my.postnord.no/tracking/70730252292540499?ref=9d401afc-9778-4d0a-894f-2b2ef73adb52
16.170.71.218301 Moved Permanently 134 B URL HTTP/1.1 my.postnord.no/tracking/70730252292540499?ref=9d401afc-9778-4d0a-894f-2b2ef73adb52
IP 16.170.71.218:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4aa7a432bb447f094408f1bd6229c605
1965c4952cc8c082a6307ed67061a57aab6632fa
34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
GET /tracking/70730252292540499?ref=9d401afc-9778-4d0a-894f-2b2ef73adb52 HTTP/1.1
Host: my.postnord.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: awselb/2.0
Date: Thu, 06 Oct 2022 19:24:37 GMT
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Location: https://my.postnord.no:443/tracking/70730252292540499?ref=9d401afc-9778-4d0a-894f-2b2ef73adb52
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 282f6e1328452c1cb41f6a6272fff757
20b9ff1b5f4f81b645769bd4b4cf7bf7dfc16262
6a8070ebe51259cb11db68cca2c81f3c7408fad481d8c14cc1c38912442c63f4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A8070EBE51259CB11DB68CCA2C81F3C7408FAD481D8C14CC1C38912442C63F4"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3110
Expires: Thu, 06 Oct 2022 20:16:28 GMT
Date: Thu, 06 Oct 2022 19:24:38 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
54.230.111.118200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.118:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: QU65W7wCV2Ei2r1rSQNdazzhCKFpHAsZipleClsSUCgwjLdDwhH23Q==
Age: 99440
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 94a09d62ab3057cda67a091c8d7478f5
b1c9d223a951d0bc9f17c9f3b84501266a552b58
582364f9f6014520c269f1f794e7c34027bd2697b53e5d02fad43e74a735e471
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "582364F9F6014520C269F1F794E7C34027BD2697B53E5D02FAD43E74A735E471"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14316
Expires: Thu, 06 Oct 2022 23:23:14 GMT
Date: Thu, 06 Oct 2022 19:24:38 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: pcWvgEhXSwi5XiLtO6LrG6hwoX88/g3FxtIthhRBTWEGglIPxqDJ5loeTnFz40wMAEUYuT0DrGs=
x-amz-request-id: D19XZXCDGDV10HV4
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 06 Oct 2022 18:30:53 GMT
age: 3225
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 19:24:38 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.118200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.118:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Thu, 06 Oct 2022 18:29:41 GMT
Expires: Thu, 06 Oct 2022 19:07:03 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: BzCBkjx8292MvveWBvI8qJ2q_k9Wc9MwDrHW8pC0Bll-26yrMylEpw==
Age: 3297
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 3730b24d7b8e45b1282e58c7d9eda4d0
2e76fd20920c675c93c985740ec4713f57eb32cc
83fa93fb0ceda012a15db0228d21dc5e090dd095ae9e1e654866a304679a1630
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 19:24:38 GMT
Server: ECS (dcb/7EEB)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: WAKFjVx2HCSQRi7FzmJ8VZCwI7aqNTS4PpMpPxZtCI3Wi9EudYb3DA==
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8be5570b9a5ca76c580da007a824b029
38840f2ac6476bdd5608121c5653e338c7ad9715
0b94e05080ef85432b1815eb3c6c7594c9613cfde1b51eeabee46d0d9fde64b2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3299
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:24:38 GMT
Last-Modified: Thu, 06 Oct 2022 18:29:39 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
my.postnord.no/tracking/70730252292540499?ref=9d401afc-9778-4d0a-894f-2b2ef73adb52
16.170.139.162200 OK 30 kB URL HTTP/2 my.postnord.no/tracking/70730252292540499?ref=9d401afc-9778-4d0a-894f-2b2ef73adb52
IP 16.170.139.162:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (17359)
Hash 9412198655fc9da533c6a17628161f90
2c32e38fe2a7ab98b122aff1a4b3911d014092cf
a7600f32792ca1e4e2bcffe513bc26f02f38e03c954eed1907e4612253b73197
GET /tracking/70730252292540499?ref=9d401afc-9778-4d0a-894f-2b2ef73adb52 HTTP/1.1
Host: my.postnord.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: awselb/2.0
content-type: text/html; charset=UTF-8
content-length: 30380
set-cookie: postnord_session=eyJpdiI6InVtWTcrcjFXU0lYaXpUWE1sZWkvRHc9PSIsInZhbHVlIjoiU3B2TXRHcjVKZlpSSVdSN1F2c3Ntd2xLbFRIaDYwUDJCN1R5eVVSelozMGVTWUUvd3hVa3hlOFhwMGR5YkE3UEYxSTZuWjFnWnp6ZlhJejhuUkxtS3VwWDlmVFcvRmNKd05rUVNQYnorclBFZ1RIT21WZElpSVJBWk03ZzVIWGsiLCJtYWMiOiI4NWM3YjFkZGY1MDQzYzcwNTQ0YjdkMzkyYmEyODUzNjZiMTU4NDA0NzY2NWI3ZDdjNzBlZjZhZTYxZWFiZmYwIiwidGFnIjoiIn0%3D; expires=Fri, 07-Apr-2023 10:18:38 GMT; Max-Age=15778440; path=/; secure; httponly; samesite=lax
XSRF-TOKEN=eyJpdiI6Inc4YUJQUUxJVHJxRXVUdFN1YzZJb1E9PSIsInZhbHVlIjoiUVNncEF1MXcvVVdNRk5KMlhhV1l1OFFxTkRUS0lZQTN6NW5qbVNDeFh4YXRsb2llSGUzSHNkay9RbnR5NzRyR1RieU1ocWoyRElpMFNmZ3ozU0VTMUZZZHh4YkZ0K2szRGhsbjUzQzJzWC84VDY4SnExU1VYWlIzWWg5TmUrTEgiLCJtYWMiOiJjYmFlZDBiOGU5OTk2NDY4OTg5OTg1ZDkxZjIyNDk2MjJkMDRlOTM2ODBlZDUwMTMzODQ5OTVkOTQzNzM2ODZmIiwidGFnIjoiIn0%3D; expires=Fri, 07-Apr-2023 10:18:38 GMT; Max-Age=15778440; path=/; secure; samesite=lax
date: Thu, 06 Oct 2022 19:24:38 GMT
cache-control: no-cache, private
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ea538732a1ae9aa4e04fe3e8c5304695
0fbb5c7d581cfa32b9a70cf0dcc07cd692196aab
c5fb31822b3d5597ac0d86ac53e3e59565043f4074a4cd103b2302e9f4bca2bf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5FB31822B3D5597AC0D86AC53E3E59565043F4074A4CD103B2302E9F4BCA2BF"
Last-Modified: Wed, 05 Oct 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15977
Expires: Thu, 06 Oct 2022 23:50:56 GMT
Date: Thu, 06 Oct 2022 19:24:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ea538732a1ae9aa4e04fe3e8c5304695
0fbb5c7d581cfa32b9a70cf0dcc07cd692196aab
c5fb31822b3d5597ac0d86ac53e3e59565043f4074a4cd103b2302e9f4bca2bf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5FB31822B3D5597AC0D86AC53E3E59565043F4074A4CD103B2302E9F4BCA2BF"
Last-Modified: Wed, 05 Oct 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15977
Expires: Thu, 06 Oct 2022 23:50:56 GMT
Date: Thu, 06 Oct 2022 19:24:39 GMT
Connection: keep-alive
push.services.mozilla.com/
34.218.159.206101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.218.159.206:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: sDVmuE7y5clRugWBdIpHWQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: F138bal7ofUsvddgd3DYkpD+76k=
widget.postnord.no/js/BookingV2.js
13.48.89.205200 OK 52 kB URL HTTP/2 widget.postnord.no/js/BookingV2.js
IP 13.48.89.205:0
Hash 4c543ec97eac6a14da63c21d746be6ae
5139565ee862b478f1d26fe3d98547cc4feb31d2
8e091a67446c763f536e20210cab14134f036e5798418a3aa8a4f9c3c7a5f3b4
GET /js/BookingV2.js HTTP/1.1
Host: widget.postnord.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.postnord.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 19:24:39 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 05 Oct 2022 11:55:11 GMT
vary: Accept-Encoding
etag: W/"633d709f-23bb7"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
widget.postnord.no/js/Payment.js
13.48.89.205200 OK 113 kB URL HTTP/2 widget.postnord.no/js/Payment.js
IP 13.48.89.205:0
Size 113 kB (112709 bytes)
Hash 536a327e7a9ea810708c4ab23aea69a1
c18c7a41cbe0a19411e3a7d2bc6f7e68db51cff8
6662631001364c7940ab9d77cebf6dd127f0117f1899970f0ddb0d93b92c0ee1
GET /js/Payment.js HTTP/1.1
Host: widget.postnord.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.postnord.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 19:24:39 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 05 Oct 2022 11:55:11 GMT
vary: Accept-Encoding
etag: W/"633d709f-1f7a0"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f763a685d14b05b6ced9792151da30b8
b25be5359245be857ffa1bddcb197cb771a36a45
505ad6dc6417d58207f0d68862c4423f4611660ccc6afe165fd3ec2ccb1c893d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:24:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dha7890ro75av.cloudfront.net/d0cd9ee5-b356-4c14-9c7e-f52472f386bd/fonts/5d365b33b62a068149e5d48d44758000.woff2
54.230.245.121200 OK 20 kB URL HTTP/2 dha7890ro75av.cloudfront.net/d0cd9ee5-b356-4c14-9c7e-f52472f386bd/fonts/5d365b33b62a068149e5d48d44758000.woff2
IP 54.230.245.121:0
File type Web Open Font Format (Version 2), TrueType, length 19544, version 1.0\012- data
Hash 0ca671f6b3e067bea7d6cb963e27fce8
22ce3c28e48c7a3b04dd5219f88f91d7d9c1cd00
1c74779f71bd18c90c9b2cff9e37cc9a7a33f5bab55f9a31f9a6fa65f17d0e29
GET /d0cd9ee5-b356-4c14-9c7e-f52472f386bd/fonts/5d365b33b62a068149e5d48d44758000.woff2 HTTP/1.1
Host: dha7890ro75av.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://my.postnord.no
Connection: keep-alive
Referer: https://dha7890ro75av.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: font/woff2
content-length: 19544
date: Fri, 30 Sep 2022 10:18:26 GMT
last-modified: Fri, 30 Sep 2022 10:17:05 GMT
etag: "0ca671f6b3e067bea7d6cb963e27fce8"
cache-control: public, max-age=31536000
expires: Fri, 23 Sep 2022 14:46:30 GMT
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wwnhm1FF0ryF081l34lKrRa4-nJWnKZH9LIlXVlPqz36GEjOTJcb7Q==
age: 551174
access-control-allow-origin: *
X-Firefox-Spdy: h2
dha7890ro75av.cloudfront.net/d0cd9ee5-b356-4c14-9c7e-f52472f386bd/fonts/42e7b32bef261bac48a58e67d266d4bf.woff2
54.230.245.121200 OK 20 kB URL HTTP/2 dha7890ro75av.cloudfront.net/d0cd9ee5-b356-4c14-9c7e-f52472f386bd/fonts/42e7b32bef261bac48a58e67d266d4bf.woff2
IP 54.230.245.121:0
File type Web Open Font Format (Version 2), TrueType, length 19684, version 1.0\012- data
Hash d75984c1b5a957cafb5774e9384d19f6
6de62184771263db6a2f51d00de87f3ccb4393ec
ec4b226f862a39c6036e31539a0d045fcb7b7533b1770e6958723c071540db3f
GET /d0cd9ee5-b356-4c14-9c7e-f52472f386bd/fonts/42e7b32bef261bac48a58e67d266d4bf.woff2 HTTP/1.1
Host: dha7890ro75av.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://my.postnord.no
Connection: keep-alive
Referer: https://dha7890ro75av.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: font/woff2
content-length: 19684
date: Fri, 30 Sep 2022 10:18:26 GMT
last-modified: Fri, 30 Sep 2022 10:17:05 GMT
etag: "d75984c1b5a957cafb5774e9384d19f6"
cache-control: public, max-age=31536000
expires: Fri, 23 Sep 2022 14:46:30 GMT
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2GmpSpK3X5N2hN76OQB6BQ6qdPn3opHTAOHJKc3ErT2xSlYhRiY-SQ==
age: 551174
access-control-allow-origin: *
X-Firefox-Spdy: h2
dha7890ro75av.cloudfront.net/d0cd9ee5-b356-4c14-9c7e-f52472f386bd/fonts/cc7d15845d209c2cb93163578183eb50.woff2
54.230.245.121200 OK 21 kB URL HTTP/2 dha7890ro75av.cloudfront.net/d0cd9ee5-b356-4c14-9c7e-f52472f386bd/fonts/cc7d15845d209c2cb93163578183eb50.woff2
IP 54.230.245.121:0
File type Web Open Font Format (Version 2), TrueType, length 20624, version 1.0\012- data
Hash 3130620dcb3f48b3413648394b9eaa04
396155740c82210fd0f537ddd2579a7188c8ed22
4aecda8fe28d40e75e166349dc3bbf1e48717776ff2de3c8898de81e60921cda
GET /d0cd9ee5-b356-4c14-9c7e-f52472f386bd/fonts/cc7d15845d209c2cb93163578183eb50.woff2 HTTP/1.1
Host: dha7890ro75av.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://my.postnord.no
Connection: keep-alive
Referer: https://dha7890ro75av.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: font/woff2
content-length: 20624
date: Fri, 30 Sep 2022 10:18:26 GMT
last-modified: Fri, 30 Sep 2022 10:17:05 GMT
etag: "3130620dcb3f48b3413648394b9eaa04"
cache-control: public, max-age=31536000
expires: Fri, 23 Sep 2022 14:46:30 GMT
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7HIftwjE3aITT1dMUv-t3wzUafjEubUH-74W0H5oG7XHxXcLm15IbQ==
age: 551174
access-control-allow-origin: *
X-Firefox-Spdy: h2
dha7890ro75av.cloudfront.net/d0cd9ee5-b356-4c14-9c7e-f52472f386bd/fonts/ae15e881007a3c546e01472702ba24f6.woff2
54.230.245.121200 OK 20 kB URL HTTP/2 dha7890ro75av.cloudfront.net/d0cd9ee5-b356-4c14-9c7e-f52472f386bd/fonts/ae15e881007a3c546e01472702ba24f6.woff2
IP 54.230.245.121:0
File type Web Open Font Format (Version 2), TrueType, length 19612, version 1.0\012- data
Hash 2cbbb50e4ac9cf39abb491eac767c909
ceb265da8a0dc08df61b3318f02de8c8879d6aee
62bc1a20df37baa92809fc18c825dd9391d027bea423f1c3890a3d6266cfa0b9
GET /d0cd9ee5-b356-4c14-9c7e-f52472f386bd/fonts/ae15e881007a3c546e01472702ba24f6.woff2 HTTP/1.1
Host: dha7890ro75av.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://my.postnord.no
Connection: keep-alive
Referer: https://dha7890ro75av.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: font/woff2
content-length: 19612
date: Fri, 30 Sep 2022 10:18:26 GMT
last-modified: Fri, 30 Sep 2022 10:17:05 GMT
etag: "2cbbb50e4ac9cf39abb491eac767c909"
cache-control: public, max-age=31536000
expires: Fri, 23 Sep 2022 14:46:30 GMT
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: f-LvYMI48kzhhnZkX7bzrEg8MPU0rmg4GPsMilxZycAW4iMvzTLZUA==
age: 551174
access-control-allow-origin: *
X-Firefox-Spdy: h2
my.postnord.no/api/service-parner/3748407/meta
16.170.139.162401 Unauthorized 30 B URL HTTP/2 my.postnord.no/api/service-parner/3748407/meta
IP 16.170.139.162:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 11977a90f6bcc30dbb2c1096dfb33a52
8cd52c68a113f8e4b3d8f141784dab663d3fd5cb
8031180d4d982a471ca97ef5a04e8d013d003c5c19e80d0a5f45401c4463ec27
GET /api/service-parner/3748407/meta HTTP/1.1
Host: my.postnord.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
X-XSRF-TOKEN: eyJpdiI6Inc4YUJQUUxJVHJxRXVUdFN1YzZJb1E9PSIsInZhbHVlIjoiUVNncEF1MXcvVVdNRk5KMlhhV1l1OFFxTkRUS0lZQTN6NW5qbVNDeFh4YXRsb2llSGUzSHNkay9RbnR5NzRyR1RieU1ocWoyRElpMFNmZ3ozU0VTMUZZZHh4YkZ0K2szRGhsbjUzQzJzWC84VDY4SnExU1VYWlIzWWg5TmUrTEgiLCJtYWMiOiJjYmFlZDBiOGU5OTk2NDY4OTg5OTg1ZDkxZjIyNDk2MjJkMDRlOTM2ODBlZDUwMTMzODQ5OTVkOTQzNzM2ODZmIiwidGFnIjoiIn0=
Connection: keep-alive
Referer: https://my.postnord.no/tracking/70730252292540499?ref=9d401afc-9778-4d0a-894f-2b2ef73adb52
Cookie: postnord_session=eyJpdiI6InVtWTcrcjFXU0lYaXpUWE1sZWkvRHc9PSIsInZhbHVlIjoiU3B2TXRHcjVKZlpSSVdSN1F2c3Ntd2xLbFRIaDYwUDJCN1R5eVVSelozMGVTWUUvd3hVa3hlOFhwMGR5YkE3UEYxSTZuWjFnWnp6ZlhJejhuUkxtS3VwWDlmVFcvRmNKd05rUVNQYnorclBFZ1RIT21WZElpSVJBWk03ZzVIWGsiLCJtYWMiOiI4NWM3YjFkZGY1MDQzYzcwNTQ0YjdkMzkyYmEyODUzNjZiMTU4NDA0NzY2NWI3ZDdjNzBlZjZhZTYxZWFiZmYwIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6Inc4YUJQUUxJVHJxRXVUdFN1YzZJb1E9PSIsInZhbHVlIjoiUVNncEF1MXcvVVdNRk5KMlhhV1l1OFFxTkRUS0lZQTN6NW5qbVNDeFh4YXRsb2llSGUzSHNkay9RbnR5NzRyR1RieU1ocWoyRElpMFNmZ3ozU0VTMUZZZHh4YkZ0K2szRGhsbjUzQzJzWC84VDY4SnExU1VYWlIzWWg5TmUrTEgiLCJtYWMiOiJjYmFlZDBiOGU5OTk2NDY4OTg5OTg1ZDkxZjIyNDk2MjJkMDRlOTM2ODBlZDUwMTMzODQ5OTVkOTQzNzM2ODZmIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 401 Unauthorized
server: awselb/2.0
content-type: application/json
content-length: 30
set-cookie: postnord_session=eyJpdiI6IkRQNUV0YXNocjAyYWUrcXNUU2g3SHc9PSIsInZhbHVlIjoibWtDaW5XL1EyUUFKMjNOdUxPTnMwRlBkblAxVERGTW51Zk9PbHcxbGFBK2VlTEJQUURySkJVbEsvTHRUenpxUjZ4dUw0dTIxWFZsZ29HbVRaV25QVm9XaExRdUpsN0hKTTF1V0dWQnc5ZTdKbEU4QTZoSUJoR3VZV2ZvVHdzeTAiLCJtYWMiOiJhYjc2ZDZjN2FkNTliNzllZjhmN2ZkYjUxYTQ1OWU0NzkyY2JlYWRiOWE3M2ZkYThkNmE3MTBhZWEyNTM1NzlhIiwidGFnIjoiIn0%3D; expires=Fri, 07-Apr-2023 10:18:39 GMT; Max-Age=15778440; path=/; secure; httponly; samesite=lax
access-control-allow-origin: *
date: Thu, 06 Oct 2022 19:24:39 GMT
cache-control: no-cache, private
X-Firefox-Spdy: h2
my.postnord.no/favicon.ico
16.170.139.162302 Found 586 B URL HTTP/2 my.postnord.no/favicon.ico
IP 16.170.139.162:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 43958e16ccce8da4aeaa58167ce17c18
9b7e5ea6387835766007c380949d9ccf6829f4ac
ebe47abdf8e0e424fc0669949bca7c45f1e906a37ac27ecb679951667f40a939
GET /favicon.ico HTTP/1.1
Host: my.postnord.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.postnord.no/tracking/70730252292540499?ref=9d401afc-9778-4d0a-894f-2b2ef73adb52
Cookie: postnord_session=eyJpdiI6InVtWTcrcjFXU0lYaXpUWE1sZWkvRHc9PSIsInZhbHVlIjoiU3B2TXRHcjVKZlpSSVdSN1F2c3Ntd2xLbFRIaDYwUDJCN1R5eVVSelozMGVTWUUvd3hVa3hlOFhwMGR5YkE3UEYxSTZuWjFnWnp6ZlhJejhuUkxtS3VwWDlmVFcvRmNKd05rUVNQYnorclBFZ1RIT21WZElpSVJBWk03ZzVIWGsiLCJtYWMiOiI4NWM3YjFkZGY1MDQzYzcwNTQ0YjdkMzkyYmEyODUzNjZiMTU4NDA0NzY2NWI3ZDdjNzBlZjZhZTYxZWFiZmYwIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6Inc4YUJQUUxJVHJxRXVUdFN1YzZJb1E9PSIsInZhbHVlIjoiUVNncEF1MXcvVVdNRk5KMlhhV1l1OFFxTkRUS0lZQTN6NW5qbVNDeFh4YXRsb2llSGUzSHNkay9RbnR5NzRyR1RieU1ocWoyRElpMFNmZ3ozU0VTMUZZZHh4YkZ0K2szRGhsbjUzQzJzWC84VDY4SnExU1VYWlIzWWg5TmUrTEgiLCJtYWMiOiJjYmFlZDBiOGU5OTk2NDY4OTg5OTg1ZDkxZjIyNDk2MjJkMDRlOTM2ODBlZDUwMTMzODQ5OTVkOTQzNzM2ODZmIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
server: awselb/2.0
content-type: text/html
content-length: 586
location: https://dha7890ro75av.cloudfront.net/d0cd9ee5-b356-4c14-9c7e-f52472f386bd/favicon.ico
date: Thu, 06 Oct 2022 19:24:39 GMT
cache-control: max-age=3600, public
X-Firefox-Spdy: h2
dha7890ro75av.cloudfront.net/d0cd9ee5-b356-4c14-9c7e-f52472f386bd/images/favicon.ico
54.230.245.121200 OK 1.2 kB URL HTTP/2 dha7890ro75av.cloudfront.net/d0cd9ee5-b356-4c14-9c7e-f52472f386bd/images/favicon.ico
IP 54.230.245.121:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 0c3f58aa8946665b0d8ba999153f57a4
9473a8724bcd4661b9b0ac457a4e6a19a60384aa
2f6d8b09a6a9b34c8d4462ccef35f8962cb6a4c36024f952f42d0acf92a0c13c
GET /d0cd9ee5-b356-4c14-9c7e-f52472f386bd/images/favicon.ico HTTP/1.1
Host: dha7890ro75av.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.postnord.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/x-icon
content-length: 1150
date: Fri, 30 Sep 2022 10:18:34 GMT
last-modified: Fri, 30 Sep 2022 10:17:05 GMT
etag: "0c3f58aa8946665b0d8ba999153f57a4"
cache-control: public, max-age=31536000
expires: Fri, 23 Sep 2022 14:46:30 GMT
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OGvQkUqOx9tuv663b6hid7MRmlsYsEMQ9aLVp_v8a70uMDQ7m1-e2g==
age: 551166
vary: Origin
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/otSDKStub.js
104.16.148.64200 OK 7.2 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP 104.16.148.64:0
File type ASCII text, with very long lines (21747)
Hash cef0e6a73f52f72e73d57867726399ff
2611e0920611a653446508e5f3de017900cc49f2
97cc12a095136523b16da09953e6f3e405b658978cb37cbc3d3ccb9f94faf0a6
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.postnord.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 19:24:39 GMT
content-type: application/javascript
content-length: 7151
content-encoding: gzip
content-md5: zvDmpz9S9y5z1XhncmOZ/w==
last-modified: Thu, 06 Oct 2022 02:45:08 GMT
etag: 0x8DAA744C848983E
x-ms-request-id: 466e8c8a-d01e-011f-3b35-d945a3000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 6057
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7560c74b8b8ab527-OSL
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.postnord.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 06 Oct 2022 18:41:09 GMT
expires: Thu, 06 Oct 2022 20:41:09 GMT
cache-control: public, max-age=7200
age: 2610
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
script.hotjar.com/modules.cbd9768ba80ba0be5b17.js
54.230.111.73200 OK 66 kB URL HTTP/2 script.hotjar.com/modules.cbd9768ba80ba0be5b17.js
IP 54.230.111.73:0
File type Unicode text, UTF-8 text, with very long lines (48714)
Hash 483a48bedf96c50163b542fb95446039
c724132c8b3b31f2938c84af7ced2b69b66bf5fe
5ea4d712f01c7b6f1c523834934ce998e251048ab6b5a1f82aa1cc00280843cb
GET /modules.cbd9768ba80ba0be5b17.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.postnord.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 66229
date: Tue, 04 Oct 2022 18:47:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "483a48bedf96c50163b542fb95446039"
last-modified: Tue, 04 Oct 2022 18:46:48 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hY1nfon_HBbxWyqxPrBI-C2mwV68ds1mUCzo6QGFc7aVB9OzllfR_Q==
age: 175053
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/f62058dd-7eca-44c7-ba9c-4bc160e43d23/f62058dd-7eca-44c7-ba9c-4bc160e43d23.json
104.16.148.64200 OK 1.9 kB URL HTTP/2 cdn.cookielaw.org/consent/f62058dd-7eca-44c7-ba9c-4bc160e43d23/f62058dd-7eca-44c7-ba9c-4bc160e43d23.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (3385), with no line terminators
Hash 9583c51576393beeba2144ee54a41b20
6ee1c9c24b9d8964b7ee9d4ba2c007ac91325dce
97f878a6ce4de568a4db4eaa2fda06f45dcde9f9415145ae06f40e7317ddf3fb
GET /consent/f62058dd-7eca-44c7-ba9c-4bc160e43d23/f62058dd-7eca-44c7-ba9c-4bc160e43d23.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://my.postnord.no
Connection: keep-alive
Referer: https://my.postnord.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 19:24:39 GMT
content-type: application/x-javascript
content-length: 1878
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: lYPFFXY5O+66IUTuVKQbIA==
last-modified: Thu, 20 Feb 2020 07:01:42 GMT
etag: 0x8D7B5D2BD975FF2
x-ms-request-id: a0844c3f-f01e-00ad-3b15-b6f88c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 5584
expires: Thu, 06 Oct 2022 23:24:39 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7560c74c1dabb517-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/5.12.0/otBannerSdk.js
104.16.148.64200 OK 94 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/5.12.0/otBannerSdk.js
IP 104.16.148.64:0
File type Unicode text, UTF-8 text, with very long lines (65453)
Hash eca938cea0a69412935b264ed69d70d5
bab9a363a0ab604dd744be5c248aec872d305f1f
c564513b67d70c7ee12b96822bba5dda07c57c1a750dce726b18fe4b391e7b05
GET /scripttemplates/5.12.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.postnord.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 19:24:39 GMT
content-type: application/javascript
content-length: 94107
content-encoding: gzip
content-md5: 7Kk4zqCmlBKTWyZO1p1w1Q==
last-modified: Fri, 21 Feb 2020 20:12:32 GMT
etag: 0x8D7B70A62368476
x-ms-request-id: 57eabcf7-601e-006f-1c6c-c47032000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 30489341
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7560c74c6cc4b527-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/f62058dd-7eca-44c7-ba9c-4bc160e43d23/79bb253c-4427-4e4e-b0df-55a3082ff686/sv.json
104.16.148.64200 OK 5.4 kB URL HTTP/2 cdn.cookielaw.org/consent/f62058dd-7eca-44c7-ba9c-4bc160e43d23/79bb253c-4427-4e4e-b0df-55a3082ff686/sv.json
IP 104.16.148.64:0
File type HTML document, ASCII text, with very long lines (1003)
Hash f0fd7314eec15c1f7060eb3d457ea958
b74be3d0707ce18ef40686e01c8db1d480446b6b
6e9b794d4c6a4abed2028756a0bc774975498d5faf111215352fcf5e662f7009
GET /consent/f62058dd-7eca-44c7-ba9c-4bc160e43d23/79bb253c-4427-4e4e-b0df-55a3082ff686/sv.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://my.postnord.no/
Origin: https://my.postnord.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 19:24:39 GMT
content-type: application/x-javascript
content-length: 5418
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: 8P1zFO7BXB9wYOs9RX6pWA==
last-modified: Thu, 20 Feb 2020 07:01:52 GMT
etag: 0x8D7B5D2C3B5C726
x-ms-request-id: 48ea1a76-e01e-0135-742b-7630e6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 5584
expires: Thu, 06 Oct 2022 23:24:39 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7560c74cde8eb517-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/5.12.0/assets/otCenterRounded.json
104.16.148.64200 OK 2.7 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/5.12.0/assets/otCenterRounded.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (6178)
Hash f189fecc054cf03939aa91b3da1c2b33
8b7afe2e5397fdbaea6ac9b29bfa49f91a35cfa5
892cac771da806b05f9de6a18c66567eb15511724c535197b190bff51109e01a
GET /scripttemplates/5.12.0/assets/otCenterRounded.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://my.postnord.no/
Origin: https://my.postnord.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 19:24:39 GMT
content-type: application/json
content-length: 2720
content-encoding: gzip
content-md5: 8Yn+zAVM8Dk5qpGz2hwrMw==
last-modified: Fri, 21 Feb 2020 20:12:30 GMT
etag: 0x8D7B70A6119E1F9
x-ms-request-id: 7424ff8c-c01e-000f-7b0a-503510000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 5584
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7560c74cfeacb517-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/5.12.0/assets/otPcCenter.json
104.16.148.64200 OK 13 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/5.12.0/assets/otPcCenter.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (29486)
Hash e4d6e6e4308335eb285b94833e12742a
bf50980444e66849a80b449e7ebfee2966c6b28b
8236fa97b385a7dfde4ad31c9a54835374d6ffac761aea767093173267a027a8
GET /scripttemplates/5.12.0/assets/otPcCenter.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://my.postnord.no/
Origin: https://my.postnord.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 19:24:39 GMT
content-type: application/json
content-length: 13252
content-encoding: gzip
content-md5: 5Nbm5DCDNesoW5SDPhJ0Kg==
last-modified: Fri, 21 Feb 2020 20:12:30 GMT
etag: 0x8D7B70A61028500
x-ms-request-id: 01fccc27-d01e-015b-1d0a-5099cf000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 5584
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7560c74cfeaeb517-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eac86f868b3967f1946c7f5fc712b25f
e2ae8eb09715a0af0791c085eb35bf66e0548e30
bceb14e7a478c0e34a0f1d8286eb954566c62051e996bc36189de922a76a6e06
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:24:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-76623620-2&cid=1542920608.1665084280&jid=638458299&gjid=479543147&_gid=547484900.1665084280&_u=YADAAEAAAAAAACAAI~&z=1953054878
173.194.73.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-76623620-2&cid=1542920608.1665084280&jid=638458299&gjid=479543147&_gid=547484900.1665084280&_u=YADAAEAAAAAAACAAI~&z=1953054878
IP 173.194.73.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-76623620-2&cid=1542920608.1665084280&jid=638458299&gjid=479543147&_gid=547484900.1665084280&_u=YADAAEAAAAAAACAAI~&z=1953054878 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://my.postnord.no
Connection: keep-alive
Referer: https://my.postnord.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://my.postnord.no
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 06 Oct 2022 19:24:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eac86f868b3967f1946c7f5fc712b25f
e2ae8eb09715a0af0791c085eb35bf66e0548e30
bceb14e7a478c0e34a0f1d8286eb954566c62051e996bc36189de922a76a6e06
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:24:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1d4c3917173bd92c4b3208cdf2c7c345
726a9aa16eef5844afde825f9faf1b505d31e69b
572eebfaf735eb8aa1b3563d0317d52f5d22e9e83e5f5b6723f65da83fb15f22
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:24:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 40a4de06678d96242b71d5318f2fd4ef
546a7d1d92df81916f14155943427b5453ae3924
aed9af25ae57c181702a137d48cb00f5b30297180161451de3b628359dc9ec6f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:24:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-76623620-2&cid=1542920608.1665084280&jid=638458299&_u=YADAAEAAAAAAACAAI~&z=238081105
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-76623620-2&cid=1542920608.1665084280&jid=638458299&_u=YADAAEAAAAAAACAAI~&z=238081105
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-76623620-2&cid=1542920608.1665084280&jid=638458299&_u=YADAAEAAAAAAACAAI~&z=238081105 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.postnord.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 06 Oct 2022 19:24:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-76623620-2&cid=1542920608.1665084280&jid=638458299&_u=YADAAEAAAAAAACAAI~&z=238081105
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-76623620-2&cid=1542920608.1665084280&jid=638458299&_u=YADAAEAAAAAAACAAI~&z=238081105
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-76623620-2&cid=1542920608.1665084280&jid=638458299&_u=YADAAEAAAAAAACAAI~&z=238081105 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.postnord.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 06 Oct 2022 19:24:40 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1cecd042e106c70af7e8f0d9863ca3d9
fa94604e9e99c752d18708abcec8584a5eee66ea
3525f542ce5a72795646c2bba144333920f67f3e9938748f9d3bd3aff9ac496e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:24:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 87465c15992fe10c24c62a185f8c171d
fa938b624d06d1e2927c8eda6a44b2a32d930f59
239ef7fe5df8c396d96a928c20d66c842a5ec3e9ff71a3cd7c0068906fc3e537
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:24:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.google-analytics.com/g/collect?v=2&tid=G-20V02L7V00>m=2oea50&_p=937199774&cid=1542920608.1665084280&ul=en-us&sr=1280x1024&_s=1&sid=1665084279&sct=1&seg=0&dl=https%3A%2F%2Fmy.postnord.no%2Ftracking%2F70730252292540499%3Fref%3D9d401afc-9778-4d0a-894f-2b2ef73adb52&dt=Pakkeinformasjon%2070730252292540499%20-%20PostNord&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-20V02L7V00>m=2oea50&_p=937199774&cid=1542920608.1665084280&ul=en-us&sr=1280x1024&_s=1&sid=1665084279&sct=1&seg=0&dl=https%3A%2F%2Fmy.postnord.no%2Ftracking%2F70730252292540499%3Fref%3D9d401afc-9778-4d0a-894f-2b2ef73adb52&dt=Pakkeinformasjon%2070730252292540499%20-%20PostNord&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-20V02L7V00>m=2oea50&_p=937199774&cid=1542920608.1665084280&ul=en-us&sr=1280x1024&_s=1&sid=1665084279&sct=1&seg=0&dl=https%3A%2F%2Fmy.postnord.no%2Ftracking%2F70730252292540499%3Fref%3D9d401afc-9778-4d0a-894f-2b2ef73adb52&dt=Pakkeinformasjon%2070730252292540499%20-%20PostNord&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://my.postnord.no
Connection: keep-alive
Referer: https://my.postnord.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://my.postnord.no
date: Thu, 06 Oct 2022 19:24:40 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2202
Expires: Thu, 06 Oct 2022 20:01:22 GMT
Date: Thu, 06 Oct 2022 19:24:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2202
Expires: Thu, 06 Oct 2022 20:01:22 GMT
Date: Thu, 06 Oct 2022 19:24:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2202
Expires: Thu, 06 Oct 2022 20:01:22 GMT
Date: Thu, 06 Oct 2022 19:24:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2202
Expires: Thu, 06 Oct 2022 20:01:22 GMT
Date: Thu, 06 Oct 2022 19:24:40 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e238ccaa3b9fa88476a8514855e8232f
447cbf348ef10d0136a1811e843c46937defbba1
43dce3c1eb388dfaddca4176acb6eb32f76fc4c03fca18e7a315c9ddb43d2b02
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7270
x-amzn-requestid: f2f15f43-6054-40f5-943a-530671e772dd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjOZjF3aIAMFW9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df770-5e2253791a927c8c40a0ff0d;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:30:24 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: xRuMce_9OkP3R2DqHjZI34GwkDezdfGKsgntCMTZG2c6SJUcyv0Ckg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 583992e175976bd59a21b4416890271e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:56:40 GMT
etag: "447cbf348ef10d0136a1811e843c46937defbba1"
content-type: image/jpeg
age: 77280
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3178d2f-9a52-4d0e-a26b-5a90ef8578f2.jpeg
34.120.237.76200 OK 3.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3178d2f-9a52-4d0e-a26b-5a90ef8578f2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 488ec5b4267ccb1cdc4e6e08556f7f3b
42dd7ec0c606dbd3ccc0074f61d3b4b12f2e3c88
d9b05fe92962a58b9a8e8dbd4757969aa361be12018107ae649ffcdb8a0f8d84
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3178d2f-9a52-4d0e-a26b-5a90ef8578f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3430
x-amzn-requestid: 9b3b52d6-08b4-4893-962b-3dfe67e2f11d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjTijF0vIAMFq3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dffa9-0a128734418b6c4d6375e2ac;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 22:05:29 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: iRuujAZLL_0mf5_-FhMXpuWwHy-jidhBkFuBIZLo0tLlJArZgFEcbA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 45d6a557ecb29942f314e3dd736d817a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 16:10:55 GMT
age: 11625
etag: "42dd7ec0c606dbd3ccc0074f61d3b4b12f2e3c88"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccecc8c9-b6da-4470-b2be-fa8d46df1cc2.webp
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccecc8c9-b6da-4470-b2be-fa8d46df1cc2.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 70ea26af79226e9ff06d6198e2c019dc
ae2c476667f63c7f642f0d9f4d0bc0d846b0ef57
f9393e7b8cbaedc8e1ef87fd89c617cf102f58813d84d866ff68e3124f94d44c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccecc8c9-b6da-4470-b2be-fa8d46df1cc2.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9044
x-amzn-requestid: 127bce04-9f75-4bb1-bbe7-33bf1694d96c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZdZPmHG5oAMFehw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633ba263-3896085b3b73ff5403237206;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 03:02:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: E4yZTPRLFdK717YfwjOIFOJDi0wYpyA736dQELeM5iPLvGDXBosEWg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 04:27:43 GMT
age: 53817
etag: "ae2c476667f63c7f642f0d9f4d0bc0d846b0ef57"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2277f8f2d93b4bc3b05d348343177892
531d9e4ec9078cd2d7376a19fcb287084af36c82
62907648de4a2ed390232a71ab7dce49f1e9c3363cde6a2f30ecae10ab67f93a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11080
x-amzn-requestid: 8fa4d19d-87a5-46c5-96c5-4aec793daad9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO7xE5eoAMFQLw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df84b-5c422c7a168c014f57559037;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:34:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: TlEKsCdhNhlKmA2Yhz8FarEUG18gQZMKGRD6SnzCnUMiKyGS9-UeOQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 73b60e9a9fd08eae9e034cedba707280.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:38:04 GMT
etag: "531d9e4ec9078cd2d7376a19fcb287084af36c82"
content-type: image/jpeg
age: 78396
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9e520f87cae411cfc2ed1c8a14184385
69ad212cb7ae309d4f02019552887135bfae67da
723b10bfbcde201b5811e3bd0560f02f90775e4d18b28d19e6c814899f2da71a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7511
x-amzn-requestid: 995b51dd-5484-4b4c-ad40-550f7fd85930
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO6uG70IAMFjBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df844-70f17f6f24dce0003d03902a;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 3lKuGlFCBN2wEsp9-Oa3ysQg62py090H30jy6_bR02Ufs0KGPrVC4w==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 d8d9c12d1a621129f4bc739038e7c72e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:36:41 GMT
age: 78479
etag: "69ad212cb7ae309d4f02019552887135bfae67da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feda182b7-6bc8-4aea-82c3-d9fa08748b61.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feda182b7-6bc8-4aea-82c3-d9fa08748b61.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e5a5ee14d41747f46e71f04782e1a3d3
b0205176a58913f57056b91674097bfb58046e97
b3bae0b56b50374cb85fc7fe4c9b551383d1969bf31e7adccb867e3467c59269
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feda182b7-6bc8-4aea-82c3-d9fa08748b61.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7385
x-amzn-requestid: f3b30c95-2f19-4d70-b358-ff7e1e1c56f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO6uHJrIAMF3WA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df844-5211c3087ea4f0023b32b284;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: uka14Zb4NhZEmseL9817VqWrplnl8Yrmnp3oTVs6OeMjdCLI89QoVg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 b47618c03bd47cf085f27b1e215f76cc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:36:41 GMT
age: 78479
etag: "b0205176a58913f57056b91674097bfb58046e97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
privacyportal-de.onetrust.com/request/v1/consentreceipts
104.18.41.98200 OK 0 B URL HTTP/2 privacyportal-de.onetrust.com/request/v1/consentreceipts
IP 104.18.41.98:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert openphish Generic/Spear Phishing
OPTIONS /request/v1/consentreceipts HTTP/1.1
Host: privacyportal-de.onetrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://my.postnord.no/
Origin: https://my.postnord.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 19:24:46 GMT
content-length: 0
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: *
access-control-allow-methods: GET,POST,PUT,PATCH,DELETE,OPTIONS,HEAD
access-control-allow-headers: content-type
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7560c778e9b60b3d-OSL
X-Firefox-Spdy: h2
dha7890ro75av.cloudfront.net/d0cd9ee5-b356-4c14-9c7e-f52472f386bd/css/web.css?id=12666f19ce31f494f05a8fc09d532d90
54.230.245.121200 OK 0 B URL HTTP/2 dha7890ro75av.cloudfront.net/d0cd9ee5-b356-4c14-9c7e-f52472f386bd/css/web.css?id=12666f19ce31f494f05a8fc09d532d90
IP 54.230.245.121:0
GET /d0cd9ee5-b356-4c14-9c7e-f52472f386bd/css/web.css?id=12666f19ce31f494f05a8fc09d532d90 HTTP/1.1
Host: dha7890ro75av.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.postnord.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
date: Fri, 30 Sep 2022 10:18:33 GMT
last-modified: Fri, 30 Sep 2022 10:17:05 GMT
etag: W/"d16df4a19792d6fc8328ba6e6274968d"
cache-control: public, max-age=31536000
expires: Sun, 30 Oct 2022 10:17:03 GMT
server: AmazonS3
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WqL_wb1X8N7Ybn3E_NB0ObVWjtQZjjqbEWgHKRiAoL0zWfZs37n0ag==
age: 551167
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-2228782.js?sv=7
54.230.111.39200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-2228782.js?sv=7
IP 54.230.111.39:0
GET /c/hotjar-2228782.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.postnord.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Thu, 06 Oct 2022 19:24:19 GMT
cache-control: max-age=60
etag: W/334630ccf7b88e487678a4d15676e1a0
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7p2X80GNm-Oan5xgbUBT0PuvELIaTPUttiN6dzRy0tqVXo8a3LqLPA==
age: 20
X-Firefox-Spdy: h2
privacyportal-de.onetrust.com/request/v1/consentreceipts
104.18.41.98200 OK 0 B URL HTTP/2 privacyportal-de.onetrust.com/request/v1/consentreceipts
IP 104.18.41.98:0
Analyzer Verdict Alert openphish Generic/Spear Phishing
POST /request/v1/consentreceipts HTTP/1.1
Host: privacyportal-de.onetrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 2545
Origin: https://my.postnord.no
Connection: keep-alive
Referer: https://my.postnord.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 19:24:46 GMT
content-type: application/json
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: *
x-onetrust-receiptid: 05031314-ccaf-4d50-ba5e-f573d4a0cc96
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7560c7793a200b3d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
dha7890ro75av.cloudfront.net/d0cd9ee5-b356-4c14-9c7e-f52472f386bd/js/app.js?id=fe34f84119815039bb31635d59aa0cfe
54.230.245.121200 OK 0 B URL HTTP/2 dha7890ro75av.cloudfront.net/d0cd9ee5-b356-4c14-9c7e-f52472f386bd/js/app.js?id=fe34f84119815039bb31635d59aa0cfe
IP 54.230.245.121:0
GET /d0cd9ee5-b356-4c14-9c7e-f52472f386bd/js/app.js?id=fe34f84119815039bb31635d59aa0cfe HTTP/1.1
Host: dha7890ro75av.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.postnord.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 30 Sep 2022 10:18:33 GMT
last-modified: Fri, 30 Sep 2022 10:17:05 GMT
etag: W/"fe34f84119815039bb31635d59aa0cfe"
cache-control: public, max-age=31536000
expires: Sun, 30 Oct 2022 10:17:03 GMT
server: AmazonS3
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zwNo_jFjINWo9o3Hio-9vhFNZZXf5Lq0jHJlxeohOQuzXf6fc51U_Q==
age: 551167
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2