scided-mington.com/415b8c6e-6710-4435-98c9-ce7d300246bc
18.195.174.160200 517 B URL HTTP/1.1 scided-mington.com/415b8c6e-6710-4435-98c9-ce7d300246bc
IP 18.195.174.160:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (517), with no line terminators
Hash 22b4041ace0355350fc5eb127e1d8fe4
8f92efea3bfe1182858cf2a8efa43fad6d3a3851
8af1ab42a3fda6a2a2d8edebf32b082d01a7979c2a6f75aa08b2b3cf4754e8eb
Analyzer Verdict Alert fortinet Phishing
GET /415b8c6e-6710-4435-98c9-ce7d300246bc HTTP/1.1
Host: scided-mington.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Server: nginx
Date: Fri, 23 Sep 2022 05:52:08 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 517
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Pragma: no-cache
Set-Cookie: 415b8c6e-6710-4435-98c9-ce7d300246bc-v4=lGUPhPIau4alz0UJhSBU49ntduyNaSVLU6H8hHE72Hg; Max-Age=86400; Expires=Sat, 24-Sep-2022 05:52:08 GMT; Domain=scided-mington.com; Path=/; HttpOnly
cc-v4=uvkxQPubnG1VQGYWcVsKU28F%2BPvJkM1TZbU3YyQphPJb57QSNA%2FA3R6SzWnd7EDAxEX6SFIy3H8lL6tQqyal9w86kCBOc1jcXbL1WnqKNe7nYwoGaWE2fmQog3zoc1RKEQiuViX5AAvnrLdzbJNXtQ%3D%3D; Max-Age=31536000; Expires=Sat, 23-Sep-2023 05:52:08 GMT; Domain=scided-mington.com; Path=/; HttpOnly
firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-stale=0
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 23 Sep 2022 05:05:44 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: okKy24RSVFuthHHhQkthT0s__Ub20ZqCEJiPaOe6ktojWg20RfZ6fA==
Age: 2784
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a26d0784548ecab22f417f3d689daf23
8893b79366bbadeb5c8d587b8f023e310694df1c
35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8005
Expires: Fri, 23 Sep 2022 08:05:33 GMT
Date: Fri, 23 Sep 2022 05:52:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash afb65a07bf7214addf83d17a53acba32
a8e973204431320aa7b362a4e73944520c4b51b9
46e1a9e6c98245afb7fa84bc6d9ba6844105024e2d3f56e28748e6c321475d02
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "46E1A9E6C98245AFB7FA84BC6D9BA6844105024E2D3F56E28748E6C321475D02"
Last-Modified: Wed, 21 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10257
Expires: Fri, 23 Sep 2022 08:43:05 GMT
Date: Fri, 23 Sep 2022 05:52:08 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: fX3639OOtFk1kj2qUL2mc6h5rq0AbXqd2gQ2N7gfyr/EcSKD8zM4dsNeqjHduHm1w+nFAbV9ceM=
x-amz-request-id: 275ZE5D8368QHMHG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 23 Sep 2022 05:44:13 GMT
age: 475
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
scided-mington.com/redirect?target=BASE64aHR0cHM6Ly9sbHRsLWdsby5taW5pZ2xvYmFsY2l0aXplbnMuY29tL3QvY2xrP2lkPTA4blZ0Z0E0dHJCWUdUMk8zMXVnJnMxPTQxNWI4YzZlLTY3MTAtNDQzNS05OGM5LWNlN2QzMDAyNDZiYyZzMj13a2JhdnVjdDZyOXZ0NThqMjVzdTM0ZHU&ts=1663912328564&hash=-d2K3iXtcpNdq0O09Gy_xzg3WbwgjClQVeuTipOtD2M&rm=D
18.195.174.160200 349 B URL HTTP/1.1 scided-mington.com/redirect?target=BASE64aHR0cHM6Ly9sbHRsLWdsby5taW5pZ2xvYmFsY2l0aXplbnMuY29tL3QvY2xrP2lkPTA4blZ0Z0E0dHJCWUdUMk8zMXVnJnMxPTQxNWI4YzZlLTY3MTAtNDQzNS05OGM5LWNlN2QzMDAyNDZiYyZzMj13a2JhdnVjdDZyOXZ0NThqMjVzdTM0ZHU&ts=1663912328564&hash=-d2K3iXtcpNdq0O09Gy_xzg3WbwgjClQVeuTipOtD2M&rm=D
IP 18.195.174.160:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (349), with no line terminators
Hash afce4bdda5e6fb93be4e99c4f977dd07
c2e0550de1b2b47b43a37268be861fd84e59d207
c12ed0f1b6637438c23a476aa3069beb7c75794501f138e14865622bfaa654a0
GET /redirect?target=BASE64aHR0cHM6Ly9sbHRsLWdsby5taW5pZ2xvYmFsY2l0aXplbnMuY29tL3QvY2xrP2lkPTA4blZ0Z0E0dHJCWUdUMk8zMXVnJnMxPTQxNWI4YzZlLTY3MTAtNDQzNS05OGM5LWNlN2QzMDAyNDZiYyZzMj13a2JhdnVjdDZyOXZ0NThqMjVzdTM0ZHU&ts=1663912328564&hash=-d2K3iXtcpNdq0O09Gy_xzg3WbwgjClQVeuTipOtD2M&rm=D HTTP/1.1
Host: scided-mington.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: 415b8c6e-6710-4435-98c9-ce7d300246bc-v4=lGUPhPIau4alz0UJhSBU49ntduyNaSVLU6H8hHE72Hg; cc-v4=uvkxQPubnG1VQGYWcVsKU28F%2BPvJkM1TZbU3YyQphPJb57QSNA%2FA3R6SzWnd7EDAxEX6SFIy3H8lL6tQqyal9w86kCBOc1jcXbL1WnqKNe7nYwoGaWE2fmQog3zoc1RKEQiuViX5AAvnrLdzbJNXtQ%3D%3D
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Server: nginx
Date: Fri, 23 Sep 2022 05:52:08 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 349
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Pragma: no-cache
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 05:52:08 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Fri, 23 Sep 2022 05:03:22 GMT
Expires: Fri, 23 Sep 2022 05:16:48 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Xzljt-kVDNG5VaWSGk3TZrPHOnshVH3-dUwi8uXZ9Gz7yKjWOoBYCA==
Age: 2927
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 9ec59dd57306fe6446314023bf93080b
95e61d95d6378224612d10ee26a2b741283e2f4b
068d3cd58391ba4e187ec2f784d29dee8d9dc0af3f96749f548f39b415830fce
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Fri, 23 Sep 2022 05:52:09 GMT
Server: ECS (dcb/7EA7)
X-Cache: Miss from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: AkedaJoyHdyMrn1PrIYqYO5KjQKxES_0gd1M7j_ax3nzTJ2W0T7T8g==
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 86624f45fb3b7126dbe002f69c94dd86
30bcf274db5037122f989fb25dbf1e72c9ec417b
2cc9600578cf057dc499835773fb495caa60ac154c4945f0fc1f2b31d43f5502
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 884
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:52:09 GMT
Last-Modified: Fri, 23 Sep 2022 05:37:25 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
lltl-glo.miniglobalcitizens.com/t/clk?id=08nVtgA4trBYGT2O31ug&s1=415b8c6e-6710-4435-98c9-ce7d300246bc&s2=wkbavuct6r9vt58j25su34du
52.58.131.39302 Found 0 B URL HTTP/2 lltl-glo.miniglobalcitizens.com/t/clk?id=08nVtgA4trBYGT2O31ug&s1=415b8c6e-6710-4435-98c9-ce7d300246bc&s2=wkbavuct6r9vt58j25su34du
IP 52.58.131.39:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t/clk?id=08nVtgA4trBYGT2O31ug&s1=415b8c6e-6710-4435-98c9-ce7d300246bc&s2=wkbavuct6r9vt58j25su34du HTTP/1.1
Host: lltl-glo.miniglobalcitizens.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 23 Sep 2022 05:52:09 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://norton.ow5a.net/c/312695/1078124/4405?subId1=2dd362e1-8e2d-42a1-9302-dbf3c7bd6062&SharedId=15453_7251
server: nginx/1.12.2
cache-control: no-transform
x-frame-options: SAMEORIGIN
vary: Cookie, Origin
set-cookie: uip="[\"WSWYlHLVB\"\054 {\"GN8Jr\": \"MmoRBQA\"}]:1obbbd:hjIKqJTbBUIzn2zXXf7YRB5760A"; expires=Sun, 23 Oct 2022 05:52:09 GMT; Max-Age=2592000; Path=/
ydt_dae725d917dd452eabbbfbf3047471fd="[\"2dd362e1-8e2d-42a1-9302-dbf3c7bd6062\"]:1obbbd:dAQE5UdywyurJ9QKLUJxpohTeDE"; expires=Sun, 23 Oct 2022 07:52:09 GMT; Max-Age=2599200; Path=/; SameSite=None; Secure
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash ab03c44bd00820545989f753bf8f38dd
38cdaae1a3723bdb490d6eb113dde9a2ababcdd6
7d9eba78b96137f80ac1520c83a64684c6b14d50007e73eded5ca5f7a96443de
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 23 Sep 2022 05:52:09 GMT
Last-Modified: Fri, 23 Sep 2022 04:03:59 GMT
Server: ECS (nyb/1DD2)
X-Cache: Miss from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: uGItMIdW8z0X83pfSsciYgmdzHlc6lcryl1UU5qHr3VJoRlA4MEJmg==
Age: 6490
norton.ow5a.net/c/312695/1078124/4405?subId1=2dd362e1-8e2d-42a1-9302-dbf3c7bd6062&SharedId=15453_7251
52.30.64.73302 Found 232 B URL HTTP/2 norton.ow5a.net/c/312695/1078124/4405?subId1=2dd362e1-8e2d-42a1-9302-dbf3c7bd6062&SharedId=15453_7251
IP 52.30.64.73:0
File type HTML document, ASCII text
Hash d46eaa509ffb4e073f35a16574b8eb03
a585a58462399cf5ad1def3847b5342ed669f50a
4eb9177ce54b125d0ffbace6c5e0c2a43ba67474168f71bf61252cb976ad797c
GET /c/312695/1078124/4405?subId1=2dd362e1-8e2d-42a1-9302-dbf3c7bd6062&SharedId=15453_7251 HTTP/1.1
Host: norton.ow5a.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 23 Sep 2022 05:52:09 GMT
content-type: text/html; charset=utf-8
content-length: 232
location: https://www.ojrq.net/p/?return=https%3A%2F%2Fnorton.ow5a.net%2Fc%2F312695%2F1078124%2F4405%3FsubId1%3D2dd362e1-8e2d-42a1-9302-dbf3c7bd6062%26SharedId%3D15453_7251%26level%3D1&cid=4405&tpsync=yes
set-cookie: AWSALB=+nsjWwP+4gsuKp7IjE4DnHig4SYtbIXQcREEpU1KWVGEUBj/pJiEe/equgmjmUMWdPFPChethq8VzZA9+CJEVrLZYVM2U/d64IxI4RcmLH0479VrMsgX7feoPn4X; Expires=Fri, 30 Sep 2022 05:52:09 GMT; Path=/
AWSALBCORS=+nsjWwP+4gsuKp7IjE4DnHig4SYtbIXQcREEpU1KWVGEUBj/pJiEe/equgmjmUMWdPFPChethq8VzZA9+CJEVrLZYVM2U/d64IxI4RcmLH0479VrMsgX7feoPn4X; Expires=Fri, 30 Sep 2022 05:52:09 GMT; Path=/; SameSite=None; Secure
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
expires: Fri, 23 Sep 2022 05:52:09 GMT
p3p: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT"
X-Firefox-Spdy: h2
push.services.mozilla.com/
44.240.207.158101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.240.207.158:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: AQRiTtfvhsk+gvT37WqviQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: FEuKCUt9n2zYT9zGuB/jEowz63I=
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash e3c4e3e7080443d4c68548cad99c6ac3
68a6b3ac2f7b81f973911a714857dfb56942cac9
7e62371e4d52f85e188ed1eebce9f3fb68e7f5030f809250c9d7286e8c6e5770
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 05:52:10 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 17:55:45 GMT
Expires: Tue, 27 Sep 2022 17:55:44 GMT
Etag: "68a6b3ac2f7b81f973911a714857dfb56942cac9"
Cache-Control: max-age=388413,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74f1033e39f2b4fa-OSL
www.ojrq.net/p/?return=https%3A%2F%2Fnorton.ow5a.net%2Fc%2F312695%2F1078124%2F4405%3FsubId1%3D2dd362e1-8e2d-42a1-9302-dbf3c7bd6062%26SharedId%3D15453_7251%26level%3D1&cid=4405&tpsync=yes
34.95.127.121302 Found 0 B URL HTTP/2 www.ojrq.net/p/?return=https%3A%2F%2Fnorton.ow5a.net%2Fc%2F312695%2F1078124%2F4405%3FsubId1%3D2dd362e1-8e2d-42a1-9302-dbf3c7bd6062%26SharedId%3D15453_7251%26level%3D1&cid=4405&tpsync=yes
IP 34.95.127.121:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/?return=https%3A%2F%2Fnorton.ow5a.net%2Fc%2F312695%2F1078124%2F4405%3FsubId1%3D2dd362e1-8e2d-42a1-9302-dbf3c7bd6062%26SharedId%3D15453_7251%26level%3D1&cid=4405&tpsync=yes HTTP/1.1
Host: www.ojrq.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
expires: Fri, 23 Sep 2022 05:52:10 GMT
p3p: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT"
set-cookie: brwsr=dd4942ef-3b03-11ed-815c-e90fbb888e4e; Domain=.ojrq.net; Path=/; Secure; Max-Age=62208000; Expires=Thu, 12 Sep 2024 05:52:10 GMT; HttpOnly; SameSite=None
location: https://norton.ow5a.net/c/312695/1078124/4405?subId1=2dd362e1-8e2d-42a1-9302-dbf3c7bd6062&SharedId=15453_7251&level=1&brwsr=dd4942ef-3b03-11ed-815c-e90fbb888e4e&brwsrsig=U912CIwAOQeLyL-WTfXhpS6FWqRyh4
content-length: 0
date: Fri, 23 Sep 2022 05:52:10 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
norton.ow5a.net/c/312695/1078124/4405?subId1=2dd362e1-8e2d-42a1-9302-dbf3c7bd6062&SharedId=15453_7251&level=1&brwsr=dd4942ef-3b03-11ed-815c-e90fbb888e4e&brwsrsig=U912CIwAOQeLyL-WTfXhpS6FWqRyh4
52.30.64.73301 Moved Permanently 0 B URL HTTP/2 norton.ow5a.net/c/312695/1078124/4405?subId1=2dd362e1-8e2d-42a1-9302-dbf3c7bd6062&SharedId=15453_7251&level=1&brwsr=dd4942ef-3b03-11ed-815c-e90fbb888e4e&brwsrsig=U912CIwAOQeLyL-WTfXhpS6FWqRyh4
IP 52.30.64.73:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/312695/1078124/4405?subId1=2dd362e1-8e2d-42a1-9302-dbf3c7bd6062&SharedId=15453_7251&level=1&brwsr=dd4942ef-3b03-11ed-815c-e90fbb888e4e&brwsrsig=U912CIwAOQeLyL-WTfXhpS6FWqRyh4 HTTP/1.1
Host: norton.ow5a.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: AWSALB=+nsjWwP+4gsuKp7IjE4DnHig4SYtbIXQcREEpU1KWVGEUBj/pJiEe/equgmjmUMWdPFPChethq8VzZA9+CJEVrLZYVM2U/d64IxI4RcmLH0479VrMsgX7feoPn4X; AWSALBCORS=+nsjWwP+4gsuKp7IjE4DnHig4SYtbIXQcREEpU1KWVGEUBj/pJiEe/equgmjmUMWdPFPChethq8VzZA9+CJEVrLZYVM2U/d64IxI4RcmLH0479VrMsgX7feoPn4X
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Fri, 23 Sep 2022 05:52:10 GMT
content-length: 0
location: https://buy.norton.com/aff_nortonPS3up?irgwc=1&clickid=VdRwTKzIzxyNU1AXoSTPUU5XUkDTVnUJD1MORM0&adid=1078124&IRID=312695&source=ir
set-cookie: AWSALB=fGrjamTyheec8/IMXTRBNrlxdjSfIYha5GGiC321M8RGdw4HQuCVsciAQCjOQV/sZGB97Sqs3xwhvf08HjAsAVbdMlefW+5MZyQLEezrbdyg9AXDbwcW6GDtLvKX; Expires=Fri, 30 Sep 2022 05:52:10 GMT; Path=/
AWSALBCORS=fGrjamTyheec8/IMXTRBNrlxdjSfIYha5GGiC321M8RGdw4HQuCVsciAQCjOQV/sZGB97Sqs3xwhvf08HjAsAVbdMlefW+5MZyQLEezrbdyg9AXDbwcW6GDtLvKX; Expires=Fri, 30 Sep 2022 05:52:10 GMT; Path=/; SameSite=None; Secure
brwsr=dd4942ef-3b03-11ed-815c-e90fbb888e4e; Domain=.ow5a.net; Path=/; Secure; Max-Age=62208000; Expires=Thu, 12 Sep 2024 05:52:10 GMT; HttpOnly; SameSite=None
irld=LQJd226yo-wpTVD3zxLXE-xVTzNBXDNQuPTtOww0wF4WfTSMU; Path=/; Secure; Max-Age=15552000; Expires=Wed, 22 Mar 2023 05:52:10 GMT; HttpOnly; SameSite=None
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
expires: Fri, 23 Sep 2022 05:52:10 GMT
p3p: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash e3c4e3e7080443d4c68548cad99c6ac3
68a6b3ac2f7b81f973911a714857dfb56942cac9
7e62371e4d52f85e188ed1eebce9f3fb68e7f5030f809250c9d7286e8c6e5770
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 05:52:10 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 17:55:45 GMT
Expires: Tue, 27 Sep 2022 17:55:44 GMT
Etag: "68a6b3ac2f7b81f973911a714857dfb56942cac9"
Cache-Control: max-age=388413,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74f1033ffb92b4fa-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9496a33ef8851b63c58e93357e7f325f
15e1efc56245d5114e9c4e69045efdf3042179fd
c6f60cc14ed4c7d0622b5fd821b7cee969b75b2861d4d18015b5166c3a1a46c3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1646
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:52:10 GMT
Last-Modified: Fri, 23 Sep 2022 05:24:44 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
buy.norton.com/aff_nortonPS3up?irgwc=1&clickid=VdRwTKzIzxyNU1AXoSTPUU5XUkDTVnUJD1MORM0&adid=1078124&IRID=312695&source=ir
23.32.109.171302 Found 0 B URL HTTP/2 buy.norton.com/aff_nortonPS3up?irgwc=1&clickid=VdRwTKzIzxyNU1AXoSTPUU5XUkDTVnUJD1MORM0&adid=1078124&IRID=312695&source=ir
IP 23.32.109.171:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /aff_nortonPS3up?irgwc=1&clickid=VdRwTKzIzxyNU1AXoSTPUU5XUkDTVnUJD1MORM0&adid=1078124&IRID=312695&source=ir HTTP/1.1
Host: buy.norton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-length: 0
x-oneagent-js-injection: true
server-timing: dtRpid;desc="747894764", dtSInfo;desc="0"
requestid: e3187252522a0000
x-frame-options: DENY
location: https://www.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=VdRwTKzIzxyNU1AXoSTPUU5XUkDTVnUJD1MORM0&adid=1078124&IRID=312695&source=ir
strict-transport-security: max-age=31536000; includeSubDomains
expires: Fri, 23 Sep 2022 05:52:10 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 23 Sep 2022 05:52:10 GMT
set-cookie: dtCookie=v_4_srv_1_sn_3EF5FFFB097FAAC3D00BD266501F571B_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; Path=/; Domain=.norton.com
JSESSIONID=FD11B1E13646007E4447A1238749506D; Path=/; HttpOnly
X-CSRF-TOKEN=unKja8XPjZ_UKAbg/w0wKMFo_Aa8hT5nhEqoI7t/kfg_; Domain=buy.norton.com; Path=/; Secure
cv=exist; Domain=.norton.com; Path=/; Secure
SSE=""; Domain=.norton.com; Expires=Sun, 23-Oct-2022 05:52:10 GMT; Path=/; Secure
es=4e56533d317c5353473d7c4643443d5365702d32322d323032322032323a35323a31307c4c43443d5365702d32322d323032322032323a35323a3130; Domain=.norton.com; Expires=Sun, 23-Oct-2022 05:52:10 GMT; Path=/; Secure
tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d30392f32332f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; Domain=.norton.com; Expires=Sun, 23-Oct-2022 05:52:10 GMT; Path=/; Secure
COUNTRY=NO; Domain=.norton.com; Expires=Sun, 23-Oct-2022 05:52:10 GMT; Path=/; Secure
LANGUAGE=no; Domain=.norton.com; Expires=Sun, 23-Oct-2022 05:52:10 GMT; Path=/; Secure
pr=5043443d30392d32332d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; Secure; Path=/; Max-Age=5184000; Domain=.norton.com
PROGRAMID=312695; Domain=.norton.com; Expires=Tue, 22-Nov-2022 05:52:10 GMT; Path=/; Secure
PROGRAM_TYPE=ImpactRadius; Domain=.norton.com; Expires=Tue, 22-Nov-2022 05:52:10 GMT; Path=/; Secure
SHOPPERID=""; Domain=.norton.com; Expires=Tue, 22-Nov-2022 05:52:10 GMT; Path=/; Secure
LSTID=""; Domain=.norton.com; Expires=Tue, 22-Nov-2022 05:52:10 GMT; Path=/; Secure
TLID=FD11B1E13646007E4447A1238749506D; Domain=.norton.com; Expires=Sun, 23-Oct-2022 05:52:10 GMT; Path=/; Secure
ESID=02c2c74f54-6981-4238tAdu_wDpXgSwzqqXlEZdkcN8sgtQ5TJNUy6vQVH0UK6wEkuZUGAFlJNPyxn_NhTJM; path=/; SameSite=None; Secure
X-Firefox-Spdy: h2
www.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=VdRwTKzIzxyNU1AXoSTPUU5XUkDTVnUJD1MORM0&adid=1078124&IRID=312695&source=ir
23.38.200.32301 Moved Permanently 0 B URL HTTP/1.1 www.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=VdRwTKzIzxyNU1AXoSTPUU5XUkDTVnUJD1MORM0&adid=1078124&IRID=312695&source=ir
IP 23.38.200.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=VdRwTKzIzxyNU1AXoSTPUU5XUkDTVnUJD1MORM0&adid=1078124&IRID=312695&source=ir HTTP/1.1
Host: www.norton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: dtCookie=v_4_srv_1_sn_3EF5FFFB097FAAC3D00BD266501F571B_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d5365702d32322d323032322032323a35323a31307c4c43443d5365702d32322d323032322032323a35323a3130; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d30392f32332f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d30392d32332d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=FD11B1E13646007E4447A1238749506D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://no.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=VdRwTKzIzxyNU1AXoSTPUU5XUkDTVnUJD1MORM0&adid=1078124&IRID=312695&source=ir
Expires: Fri, 23 Sep 2022 05:52:10 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Fri, 23 Sep 2022 05:52:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11410
Expires: Fri, 23 Sep 2022 09:02:21 GMT
Date: Fri, 23 Sep 2022 05:52:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11410
Expires: Fri, 23 Sep 2022 09:02:21 GMT
Date: Fri, 23 Sep 2022 05:52:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11410
Expires: Fri, 23 Sep 2022 09:02:21 GMT
Date: Fri, 23 Sep 2022 05:52:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11410
Expires: Fri, 23 Sep 2022 09:02:21 GMT
Date: Fri, 23 Sep 2022 05:52:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11410
Expires: Fri, 23 Sep 2022 09:02:21 GMT
Date: Fri, 23 Sep 2022 05:52:11 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62dd28d6-72d9-4f9c-8eb7-cc97b6279d6b.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62dd28d6-72d9-4f9c-8eb7-cc97b6279d6b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3056431736af42cc145a77dbc77c45a7
977068c1cfdf8dfb64cbe8fb8d917ebc8e3e970e
d299e38c678f4c4548cd2e7cf7ff1b07910b316bfc8b13c492b4fbee0a66b079
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62dd28d6-72d9-4f9c-8eb7-cc97b6279d6b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9892
x-amzn-requestid: f1d435d6-ed01-46b6-8f36-615f07f8cac0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4VpWGamoAMFppA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632ccfd5-2c3726b022bd389a156532c4;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:12:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Ycp3xxTZqMDmPjKujrcqGRnuF0lKBH_avDsVSVASv_mU4tTkEfqoYw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 04:26:02 GMT
age: 5169
etag: "977068c1cfdf8dfb64cbe8fb8d917ebc8e3e970e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0908c18b-cd0b-41cc-beb5-0347df28884c.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0908c18b-cd0b-41cc-beb5-0347df28884c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9e125802119a2737820b343c4e9ecfb6
30ccc2dd2597b5b720d66c960ee8bd63c7115630
90cce372b2b8c89569fffc55de468bfc7cd4b7454ae7c55c48b7a846506b576e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0908c18b-cd0b-41cc-beb5-0347df28884c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11059
x-amzn-requestid: 65fe1c05-a158-4ac2-8368-f26da119ef68
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YcDTgGV4oAMF0iw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63217f49-74fc5c511bee36fd11d6d2eb;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 07:14:17 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ArtxwEnLiPvfdnNGum0ZbXPBv8Xd6lR2-vWnBj7MnOIq4q3r6rswWQ==
via: 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:11:51 GMT
age: 27620
etag: "30ccc2dd2597b5b720d66c960ee8bd63c7115630"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ec986e3-2bce-4ded-85eb-e88df9893a30.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ec986e3-2bce-4ded-85eb-e88df9893a30.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ff021fa15adb0d3a24158bc00cf0980a
265d3e98bcbf5f14f214102279a7911d6fd64048
211d709fb1851a62f856a78e3b115ef816f78ab9a28f870d48fa3d1912eac16a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ec986e3-2bce-4ded-85eb-e88df9893a30.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6505
x-amzn-requestid: bc9cc556-8897-4484-ac07-f18e4f5250ca
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YvrfiFl4oAMF_Xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63295930-7a627b7d7683919e41ca599b;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 06:09:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: UNlx91pOuttpN-IrQs_g-PRI8C_NmZDKdnOpfayCJ719fa6FwnOIGg==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:11:51 GMT
age: 27620
etag: "265d3e98bcbf5f14f214102279a7911d6fd64048"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56c6b5fd-d351-45b8-9f62-d5052869881a.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56c6b5fd-d351-45b8-9f62-d5052869881a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 948abf9bedd1bd67010284080ba06d01
dd94d525ad264856a0fdcb7a4b1faa2d68c3f68b
236639cc2279c6f269dd521796a087a40b43b252cb55faf3e4214cbdc8369a62
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56c6b5fd-d351-45b8-9f62-d5052869881a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10822
x-amzn-requestid: 308978c4-679f-4bb6-bfd7-a81dc00ec3db
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YoKcMG-kIAMFZKQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63265781-03f94c0a385ed28408de81c8;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 23:25:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 9fh_DJXLHRaerYmgTGoVX3LRsMIgzf46bn48yzXp8Xdp8WippJExcg==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 11:05:21 GMT
age: 67610
etag: "dd94d525ad264856a0fdcb7a4b1faa2d68c3f68b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa8822718-7784-42f7-9be3-17d81593a755.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa8822718-7784-42f7-9be3-17d81593a755.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b577444b5b0cf15747fe28a9d7f22d53
e6097275af3204124c48aa0d876eba0d18b26e7e
0f57e130b23b87fa4e1f9c2a2beff54f1ca73d87a244442558209e378befef11
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa8822718-7784-42f7-9be3-17d81593a755.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4999
x-amzn-requestid: 6f7b073e-f199-4bfa-8f9c-6688dbfba15a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yn7p7GyRIAMF1EQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63263fd8-566d8b3c1c25e3fa36259812;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 21:44:56 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: n4w6--Eta_zedQ8EOarLoCGZavQpadMCZnXlhGmQf4vgHZxyBKtRgw==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:11:51 GMT
age: 27620
etag: "e6097275af3204124c48aa0d876eba0d18b26e7e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F948809a9-98f3-49af-9568-833cc0cfb149.jpeg
34.120.237.76200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F948809a9-98f3-49af-9568-833cc0cfb149.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2644bb64610b60b23b7dff21736f7b4d
e95d1909750d36a9e426c170778985310cbfc4e4
e668fe1815310914cee8c5853fbcb3d0e48f6f0f8c2d07f7463e627f97153212
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F948809a9-98f3-49af-9568-833cc0cfb149.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5533
x-amzn-requestid: af64386b-45ae-47bb-a6fd-f80e306495df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YcCkMGVEIAMFfhg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63217e1a-7e417f28422324ed2ddc85da;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 07:09:14 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: fyCuR7eISu5Of0AcZBH5FOtHKRe-Nepnt52kqZtQm0tj1L7lAtGc8A==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 03:45:46 GMT
age: 7585
etag: "e95d1909750d36a9e426c170778985310cbfc4e4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
no.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=VdRwTKzIzxyNU1AXoSTPUU5XUkDTVnUJD1MORM0&adid=1078124&IRID=312695&source=ir
23.38.200.126200 OK 24 kB URL HTTP/2 no.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=VdRwTKzIzxyNU1AXoSTPUU5XUkDTVnUJD1MORM0&adid=1078124&IRID=312695&source=ir
IP 23.38.200.126:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8675)
Hash 511295c6dbe21daccaaabdf268dc47ca
f648611392aabde204d53dd8aa280dd36f6af054
06e7e9cd3e224a803367b7edda7b62a274c5f5a5bedaa989f833a947f1e8c322
GET /ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=VdRwTKzIzxyNU1AXoSTPUU5XUkDTVnUJD1MORM0&adid=1078124&IRID=312695&source=ir HTTP/1.1
Host: no.norton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: dtCookie=v_4_srv_1_sn_3EF5FFFB097FAAC3D00BD266501F571B_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d5365702d32322d323032322032323a35323a31307c4c43443d5365702d32322d323032322032323a35323a3130; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d30392f32332f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d30392d32332d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=FD11B1E13646007E4447A1238749506D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 24431
server: Apache
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff, nosniff
x-powered-by: Jetty(9.2.9.v20150224)
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
date: Fri, 23 Sep 2022 05:52:11 GMT
X-Firefox-Spdy: h2
no.norton.com/etc/designs/global/libs-global/head/styles/fonts/roboto-v20-latin/roboto-v20-latin-regular.woff2
23.38.200.126200 OK 16 kB URL HTTP/2 no.norton.com/etc/designs/global/libs-global/head/styles/fonts/roboto-v20-latin/roboto-v20-latin-regular.woff2
IP 23.38.200.126:0
File type Web Open Font Format (Version 2), TrueType, length 15736, version 1.0\012- data
Hash 2b21d2b7cfa81790c8f9f12661ec392f
859de30778ae7689c0c27c1e1edd179305556108
dcf4da8125576c3d4212e4de7ab86cb78f636bd868b75d4ac23ca44782cda33f
GET /etc/designs/global/libs-global/head/styles/fonts/roboto-v20-latin/roboto-v20-latin-regular.woff2 HTTP/1.1
Host: no.norton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=VdRwTKzIzxyNU1AXoSTPUU5XUkDTVnUJD1MORM0&adid=1078124&IRID=312695&source=ir
Cookie: dtCookie=v_4_srv_1_sn_3EF5FFFB097FAAC3D00BD266501F571B_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d5365702d32322d323032322032323a35323a31307c4c43443d5365702d32322d323032322032323a35323a3130; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d30392f32332f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d30392d32332d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=FD11B1E13646007E4447A1238749506D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
server: Apache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Tue, 12 Jan 2021 19:22:24 GMT
etag: "3d78-5b8b8f145356b"
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31431853
expires: Fri, 22 Sep 2023 00:56:24 GMT
date: Fri, 23 Sep 2022 05:52:11 GMT
content-length: 15759
X-Firefox-Spdy: h2
now.symassets.com/etc/designs/norton/libs-rebranding/head.min.cY7KoGzKKqrhYyeZfxrrmw==.css
23.38.200.126200 OK 61 kB URL HTTP/2 now.symassets.com/etc/designs/norton/libs-rebranding/head.min.cY7KoGzKKqrhYyeZfxrrmw==.css
IP 23.38.200.126:0
File type ASCII text, with very long lines (562)
Hash fb9430e62c3c5c3c6082a6bdc2f2429b
fdf9bd09466ed13454c596ca27178ba2b041fe2a
e22eeb334d32eb8b3bb6a6642874129dfd6821d7e43f2fe37bb204fb25672f52
GET /etc/designs/norton/libs-rebranding/head.min.cY7KoGzKKqrhYyeZfxrrmw==.css HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 61145
server: Apache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Wed, 21 Sep 2022 05:21:55 GMT
etag: "65b6c-5e9291f8f0a50-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: *
cache-control: max-age=1037710
expires: Wed, 05 Oct 2022 06:07:21 GMT
date: Fri, 23 Sep 2022 05:52:11 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_dark_web_32x24.png
23.38.200.126200 OK 282 B URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_dark_web_32x24.png
IP 23.38.200.126:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 3cc90ecde22d0b9a4c315c40c87923e2
fe692eda899c0a65bc9f6e1f0f56aba56c1324d1
48bd6070790c909c53f625091105bd4262ae6cd63ed7ff637b50478a35e8b198
GET /content/dam/norton/global/images/non-product/icons/light/icon_dark_web_32x24.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "176-5c844342fcf63"
last-modified: Tue, 24 Aug 2021 03:18:07 GMT
server: Akamai Image Manager
content-length: 282
content-type: image/webp
access-control-allow-origin: *
cache-control: private, no-transform, max-age=25751890
expires: Tue, 18 Jul 2023 07:10:21 GMT
date: Fri, 23 Sep 2022 05:52:11 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/logos/logo_norton_LL_91x37_white.png
23.38.200.126200 OK 1.3 kB URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/logos/logo_norton_LL_91x37_white.png
IP 23.38.200.126:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash f19124b9a455829448ae501e8e3f9f92
32d43e4c3aaf2bb1c1a28b2934d43d322f64d5ce
27040657301595ce583e52c3a2ba1389af208499e405c90cefd4a643857bf0fa
GET /content/dam/norton/global/images/non-product/logos/logo_norton_LL_91x37_white.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"66c-5d06d91929c55"
last-modified: Wed, 10 Nov 2021 11:31:36 GMT
server: Akamai Image Manager
content-type: image/webp
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: private, max-age=4167780
expires: Thu, 10 Nov 2022 11:35:11 GMT
date: Fri, 23 Sep 2022 05:52:11 GMT
content-length: 1287
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/icon_worldwide_users_32.svg
23.38.200.126200 OK 2.3 kB URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/icon_worldwide_users_32.svg
IP 23.38.200.126:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3780)
Hash 3fa36d5ab93fae7061f865f18cdba552
9b01de461e7c24b49bc19b532ad384d8451c7f96
66b3736ea2801778833919760fc08764bf4df7198533a5ad14d46fab4c222d65
GET /content/dam/norton/global/images/non-product/icons/icon_worldwide_users_32.svg HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: Apache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Wed, 10 Nov 2021 21:21:06 GMT
etag: "1a83-5d075cdd21c7c"
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=22838682
expires: Wed, 14 Jun 2023 13:56:53 GMT
date: Fri, 23 Sep 2022 05:52:11 GMT
content-length: 2290
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/icon_threat_monitor_30.svg
23.38.200.126200 OK 3.1 kB URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/icon_threat_monitor_30.svg
IP 23.38.200.126:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (6180)
Hash 9c7202f2fc496400a827a4971a742aac
d0915d836dd01530efcf6b7c9d11121ef7762a5d
2e76b5d6fe0358967d2e8c30b41ef73f52d55751da9e634dd2ef88b3347f9527
GET /content/dam/norton/global/images/non-product/icons/icon_threat_monitor_30.svg HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: Apache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Wed, 10 Nov 2021 19:56:30 GMT
etag: "20ae-5d0749f417025"
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=22838683
expires: Wed, 14 Jun 2023 13:56:54 GMT
date: Fri, 23 Sep 2022 05:52:11 GMT
content-length: 3116
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/no/images/non-product/misc/img_darkweb_notofication_223x449.png
23.38.200.126200 OK 8.9 kB URL HTTP/2 now.symassets.com/content/dam/norton/no/images/non-product/misc/img_darkweb_notofication_223x449.png
IP 23.38.200.126:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash f882847df083ce264e7349d09ecc199b
66594c0d0a82a02aea5cf094491cb1ad00b3435b
e263478b5daf956074b6ddea4f7510eb097f81537372c09a26e2b1e1f5ebfcb8
GET /content/dam/norton/no/images/non-product/misc/img_darkweb_notofication_223x449.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "cbaf-5c5342ef53168"
last-modified: Sun, 26 Dec 2021 23:28:11 GMT
server: Akamai Image Manager
content-type: image/webp
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: private, no-transform, max-age=8184975
expires: Mon, 26 Dec 2022 23:28:26 GMT
date: Fri, 23 Sep 2022 05:52:11 GMT
content-length: 8943
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_online_threat_32x29.png
23.38.200.126200 OK 314 B URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_online_threat_32x29.png
IP 23.38.200.126:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 697a688a7dd6f197ab7163eacbdab9a6
747015ca7cbbc5903a2936c224f3ac4f8b10aece
cc4029789a2edc492083a4bac3368187c99d9e8dd330668d19431784c7ce74dd
GET /content/dam/norton/global/images/non-product/icons/light/icon_online_threat_32x29.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "22f-5cfca6223ef26"
last-modified: Thu, 03 Feb 2022 08:11:30 GMT
server: Akamai Image Manager
content-length: 314
content-type: image/webp
access-control-allow-origin: *
cache-control: private, no-transform, max-age=11499508
expires: Fri, 03 Feb 2023 08:10:39 GMT
date: Fri, 23 Sep 2022 05:52:11 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/product-family/norton-360/awards/light/award-PCMag-horizontal-48-light_330X54.png
23.38.200.126200 OK 4.2 kB URL HTTP/2 now.symassets.com/content/dam/norton/global/images/product-family/norton-360/awards/light/award-PCMag-horizontal-48-light_330X54.png
IP 23.38.200.126:0
File type PNG image data, 331 x 55, 8-bit colormap, non-interlaced\012- data
Hash 03dc75960288b35ca8eca39ecdc51382
845438a3dddf2cb36ae7dd35f1f0b7de5fa1d14d
e3aa7d5ae64992fe5a8d930ad945d87885465045442d81e5249a1861784d2e84
GET /content/dam/norton/global/images/product-family/norton-360/awards/light/award-PCMag-horizontal-48-light_330X54.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"24cf-5db6c1a48c048"
last-modified: Wed, 30 Mar 2022 09:23:47 GMT
server: Akamai Image Manager
content-type: image/png
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: private, no-transform, max-age=16256006
expires: Thu, 30 Mar 2023 09:25:37 GMT
date: Fri, 23 Sep 2022 05:52:11 GMT
content-length: 4231
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_secure_vpn_28x32.png
23.38.200.126200 OK 292 B URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_secure_vpn_28x32.png
IP 23.38.200.126:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 32d65de9be8ab02316681a58a4dd735a
de341dec2484527c0875fb4e0ec5d94a4eea4a1e
c5230f7556d57e40fb7c67ef65fc9426d5136c9f46858028bfeb2e1d0e6e4724
GET /content/dam/norton/global/images/non-product/icons/light/icon_secure_vpn_28x32.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "1c7-5cfbbd0ea567a"
last-modified: Mon, 07 Feb 2022 12:10:55 GMT
server: Akamai Image Manager
content-length: 292
content-type: image/webp
access-control-allow-origin: *
cache-control: private, no-transform, max-age=11859529
expires: Tue, 07 Feb 2023 12:11:00 GMT
date: Fri, 23 Sep 2022 05:52:11 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_vpp_32x29.png
23.38.200.126200 OK 428 B URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_vpp_32x29.png
IP 23.38.200.126:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 00ae429025103ed148f1a0795e2d9d77
caf06472f47c849951a2fafba847e5af117cfbb1
f09a7f83f20248cba15d3f8a330835cd5b0d78187111c5a1a90d4abc6a46073f
GET /content/dam/norton/global/images/non-product/icons/light/icon_vpp_32x29.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "22f-5cfbbd0fe42bd"
last-modified: Thu, 03 Feb 2022 08:10:19 GMT
server: Akamai Image Manager
content-length: 428
content-type: image/webp
access-control-allow-origin: *
cache-control: private, no-transform, max-age=11499565
expires: Fri, 03 Feb 2023 08:11:36 GMT
date: Fri, 23 Sep 2022 05:52:11 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_password_mgr_32x32.png
23.38.200.126200 OK 678 B URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_password_mgr_32x32.png
IP 23.38.200.126:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 7922cb1b44ee50aae0299016f5313ada
ba7b3d3ce4010d9a0b6e82300875e24a09cf8427
9daaf44d1daf71701f012d0bce0381437d2425a1fbebaa53e6f337ea7e14d071
GET /content/dam/norton/global/images/non-product/icons/light/icon_password_mgr_32x32.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "3c9-5d0756fca4fef"
last-modified: Thu, 03 Feb 2022 08:09:29 GMT
server: Akamai Image Manager
content-length: 678
content-type: image/webp
access-control-allow-origin: *
cache-control: private, no-transform, max-age=11499310
expires: Fri, 03 Feb 2023 08:07:21 GMT
date: Fri, 23 Sep 2022 05:52:11 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_cloud_bu_32x22.png
23.38.200.126200 OK 320 B URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_cloud_bu_32x22.png
IP 23.38.200.126:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash bdfa0542dbb64e17ad56370c9dec410d
2741ca1093834d3ff33a829ab919dc77786d0447
92d90bc227ea9f092a8e06b6ecd713f374d0f8fa58cdf91ae20a8d8f4073660f
GET /content/dam/norton/global/images/non-product/icons/light/icon_cloud_bu_32x22.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "1af-5d3a978e6209d"
last-modified: Thu, 03 Feb 2022 08:10:32 GMT
server: Akamai Image Manager
content-length: 320
content-type: image/webp
access-control-allow-origin: *
cache-control: private, no-transform, max-age=11499547
expires: Fri, 03 Feb 2023 08:11:18 GMT
date: Fri, 23 Sep 2022 05:52:11 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_firewall_25x32.png
23.38.200.126200 OK 278 B URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_firewall_25x32.png
IP 23.38.200.126:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash d373536d5ab58027025ee2099a7b6f2c
c2719c6b150afb2eb71f05618567e489c62dbdb6
ae1b440dbaba4c5563a6f49092e3db84056aac7e6b9906f4064db058d7ddff58
GET /content/dam/norton/global/images/non-product/icons/light/icon_firewall_25x32.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "1dc-5d30c7fb9f99f"
last-modified: Thu, 03 Feb 2022 08:09:12 GMT
server: Akamai Image Manager
content-length: 278
content-type: image/webp
access-control-allow-origin: *
cache-control: private, no-transform, max-age=11499417
expires: Fri, 03 Feb 2023 08:09:08 GMT
date: Fri, 23 Sep 2022 05:52:11 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_parental_controls_32x26.png
23.38.200.126200 OK 400 B URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_parental_controls_32x26.png
IP 23.38.200.126:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash f2c8f4c53c80d7cd0e95f05c3aa17889
25adb1ad2d18065c7df0a6858dd3b5fdac81bde4
b14736abfcfd4dffba24367d371894c202b8389fe8cfb53f3bb5b9420840f00a
GET /content/dam/norton/global/images/non-product/icons/light/icon_parental_controls_32x26.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "1fa-5d063ef4bc6a5"
last-modified: Thu, 03 Feb 2022 08:14:38 GMT
server: Akamai Image Manager
content-length: 400
content-type: image/webp
access-control-allow-origin: *
cache-control: private, no-transform, max-age=11499820
expires: Fri, 03 Feb 2023 08:15:51 GMT
date: Fri, 23 Sep 2022 05:52:11 GMT
X-Firefox-Spdy: h2
now.symassets.com/etc/designs/norton/libs-rebranding/footer.min.r_nHsieTlNSYDl1VieH54w==.js
23.38.200.126200 OK 98 kB URL HTTP/2 now.symassets.com/etc/designs/norton/libs-rebranding/footer.min.r_nHsieTlNSYDl1VieH54w==.js
IP 23.38.200.126:0
File type ASCII text, with very long lines (1403)
Hash 0970d618d1940ccb8eb7031a9247a81b
09a66d544fba531a70829d6cd3324cc25d67dc8f
d86c5bd0c769cab9be42bc88287d2a53c56674aa7d705e94dc99a2813d2a926d
GET /etc/designs/norton/libs-rebranding/footer.min.r_nHsieTlNSYDl1VieH54w==.js HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: Apache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Thu, 08 Sep 2022 14:27:24 GMT
etag: "57aa9-5e82b3a66c35e-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 98459
access-control-allow-origin: *
cache-control: max-age=487290
expires: Wed, 28 Sep 2022 21:13:41 GMT
date: Fri, 23 Sep 2022 05:52:11 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/no/images/non-product/icons/light/icon_vpp_seal_yellow.svg
23.38.200.126200 OK 5.9 kB URL HTTP/2 now.symassets.com/content/dam/norton/no/images/non-product/icons/light/icon_vpp_seal_yellow.svg
IP 23.38.200.126:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (17242), with no line terminators
Hash edd45b5633d53d322545c4776f986436
86e2951cd2470a65a32da5c7c9bb3037d603f0ce
bbf568980e72812f3045a5ea8a735dfd751784c164c3f5d7b29f36fc1f763257
GET /content/dam/norton/no/images/non-product/icons/light/icon_vpp_seal_yellow.svg HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: Apache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Tue, 12 Jan 2021 19:28:09 GMT
etag: "435a-5b8b905cad4fb"
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=22838669
expires: Wed, 14 Jun 2023 13:56:40 GMT
date: Fri, 23 Sep 2022 05:52:11 GMT
content-length: 5877
X-Firefox-Spdy: h2
assets.adobedtm.com/launch-EN1cc7556280444b10a3c687a73ed01baa.min.js
23.38.200.237200 OK 62 kB URL HTTP/2 assets.adobedtm.com/launch-EN1cc7556280444b10a3c687a73ed01baa.min.js
IP 23.38.200.237:0
File type ASCII text, with very long lines (32765)
Hash 9a5b05d7551bf3192366e3e3869e2275
ad63425bd3da223b9920e9d40d17b84bfb2f49b3
a8e02f954327504be7f9cfc4962d342253c84cb1ce3393e51c81c1f7820f01b0
GET /launch-EN1cc7556280444b10a3c687a73ed01baa.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "566136ac57c055d61cfbd7bcf8702891:1663879804.20201"
last-modified: Thu, 22 Sep 2022 20:50:04 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 61753
cache-control: max-age=3600
expires: Fri, 23 Sep 2022 06:52:11 GMT
date: Fri, 23 Sep 2022 05:52:11 GMT
access-control-allow-origin: https://no.norton.com
timing-allow-origin: *
X-Firefox-Spdy: h2
no.norton.com/service/norton/head?ct=NO&lg=no&ref=&irgwc=1&clickid=VdRwTKzIzxyNU1AXoSTPUU5XUkDTVnUJD1MORM0&adid=1078124&IRID=312695&source=ir
23.38.200.126200 OK 0 B URL HTTP/2 no.norton.com/service/norton/head?ct=NO&lg=no&ref=&irgwc=1&clickid=VdRwTKzIzxyNU1AXoSTPUU5XUkDTVnUJD1MORM0&adid=1078124&IRID=312695&source=ir
IP 23.38.200.126:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /service/norton/head?ct=NO&lg=no&ref=&irgwc=1&clickid=VdRwTKzIzxyNU1AXoSTPUU5XUkDTVnUJD1MORM0&adid=1078124&IRID=312695&source=ir HTTP/1.1
Host: no.norton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=VdRwTKzIzxyNU1AXoSTPUU5XUkDTVnUJD1MORM0&adid=1078124&IRID=312695&source=ir
Cookie: dtCookie=v_4_srv_1_sn_3EF5FFFB097FAAC3D00BD266501F571B_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d5365702d32322d323032322032323a35323a31307c4c43443d5365702d32322d323032322032323a35323a3130; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d30392f32332f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d30392d32332d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=FD11B1E13646007E4447A1238749506D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/plain
content-length: 0
server: Apache
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff, nosniff
expires: Thu, 01 Jan 1970 00:00:00 GMT
x-powered-by: Jetty(9.2.9.v20150224)
strict-transport-security: max-age=31536000; includeSubDomains
date: Fri, 23 Sep 2022 05:52:11 GMT
set-cookie: es=4e56533d317c5353473d7c4643443d5365702d32322d323032322032323a35323a31307c4c43443d5365702d32322d323032322032323a35323a3130;Expires=Sat, 23-Sep-2023 05:52:11 GMT
tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d30392f32332f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d;Expires=Sat, 23-Sep-2023 05:52:11 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 2aaec9cbe28343d60597d0371f8ed16b
4456dfef025ab6be775cf3fec5afb553dbfe28d7
7e2ae8341c557e5f590cab1a3ba0d1207ad4a039729b7552b48b40dbb6fc53c5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:52:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
now.symassets.com/content/dam/norton/global/images/non-product/csp_test/banners/bnr_laptop_hands_1800x450.jpg
23.38.200.126200 OK 11 kB URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/csp_test/banners/bnr_laptop_hands_1800x450.jpg
IP 23.38.200.126:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1800x450, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ffa99b7c897814d67b23c0f8bd2cc0ac
38cb989101748eda3d1ef4ee683f017ea9fedce1
e06b4f4205c09e908a85c6f1e265eca2f2a43b32850bee7d225f7eb870633f38
GET /content/dam/norton/global/images/non-product/csp_test/banners/bnr_laptop_hands_1800x450.jpg HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "12fb8-5d112b698547e"
last-modified: Thu, 03 Feb 2022 08:10:22 GMT
server: Akamai Image Manager
x-serial: 1664
x-check-cacheable: YES
content-type: image/webp
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: private, no-transform, max-age=11499514
expires: Fri, 03 Feb 2023 08:10:46 GMT
date: Fri, 23 Sep 2022 05:52:12 GMT
content-length: 10932
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/banners/bnr_familyselfie_1405x645.jpg
23.38.200.126200 OK 45 kB URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/banners/bnr_familyselfie_1405x645.jpg
IP 23.38.200.126:0
Hash 26ef7612997cc272a56956138559c63f
582b8d0fc058a125d74b6fa97632fc9987305902
8c040416344afaa9800ca8ed690a237aa9c0a2709c27fd09f84541f3ac429e06
GET /content/dam/norton/global/images/non-product/banners/bnr_familyselfie_1405x645.jpg HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "1563e-5d3079cb478ee"
last-modified: Thu, 03 Feb 2022 08:21:27 GMT
server: Akamai Image Manager
content-type: image/webp
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: private, no-transform, max-age=11500172
expires: Fri, 03 Feb 2023 08:21:44 GMT
date: Fri, 23 Sep 2022 05:52:12 GMT
X-Firefox-Spdy: h2
www.nortonlifelock.com/content/dam/norton-adobe-analytics/prod/s_code_norton_min.js
23.38.200.126200 OK 24 kB URL HTTP/2 www.nortonlifelock.com/content/dam/norton-adobe-analytics/prod/s_code_norton_min.js
IP 23.38.200.126:0
File type Unicode text, UTF-8 text, with very long lines (32060)
Hash 8c680e973f7006fe7f68f510841e2bac
d1a9cecf504f0defcf9d309e7c702c7261a15185
a5303c3f99bd0c75f20f4716d5fe625b414823874fabd16ffbf24bba14c838d4
GET /content/dam/norton-adobe-analytics/prod/s_code_norton_min.js HTTP/1.1
Host: www.nortonlifelock.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 24522
server: Apache
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-disposition: attachment
x-content-type-options: nosniff, nosniff
last-modified: Fri, 16 Sep 2022 21:24:15 GMT
etag: "12611-5e8d1fbde1dc0-gzip"
accept-ranges: bytes
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=83384
expires: Sat, 24 Sep 2022 05:01:56 GMT
date: Fri, 23 Sep 2022 05:52:12 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 2aaec9cbe28343d60597d0371f8ed16b
4456dfef025ab6be775cf3fec5afb553dbfe28d7
7e2ae8341c557e5f590cab1a3ba0d1207ad4a039729b7552b48b40dbb6fc53c5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:52:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
no.norton.com/libs/granite/csrf/token.json
23.38.200.126200 OK 2 B URL HTTP/2 no.norton.com/libs/granite/csrf/token.json
IP 23.38.200.126:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /libs/granite/csrf/token.json HTTP/1.1
Host: no.norton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=VdRwTKzIzxyNU1AXoSTPUU5XUkDTVnUJD1MORM0&adid=1078124&IRID=312695&source=ir
Cookie: dtCookie=v_4_srv_1_sn_3EF5FFFB097FAAC3D00BD266501F571B_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d5365702d32322d323032322032323a35323a31307c4c43443d5365702d32322d323032322032323a35323a3130; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d30392f32332f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d30392d32332d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=FD11B1E13646007E4447A1238749506D; qs=69726777633d3126636c69636b69643d56645277544b7a497a78794e553141586f53545055553558556b4454566e554a44314d4f524d3026616469643d3130373831323426495249443d33313236393526736f757263653d6972; ttControl=5443473d33; AMCV_67C716D751E567F70A490D4C%40AdobeOrg=-1124106680%7CMCIDTS%7C19259%7CvVersion%7C5.2.0; at_check=true; mbox=session#802c895ecf8045c387620e16880b5ef0#1663914192
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=ISO-8859-1
content-length: 2
server: Apache
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff, nosniff
x-powered-by: Jetty(9.2.9.v20150224)
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache
date: Fri, 23 Sep 2022 05:52:12 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 17933e8b1d3e7215a383b2b1866206cc
963ae7c348b9599a48012d2088dbf30bf9c37232
67c869074705589c154567a83965bff789acb55248b2cc70521cefaf15e6c30d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 821
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:52:12 GMT
Last-Modified: Fri, 23 Sep 2022 05:38:31 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
dpm.demdex.net/id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=67C716D751E567F70A490D4C%40AdobeOrg&d_nsid=0&ts=1663912331456
3.250.251.255200 OK 307 B URL HTTP/1.1 dpm.demdex.net/id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=67C716D751E567F70A490D4C%40AdobeOrg&d_nsid=0&ts=1663912331456
IP 3.250.251.255:0
File type JSON data\012- , ASCII text, with very long lines (367), with no line terminators
Hash 6d5f91059027b49d3deb46fa0f10f35a
a5af400fd5cbdd7d0ee2edf99b909fa0c875260b
186cc8f12317cc8b8b641fd3db595618aebc509e5b9f003c727c5d3e7852ea13
GET /id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=67C716D751E567F70A490D4C%40AdobeOrg&d_nsid=0&ts=1663912331456 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://no.norton.com
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://no.norton.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-1-v042-0e5ab0663.edge-irl1.demdex.com 2 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=39847301884869536344108058246274283478; Max-Age=15552000; Expires=Wed, 22 Mar 2023 05:52:12 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: Teay8kBzQ/s=
Content-Length: 307
Connection: keep-alive
now.symassets.com/content/dam/norton/global/images/non-product/icons/nlok.ico
23.38.200.126200 OK 4.2 kB URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/nlok.ico
IP 23.38.200.126:0
File type PNG image data, 144 x 144, 8-bit/color RGBA, non-interlaced\012- data
Hash d2145e109e45900f4e7e387ba44b90ba
feeb2cd5803c167430e179eb4d5b34201ec9e65d
0382f490de756fafe0167fd9ca170478deb80e59cb652cccee47c3ccbd86aa71
GET /content/dam/norton/global/images/non-product/icons/nlok.ico HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/x-icon
server: Apache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Wed, 10 Nov 2021 11:31:36 GMT
etag: "1039-5d06d91a0e126"
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=22825935
expires: Wed, 14 Jun 2023 10:24:27 GMT
date: Fri, 23 Sep 2022 05:52:12 GMT
content-length: 4176
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash edd6c63988b69a64a51433c3fd91b0ba
a0a41a5403a2c397d70cfa267c1d6407250df043
c9b1efff4ebf41ad54d3137ee7a93b688c66765df99e387ae730b39abe2f115f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:52:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Sep 2022 12:31:58 GMT
expires: Sun, 17 Sep 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 494414
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash edd6c63988b69a64a51433c3fd91b0ba
a0a41a5403a2c397d70cfa267c1d6407250df043
c9b1efff4ebf41ad54d3137ee7a93b688c66765df99e387ae730b39abe2f115f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:52:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4640601e4e57e41ee1f63eda3fb519b9
e190e9ca3ae1bb92cb480f6b1841fa7d3bef124e
49c9164ff03c2fddb82f48fab764ecb1c62d1a1127427e90e31c922114fb8ac6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4793
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:52:12 GMT
Last-Modified: Fri, 23 Sep 2022 04:32:20 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash dddd967bd56e0c92965fb7c92d0c59f5
0a2715ca5671b5b44c634f10126484982182e3bf
a3c1270c110d008c5d743ab558300cbda40712253d742dccddf996b5a5baab36
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5257
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:52:12 GMT
Last-Modified: Fri, 23 Sep 2022 04:24:35 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
oms.norton.com/b/ss/symanteccom/1/JS-2.22.0/s53150078205377?AQB=1&ndh=1&pf=1&t=23%2F8%2F2022%205%3A52%3A11%205%200&sdid=10B3B9F78EC8DFC6-5F8FA4409B8B593A&mid=39652827104595000514128068399650536295&aamlh=6&ce=UTF-8&pageName=norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&g=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html%3Firgwc%3D1%26clickid%3DVdRwTKzIzxyNU1AXoSTPUU5XUkDTVnUJD1MORM0%26adid%3D1078124%26IRID%3D312695%26source%3Dir&server=norton&v0=hho_aff_312695&events=event79%3D17%2Cevent69&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c2=no&c3=no&v5=none&c14=D%3Dv16&v16=norton%3Aaffiliate&v18=D%3DpageName&v21=D%3Dc21&c22=hho_aff_312695&v27=D%3Dc2&v28=D%3Dc3&c35=%3E%20hho_aff_312695%20norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&v35=hho_aff_312695&c41=norton.com&v41=D%3Dc41&c46=html&c47=page&v47=s_code_norton&c48=3up_norton360_ns_nd_np_reading_tw_nb&v48=D%3Dc49&c49=paidsearch&v49=D%3Dc48&v57=39652827104595000514128068399650536295&c59=norton.com%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&v59=D%3Dc59&v66=ImpactRadius&v72=norton.com&c75=D%3Dv57&v90=existing_customer%3A%20No&v96=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=67C716D751E567F70A490D4C%40AdobeOrg&AQE=1
13.36.218.177200 OK 43 B URL HTTP/2 oms.norton.com/b/ss/symanteccom/1/JS-2.22.0/s53150078205377?AQB=1&ndh=1&pf=1&t=23%2F8%2F2022%205%3A52%3A11%205%200&sdid=10B3B9F78EC8DFC6-5F8FA4409B8B593A&mid=39652827104595000514128068399650536295&aamlh=6&ce=UTF-8&pageName=norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&g=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html%3Firgwc%3D1%26clickid%3DVdRwTKzIzxyNU1AXoSTPUU5XUkDTVnUJD1MORM0%26adid%3D1078124%26IRID%3D312695%26source%3Dir&server=norton&v0=hho_aff_312695&events=event79%3D17%2Cevent69&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c2=no&c3=no&v5=none&c14=D%3Dv16&v16=norton%3Aaffiliate&v18=D%3DpageName&v21=D%3Dc21&c22=hho_aff_312695&v27=D%3Dc2&v28=D%3Dc3&c35=%3E%20hho_aff_312695%20norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&v35=hho_aff_312695&c41=norton.com&v41=D%3Dc41&c46=html&c47=page&v47=s_code_norton&c48=3up_norton360_ns_nd_np_reading_tw_nb&v48=D%3Dc49&c49=paidsearch&v49=D%3Dc48&v57=39652827104595000514128068399650536295&c59=norton.com%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&v59=D%3Dc59&v66=ImpactRadius&v72=norton.com&c75=D%3Dv57&v90=existing_customer%3A%20No&v96=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=67C716D751E567F70A490D4C%40AdobeOrg&AQE=1
IP 13.36.218.177:0
File type GIF image data, version 89a, 2 x 2\012- data
Hash ad480fd0732d0f6f1a8b06359e3a42bb
a544538683a2dfe574eeb2e358ac8fcc78289d50
a1ecbaed793a1f564c49c671f2dd0ce36f858534ef6d26b55783a06b884cc506
GET /b/ss/symanteccom/1/JS-2.22.0/s53150078205377?AQB=1&ndh=1&pf=1&t=23%2F8%2F2022%205%3A52%3A11%205%200&sdid=10B3B9F78EC8DFC6-5F8FA4409B8B593A&mid=39652827104595000514128068399650536295&aamlh=6&ce=UTF-8&pageName=norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&g=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html%3Firgwc%3D1%26clickid%3DVdRwTKzIzxyNU1AXoSTPUU5XUkDTVnUJD1MORM0%26adid%3D1078124%26IRID%3D312695%26source%3Dir&server=norton&v0=hho_aff_312695&events=event79%3D17%2Cevent69&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c2=no&c3=no&v5=none&c14=D%3Dv16&v16=norton%3Aaffiliate&v18=D%3DpageName&v21=D%3Dc21&c22=hho_aff_312695&v27=D%3Dc2&v28=D%3Dc3&c35=%3E%20hho_aff_312695%20norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&v35=hho_aff_312695&c41=norton.com&v41=D%3Dc41&c46=html&c47=page&v47=s_code_norton&c48=3up_norton360_ns_nd_np_reading_tw_nb&v48=D%3Dc49&c49=paidsearch&v49=D%3Dc48&v57=39652827104595000514128068399650536295&c59=norton.com%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&v59=D%3Dc59&v66=ImpactRadius&v72=norton.com&c75=D%3Dv57&v90=existing_customer%3A%20No&v96=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=67C716D751E567F70A490D4C%40AdobeOrg&AQE=1 HTTP/1.1
Host: oms.norton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Cookie: dtCookie=v_4_srv_1_sn_3EF5FFFB097FAAC3D00BD266501F571B_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d5365702d32322d323032322032323a35323a31307c4c43443d5365702d32322d323032322032323a35323a3130; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d30392f32332f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d30392d32332d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=FD11B1E13646007E4447A1238749506D; ttControl=5443473d33; AMCV_67C716D751E567F70A490D4C%40AdobeOrg=-1124106680%7CMCIDTS%7C19259%7CMCMID%7C39652827104595000514128068399650536295%7CMCAAMLH-1664517131%7C6%7CMCAAMB-1664517131%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1663919531s%7CNONE%7CvVersion%7C5.2.0; at_check=true; mbox=session#802c895ecf8045c387620e16880b5ef0#1663914192; promocode=DEFAULTWEB; AMCVS_67C716D751E567F70A490D4C%40AdobeOrg=1; s_prop22=hho_aff_312695; s_nr=1663912331833-New; event69=event69; channelStack=s_eVar72~norton.com; s_gpv=norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_gpv_custom=norton.com%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_cc=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
access-control-allow-origin: *
date: Fri, 23 Sep 2022 05:52:12 GMT
expires: Thu, 22 Sep 2022 05:52:12 GMT
last-modified: Sat, 24 Sep 2022 05:52:12 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
etag: 3573224526523727872-4619682170446138947
vary: *
content-type: image/gif;charset=utf-8
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3b578aed53ee9a2ee8cccab56985f7ab
1d5182fc7bdeaa61c5d85491a15dad902fbe93c9
ed8c8c8b8979b564564ddbf0d238414a37ca578ee2b6e71a7ad73ac001f30f71
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:52:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 96f3639e0f20067a501f4b23622ccf27
a884b6a89d018d029940c30ab48af2bf2faeb00b
c658c6f010108155b7a741ed0b1ee8ddcbc365ead7700ace26560a0be1798afc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:52:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/id
142.250.74.98302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.98:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Fri, 23 Sep 2022 05:52:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
symantec.tt.omtrdc.net/m2/symantec/mbox/json?mbox=sym_global_mbox&mboxSession=802c895ecf8045c387620e16880b5ef0&mboxPC=&mboxPage=941e79c1494f42d6b4537ac27e807b66&mboxRid=d0897f50e88f4a8fa7730a200a08b239&mboxVersion=1.8.2&mboxCount=1&mboxTime=1663912331468&mboxHost=no.norton.com&mboxURL=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html%3Firgwc%3D1%26clickid%3DVdRwTKzIzxyNU1AXoSTPUU5XUkDTVnUJD1MORM0%26adid%3D1078124%26IRID%3D312695%26source%3Dir&mboxReferrer=&mboxXDomain=enabled&browserHeight=939&browserWidth=1268&browserTimeOffset=0&screenHeight=1024&screenWidth=1280&colorDepth=24&devicePixelRatio=1&screenOrientation=landscape&profile.TCG=3&vendor_type=none&program_type=ImpactRadius&site_country=no&site_section=norton.com&content_title=3up_norton360_ns_nd_np_reading_tw_nb&site_language=no&traffic_source=affiliates&ExistingCustomer=existing_customer%3A%20No&site_sub_section=paidsearch¤t_subchannel=&site_content_title=3up_norton360_ns_nd_np_reading_tw_nb&original_subchannel=&profile.vendor_type=none&profile.program_type=ImpactRadius&profile.site_country=no&site_sub_sub_section=missing&%20profile.site_section=norton.com&profile.site_language=no&profile.%20traffic_source=affiliates&profile.ExistingCustomer=existing_customer%3A%20No&profile.%20site_sub_section=paidsearch&profile.current_subchannel=&profile.site_content_title=3up_norton360_ns_nd_np_reading_tw_nb&profile.original_subchannel=&mboxMCSDID=10B3B9F78EC8DFC6-5F8FA4409B8B593A&mboxMCGVID=39652827104595000514128068399650536295&mboxAAMB=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&mboxMCGLH=6
15.236.176.210200 OK 693 B URL HTTP/2 symantec.tt.omtrdc.net/m2/symantec/mbox/json?mbox=sym_global_mbox&mboxSession=802c895ecf8045c387620e16880b5ef0&mboxPC=&mboxPage=941e79c1494f42d6b4537ac27e807b66&mboxRid=d0897f50e88f4a8fa7730a200a08b239&mboxVersion=1.8.2&mboxCount=1&mboxTime=1663912331468&mboxHost=no.norton.com&mboxURL=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html%3Firgwc%3D1%26clickid%3DVdRwTKzIzxyNU1AXoSTPUU5XUkDTVnUJD1MORM0%26adid%3D1078124%26IRID%3D312695%26source%3Dir&mboxReferrer=&mboxXDomain=enabled&browserHeight=939&browserWidth=1268&browserTimeOffset=0&screenHeight=1024&screenWidth=1280&colorDepth=24&devicePixelRatio=1&screenOrientation=landscape&profile.TCG=3&vendor_type=none&program_type=ImpactRadius&site_country=no&site_section=norton.com&content_title=3up_norton360_ns_nd_np_reading_tw_nb&site_language=no&traffic_source=affiliates&ExistingCustomer=existing_customer%3A%20No&site_sub_section=paidsearch¤t_subchannel=&site_content_title=3up_norton360_ns_nd_np_reading_tw_nb&original_subchannel=&profile.vendor_type=none&profile.program_type=ImpactRadius&profile.site_country=no&site_sub_sub_section=missing&%20profile.site_section=norton.com&profile.site_language=no&profile.%20traffic_source=affiliates&profile.ExistingCustomer=existing_customer%3A%20No&profile.%20site_sub_section=paidsearch&profile.current_subchannel=&profile.site_content_title=3up_norton360_ns_nd_np_reading_tw_nb&profile.original_subchannel=&mboxMCSDID=10B3B9F78EC8DFC6-5F8FA4409B8B593A&mboxMCGVID=39652827104595000514128068399650536295&mboxAAMB=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&mboxMCGLH=6
IP 15.236.176.210:0
Hash 3308a644269b546ce7a741d3a23222f1
7c72af78d9febf51eaaaa0406a53e934b093ece3
831097f1477d3c7bd94167edfd88672e0b407057822f540024201c158c54db7b
GET /m2/symantec/mbox/json?mbox=sym_global_mbox&mboxSession=802c895ecf8045c387620e16880b5ef0&mboxPC=&mboxPage=941e79c1494f42d6b4537ac27e807b66&mboxRid=d0897f50e88f4a8fa7730a200a08b239&mboxVersion=1.8.2&mboxCount=1&mboxTime=1663912331468&mboxHost=no.norton.com&mboxURL=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html%3Firgwc%3D1%26clickid%3DVdRwTKzIzxyNU1AXoSTPUU5XUkDTVnUJD1MORM0%26adid%3D1078124%26IRID%3D312695%26source%3Dir&mboxReferrer=&mboxXDomain=enabled&browserHeight=939&browserWidth=1268&browserTimeOffset=0&screenHeight=1024&screenWidth=1280&colorDepth=24&devicePixelRatio=1&screenOrientation=landscape&profile.TCG=3&vendor_type=none&program_type=ImpactRadius&site_country=no&site_section=norton.com&content_title=3up_norton360_ns_nd_np_reading_tw_nb&site_language=no&traffic_source=affiliates&ExistingCustomer=existing_customer%3A%20No&site_sub_section=paidsearch¤t_subchannel=&site_content_title=3up_norton360_ns_nd_np_reading_tw_nb&original_subchannel=&profile.vendor_type=none&profile.program_type=ImpactRadius&profile.site_country=no&site_sub_sub_section=missing&%20profile.site_section=norton.com&profile.site_language=no&profile.%20traffic_source=affiliates&profile.ExistingCustomer=existing_customer%3A%20No&profile.%20site_sub_section=paidsearch&profile.current_subchannel=&profile.site_content_title=3up_norton360_ns_nd_np_reading_tw_nb&profile.original_subchannel=&mboxMCSDID=10B3B9F78EC8DFC6-5F8FA4409B8B593A&mboxMCGVID=39652827104595000514128068399650536295&mboxAAMB=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&mboxMCGLH=6 HTTP/1.1
Host: symantec.tt.omtrdc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://no.norton.com
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 23 Sep 2022 05:52:12 GMT
content-type: application/json;charset=UTF-8
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
access-control-allow-origin: https://no.norton.com
access-control-allow-credentials: true
x-request-id: d0897f50e88f4a8fa7730a200a08b239
p3p: CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
set-cookie: symantec!mboxSession=802c895ecf8045c387620e16880b5ef0; Max-Age=1860; Expires=Fri, 23-Sep-2022 06:23:12 GMT; Domain=symantec.tt.omtrdc.net; Path=/; Secure; HttpOnly; SameSite=None
symantec!mboxPC=802c895ecf8045c387620e16880b5ef0.37_0; Max-Age=63244800; Expires=Tue, 24-Sep-2024 05:52:12 GMT; Domain=symantec.tt.omtrdc.net; Path=/; Secure; HttpOnly; SameSite=None
pragma: no-cache
timing-allow-origin: *
content-encoding: gzip
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
server: jag
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ab9170d59e1c01422d2c55356248b569
0df99ca360de0b69a7e79d8e79b6383fec4a5453
7747cc09f59efbc03c3663c9be6bb63248a43f8f310c1bae1466255e83a72455
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:52:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 75a6c13f18620214e5e013385d752044
174c34759a1e50884846a2505f0be16c285d75cc
fe6fcbbe324ceefc1e833208faedaeae6934b34f868690e5ad4676b02c0b3bf0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:52:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ab9170d59e1c01422d2c55356248b569
0df99ca360de0b69a7e79d8e79b6383fec4a5453
7747cc09f59efbc03c3663c9be6bb63248a43f8f310c1bae1466255e83a72455
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:52:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3b578aed53ee9a2ee8cccab56985f7ab
1d5182fc7bdeaa61c5d85491a15dad902fbe93c9
ed8c8c8b8979b564564ddbf0d238414a37ca578ee2b6e71a7ad73ac001f30f71
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:52:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 09a7b0e5b84c483fa9df81e325092d4b
e57713307a2c18a615e3b5e9e21e83b249ecaa46
49478b42b349d714a37ed968b88193ac5269b4bb6dbdd73073bef8fe2092ec6f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:52:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/NAdTarfwBmmVN2jO9_ZDZXbW2JobdXK1pZJ09rC2Bcw.js
142.250.74.164200 OK 14 kB URL HTTP/2 www.google.com/js/th/NAdTarfwBmmVN2jO9_ZDZXbW2JobdXK1pZJ09rC2Bcw.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (35947)
Hash e50215251e55ca26c783e2e9b382e4a9
80a0845ea0b8569e6b04532c7f958ba759b4f207
85041f26f46486b46c2b91fa99da2e214250de0ec79a3c6edb94c73f7fc9243f
GET /js/th/NAdTarfwBmmVN2jO9_ZDZXbW2JobdXK1pZJ09rC2Bcw.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14149
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 05:04:59 GMT
expires: Thu, 21 Sep 2023 05:04:59 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Sep 2022 15:00:00 GMT
content-type: text/javascript
age: 175633
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 96f3639e0f20067a501f4b23622ccf27
a884b6a89d018d029940c30ab48af2bf2faeb00b
c658c6f010108155b7a741ed0b1ee8ddcbc365ead7700ace26560a0be1798afc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:52:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.211.10200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.211.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 23 Sep 2022 05:52:12 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.ytimg.com/vi_webp/HbbecvDLoSM/maxresdefault.webp
216.58.207.214200 OK 24 kB URL HTTP/2 i.ytimg.com/vi_webp/HbbecvDLoSM/maxresdefault.webp
IP 216.58.207.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash bf3dabeeac0704c532a8a5dd67656330
85d38abb0bd57bfaa33d3e4ff110dbb2753224bb
aeffea6c077c31ad8a42e1f5a314fddb4a61dff31ba42ee1cc3e5d20ce6ddeee
GET /vi_webp/HbbecvDLoSM/maxresdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 23802
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 23 Sep 2022 05:52:12 GMT
expires: Fri, 23 Sep 2022 07:52:12 GMT
cache-control: public, max-age=7200
etag: "1623336704"
content-type: image/webp
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.211.10200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.211.10:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 83aee52d051d5ce8859bf82883052be4
fa309018de78e4d360c2cb306340b603a704dd66
5570e82f65eccd727dd6884f4af615c2ada9411e64b2cb70f7594ad77c8d2ae3
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 23 Sep 2022 05:52:12 GMT
server: ESF
cache-control: private
content-length: 30774
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f4589cef50f0426b60bf56a1fadb93a5
7db92337dc8c6161e31f89f49db18c4cd22b871f
db8b6e5f5a4e43b9e8e835e9434f0f94ead7965c04dc4641dad639ac778d8215
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:52:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ab9170d59e1c01422d2c55356248b569
0df99ca360de0b69a7e79d8e79b6383fec4a5453
7747cc09f59efbc03c3663c9be6bb63248a43f8f310c1bae1466255e83a72455
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:52:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 09a7b0e5b84c483fa9df81e325092d4b
e57713307a2c18a615e3b5e9e21e83b249ecaa46
49478b42b349d714a37ed968b88193ac5269b4bb6dbdd73073bef8fe2092ec6f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:52:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bb12d8049e6b06d6f51b3daa17217aef
2816919b2f4509f0f0183c8f3da864fe1d89a650
c860eff6b763d5e2afd0c911d5dfb5b64da84227a0da9e3f8e0645734a1d7c38
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:52:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/4Yl2QFmkHUq0kr-Lw0_9lJd4YN9EYUjfbGutMYWk2haviJr4FrOjEQ01Yma0xZkZAwMuUyW2RA=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 2.0 kB URL HTTP/2 yt3.ggpht.com/4Yl2QFmkHUq0kr-Lw0_9lJd4YN9EYUjfbGutMYWk2haviJr4FrOjEQ01Yma0xZkZAwMuUyW2RA=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data
Hash 5bb232e1cdf3d294276741580edcee1d
1bd4fbfed31e0cf42b90fd65e6ac4379df98825c
637f4c9af77d922cebe55ddcf2d14e3781481174b5a631434ed7be568b71e398
GET /4Yl2QFmkHUq0kr-Lw0_9lJd4YN9EYUjfbGutMYWk2haviJr4FrOjEQ01Yma0xZkZAwMuUyW2RA=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1969
x-xss-protection: 0
date: Fri, 23 Sep 2022 03:05:19 GMT
expires: Wed, 15 Jun 2022 07:18:30 GMT
cache-control: public, max-age=86400, no-transform
age: 10014
etag: "v1"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bb12d8049e6b06d6f51b3daa17217aef
2816919b2f4509f0f0183c8f3da864fe1d89a650
c860eff6b763d5e2afd0c911d5dfb5b64da84227a0da9e3f8e0645734a1d7c38
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 05:52:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ensighten.norton.com/privacy/v1/b/r.rnc?n=0&c=21&i=6n9chm&p=aemprod&s=330&d=8G57InZlcnNpb24iOiIxLjAuMCIsImdhdGV3YXkiOiIyLjMuNTg0IiwiY2xpZW50SWQiOjIxLCJwdWJsaXNoUGF0aCI6ImFlbXByb2QiLCJpbnN0YW5jZUlkIjoiNm45Y2htIiwicGFja2V0IjowLCJtb2RlIjoiZW5mb3JjZVgA8ixvb2tpZXMiOnt9LCJlbnZpcm9ubWVudCI6Ik5PIE5vcnRvbiIsInJlcXVlc3RzIjpbeyJkZXN0aW5hdLYA8BkiLCJ0eXBlIjoiYmlsbGluZyIsInN0YXJ0IjoxNjYzOTEyMzMyNDQ1XwDAZCI6LTEsInNvdXJjMgACKwBhdHVzIjoiZgBAYXNvbmUA1F0sImRhdGFQYXR0ZXISAMJsaXN0IjpbXSwiaWRdAMA5MTIzMzI0NDV9XX0
63.34.68.24204 No Content 0 B URL HTTP/2 ensighten.norton.com/privacy/v1/b/r.rnc?n=0&c=21&i=6n9chm&p=aemprod&s=330&d=8G57InZlcnNpb24iOiIxLjAuMCIsImdhdGV3YXkiOiIyLjMuNTg0IiwiY2xpZW50SWQiOjIxLCJwdWJsaXNoUGF0aCI6ImFlbXByb2QiLCJpbnN0YW5jZUlkIjoiNm45Y2htIiwicGFja2V0IjowLCJtb2RlIjoiZW5mb3JjZVgA8ixvb2tpZXMiOnt9LCJlbnZpcm9ubWVudCI6Ik5PIE5vcnRvbiIsInJlcXVlc3RzIjpbeyJkZXN0aW5hdLYA8BkiLCJ0eXBlIjoiYmlsbGluZyIsInN0YXJ0IjoxNjYzOTEyMzMyNDQ1XwDAZCI6LTEsInNvdXJjMgACKwBhdHVzIjoiZgBAYXNvbmUA1F0sImRhdGFQYXR0ZXISAMJsaXN0IjpbXSwiaWRdAMA5MTIzMzI0NDV9XX0
IP 63.34.68.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /privacy/v1/b/r.rnc?n=0&c=21&i=6n9chm&p=aemprod&s=330&d=8G57InZlcnNpb24iOiIxLjAuMCIsImdhdGV3YXkiOiIyLjMuNTg0IiwiY2xpZW50SWQiOjIxLCJwdWJsaXNoUGF0aCI6ImFlbXByb2QiLCJpbnN0YW5jZUlkIjoiNm45Y2htIiwicGFja2V0IjowLCJtb2RlIjoiZW5mb3JjZVgA8ixvb2tpZXMiOnt9LCJlbnZpcm9ubWVudCI6Ik5PIE5vcnRvbiIsInJlcXVlc3RzIjpbeyJkZXN0aW5hdLYA8BkiLCJ0eXBlIjoiYmlsbGluZyIsInN0YXJ0IjoxNjYzOTEyMzMyNDQ1XwDAZCI6LTEsInNvdXJjMgACKwBhdHVzIjoiZgBAYXNvbmUA1F0sImRhdGFQYXR0ZXISAMJsaXN0IjpbXSwiaWRdAMA5MTIzMzI0NDV9XX0 HTTP/1.1
Host: ensighten.norton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Cookie: dtCookie=v_4_srv_1_sn_3EF5FFFB097FAAC3D00BD266501F571B_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d5365702d32322d323032322032323a35323a31307c4c43443d5365702d32322d323032322032323a35323a3130; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d30392f32332f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d30392d32332d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=FD11B1E13646007E4447A1238749506D; ttControl=5443473d33; AMCV_67C716D751E567F70A490D4C%40AdobeOrg=-1124106680%7CMCIDTS%7C19259%7CMCMID%7C39652827104595000514128068399650536295%7CMCAAMLH-1664517131%7C6%7CMCAAMB-1664517131%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1663919531s%7CNONE%7CvVersion%7C5.2.0; at_check=true; mbox=session#802c895ecf8045c387620e16880b5ef0#1663914193|PC#802c895ecf8045c387620e16880b5ef0.37_0#1727157133; promocode=DEFAULTWEB; AMCVS_67C716D751E567F70A490D4C%40AdobeOrg=1; s_prop22=hho_aff_312695; s_nr=1663912331833-New; event69=event69; channelStack=s_eVar72~norton.com; s_gpv=norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_gpv_custom=norton.com%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_cc=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Fri, 23 Sep 2022 05:52:13 GMT
expires: Fri, 23 Sep 2022 05:52:12 GMT
cache-control: no-cache, no-store
X-Firefox-Spdy: h2
ensighten.norton.com/privacy/v1/c/r.rnc?n=0&c=21&i=7r5gm1&p=aemprod&s=428&d=9CV7InZlcnNpb24iOiIxLjAuMCIsImdhdGV3YXkiOiIyLjMuNTg0IiwiY2xpZW50SWQiOjIxDgDwHk5hbWUiOiJzeW1hbnRlYyIsInB1Ymxpc2hQYXRoIjoiYWVtcHJvZCIsIm1vZCoAkHdoaXRlbGlzdFEA8CNvb2tpZXMiOnsiU1lNQU5URUNfRU5TSUdIVEVOX1BSSVZBQ1lfQkFOTkVSX0xPQURFRKMA8Q8ifSwiZHQiOjE2NjM5MTIzMzI0NjcsInNldHRpbmdPAPEnbW9kYWwiOiJlbnRlcnByaXNlIiwiZW52aXJvbm1lbnQiOiJOTyBOb3J0b24iLCJkZWZhdWx0OwDxH1NvY2lhbCBNZWRpYSI6MCwiUGVyZm9ybWFuY2UgYW5kIEZ1bmN0aW9uYWxpdHkiALJBZHZlcnRpc2luZxAA8ARuYWx5dGljcyI6MH19LCJldmVuXQAiW3sLAEEiOiJj-wBgQ2hhbmdlHgEP0AAABfgAwEFERUQiOiIxIn1dfQ
63.34.68.24204 No Content 0 B URL HTTP/2 ensighten.norton.com/privacy/v1/c/r.rnc?n=0&c=21&i=7r5gm1&p=aemprod&s=428&d=9CV7InZlcnNpb24iOiIxLjAuMCIsImdhdGV3YXkiOiIyLjMuNTg0IiwiY2xpZW50SWQiOjIxDgDwHk5hbWUiOiJzeW1hbnRlYyIsInB1Ymxpc2hQYXRoIjoiYWVtcHJvZCIsIm1vZCoAkHdoaXRlbGlzdFEA8CNvb2tpZXMiOnsiU1lNQU5URUNfRU5TSUdIVEVOX1BSSVZBQ1lfQkFOTkVSX0xPQURFRKMA8Q8ifSwiZHQiOjE2NjM5MTIzMzI0NjcsInNldHRpbmdPAPEnbW9kYWwiOiJlbnRlcnByaXNlIiwiZW52aXJvbm1lbnQiOiJOTyBOb3J0b24iLCJkZWZhdWx0OwDxH1NvY2lhbCBNZWRpYSI6MCwiUGVyZm9ybWFuY2UgYW5kIEZ1bmN0aW9uYWxpdHkiALJBZHZlcnRpc2luZxAA8ARuYWx5dGljcyI6MH19LCJldmVuXQAiW3sLAEEiOiJj-wBgQ2hhbmdlHgEP0AAABfgAwEFERUQiOiIxIn1dfQ
IP 63.34.68.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /privacy/v1/c/r.rnc?n=0&c=21&i=7r5gm1&p=aemprod&s=428&d=9CV7InZlcnNpb24iOiIxLjAuMCIsImdhdGV3YXkiOiIyLjMuNTg0IiwiY2xpZW50SWQiOjIxDgDwHk5hbWUiOiJzeW1hbnRlYyIsInB1Ymxpc2hQYXRoIjoiYWVtcHJvZCIsIm1vZCoAkHdoaXRlbGlzdFEA8CNvb2tpZXMiOnsiU1lNQU5URUNfRU5TSUdIVEVOX1BSSVZBQ1lfQkFOTkVSX0xPQURFRKMA8Q8ifSwiZHQiOjE2NjM5MTIzMzI0NjcsInNldHRpbmdPAPEnbW9kYWwiOiJlbnRlcnByaXNlIiwiZW52aXJvbm1lbnQiOiJOTyBOb3J0b24iLCJkZWZhdWx0OwDxH1NvY2lhbCBNZWRpYSI6MCwiUGVyZm9ybWFuY2UgYW5kIEZ1bmN0aW9uYWxpdHkiALJBZHZlcnRpc2luZxAA8ARuYWx5dGljcyI6MH19LCJldmVuXQAiW3sLAEEiOiJj-wBgQ2hhbmdlHgEP0AAABfgAwEFERUQiOiIxIn1dfQ HTTP/1.1
Host: ensighten.norton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Cookie: dtCookie=v_4_srv_1_sn_3EF5FFFB097FAAC3D00BD266501F571B_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d5365702d32322d323032322032323a35323a31307c4c43443d5365702d32322d323032322032323a35323a3130; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d30392f32332f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d30392d32332d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=FD11B1E13646007E4447A1238749506D; ttControl=5443473d33; AMCV_67C716D751E567F70A490D4C%40AdobeOrg=-1124106680%7CMCIDTS%7C19259%7CMCMID%7C39652827104595000514128068399650536295%7CMCAAMLH-1664517131%7C6%7CMCAAMB-1664517131%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1663919531s%7CNONE%7CvVersion%7C5.2.0; at_check=true; mbox=session#802c895ecf8045c387620e16880b5ef0#1663914193|PC#802c895ecf8045c387620e16880b5ef0.37_0#1727157133; promocode=DEFAULTWEB; AMCVS_67C716D751E567F70A490D4C%40AdobeOrg=1; s_prop22=hho_aff_312695; s_nr=1663912331833-New; event69=event69; channelStack=s_eVar72~norton.com; s_gpv=norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_gpv_custom=norton.com%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_cc=true; SYMANTEC_ENSIGHTEN_PRIVACY_BANNER_LOADED=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Fri, 23 Sep 2022 05:52:13 GMT
expires: Fri, 23 Sep 2022 05:52:12 GMT
cache-control: no-cache, no-store
X-Firefox-Spdy: h2
buy.norton.com/redirector/seo?callback=jQuery31103942427214350943_1663912331562&ptype=cartpopover&COUNTRY=NO&LANGUAGE=no&_=1663912331563
23.32.109.171200 OK 64 B URL HTTP/2 buy.norton.com/redirector/seo?callback=jQuery31103942427214350943_1663912331562&ptype=cartpopover&COUNTRY=NO&LANGUAGE=no&_=1663912331563
IP 23.32.109.171:0
Hash 9b4bafbc1ef29b4921741793ed367de2
19117b1ac978d3f2887381aef2b8078364926e0a
81b6719f5872a2255f3181058d8722abcedb8d6f1551f3031c1a31166424ffcc
GET /redirector/seo?callback=jQuery31103942427214350943_1663912331562&ptype=cartpopover&COUNTRY=NO&LANGUAGE=no&_=1663912331563 HTTP/1.1
Host: buy.norton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Cookie: dtCookie=v_4_srv_1_sn_3EF5FFFB097FAAC3D00BD266501F571B_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; JSESSIONID=FD11B1E13646007E4447A1238749506D; X-CSRF-TOKEN=unKja8XPjZ_UKAbg/w0wKMFo_Aa8hT5nhEqoI7t/kfg_; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d5365702d32322d323032322032323a35323a31307c4c43443d5365702d32322d323032322032323a35323a3130; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d30392f32332f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d30392d32332d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=FD11B1E13646007E4447A1238749506D; ESID=02c2c74f54-6981-4238tAdu_wDpXgSwzqqXlEZdkcN8sgtQ5TJNUy6vQVH0UK6wEkuZUGAFlJNPyxn_NhTJM; ttControl=5443473d33; AMCV_67C716D751E567F70A490D4C%40AdobeOrg=-1124106680%7CMCIDTS%7C19259%7CMCMID%7C39652827104595000514128068399650536295%7CMCAAMLH-1664517131%7C6%7CMCAAMB-1664517131%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1663919531s%7CNONE%7CvVersion%7C5.2.0; at_check=true; mbox=session#802c895ecf8045c387620e16880b5ef0#1663914193|PC#802c895ecf8045c387620e16880b5ef0.37_0#1727157133; promocode=DEFAULTWEB; AMCVS_67C716D751E567F70A490D4C%40AdobeOrg=1; s_prop22=hho_aff_312695; s_nr=1663912331833-New; event69=event69; channelStack=s_eVar72~norton.com; s_gpv=norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_gpv_custom=norton.com%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_cc=true; SYMANTEC_ENSIGHTEN_PRIVACY_BANNER_LOADED=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript;charset=utf-8
content-length: 64
x-oneagent-js-injection: true
server-timing: dtRpid;desc="512069588", dtSInfo;desc="0"
requestid: e318727db22a0000
strict-transport-security: max-age=31536000; includeSubDomains
expires: Fri, 23 Sep 2022 05:52:13 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 23 Sep 2022 05:52:13 GMT
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.211.10200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.211.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 23 Sep 2022 05:52:13 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.211.10200 OK 110 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.211.10:0
File type JSON data\012- , ASCII text, with no line terminators
Hash b9ba9b87824c2db552387dab35ff8006
8c1eb003cc54ba75a61e519511df870beb32f7ea
e8fbff744e5763cf7a4cdced6f3f2c5d3372d8ed1175291b24acd96dc6c39045
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 839
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 23 Sep 2022 05:52:13 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ensighten.norton.com/privacy/v1/b/r.rnc?n=1&c=21&i=6n9chm&p=aemprod&s=8522&d=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-IAB_AFc3ltYW50ZWMuZGVtZGV4Lm5ldC_uAfEBNS5odG1sP2RfbnNpZD0wI_QBmSUzQSUyRiUyRvoBMyIsIt0BYmlmcmFtZZ8BCuABPTgyNP4ANzgyN-ABAjwA4V9ET01BdHRyTW9kaWZp2AEyc3Rh6wFRYmxvY2sTACRyZesBYSJXaGl0ZdwBD_YBCbYiQW5hbHl0aWNzIgECrzM5OTMyNTY0NzQfAQfhY20uZXZlcmVzdHRlY2geAfckY20vZGQ_ZF91dWlkPTM5ODQ3MzAxODg0ODY5NTM2MzQ0MTA4MDU4MjQ2Mjc0MjgzNDc4IgEvbWcfAQMfOB8BAAj_Aj9pbWccAUanZHZlcnRpc2luZx4BALsAbzM5MzY3Mh4BBzhvbXMCBFRiL3NzL1ECABME8DwxL0pTLTIuMjIuMC9zNTMxNTAwNzgyMDUzNzc_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_IjoiIwYMH2EqCSavNDI0MjkyNjA2NgsGBwT3BaEudHQub210cmRjLQclbTIRBmAvbWJveC8OChA_CgDAPXN5bV9nbG9iYWxfEAAQJgUAMFNlcxoL8RI9ODAyYzg5NWVjZjgwNDVjMzg3NjIwZTE2ODgwYjVlZjAtADJQQz0IAPEVYWdlPTk0MWU3OWMxNDk0ZjQyZDZiNDUzN2FjMjdlODA3YjY2KgDwE1JpZD1kMDg5N2Y1MGU4OGY0YThmYTc3MzBhMjAwYTA4YjK7AUJib3hWogthPTEuOC4yOwBxQ291bnQ9MQwAVlRpbWU9qAoxNDY4FwBZSG9zdD0aCQEXAD9VUkwEBqoAmAGCUmVmZXJyZXJxAfEOWERvbWFpbj1lbmFibGVkJmJyb3dzZXJIZWlnaHT_AgMSAKRXaWR0aD0xMjY4JAAAOwHzAE9mZnNldD0wJnNjcmVlbjcAAVkDAhIABDcA0DgwJmNvbG9yRGVwdGhzA8BkZXZpY2VQaXhlbFKNDCM9MUQAIE9yLA0AEwDwEm49bGFuZHNjYXBlJnByb2ZpbGUuVENHPTMmdmVuZG9yX6sKAlEGcnByb2dyYW0SAAl2BGBzaXRlX2PyASByeYMGARAAMHNlYwANB-8E7yZjb250ZW50X3RpdGxlgwUTAUsAUGxhbmd1tgJQbm8mdHLABiJjX8cDED0NAAHNBjNzJkXdBBND3AQP7gQIAVYARHN1Yl-lAAfaBUBjdXJypQDBc3ViY2hhbm5lbD0mMAAPvgAgmG9yaWdpbmFsX00ABGcBD2EBAQGAAQ9pAQcEOwADkAA4dW50cQEA0AAABAADeQEwbWlzpApJJiUyMDgABPQABp0HBfoBAVgACG4BBDkAPyUyMHkBBwQlAA-BARgEMwAxJTIwdAAPjAEEBCcAD5QBAQQcAAFAAA-cASAEQAAPpAECAMUDb01DU0RJRD0LEZ9ib3hNQ0dWSUQHCBUAXwBPQUFNQu4JIwA-AHZNQ0dMSD02BwcPKRAEPjg0MSoNJzQySQ4PKRA-rzQxMTQ0MDE2Njn_Bv_______3cfMv8GZS83MP8GBw8JFP______Xw8CDQA3OTkwAg0xbXV0CxEiT2LAFxJBcxoCRhs_bG9hLh0hBQQUDwUNCDhidXkPGvAVcmVkaXJlY3Rvci9zZW8_Y2FsbGJhY2s9alF1ZXJ5MzExMDM5VwC2NzIxNDM1MDk0M19VE1E1NjImcKwR8BBjYXJ0cG9wb3ZlciZDT1VOVFJZPU5PJkxBTkdVQUdFoBEXX44TNjU2M0UOYnNjcmlwdP8ACZEcTDI0NzZJB0cyNTU0RgGgYXBwZW5kQ2hpbDABBYYcD0ABJJ8yMzY0MjIxMTBGBwgPQAGaHTmIDwtAAQyGAiJDTIgBD4cCKtAyMzY0MjIxMTE1fV19
63.34.68.24204 No Content 0 B URL HTTP/2 ensighten.norton.com/privacy/v1/b/r.rnc?n=1&c=21&i=6n9chm&p=aemprod&s=8522&d=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-IAB_AFc3ltYW50ZWMuZGVtZGV4Lm5ldC_uAfEBNS5odG1sP2RfbnNpZD0wI_QBmSUzQSUyRiUyRvoBMyIsIt0BYmlmcmFtZZ8BCuABPTgyNP4ANzgyN-ABAjwA4V9ET01BdHRyTW9kaWZp2AEyc3Rh6wFRYmxvY2sTACRyZesBYSJXaGl0ZdwBD_YBCbYiQW5hbHl0aWNzIgECrzM5OTMyNTY0NzQfAQfhY20uZXZlcmVzdHRlY2geAfckY20vZGQ_ZF91dWlkPTM5ODQ3MzAxODg0ODY5NTM2MzQ0MTA4MDU4MjQ2Mjc0MjgzNDc4IgEvbWcfAQMfOB8BAAj_Aj9pbWccAUanZHZlcnRpc2luZx4BALsAbzM5MzY3Mh4BBzhvbXMCBFRiL3NzL1ECABME8DwxL0pTLTIuMjIuMC9zNTMxNTAwNzgyMDUzNzc_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_IjoiIwYMH2EqCSavNDI0MjkyNjA2NgsGBwT3BaEudHQub210cmRjLQclbTIRBmAvbWJveC8OChA_CgDAPXN5bV9nbG9iYWxfEAAQJgUAMFNlcxoL8RI9ODAyYzg5NWVjZjgwNDVjMzg3NjIwZTE2ODgwYjVlZjAtADJQQz0IAPEVYWdlPTk0MWU3OWMxNDk0ZjQyZDZiNDUzN2FjMjdlODA3YjY2KgDwE1JpZD1kMDg5N2Y1MGU4OGY0YThmYTc3MzBhMjAwYTA4YjK7AUJib3hWogthPTEuOC4yOwBxQ291bnQ9MQwAVlRpbWU9qAoxNDY4FwBZSG9zdD0aCQEXAD9VUkwEBqoAmAGCUmVmZXJyZXJxAfEOWERvbWFpbj1lbmFibGVkJmJyb3dzZXJIZWlnaHT_AgMSAKRXaWR0aD0xMjY4JAAAOwHzAE9mZnNldD0wJnNjcmVlbjcAAVkDAhIABDcA0DgwJmNvbG9yRGVwdGhzA8BkZXZpY2VQaXhlbFKNDCM9MUQAIE9yLA0AEwDwEm49bGFuZHNjYXBlJnByb2ZpbGUuVENHPTMmdmVuZG9yX6sKAlEGcnByb2dyYW0SAAl2BGBzaXRlX2PyASByeYMGARAAMHNlYwANB-8E7yZjb250ZW50X3RpdGxlgwUTAUsAUGxhbmd1tgJQbm8mdHLABiJjX8cDED0NAAHNBjNzJkXdBBND3AQP7gQIAVYARHN1Yl-lAAfaBUBjdXJypQDBc3ViY2hhbm5lbD0mMAAPvgAgmG9yaWdpbmFsX00ABGcBD2EBAQGAAQ9pAQcEOwADkAA4dW50cQEA0AAABAADeQEwbWlzpApJJiUyMDgABPQABp0HBfoBAVgACG4BBDkAPyUyMHkBBwQlAA-BARgEMwAxJTIwdAAPjAEEBCcAD5QBAQQcAAFAAA-cASAEQAAPpAECAMUDb01DU0RJRD0LEZ9ib3hNQ0dWSUQHCBUAXwBPQUFNQu4JIwA-AHZNQ0dMSD02BwcPKRAEPjg0MSoNJzQySQ4PKRA-rzQxMTQ0MDE2Njn_Bv_______3cfMv8GZS83MP8GBw8JFP______Xw8CDQA3OTkwAg0xbXV0CxEiT2LAFxJBcxoCRhs_bG9hLh0hBQQUDwUNCDhidXkPGvAVcmVkaXJlY3Rvci9zZW8_Y2FsbGJhY2s9alF1ZXJ5MzExMDM5VwC2NzIxNDM1MDk0M19VE1E1NjImcKwR8BBjYXJ0cG9wb3ZlciZDT1VOVFJZPU5PJkxBTkdVQUdFoBEXX44TNjU2M0UOYnNjcmlwdP8ACZEcTDI0NzZJB0cyNTU0RgGgYXBwZW5kQ2hpbDABBYYcD0ABJJ8yMzY0MjIxMTBGBwgPQAGaHTmIDwtAAQyGAiJDTIgBD4cCKtAyMzY0MjIxMTE1fV19
IP 63.34.68.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /privacy/v1/b/r.rnc?n=1&c=21&i=6n9chm&p=aemprod&s=8522&d=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-IAB_AFc3ltYW50ZWMuZGVtZGV4Lm5ldC_uAfEBNS5odG1sP2RfbnNpZD0wI_QBmSUzQSUyRiUyRvoBMyIsIt0BYmlmcmFtZZ8BCuABPTgyNP4ANzgyN-ABAjwA4V9ET01BdHRyTW9kaWZp2AEyc3Rh6wFRYmxvY2sTACRyZesBYSJXaGl0ZdwBD_YBCbYiQW5hbHl0aWNzIgECrzM5OTMyNTY0NzQfAQfhY20uZXZlcmVzdHRlY2geAfckY20vZGQ_ZF91dWlkPTM5ODQ3MzAxODg0ODY5NTM2MzQ0MTA4MDU4MjQ2Mjc0MjgzNDc4IgEvbWcfAQMfOB8BAAj_Aj9pbWccAUanZHZlcnRpc2luZx4BALsAbzM5MzY3Mh4BBzhvbXMCBFRiL3NzL1ECABME8DwxL0pTLTIuMjIuMC9zNTMxNTAwNzgyMDUzNzc_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_IjoiIwYMH2EqCSavNDI0MjkyNjA2NgsGBwT3BaEudHQub210cmRjLQclbTIRBmAvbWJveC8OChA_CgDAPXN5bV9nbG9iYWxfEAAQJgUAMFNlcxoL8RI9ODAyYzg5NWVjZjgwNDVjMzg3NjIwZTE2ODgwYjVlZjAtADJQQz0IAPEVYWdlPTk0MWU3OWMxNDk0ZjQyZDZiNDUzN2FjMjdlODA3YjY2KgDwE1JpZD1kMDg5N2Y1MGU4OGY0YThmYTc3MzBhMjAwYTA4YjK7AUJib3hWogthPTEuOC4yOwBxQ291bnQ9MQwAVlRpbWU9qAoxNDY4FwBZSG9zdD0aCQEXAD9VUkwEBqoAmAGCUmVmZXJyZXJxAfEOWERvbWFpbj1lbmFibGVkJmJyb3dzZXJIZWlnaHT_AgMSAKRXaWR0aD0xMjY4JAAAOwHzAE9mZnNldD0wJnNjcmVlbjcAAVkDAhIABDcA0DgwJmNvbG9yRGVwdGhzA8BkZXZpY2VQaXhlbFKNDCM9MUQAIE9yLA0AEwDwEm49bGFuZHNjYXBlJnByb2ZpbGUuVENHPTMmdmVuZG9yX6sKAlEGcnByb2dyYW0SAAl2BGBzaXRlX2PyASByeYMGARAAMHNlYwANB-8E7yZjb250ZW50X3RpdGxlgwUTAUsAUGxhbmd1tgJQbm8mdHLABiJjX8cDED0NAAHNBjNzJkXdBBND3AQP7gQIAVYARHN1Yl-lAAfaBUBjdXJypQDBc3ViY2hhbm5lbD0mMAAPvgAgmG9yaWdpbmFsX00ABGcBD2EBAQGAAQ9pAQcEOwADkAA4dW50cQEA0AAABAADeQEwbWlzpApJJiUyMDgABPQABp0HBfoBAVgACG4BBDkAPyUyMHkBBwQlAA-BARgEMwAxJTIwdAAPjAEEBCcAD5QBAQQcAAFAAA-cASAEQAAPpAECAMUDb01DU0RJRD0LEZ9ib3hNQ0dWSUQHCBUAXwBPQUFNQu4JIwA-AHZNQ0dMSD02BwcPKRAEPjg0MSoNJzQySQ4PKRA-rzQxMTQ0MDE2Njn_Bv_______3cfMv8GZS83MP8GBw8JFP______Xw8CDQA3OTkwAg0xbXV0CxEiT2LAFxJBcxoCRhs_bG9hLh0hBQQUDwUNCDhidXkPGvAVcmVkaXJlY3Rvci9zZW8_Y2FsbGJhY2s9alF1ZXJ5MzExMDM5VwC2NzIxNDM1MDk0M19VE1E1NjImcKwR8BBjYXJ0cG9wb3ZlciZDT1VOVFJZPU5PJkxBTkdVQUdFoBEXX44TNjU2M0UOYnNjcmlwdP8ACZEcTDI0NzZJB0cyNTU0RgGgYXBwZW5kQ2hpbDABBYYcD0ABJJ8yMzY0MjIxMTBGBwgPQAGaHTmIDwtAAQyGAiJDTIgBD4cCKtAyMzY0MjIxMTE1fV19 HTTP/1.1
Host: ensighten.norton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Cookie: dtCookie=v_4_srv_1_sn_3EF5FFFB097FAAC3D00BD266501F571B_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d5365702d32322d323032322032323a35323a31307c4c43443d5365702d32322d323032322032323a35323a3130; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d30392f32332f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d30392d32332d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=FD11B1E13646007E4447A1238749506D; ttControl=5443473d33; AMCV_67C716D751E567F70A490D4C%40AdobeOrg=-1124106680%7CMCIDTS%7C19259%7CMCMID%7C39652827104595000514128068399650536295%7CMCAAMLH-1664517131%7C6%7CMCAAMB-1664517131%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1663919531s%7CNONE%7CvVersion%7C5.2.0; at_check=true; mbox=session#802c895ecf8045c387620e16880b5ef0#1663914193|PC#802c895ecf8045c387620e16880b5ef0.37_0#1727157133; promocode=DEFAULTWEB; AMCVS_67C716D751E567F70A490D4C%40AdobeOrg=1; s_prop22=hho_aff_312695; s_nr=1663912331833-New; event69=event69; channelStack=s_eVar72~norton.com; s_gpv=norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_gpv_custom=norton.com%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_cc=true; SYMANTEC_ENSIGHTEN_PRIVACY_BANNER_LOADED=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Fri, 23 Sep 2022 05:52:14 GMT
expires: Fri, 23 Sep 2022 05:52:13 GMT
cache-control: no-cache, no-store
X-Firefox-Spdy: h2
no.norton.com/etc/designs/global/libs-global/head/styles/fonts/source-sans-variable/SSV-Latin.woff2
23.38.200.126200 OK 0 B URL HTTP/2 no.norton.com/etc/designs/global/libs-global/head/styles/fonts/source-sans-variable/SSV-Latin.woff2
IP 23.38.200.126:0
GET /etc/designs/global/libs-global/head/styles/fonts/source-sans-variable/SSV-Latin.woff2 HTTP/1.1
Host: no.norton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=VdRwTKzIzxyNU1AXoSTPUU5XUkDTVnUJD1MORM0&adid=1078124&IRID=312695&source=ir
Cookie: dtCookie=v_4_srv_1_sn_3EF5FFFB097FAAC3D00BD266501F571B_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d5365702d32322d323032322032323a35323a31307c4c43443d5365702d32322d323032322032323a35323a3130; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d30392f32332f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d30392d32332d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=FD11B1E13646007E4447A1238749506D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
server: Apache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Thu, 07 Oct 2021 05:17:42 GMT
etag: "f2c0-5cdbc61dc4c00"
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31431837
expires: Fri, 22 Sep 2023 00:56:08 GMT
date: Fri, 23 Sep 2022 05:52:11 GMT
X-Firefox-Spdy: h2
ensighten.norton.com/symantec/aemprod/Bootstrap.js
63.34.68.24200 OK 0 B URL HTTP/2 ensighten.norton.com/symantec/aemprod/Bootstrap.js
IP 63.34.68.24:0
GET /symantec/aemprod/Bootstrap.js HTTP/1.1
Host: ensighten.norton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Cookie: dtCookie=v_4_srv_1_sn_3EF5FFFB097FAAC3D00BD266501F571B_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d5365702d32322d323032322032323a35323a31307c4c43443d5365702d32322d323032322032323a35323a3130; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d30392f32332f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d30392d32332d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=FD11B1E13646007E4447A1238749506D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 05:52:11 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Thu, 22 Sep 2022 00:11:42 GMT
etag: W/"4a38b8efbe3e528f3ca409867c14b78f"
x-amz-server-side-encryption: AES256
cache-control: max-age=300
x-amz-version-id: Bm4SzZj6kuhyVMPtCk20YZT97NxEUOQF
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4ef5b810a61123a6a28e9f07ba613430.cloudfront.net (CloudFront)
x-amz-cf-pop: DUB56-P1
x-amz-cf-id: LiIBOfzz_H1VwogsAJ5JARy1Nx-XhHVS1iJ2JAds2Tw_QnpxyTqqMQ==
age: 106741
X-Firefox-Spdy: h2