusercontent.com *.trustedshops.com *.facebook.com *.bing.com sslwidget.criteo.com dq4irj27fs462.cloudfront.net *.tryggehandel.net *.tryggehandel.no; media-src 'self' blob: data: *.cloudinary.com *.google.de https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net dq4irj27fs462.cloudfront.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.netlify.app *.googletagmanager.com *.google.com *.cookielaw.org *.google.de *.doubleclick.net *.googleadservices.net *.googleadservices.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://src.litix.io https://button.glitch.me https://*.trustedshops.com *.googleapis.com *.bing.com *.dwin1.com *.facebook.net *.tryggehandel.net *.tryggehandel.no; worker-src 'self' blob: *.wistia.com blob:; style-src 'self' 'unsafe-inline' blob: https://maxcdn.bootstrapcdn.com https://fast.wistia.com https://button.glitch.me *.googletagmanager.com; font-src 'self' data: https://*.wistia.com; frame-ancestors 'self' lusini.com *.lusini.com contentful.com *.contentful.com *.netlify.app; child-src blob:
date: Wed, 23 Nov 2022 14:21:44 GMT
etag: "67e5a24900fe58c0d63fb31af7bd11ad-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-content-type-options: nosniff
x-nf-request-id: 01GJKDPF7T98RJVCCEHQ5DCHYP
x-xss-protection: 1; mode=block
content-length: 5005
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (13643)
Size:   5005
Md5:    abc969d0d1f279f83937c68c8e01714d
Sha1:   37ba659a075c3991fd241e47a2b36e5bd284eeed
Sha256: 6da7ad20d95c77a6c3aa1f2dff3a4fce08157f67d5cdc889e86675aa4fd86dd7
                                        
                                            GET /scripttemplates/6.30.0/otBannerSdk.js HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lusini.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.148.64
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 23 Nov 2022 23:38:17 GMT
content-length: 80901
content-encoding: gzip
content-md5: 5oE+t+daHCCmdsXYZnY9oQ==
last-modified: Mon, 31 Jan 2022 17:10:47 GMT
etag: 0x8D9E4DC9FB57A81
x-ms-request-id: 1630470e-d01e-0098-7bda-1656d9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 78415
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76edbcd06c40b4f9-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65455)
Size:   80901
Md5:    e6813eb7e75a1c20a676c5d866763da1
Sha1:   e4c175f741b037b1fa00225abc177b8ad81bea97
Sha256: 0fb6dfe4e87e1b559c983d385f25199367f47484501b85c36f00cf14c6fb0c0f
                                        
                                            GET /nb-no/framework-41daae078c5e099b7711.js HTTP/1.1 
Host: www.lusini.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lusini.com/nb-no/?awc=22614_1669246696_82fad0b07b963e6b8acaab170683f597
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         34.141.11.154
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
accept-ranges: bytes
age: 57719
cache-control: max-age=172800,public,must-revalidate
content-encoding: gzip
content-security-policy: default-src 'self' *.lusini.dev *.lusini.com *.netlify.app https://*.wistia.com https://*.wistia.net; frame-src 'self' *.lusini.dev *.netlify.app *.lusini.com http://*.lusini.dev http://*.lusini.com https://fast.wistia.com https://fast.wistia.net *.facebook.com; connect-src 'self' *.lusini.dev *.lusini.com *.netlify.app *.getform.io getform.io *.contentful.com *.algolia.net *.algolianet.com https://widgets.trustedshops.com *.doubleclick.net *.google-analytics.com *.google.com *.google.de *.cookielaw.org https://*.litix.io https://*.wistia.com https://embedwistia-a.akamaihd.net https://api.glitch.com *.onetrust.com *.bing.com https://*.dy-api.eu *.tryggehandel.net *.tryggehandel.no; img-src 'self' data: aw1n.com *.cloudinary.com *.google.de *.google.com *.lusini.dev *.lusini.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net https://glitch.com https://cdn.glitch.com https://avatars0.githubusercontent.com *.trustedshops.com *.facebook.com *.bing.com sslwidget.criteo.com dq4irj27fs462.cloudfront.net *.tryggehandel.net *.tryggehandel.no; media-src 'self' blob: data: *.cloudinary.com *.google.de https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net dq4irj27fs462.cloudfront.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.netlify.app *.googletagmanager.com *.google.com *.cookielaw.org *.google.de *.doubleclick.net *.googleadservices.net *.googleadservices.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://src.litix.io https://button.glitch.me https://*.trustedshops.com *.googleapis.com *.bing.com *.dwin1.com *.facebook.net *.tryggehandel.net *.tryggehandel.no; worker-src 'self' blob: *.wistia.com blob:; style-src 'self' 'unsafe-inline' blob: https://maxcdn.bootstrapcdn.com https://fast.wistia.com https://button.glitch.me *.googletagmanager.com; font-src 'self' data: https://*.wistia.com; frame-ancestors 'self' lusini.com *.lusini.com contentful.com *.contentful.com *.netlify.app; child-src blob:
date: Wed, 23 Nov 2022 07:36:17 GMT
etag: "af2b9964d35f8f9cfffb4b79b3a00c2e-ssl"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-content-type-options: nosniff
x-nf-request-id: 01GJKDPF852BZ83NSVH2NKEFGX
x-xss-protection: 1; mode=block
content-length: 45625
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65448)
Size:   45625
Md5:    f1b59884ff9089f59e645573fb1da552
Sha1:   005ca1a5463cb65be2353bf42c9c19faf2047fb4
Sha256: 0e9fd9f7b7595835b8edc2689dc843d4b742fb0c084eec118e8527d6ba149633
                                        
                                            GET /nb-no/webpack-runtime-2415687bda9bdf481062.js HTTP/1.1 
Host: www.lusini.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lusini.com/nb-no/?awc=22614_1669246696_82fad0b07b963e6b8acaab170683f597
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         34.141.11.154
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
accept-ranges: bytes
age: 57719
cache-control: max-age=172800,public,must-revalidate
content-encoding: gzip
content-security-policy: default-src 'self' *.lusini.dev *.lusini.com *.netlify.app https://*.wistia.com https://*.wistia.net; frame-src 'self' *.lusini.dev *.netlify.app *.lusini.com http://*.lusini.dev http://*.lusini.com https://fast.wistia.com https://fast.wistia.net *.facebook.com; connect-src 'self' *.lusini.dev *.lusini.com *.netlify.app *.getform.io getform.io *.contentful.com *.algolia.net *.algolianet.com https://widgets.trustedshops.com *.doubleclick.net *.google-analytics.com *.google.com *.google.de *.cookielaw.org https://*.litix.io https://*.wistia.com https://embedwistia-a.akamaihd.net https://api.glitch.com *.onetrust.com *.bing.com https://*.dy-api.eu *.tryggehandel.net *.tryggehandel.no; img-src 'self' data: aw1n.com *.cloudinary.com *.google.de *.google.com *.lusini.dev *.lusini.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net https://glitch.com https://cdn.glitch.com https://avatars0.githubusercontent.com *.trustedshops.com *.facebook.com *.bing.com sslwidget.criteo.com dq4irj27fs462.cloudfront.net *.tryggehandel.net *.tryggehandel.no; media-src 'self' blob: data: *.cloudinary.com *.google.de https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net dq4irj27fs462.cloudfront.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.netlify.app *.googletagmanager.com *.google.com *.cookielaw.org *.google.de *.doubleclick.net *.googleadservices.net *.googleadservices.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://src.litix.io https://button.glitch.me https://*.trustedshops.com *.googleapis.com *.bing.com *.dwin1.com *.facebook.net *.tryggehandel.net *.tryggehandel.no; worker-src 'self' blob: *.wistia.com blob:; style-src 'self' 'unsafe-inline' blob: https://maxcdn.bootstrapcdn.com https://fast.wistia.com https://button.glitch.me *.googletagmanager.com; font-src 'self' data: https://*.wistia.com; frame-ancestors 'self' lusini.com *.lusini.com contentful.com *.contentful.com *.netlify.app; child-src blob:
date: Wed, 23 Nov 2022 07:36:17 GMT
etag: "65700ee120a6859a5524e2bf99814162-ssl"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-content-type-options: nosniff
x-nf-request-id: 01GJKDPF8B44Z3JKZX119FM57Y
x-xss-protection: 1; mode=block
content-length: 2797
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5932)
Size:   2797
Md5:    b265d91548cd642dc45216cba6c66e3f
Sha1:   bc9f0a0ee8a580890e7a406557b8c47ffd57cbec
Sha256: 03ca2378f596477236cb5da5188b24547b54b154474ac667b642b4729e9c86bb
                                        
                                            GET /consent/bda0c016-94be-4fd9-943a-b9c09791a327/d7f9c93b-cb04-4f91-b9d6-35bcbe4e18af/nb-no.json HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.lusini.com/
Origin: https://www.lusini.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.148.64
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 23 Nov 2022 23:38:17 GMT
content-length: 19917
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: C+TYAV8jeJMo6a7jCd9fEw==
last-modified: Fri, 10 Jun 2022 09:03:48 GMT
etag: 0x8DA4AC0216ADD30
x-ms-request-id: 917f5d9b-d01e-00ba-23a9-7c38ef000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 63596
expires: Thu, 24 Nov 2022 23:38:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76edbcd1193bb505-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (65119), with no line terminators
Size:   19917
Md5:    0be4d8015f23789328e9aee309df5f13
Sha1:   a589b5baf70ba1251146ee303315f0a446b0eb42
Sha256: 5f2ab4857fd0598c0a74cff5143e9657f3b74648aad0f8f450a0b4fb79d4ced8
                                        
                                            GET /nb-no/page-data/app-data.json HTTP/1.1 
Host: www.lusini.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lusini.com/nb-no/?awc=22614_1669246696_82fad0b07b963e6b8acaab170683f597
Cookie: _gcl_au=1.1.1492997346.1669246697
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         34.141.11.154
HTTP/2 200 OK
content-type: application/json
                                        
accept-ranges: bytes
age: 57719
cache-control: public,max-age=0,must-revalidate
content-security-policy: default-src 'self' *.lusini.dev *.lusini.com *.netlify.app https://*.wistia.com https://*.wistia.net; frame-src 'self' *.lusini.dev *.netlify.app *.lusini.com http://*.lusini.dev http://*.lusini.com https://fast.wistia.com https://fast.wistia.net *.facebook.com; connect-src 'self' *.lusini.dev *.lusini.com *.netlify.app *.getform.io getform.io *.contentful.com *.algolia.net *.algolianet.com https://widgets.trustedshops.com *.doubleclick.net *.google-analytics.com *.google.com *.google.de *.cookielaw.org https://*.litix.io https://*.wistia.com https://embedwistia-a.akamaihd.net https://api.glitch.com *.onetrust.com *.bing.com https://*.dy-api.eu *.tryggehandel.net *.tryggehandel.no; img-src 'self' data: aw1n.com *.cloudinary.com *.google.de *.google.com *.lusini.dev *.lusini.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net https://glitch.com https://cdn.glitch.com https://avatars0.githubusercontent.com *.trustedshops.com *.facebook.com *.bing.com sslwidget.criteo.com dq4irj27fs462.cloudfront.net *.tryggehandel.net *.tryggehandel.no; media-src 'self' blob: data: *.cloudinary.com *.google.de https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net dq4irj27fs462.cloudfront.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.netlify.app *.googletagmanager.com *.google.com *.cookielaw.org *.google.de *.doubleclick.net *.googleadservices.net *.googleadservices.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://src.litix.io https://button.glitch.me https://*.trustedshops.com *.googleapis.com *.bing.com *.dwin1.com *.facebook.net *.tryggehandel.net *.tryggehandel.no; worker-src 'self' blob: *.wistia.com blob:; style-src 'self' 'unsafe-inline' blob: https://maxcdn.bootstrapcdn.com https://fast.wistia.com https://button.glitch.me *.googletagmanager.com; font-src 'self' data: https://*.wistia.com; frame-ancestors 'self' lusini.com *.lusini.com contentful.com *.contentful.com *.netlify.app; child-src blob:
date: Wed, 23 Nov 2022 07:36:18 GMT
etag: "fcf8c3bb66239cb395711e27b692f156-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-nf-request-id: 01GJKDPFNT3M2RARTXYBN520CH
x-xss-protection: 1; mode=block
content-length: 50
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text
Size:   50
Md5:    876bd34146e89fc1dee6423140ecb601
Sha1:   1f4f74a5e48167f68fa68807924a318769d7fecc
Sha256: a10df9b41557dbb65cf2872544d81d4790fdada2110b215c7f20411456cec293
                                        
                                            GET /nb-no/page-data/index/page-data.json?awc=22614_1669246696_82fad0b07b963e6b8acaab170683f597 HTTP/1.1 
Host: www.lusini.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lusini.com/nb-no/?awc=22614_1669246696_82fad0b07b963e6b8acaab170683f597
Cookie: _gcl_au=1.1.1492997346.1669246697
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         34.141.11.154
HTTP/2 200 OK
content-type: application/json
                                        
accept-ranges: bytes
age: 42193
cache-control: public,max-age=0,must-revalidate
content-encoding: gzip
content-security-policy: default-src 'self' *.lusini.dev *.lusini.com *.netlify.app https://*.wistia.com https://*.wistia.net; frame-src 'self' *.lusini.dev *.netlify.app *.lusini.com http://*.lusini.dev http://*.lusini.com https://fast.wistia.com https://fast.wistia.net *.facebook.com; connect-src 'self' *.lusini.dev *.lusini.com *.netlify.app *.getform.io getform.io *.contentful.com *.algolia.net *.algolianet.com https://widgets.trustedshops.com *.doubleclick.net *.google-analytics.com *.google.com *.google.de *.cookielaw.org https://*.litix.io https://*.wistia.com https://embedwistia-a.akamaihd.net https://api.glitch.com *.onetrust.com *.bing.com https://*.dy-api.eu *.tryggehandel.net *.tryggehandel.no; img-src 'self' data: aw1n.com *.cloudinary.com *.google.de *.google.com *.lusini.dev *.lusini.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net https://glitch.com https://cdn.glitch.com https://avatars0.githubusercontent.com *.trustedshops.com *.facebook.com *.bing.com sslwidget.criteo.com dq4irj27fs462.cloudfront.net *.tryggehandel.net *.tryggehandel.no; media-src 'self' blob: data: *.cloudinary.com *.google.de https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net dq4irj27fs462.cloudfront.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.netlify.app *.googletagmanager.com *.google.com *.cookielaw.org *.google.de *.doubleclick.net *.googleadservices.net *.googleadservices.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://src.litix.io https://button.glitch.me https://*.trustedshops.com *.googleapis.com *.bing.com *.dwin1.com *.facebook.net *.tryggehandel.net *.tryggehandel.no; worker-src 'self' blob: *.wistia.com blob:; style-src 'self' 'unsafe-inline' blob: https://maxcdn.bootstrapcdn.com https://fast.wistia.com https://button.glitch.me *.googletagmanager.com; font-src 'self' data: https://*.wistia.com; frame-ancestors 'self' lusini.com *.lusini.com contentful.com *.contentful.com *.netlify.app; child-src blob:
date: Wed, 23 Nov 2022 11:55:04 GMT
etag: "c3935a81f0e3bbf84ca09871f47837b6-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-content-type-options: nosniff
x-nf-request-id: 01GJKDPFNVTC0DB3Y7K500QFH9
x-xss-protection: 1; mode=block
content-length: 37329
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65366), with no line terminators
Size:   37329
Md5:    1fdbd71078aba92817a6befda980218c
Sha1:   837ea942c18160975b46f657515eafde794e927d
Sha256: 5c855901628d26dc0af969626557faa289bad706426937bc02d77508da522aef
                                        
                                            GET /scripttemplates/6.30.0/assets/v2/otPcCenter.json HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.lusini.com/
Origin: https://www.lusini.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.148.64
HTTP/2 200 OK
content-type: application/json
                                        
date: Wed, 23 Nov 2022 23:38:17 GMT
content-length: 11558
content-encoding: gzip
content-md5: U51N9nK7Jnr4qJ9noHAD0w==
last-modified: Mon, 31 Jan 2022 17:10:40 GMT
etag: 0x8D9E4DC9BBBAA69
x-ms-request-id: 4d2b09ce-401e-005a-4ef0-1bde67000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 59062
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76edbcd1b9deb505-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (37720)
Size:   11558
Md5:    539d4df672bb267af8a89f67a07003d3
Sha1:   66689e0752233a68c4b1d94d8b65446f4d119eec
Sha256: 18b54653b08b40732392de064d25a3fefd0b791fea973f8e36e7f25c04767c01
                                        
                                            GET /scripttemplates/6.30.0/assets/otCenterRounded.json HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.lusini.com/
Origin: https://www.lusini.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.148.64
HTTP/2 200 OK
content-type: application/json
                                        
date: Wed, 23 Nov 2022 23:38:17 GMT
content-length: 2584
content-encoding: gzip
content-md5: AcxqDqCj1OGWLC134+a/sw==
last-modified: Mon, 31 Jan 2022 17:10:38 GMT
etag: 0x8D9E4DC9ABE0D1C
x-ms-request-id: 2f032daa-e01e-0158-10f0-1b9ac8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 59514
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76edbcd1b9dbb505-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (7547)
Size:   2584
Md5:    01cc6a0ea0a3d4e1962c2d77e3e6bfb3
Sha1:   1963b30d0413c10ff6f7a2c898d7098c9640b818
Sha256: 1537872b74655ec994df62694e273a293f45a70933a2218d1ce989e1f8bd65aa
                                        
                                            GET /nb-no/5e2a4920-3cc5fc592a7940f567ba.js HTTP/1.1 
Host: www.lusini.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lusini.com/nb-no/?awc=22614_1669246696_82fad0b07b963e6b8acaab170683f597
Cookie: _gcl_au=1.1.1492997346.1669246697; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Nov+23+2022+23%3A38%3A17+GMT%2B0000+(Coordinated+Universal+Time)&version=6.30.0&isIABGlobal=false&hosts=&consentId=1ccfc462-4a58-44e0-877d-3c195feedc70&interactionCount=0&landingPath=https%3A%2F%2Fwww.lusini.com%2Fnb-no%2F%3Fawc%3D22614_1669246696_82fad0b07b963e6b8acaab170683f597
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         34.141.11.154
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
accept-ranges: bytes
age: 57719
cache-control: max-age=172800,public,must-revalidate
content-security-policy: default-src 'self' *.lusini.dev *.lusini.com *.netlify.app https://*.wistia.com https://*.wistia.net; frame-src 'self' *.lusini.dev *.netlify.app *.lusini.com http://*.lusini.dev http://*.lusini.com https://fast.wistia.com https://fast.wistia.net *.facebook.com; connect-src 'self' *.lusini.dev *.lusini.com *.netlify.app *.getform.io getform.io *.contentful.com *.algolia.net *.algolianet.com https://widgets.trustedshops.com *.doubleclick.net *.google-analytics.com *.google.com *.google.de *.cookielaw.org https://*.litix.io https://*.wistia.com https://embedwistia-a.akamaihd.net https://api.glitch.com *.onetrust.com *.bing.com https://*.dy-api.eu *.tryggehandel.net *.tryggehandel.no; img-src 'self' data: aw1n.com *.cloudinary.com *.google.de *.google.com *.lusini.dev *.lusini.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net https://glitch.com https://cdn.glitch.com https://avatars0.githubusercontent.com *.trustedshops.com *.facebook.com *.bing.com sslwidget.criteo.com dq4irj27fs462.cloudfront.net *.tryggehandel.net *.tryggehandel.no; media-src 'self' blob: data: *.cloudinary.com *.google.de https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net dq4irj27fs462.cloudfront.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.netlify.app *.googletagmanager.com *.google.com *.cookielaw.org *.google.de *.doubleclick.net *.googleadservices.net *.googleadservices.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://src.litix.io https://button.glitch.me https://*.trustedshops.com *.googleapis.com *.bing.com *.dwin1.com *.facebook.net *.tryggehandel.net *.tryggehandel.no; worker-src 'self' blob: *.wistia.com blob:; style-src 'self' 'unsafe-inline' blob: https://maxcdn.bootstrapcdn.com https://fast.wistia.com https://button.glitch.me *.googletagmanager.com; font-src 'self' data: https://*.wistia.com; frame-ancestors 'self' lusini.com *.lusini.com contentful.com *.contentful.com *.netlify.app; child-src blob:
date: Wed, 23 Nov 2022 07:36:18 GMT
etag: "47892d06a30cf9d22d6f0f650211f7e3-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-nf-request-id: 01GJKDPFVS3DF9Z34F1X7R9MQ4
x-xss-protection: 1; mode=block
content-length: 489
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (431)
Size:   489
Md5:    ec0c345e86198126ba7d478de5b3deee
Sha1:   6d049c3f27922ee4bf5c22592129945bd85388ad
Sha256: 7760877990b02447a6414f7535e0991bdecebc2161bb69f45dbf960a60bbb88c
                                        
                                            GET /nb-no/checkout/cart HTTP/1.1 
Host: checkout.lusini.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lusini.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

search
                                         79.99.85.209
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
server: nginx
date: Wed, 23 Nov 2022 23:38:17 GMT
content-length: 6892
strict-transport-security: max-age=31536000
set-cookie: session-21=6261ded182a23f8c9162aa9d1a136f07b3a558f6702bfb48ae7c671d43e0790d; path=/; secure; HttpOnly suid=9a677c1b9783210deea49f36248f3f1a; expires=Thu, 23-Nov-2023 23:38:17 GMT; Max-Age=31536000 datalayerCustomer=%7B%22user%22%3A%229a677c1b9783210deea49f36248f3f1a%22%2C%22accountId%22%3A%22no%22%2C%22register%22%3A%22Yes%22%2C%22login%22%3A%22no%22%2C%22branch%22%3A%22%22%2C%22client%22%3A%22%22%2C%22isB2C%22%3Afalse%2C%22tax%22%3A25%2C%22sessionId%22%3A%226261ded182a23f8c9162aa9d1a136f07b3a558f6702bfb48ae7c671d43e0790d%22%2C%22clientId%22%3A%228e9c98e55aef42092658cb07d32a4c33%22%7D; expires=Thu, 23-Nov-2023 23:38:17 GMT; Max-Age=31536000; path=/; domain=.lusini.com dy_session=5d5b733172f417e62290c4c8da0d3857; expires=Thu, 24-Nov-2022 00:08:17 GMT; Max-Age=1800; path=/; domain=.lusini.com dy_userid=936cac5a3af6dffd2f87529b190b611b; expires=Thu, 23-Nov-2023 23:38:17 GMT; Max-Age=31536000; path=/; domain=.lusini.com x-cache-context-hash=deleted; expires=Tue, 23-Nov-2021 23:38:16 GMT; Max-Age=0; path=/; httponly nocache=deleted; expires=Tue, 23-Nov-2021 23:38:16 GMT; Max-Age=0; path=/; secure; httponly
link: </web/cache/1669182317_0b93c01e8d005e1ccd382b7b017922ef.css>; rel="preload"; as="style",</web/cache/1669182317_0b93c01e8d005e1ccd382b7b017922ef.js>; rel="preload"; as="script"
pragma: no-cache, no-cache
expires: Thu, 19 Nov 1981 08:52:00 GMT, -1
age: 2150
cache-control: no-store, no-cache, must-revalidate, no-cache, private
vary: Accept-Encoding,Origin
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy: frame-ancestors *.lusini.com *.lusini.com:8000 *.lusini.com:8001 *.lusini.dev *.lusini.dev:8000 *.lusini.dev:8001 *.lusini.local *.lusini.local:8000 *.lusini.local:8001 localhost localhost:8000 localhost:8001 localhost:9000
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-backend: 1
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1487)
Size:   6892
Md5:    3176b4ae24fe887a90b2c936b1a56572
Sha1:   ed5c85c0f4e40c76bd55a5e6fe25aec009833c01
Sha256: bb0139b409ec610d6a61c03d68f14f566c83051145adc386f8472c048c00ba17
                                        
                                            GET /nb-no/commons-6343cecda9e994dc6a06.js HTTP/1.1 
Host: www.lusini.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lusini.com/nb-no/?awc=22614_1669246696_82fad0b07b963e6b8acaab170683f597
Cookie: _gcl_au=1.1.1492997346.1669246697; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Nov+23+2022+23%3A38%3A17+GMT%2B0000+(Coordinated+Universal+Time)&version=6.30.0&isIABGlobal=false&hosts=&consentId=1ccfc462-4a58-44e0-877d-3c195feedc70&interactionCount=0&landingPath=https%3A%2F%2Fwww.lusini.com%2Fnb-no%2F%3Fawc%3D22614_1669246696_82fad0b07b963e6b8acaab170683f597
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         34.141.11.154
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
accept-ranges: bytes
age: 57719
cache-control: max-age=172800,public,must-revalidate
content-encoding: gzip
content-security-policy: default-src 'self' *.lusini.dev *.lusini.com *.netlify.app https://*.wistia.com https://*.wistia.net; frame-src 'self' *.lusini.dev *.netlify.app *.lusini.com http://*.lusini.dev http://*.lusini.com https://fast.wistia.com https://fast.wistia.net *.facebook.com; connect-src 'self' *.lusini.dev *.lusini.com *.netlify.app *.getform.io getform.io *.contentful.com *.algolia.net *.algolianet.com https://widgets.trustedshops.com *.doubleclick.net *.google-analytics.com *.google.com *.google.de *.cookielaw.org https://*.litix.io https://*.wistia.com https://embedwistia-a.akamaihd.net https://api.glitch.com *.onetrust.com *.bing.com https://*.dy-api.eu *.tryggehandel.net *.tryggehandel.no; img-src 'self' data: aw1n.com *.cloudinary.com *.google.de *.google.com *.lusini.dev *.lusini.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net https://glitch.com https://cdn.glitch.com https://avatars0.githubusercontent.com *.trustedshops.com *.facebook.com *.bing.com sslwidget.criteo.com dq4irj27fs462.cloudfront.net *.tryggehandel.net *.tryggehandel.no; media-src 'self' blob: data: *.cloudinary.com *.google.de https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net dq4irj27fs462.cloudfront.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.netlify.app *.googletagmanager.com *.google.com *.cookielaw.org *.google.de *.doubleclick.net *.googleadservices.net *.googleadservices.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://src.litix.io https://button.glitch.me https://*.trustedshops.com *.googleapis.com *.bing.com *.dwin1.com *.facebook.net *.tryggehandel.net *.tryggehandel.no; worker-src 'self' blob: *.wistia.com blob:; style-src 'self' 'unsafe-inline' blob: https://maxcdn.bootstrapcdn.com https://fast.wistia.com https://button.glitch.me *.googletagmanager.com; font-src 'self' data: https://*.wistia.com; frame-ancestors 'self' lusini.com *.lusini.com contentful.com *.contentful.com *.netlify.app; child-src blob:
date: Wed, 23 Nov 2022 07:36:18 GMT
etag: "63108299bb22c0f8755d31ed8ee921b8-ssl"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-content-type-options: nosniff
x-nf-request-id: 01GJKDPFVYWN7VJTM1R3HN788V
x-xss-protection: 1; mode=block
content-length: 126871
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   126871
Md5:    8f77511f6018133623c8e3bf85f52877
Sha1:   0854805618eba65226ca72b8e26340eae272fc9a
Sha256: 7eb111dd77a03b7cda4285a23d896c457e92e24480b7444c38cae97b171b329d
                                        
                                            GET /nb-no/f6df4171b0d03d2bf64823668b58e044fc46017d-a7c4790d591d0915d277.js HTTP/1.1 
Host: www.lusini.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lusini.com/nb-no/?awc=22614_1669246696_82fad0b07b963e6b8acaab170683f597
Cookie: _gcl_au=1.1.1492997346.1669246697; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Nov+23+2022+23%3A38%3A17+GMT%2B0000+(Coordinated+Universal+Time)&version=6.30.0&isIABGlobal=false&hosts=&consentId=1ccfc462-4a58-44e0-877d-3c195feedc70&interactionCount=0&landingPath=https%3A%2F%2Fwww.lusini.com%2Fnb-no%2F%3Fawc%3D22614_1669246696_82fad0b07b963e6b8acaab170683f597
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         34.141.11.154
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
accept-ranges: bytes
age: 32779
cache-control: max-age=172800,public,must-revalidate
content-encoding: gzip
content-security-policy: default-src 'self' *.lusini.dev *.lusini.com *.netlify.app https://*.wistia.com https://*.wistia.net; frame-src 'self' *.lusini.dev *.netlify.app *.lusini.com http://*.lusini.dev http://*.lusini.com https://fast.wistia.com https://fast.wistia.net *.facebook.com; connect-src 'self' *.lusini.dev *.lusini.com *.netlify.app *.getform.io getform.io *.contentful.com *.algolia.net *.algolianet.com https://widgets.trustedshops.com *.doubleclick.net *.google-analytics.com *.google.com *.google.de *.cookielaw.org https://*.litix.io https://*.wistia.com https://embedwistia-a.akamaihd.net https://api.glitch.com *.onetrust.com *.bing.com https://*.dy-api.eu *.tryggehandel.net *.tryggehandel.no; img-src 'self' data: aw1n.com *.cloudinary.com *.google.de *.google.com *.lusini.dev *.lusini.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net https://glitch.com https://cdn.glitch.com https://avatars0.githubusercontent.com *.trustedshops.com *.facebook.com *.bing.com sslwidget.criteo.com dq4irj27fs462.cloudfront.net *.tryggehandel.net *.tryggehandel.no; media-src 'self' blob: data: *.cloudinary.com *.google.de https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net dq4irj27fs462.cloudfront.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.netlify.app *.googletagmanager.com *.google.com *.cookielaw.org *.google.de *.doubleclick.net *.googleadservices.net *.googleadservices.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://src.litix.io https://button.glitch.me https://*.trustedshops.com *.googleapis.com *.bing.com *.dwin1.com *.facebook.net *.tryggehandel.net *.tryggehandel.no; worker-src 'self' blob: *.wistia.com blob:; style-src 'self' 'unsafe-inline' blob: https://maxcdn.bootstrapcdn.com https://fast.wistia.com https://button.glitch.me *.googletagmanager.com; font-src 'self' data: https://*.wistia.com; frame-ancestors 'self' lusini.com *.lusini.com contentful.com *.contentful.com *.netlify.app; child-src blob:
date: Wed, 23 Nov 2022 14:31:58 GMT
etag: "14e2f9057b641785e2b914efebcb1447-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-content-type-options: nosniff
x-nf-request-id: 01GJKDPFW1FDWY4S26AYFD2GPB
x-xss-protection: 1; mode=block
content-length: 11409
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (49143)
Size:   11409
Md5:    5948110f2974bd7fcafb6c943de5b171
Sha1:   29902cdf774b2aff1d758feb0440e7088adf6708
Sha256: cff8eb5dcc8ff1b95395a6a78a47c70f10fc8bd1a05a7ce552214c0aa7248cf1
                                        
                                            GET /nb-no/page-data/sq/d/848545352.json HTTP/1.1 
Host: www.lusini.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lusini.com/nb-no/?awc=22614_1669246696_82fad0b07b963e6b8acaab170683f597
Cookie: _gcl_au=1.1.1492997346.1669246697; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Nov+23+2022+23%3A38%3A17+GMT%2B0000+(Coordinated+Universal+Time)&version=6.30.0&isIABGlobal=false&hosts=&consentId=1ccfc462-4a58-44e0-877d-3c195feedc70&interactionCount=0&landingPath=https%3A%2F%2Fwww.lusini.com%2Fnb-no%2F%3Fawc%3D22614_1669246696_82fad0b07b963e6b8acaab170683f597
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         34.141.11.154
HTTP/2 200 OK
content-type: application/json
                                        
accept-ranges: bytes
age: 57719
cache-control: public,max-age=0,must-revalidate
content-security-policy: default-src 'self' *.lusini.dev *.lusini.com *.netlify.app https://*.wistia.com https://*.wistia.net; frame-src 'self' *.lusini.dev *.netlify.app *.lusini.com http://*.lusini.dev http://*.lusini.com https://fast.wistia.com https://fast.wistia.net *.facebook.com; connect-src 'self' *.lusini.dev *.lusini.com *.netlify.app *.getform.io getform.io *.contentful.com *.algolia.net *.algolianet.com https://widgets.trustedshops.com *.doubleclick.net *.google-analytics.com *.google.com *.google.de *.cookielaw.org https://*.litix.io https://*.wistia.com https://embedwistia-a.akamaihd.net https://api.glitch.com *.onetrust.com *.bing.com https://*.dy-api.eu *.tryggehandel.net *.tryggehandel.no; img-src 'self' data: aw1n.com *.cloudinary.com *.google.de *.google.com *.lusini.dev *.lusini.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net https://glitch.com https://cdn.glitch.com https://avatars0.githubusercontent.com *.trustedshops.com *.facebook.com *.bing.com sslwidget.criteo.com dq4irj27fs462.cloudfront.net *.tryggehandel.net *.tryggehandel.no; media-src 'self' blob: data: *.cloudinary.com *.google.de https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net dq4irj27fs462.cloudfront.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.netlify.app *.googletagmanager.com *.google.com *.cookielaw.org *.google.de *.doubleclick.net *.googleadservices.net *.googleadservices.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://src.litix.io https://button.glitch.me https://*.trustedshops.com *.googleapis.com *.bing.com *.dwin1.com *.facebook.net *.tryggehandel.net *.tryggehandel.no; worker-src 'self' blob: *.wistia.com blob:; style-src 'self' 'unsafe-inline' blob: https://maxcdn.bootstrapcdn.com https://fast.wistia.com https://button.glitch.me *.googletagmanager.com; font-src 'self' data: https://*.wistia.com; frame-ancestors 'self' lusini.com *.lusini.com contentful.com *.contentful.com *.netlify.app; child-src blob:
date: Wed, 23 Nov 2022 07:36:19 GMT
etag: "ac77d423f1cf8be737e03552a3c7a499-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-nf-request-id: 01GJKDPFWXTWMQ20VGG86MZ73T
x-xss-protection: 1; mode=block
content-length: 249
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , Unicode text, UTF-8 text, with no line terminators
Size:   249
Md5:    78e13e3cbd5fc727650cf02d77151e10
Sha1:   aae782c1048ae455618d53db1deca6e90fa669f5
Sha256: d22bba93ca8f37eef8af8d78c675175c6309876cb1f966a7fe2ff1cf749e71af
                                        
                                            GET /nb-no/page-data/sq/d/473145344.json HTTP/1.1 
Host: www.lusini.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lusini.com/nb-no/?awc=22614_1669246696_82fad0b07b963e6b8acaab170683f597
Cookie: _gcl_au=1.1.1492997346.1669246697; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Nov+23+2022+23%3A38%3A17+GMT%2B0000+(Coordinated+Universal+Time)&version=6.30.0&isIABGlobal=false&hosts=&consentId=1ccfc462-4a58-44e0-877d-3c195feedc70&interactionCount=0&landingPath=https%3A%2F%2Fwww.lusini.com%2Fnb-no%2F%3Fawc%3D22614_1669246696_82fad0b07b963e6b8acaab170683f597
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         34.141.11.154
HTTP/2 200 OK
content-type: application/json
                                        
accept-ranges: bytes
age: 57720
cache-control: public,max-age=0,must-revalidate
content-security-policy: default-src 'self' *.lusini.dev *.lusini.com *.netlify.app https://*.wistia.com https://*.wistia.net; frame-src 'self' *.lusini.dev *.netlify.app *.lusini.com http://*.lusini.dev http://*.lusini.com https://fast.wistia.com https://fast.wistia.net *.facebook.com; connect-src 'self' *.lusini.dev *.lusini.com *.netlify.app *.getform.io getform.io *.contentful.com *.algolia.net *.algolianet.com https://widgets.trustedshops.com *.doubleclick.net *.google-analytics.com *.google.com *.google.de *.cookielaw.org https://*.litix.io https://*.wistia.com https://embedwistia-a.akamaihd.net https://api.glitch.com *.onetrust.com *.bing.com https://*.dy-api.eu *.tryggehandel.net *.tryggehandel.no; img-src 'self' data: aw1n.com *.cloudinary.com *.google.de *.google.com *.lusini.dev *.lusini.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net https://glitch.com https://cdn.glitch.com https://avatars0.githubusercontent.com *.trustedshops.com *.facebook.com *.bing.com sslwidget.criteo.com dq4irj27fs462.cloudfront.net *.tryggehandel.net *.tryggehandel.no; media-src 'self' blob: data: *.cloudinary.com *.google.de https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net dq4irj27fs462.cloudfront.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.netlify.app *.googletagmanager.com *.google.com *.cookielaw.org *.google.de *.doubleclick.net *.googleadservices.net *.googleadservices.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://src.litix.io https://button.glitch.me https://*.trustedshops.com *.googleapis.com *.bing.com *.dwin1.com *.facebook.net *.tryggehandel.net *.tryggehandel.no; worker-src 'self' blob: *.wistia.com blob:; style-src 'self' 'unsafe-inline' blob: https://maxcdn.bootstrapcdn.com https://fast.wistia.com https://button.glitch.me *.googletagmanager.com; font-src 'self' data: https://*.wistia.com; frame-ancestors 'self' lusini.com *.lusini.com contentful.com *.contentful.com *.netlify.app; child-src blob:
date: Wed, 23 Nov 2022 07:36:18 GMT
etag: "f00f4aaed815a8e9a6ca7b80183e80d4-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-nf-request-id: 01GJKDPFWX6NK850TYA9AECH5V
x-xss-protection: 1; mode=block
content-length: 250
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   250
Md5:    4ff4094e7927820df64129947b16abef
Sha1:   b0961e1e50c5cf038b79e2c5e8653a289db8b746
Sha256: 918577601b0bad72a826e530583d596081a53465c6d7c0bdc68baf085a00e074
                                        
                                            GET /nb-no/page-data/sq/d/4168550003.json HTTP/1.1 
Host: www.lusini.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lusini.com/nb-no/?awc=22614_1669246696_82fad0b07b963e6b8acaab170683f597
Cookie: _gcl_au=1.1.1492997346.1669246697; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Nov+23+2022+23%3A38%3A17+GMT%2B0000+(Coordinated+Universal+Time)&version=6.30.0&isIABGlobal=false&hosts=&consentId=1ccfc462-4a58-44e0-877d-3c195feedc70&interactionCount=0&landingPath=https%3A%2F%2Fwww.lusini.com%2Fnb-no%2F%3Fawc%3D22614_1669246696_82fad0b07b963e6b8acaab170683f597
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         34.141.11.154
HTTP/2 200 OK
content-type: application/json
                                        
accept-ranges: bytes
age: 13614
cache-control: public,max-age=0,must-revalidate
content-encoding: br
content-security-policy: default-src 'self' *.lusini.dev *.lusini.com *.netlify.app https://*.wistia.com https://*.wistia.net; frame-src 'self' *.lusini.dev *.netlify.app *.lusini.com http://*.lusini.dev http://*.lusini.com https://fast.wistia.com https://fast.wistia.net *.facebook.com; connect-src 'self' *.lusini.dev *.lusini.com *.netlify.app *.getform.io getform.io *.contentful.com *.algolia.net *.algolianet.com https://widgets.trustedshops.com *.doubleclick.net *.google-analytics.com *.google.com *.google.de *.cookielaw.org https://*.litix.io https://*.wistia.com https://embedwistia-a.akamaihd.net https://api.glitch.com *.onetrust.com *.bing.com https://*.dy-api.eu *.tryggehandel.net *.tryggehandel.no; img-src 'self' data: aw1n.com *.cloudinary.com *.google.de *.google.com *.lusini.dev *.lusini.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net https://glitch.com https://cdn.glitch.com https://avatars0.githubusercontent.com *.trustedshops.com *.facebook.com *.bing.com sslwidget.criteo.com dq4irj27fs462.cloudfront.net *.tryggehandel.net *.tryggehandel.no; media-src 'self' blob: data: *.cloudinary.com *.google.de https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net dq4irj27fs462.cloudfront.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.netlify.app *.googletagmanager.com *.google.com *.cookielaw.org *.google.de *.doubleclick.net *.googleadservices.net *.googleadservices.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://src.litix.io https://button.glitch.me https://*.trustedshops.com *.googleapis.com *.bing.com *.dwin1.com *.facebook.net *.tryggehandel.net *.tryggehandel.no; worker-src 'self' blob: *.wistia.com blob:; style-src 'self' 'unsafe-inline' blob: https://maxcdn.bootstrapcdn.com https://fast.wistia.com https://button.glitch.me *.googletagmanager.com; font-src 'self' data: https://*.wistia.com; frame-ancestors 'self' lusini.com *.lusini.com contentful.com *.contentful.com *.netlify.app; child-src blob:
date: Wed, 23 Nov 2022 19:51:23 GMT
etag: "d099fec4c160eff61796d95f2cf6f53d-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-content-type-options: nosniff
x-nf-request-id: 01GJKDPFWXDN4QZTHY61JNNXWA
x-xss-protection: 1; mode=block
content-length: 505
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , Unicode text, UTF-8 text, with very long lines (2311), with no line terminators
Size:   505
Md5:    5135243214ff523736ad68b379e3139e
Sha1:   8c44d6a51ce199b42c7be6f069ea7973c0871c25
Sha256: a88fdb69604b83bd05c49ad8217b8af05ee873f2475c778ec1e809b0504b7a6c
                                        
                                            GET /nb-no/page-data/sq/d/3852206291.json HTTP/1.1 
Host: www.lusini.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lusini.com/nb-no/?awc=22614_1669246696_82fad0b07b963e6b8acaab170683f597
Cookie: _gcl_au=1.1.1492997346.1669246697; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Nov+23+2022+23%3A38%3A17+GMT%2B0000+(Coordinated+Universal+Time)&version=6.30.0&isIABGlobal=false&hosts=&consentId=1ccfc462-4a58-44e0-877d-3c195feedc70&interactionCount=0&landingPath=https%3A%2F%2Fwww.lusini.com%2Fnb-no%2F%3Fawc%3D22614_1669246696_82fad0b07b963e6b8acaab170683f597
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         34.141.11.154
HTTP/2 200 OK
content-type: application/json
                                        
accept-ranges: bytes
age: 57719
cache-control: public,max-age=0,must-revalidate
content-encoding: gzip
content-security-policy: default-src 'self' *.lusini.dev *.lusini.com *.netlify.app https://*.wistia.com https://*.wistia.net; frame-src 'self' *.lusini.dev *.netlify.app *.lusini.com http://*.lusini.dev http://*.lusini.com https://fast.wistia.com https://fast.wistia.net *.facebook.com; connect-src 'self' *.lusini.dev *.lusini.com *.netlify.app *.getform.io getform.io *.contentful.com *.algolia.net *.algolianet.com https://widgets.trustedshops.com *.doubleclick.net *.google-analytics.com *.google.com *.google.de *.cookielaw.org https://*.litix.io https://*.wistia.com https://embedwistia-a.akamaihd.net https://api.glitch.com *.onetrust.com *.bing.com https://*.dy-api.eu *.tryggehandel.net *.tryggehandel.no; img-src 'self' data: aw1n.com *.cloudinary.com *.google.de *.google.com *.lusini.dev *.lusini.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net https://glitch.com https://cdn.glitch.com https://avatars0.githubusercontent.com *.trustedshops.com *.facebook.com *.bing.com sslwidget.criteo.com dq4irj27fs462.cloudfront.net *.tryggehandel.net *.tryggehandel.no; media-src 'self' blob: data: *.cloudinary.com *.google.de https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net dq4irj27fs462.cloudfront.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.netlify.app *.googletagmanager.com *.google.com *.cookielaw.org *.google.de *.doubleclick.net *.googleadservices.net *.googleadservices.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://src.litix.io https://button.glitch.me https://*.trustedshops.com *.googleapis.com *.bing.com *.dwin1.com *.facebook.net *.tryggehandel.net *.tryggehandel.no; worker-src 'self' blob: *.wistia.com blob:; style-src 'self' 'unsafe-inline' blob: https://maxcdn.bootstrapcdn.com https://fast.wistia.com https://button.glitch.me *.googletagmanager.com; font-src 'self' data: https://*.wistia.com; frame-ancestors 'self' lusini.com *.lusini.com contentful.com *.contentful.com *.netlify.app; child-src blob:
date: Wed, 23 Nov 2022 07:36:18 GMT
etag: "902a7ff1c4ad00d180d77f961b1a9b27-ssl"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-content-type-options: nosniff
x-nf-request-id: 01GJKDPFWWSZZW3PWSEXF954TV
x-xss-protection: 1; mode=block
content-length: 464
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , Unicode text, UTF-8 text, with very long lines (2682), with no line terminators
Size:   464
Md5:    386f62d3d14445e6feeab7bfb6a82432
Sha1:   677c24a987a7e5ba56e65ddd8079b12d7559701d
Sha256: 9dcbc596a2f2fb48d4b452676ccc13275f36939d679b8dd2f0fcc90aeb2b352a
                                        
                                            GET /nb-no/page-data/sq/d/3634240054.json HTTP/1.1 
Host: www.lusini.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lusini.com/nb-no/?awc=22614_1669246696_82fad0b07b963e6b8acaab170683f597
Cookie: _gcl_au=1.1.1492997346.1669246697; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Nov+23+2022+23%3A38%3A17+GMT%2B0000+(Coordinated+Universal+Time)&version=6.30.0&isIABGlobal=false&hosts=&consentId=1ccfc462-4a58-44e0-877d-3c195feedc70&interactionCount=0&landingPath=https%3A%2F%2Fwww.lusini.com%2Fnb-no%2F%3Fawc%3D22614_1669246696_82fad0b07b963e6b8acaab170683f597
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         34.141.11.154
HTTP/2 200 OK
content-type: application/json
                                        
accept-ranges: bytes
age: 57719
cache-control: public,max-age=0,must-revalidate
content-security-policy: default-src 'self' *.lusini.dev *.lusini.com *.netlify.app https://*.wistia.com https://*.wistia.net; frame-src 'self' *.lusini.dev *.netlify.app *.lusini.com http://*.lusini.dev http://*.lusini.com https://fast.wistia.com https://fast.wistia.net *.facebook.com; connect-src 'self' *.lusini.dev *.lusini.com *.netlify.app *.getform.io getform.io *.contentful.com *.algolia.net *.algolianet.com https://widgets.trustedshops.com *.doubleclick.net *.google-analytics.com *.google.com *.google.de *.cookielaw.org https://*.litix.io https://*.wistia.com https://embedwistia-a.akamaihd.net https://api.glitch.com *.onetrust.com *.bing.com https://*.dy-api.eu *.tryggehandel.net *.tryggehandel.no; img-src 'self' data: aw1n.com *.cloudinary.com *.google.de *.google.com *.lusini.dev *.lusini.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net https://glitch.com https://cdn.glitch.com https://avatars0.githubusercontent.com *.trustedshops.com *.facebook.com *.bing.com sslwidget.criteo.com dq4irj27fs462.cloudfront.net *.tryggehandel.net *.tryggehandel.no; media-src 'self' blob: data: *.cloudinary.com *.google.de https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net dq4irj27fs462.cloudfront.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.netlify.app *.googletagmanager.com *.google.com *.cookielaw.org *.google.de *.doubleclick.net *.googleadservices.net *.googleadservices.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://src.litix.io https://button.glitch.me https://*.trustedshops.com *.googleapis.com *.bing.com *.dwin1.com *.facebook.net *.tryggehandel.net *.tryggehandel.no; worker-src 'self' blob: *.wistia.com blob:; style-src 'self' 'unsafe-inline' blob: https://maxcdn.bootstrapcdn.com https://fast.wistia.com https://button.glitch.me *.googletagmanager.com; font-src 'self' data: https://*.wistia.com; frame-ancestors 'self' lusini.com *.lusini.com contentful.com *.contentful.com *.netlify.app; child-src blob:
date: Wed, 23 Nov 2022 07:36:19 GMT
etag: "276744106872a19c095db5f7b095105a-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-nf-request-id: 01GJKDPFWWEDAK3SRC7Y98XNP7
x-xss-protection: 1; mode=block
content-length: 692
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , Unicode text, UTF-8 text, with very long lines (690), with no line terminators
Size:   692
Md5:    f8fc3c21b79d53c6870281902c97bd46
Sha1:   56272a08008c7643a36c20053f5c4eb8bb09778e
Sha256: f451f583ed4362eeea4b5d75ca56a5f3782cc361c4e5500811135818c1f310c4
                                        
                                            GET /nb-no/page-data/sq/d/361447919.json HTTP/1.1 
Host: www.lusini.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lusini.com/nb-no/?awc=22614_1669246696_82fad0b07b963e6b8acaab170683f597
Cookie: _gcl_au=1.1.1492997346.1669246697; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Nov+23+2022+23%3A38%3A17+GMT%2B0000+(Coordinated+Universal+Time)&version=6.30.0&isIABGlobal=false&hosts=&consentId=1ccfc462-4a58-44e0-877d-3c195feedc70&interactionCount=0&landingPath=https%3A%2F%2Fwww.lusini.com%2Fnb-no%2F%3Fawc%3D22614_1669246696_82fad0b07b963e6b8acaab170683f597
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         34.141.11.154
HTTP/2 200 OK
content-type: application/json
                                        
accept-ranges: bytes
age: 57719
cache-control: public,max-age=0,must-revalidate
content-encoding: gzip
content-security-policy: default-src 'self' *.lusini.dev *.lusini.com *.netlify.app https://*.wistia.com https://*.wistia.net; frame-src 'self' *.lusini.dev *.netlify.app *.lusini.com http://*.lusini.dev http://*.lusini.com https://fast.wistia.com https://fast.wistia.net *.facebook.com; connect-src 'self' *.lusini.dev *.lusini.com *.netlify.app *.getform.io getform.io *.contentful.com *.algolia.net *.algolianet.com https://widgets.trustedshops.com *.doubleclick.net *.google-analytics.com *.google.com *.google.de *.cookielaw.org https://*.litix.io https://*.wistia.com https://embedwistia-a.akamaihd.net https://api.glitch.com *.onetrust.com *.bing.com https://*.dy-api.eu *.tryggehandel.net *.tryggehandel.no; img-src 'self' data: aw1n.com *.cloudinary.com *.google.de *.google.com *.lusini.dev *.lusini.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net https://glitch.com https://cdn.glitch.com https://avatars0.githubusercontent.com *.trustedshops.com *.facebook.com *.bing.com sslwidget.criteo.com dq4irj27fs462.cloudfront.net *.tryggehandel.net *.tryggehandel.no; media-src 'self' blob: data: *.cloudinary.com *.google.de https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net dq4irj27fs462.cloudfront.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.netlify.app *.googletagmanager.com *.google.com *.cookielaw.org *.google.de *.doubleclick.net *.googleadservices.net *.googleadservices.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://src.litix.io https://button.glitch.me https://*.trustedshops.com *.googleapis.com *.bing.com *.dwin1.com *.facebook.net *.tryggehandel.net *.tryggehandel.no; worker-src 'self' blob: *.wistia.com blob:; style-src 'self' 'unsafe-inline' blob: https://maxcdn.bootstrapcdn.com https://fast.wistia.com https://button.glitch.me *.googletagmanager.com; font-src 'self' data: https://*.wistia.com; frame-ancestors 'self' lusini.com *.lusini.com contentful.com *.contentful.com *.netlify.app; child-src blob:
date: Wed, 23 Nov 2022 07:36:18 GMT
etag: "17f5889f5da7a69ba6b2254a44cc3d64-ssl"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-content-type-options: nosniff
x-nf-request-id: 01GJKDPFWXVVAPFHDR4NGNWR0Z
x-xss-protection: 1; mode=block
content-length: 851
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , Unicode text, UTF-8 text, with very long lines (4354), with no line terminators
Size:   851
Md5:    5a280e6766df857b2d0803e8f0eb8588
Sha1:   d0cd6e518559ef0f2d63dd2bedfeb4afa50f3281
Sha256: fb935955031ed90b3cfedbcc29027a6d3b3542b012e07b707daa1cd041f4e5b2
                                        
                                            GET /nb-no/page-data/sq/d/3608316171.json HTTP/1.1 
Host: www.lusini.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lusini.com/nb-no/?awc=22614_1669246696_82fad0b07b963e6b8acaab170683f597
Cookie: _gcl_au=1.1.1492997346.1669246697; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Nov+23+2022+23%3A38%3A17+GMT%2B0000+(Coordinated+Universal+Time)&version=6.30.0&isIABGlobal=false&hosts=&consentId=1ccfc462-4a58-44e0-877d-3c195feedc70&interactionCount=0&landingPath=https%3A%2F%2Fwww.lusini.com%2Fnb-no%2F%3Fawc%3D22614_1669246696_82fad0b07b963e6b8acaab170683f597
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         34.141.11.154
HTTP/2 200 OK
content-type: application/json
                                        
accept-ranges: bytes
age: 13614
cache-control: public,max-age=0,must-revalidate
content-encoding: br
content-security-policy: default-src 'self' *.lusini.dev *.lusini.com *.netlify.app https://*.wistia.com https://*.wistia.net; frame-src 'self' *.lusini.dev *.netlify.app *.lusini.com http://*.lusini.dev http://*.lusini.com https://fast.wistia.com https://fast.wistia.net *.facebook.com; connect-src 'self' *.lusini.dev *.lusini.com *.netlify.app *.getform.io getform.io *.contentful.com *.algolia.net *.algolianet.com https://widgets.trustedshops.com *.doubleclick.net *.google-analytics.com *.google.com *.google.de *.cookielaw.org https://*.litix.io https://*.wistia.com https://embedwistia-a.akamaihd.net https://api.glitch.com *.onetrust.com *.bing.com https://*.dy-api.eu *.tryggehandel.net *.tryggehandel.no; img-src 'self' data: aw1n.com *.cloudinary.com *.google.de *.google.com *.lusini.dev *.lusini.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net https://glitch.com https://cdn.glitch.com https://avatars0.githubusercontent.com *.trustedshops.com *.facebook.com *.bing.com sslwidget.criteo.com dq4irj27fs462.cloudfront.net *.tryggehandel.net *.tryggehandel.no; media-src 'self' blob: data: *.cloudinary.com *.google.de https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net dq4irj27fs462.cloudfront.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.netlify.app *.googletagmanager.com *.google.com *.cookielaw.org *.google.de *.doubleclick.net *.googleadservices.net *.googleadservices.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://src.litix.io https://button.glitch.me https://*.trustedshops.com *.googleapis.com *.bing.com *.dwin1.com *.facebook.net *.tryggehandel.net *.tryggehandel.no; worker-src 'self' blob: *.wistia.com blob:; style-src 'self' 'unsafe-inline' blob: https://maxcdn.bootstrapcdn.com https://fast.wistia.com https://button.glitch.me *.googletagmanager.com; font-src 'self' data: https://*.wistia.com; frame-ancestors 'self' lusini.com *.lusini.com contentful.com *.contentful.com *.netlify.app; child-src blob:
date: Wed, 23 Nov 2022 19:51:23 GMT
etag: "75544269ff8a6c45f31c564cfd0db998-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-content-type-options: nosniff
x-nf-request-id: 01GJKDPFWXH5W3Q42NKEFYVHAN
x-xss-protection: 1; mode=block
content-length: 322
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (1267), with no line terminators
Size:   322
Md5:    133239366f4a2d6f4bc7296c5e56b8e6
Sha1:   77cf8633d14883ee542788475c07c94075e3e899
Sha256: a3309320096846501b05277d54d80a88ea4d3418e56fc9554fd96e8efc440ce2
                                        
                                            GET /nb-no/page-data/sq/d/3554170996.json HTTP/1.1 
Host: www.lusini.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lusini.com/nb-no/?awc=22614_1669246696_82fad0b07b963e6b8acaab170683f597
Cookie: _gcl_au=1.1.1492997346.1669246697; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Nov+23+2022+23%3A38%3A17+GMT%2B0000+(Coordinated+Universal+Time)&version=6.30.0&isIABGlobal=false&hosts=&consentId=1ccfc462-4a58-44e0-877d-3c195feedc70&interactionCount=0&landingPath=https%3A%2F%2Fwww.lusini.com%2Fnb-no%2F%3Fawc%3D22614_1669246696_82fad0b07b963e6b8acaab170683f597
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         34.141.11.154
HTTP/2 200 OK
content-type: application/json
                                        
accept-ranges: bytes
age: 57719
cache-control: public,max-age=0,must-revalidate
content-security-policy: default-src 'self' *.lusini.dev *.lusini.com *.netlify.app https://*.wistia.com https://*.wistia.net; frame-src 'self' *.lusini.dev *.netlify.app *.lusini.com http://*.lusini.dev http://*.lusini.com https://fast.wistia.com https://fast.wistia.net *.facebook.com; connect-src 'self' *.lusini.dev *.lusini.com *.netlify.app *.getform.io getform.io *.contentful.com *.algolia.net *.algolianet.com https://widgets.trustedshops.com *.doubleclick.net *.google-analytics.com *.google.com *.google.de *.cookielaw.org https://*.litix.io https://*.wistia.com https://embedwistia-a.akamaihd.net https://api.glitch.com *.onetrust.com *.bing.com https://*.dy-api.eu *.tryggehandel.net *.tryggehandel.no; img-src 'self' data: aw1n.com *.cloudinary.com *.google.de *.google.com *.lusini.dev *.lusini.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net https://glitch.com https://cdn.glitch.com https://avatars0.githubusercontent.com *.trustedshops.com *.facebook.com *.bing.com sslwidget.criteo.com dq4irj27fs462.cloudfront.net *.tryggehandel.net *.tryggehandel.no; media-src 'self' blob: data: *.cloudinary.com *.google.de https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net dq4irj27fs462.cloudfront.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.netlify.app *.googletagmanager.com *.google.com *.cookielaw.org *.google.de *.doubleclick.net *.googleadservices.net *.googleadservices.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://src.litix.io https://button.glitch.me https://*.trustedshops.com *.googleapis.com *.bing.com *.dwin1.com *.facebook.net *.tryggehandel.net *.tryggehandel.no; worker-src 'self' blob: *.wistia.com blob:; style-src 'self' 'unsafe-inline' blob: https://maxcdn.bootstrapcdn.com https://fast.wistia.com https://button.glitch.me *.googletagmanager.com; font-src 'self' data: https://*.wistia.com; frame-ancestors 'self' lusini.com *.lusini.com contentful.com *.contentful.com *.netlify.app; child-src blob:
date: Wed, 23 Nov 2022 07:36:18 GMT
etag: "9caf46b81451071e194c16a5dc95d0f3-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-nf-request-id: 01GJKDPFWW10G2ARRZ0P0GK7AR
x-xss-protection: 1; mode=block
content-length: 250
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   250
Md5:    dbffa0a04ed36ad42717bb177db2711d
Sha1:   cbec9d17802536058bd18c9f635dc9255f4d15fd
Sha256: f4bb8385737291f2c99d8e63395a9ea1d9b7748e54b3daef307c2a5dcc8765e3
                                        
                                            GET /nb-no/page-data/sq/d/3365978023.json HTTP/1.1 
Host: www.lusini.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lusini.com/nb-no/?awc=22614_1669246696_82fad0b07b963e6b8acaab170683f597
Cookie: _gcl_au=1.1.1492997346.1669246697; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Nov+23+2022+23%3A38%3A17+GMT%2B0000+(Coordinated+Universal+Time)&version=6.30.0&isIABGlobal=false&hosts=&consentId=1ccfc462-4a58-44e0-877d-3c195feedc70&interactionCount=0&landingPath=https%3A%2F%2Fwww.lusini.com%2Fnb-no%2F%3Fawc%3D22614_1669246696_82fad0b07b963e6b8acaab170683f597
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         34.141.11.154
HTTP/2 200 OK
content-type: application/json
                                        
accept-ranges: bytes
age: 57719
cache-control: public,max-age=0,must-revalidate
content-security-policy: default-src 'self' *.lusini.dev *.lusini.com *.netlify.app https://*.wistia.com https://*.wistia.net; frame-src 'self' *.lusini.dev *.netlify.app *.lusini.com http://*.lusini.dev http://*.lusini.com https://fast.wistia.com https://fast.wistia.net *.facebook.com; connect-src 'self' *.lusini.dev *.lusini.com *.netlify.app *.getform.io getform.io *.contentful.com *.algolia.net *.algolianet.com https://widgets.trustedshops.com *.doubleclick.net *.google-analytics.com *.google.com *.google.de *.cookielaw.org https://*.litix.io https://*.wistia.com https://embedwistia-a.akamaihd.net https://api.glitch.com *.onetrust.com *.bing.com https://*.dy-api.eu *.tryggehandel.net *.tryggehandel.no; img-src 'self' data: aw1n.com *.cloudinary.com *.google.de *.google.com *.lusini.dev *.lusini.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net https://glitch.com https://cdn.glitch.com https://avatars0.githubusercontent.com *.trustedshops.com *.facebook.com *.bing.com sslwidget.criteo.com dq4irj27fs462.cloudfront.net *.tryggehandel.net *.tryggehandel.no; media-src 'self' blob: data: *.cloudinary.com *.google.de https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net dq4irj27fs462.cloudfront.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.netlify.app *.googletagmanager.com *.google.com *.cookielaw.org *.google.de *.doubleclick.net *.googleadservices.net *.googleadservices.com *.google-analytics.com https://*.wistia.com https://*.wistia.net https://src.litix.io https://button.glitch.me https://*.trustedshops.com *.googleapis.com *.bing.com *.dwin1.com *.facebook.net *.tryggehandel.net *.tryggehandel.no; worker-src 'self' blob: *.wistia.com blob:; style-src 'self' 'unsafe-inline' blob: https://maxcdn.bootstrapcdn.com https://fast.wistia.com https://button.glitch.me *.googletagmanager.com; font-src 'self' data: https://*.wistia.com; frame-ancestors 'self' lusini.com *.lusini.com contentful.com *.contentful.com *.netlify.app; child-src blob:
date: Wed, 23 Nov 2022 07:36:19 GMT
etag: "b8f5b8b35e088d6a233e9e0a1359fda3-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-nf-request-id: 01GJKDPFWWTSZS23SMCTHW7FJQ
x-xss-protection: 1; mode=block
content-length: 412
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (412), with no line terminators
Size:   412
Md5:    894c7571c2a0ae06670931dc94852c1b
Sha1:   db92607bd139cb97668da0ff869d25510571598f
Sha256: 2086d5046b32efc06371df19ee789ef9bc864bd92bd771e28107abab81dee339
                                        
                                            GET /nb-no/page-data/sq/d/334823853.json HTTP/1.1 
Host: www.lusini.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lusini.com/nb-no/?awc=22614_1669246696_82fad0b07b963e6b8acaab170683f597
Cookie: _gcl_au=1.1.1492997346.1669246697; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Nov+23+2022+23%3A38%3A17+GMT%2B0000+(Coordinated+Universal+Time)&version=6.30.0&isIABGlobal=false&hosts=&consentId=1ccfc462-4a58-44e0-877d-3c195feedc70&interactionCount=0&landingPath=https%3A%2F%2Fwww.lusini.com%2Fnb-no%2F%3Fawc%3D22614_1669246696_82fad0b07b963e6b8acaab170683f597
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search