bhu.highprotectionpc.site/c/85a0cb65bbf84367
52.19.101.114302 Found 350 B URL HTTP/1.1 bhu.highprotectionpc.site/c/85a0cb65bbf84367
IP 52.19.101.114:0
File type HTML document, ASCII text, with very long lines (348)
Hash 83c3f5334dcd25ec79564e5ce2e5cb69
3cf77d8477b785d342f98be83795bd3506127a4d
ba87ec645a3040fd845c49b38a47e59dfcb1fd634bdd973469a6311f8f26daf8
Analyzer Verdict Alert fortinet Phishing
GET /c/85a0cb65bbf84367 HTTP/1.1
Host: bhu.highprotectionpc.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 19 Nov 2022 19:11:54 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 350
Connection: keep-alive
Location: https://nfuq.hdrefertrck.com/redirect/index?type=script&to=aHR0cHM6Ly9uZnVxLmhkcmVmZXJ0cmNrLmNvbQ==&data=aHR0cHM6Ly9sbHRsLWdsby5taW5pZ2xvYmFsY2l0aXplbnMuY29tL3QvY2xrP2Jyb3dzZXI9JmNhbXA9JmZlZWQ9JmlkPW5SQXJpMzFBdTA0NkRzZzA3Z1Q3Jm9zPSZwZHBpZD0mczE9JnMyPW56Y2NqNjM3OTJhN2EwMDBlYmJkNCZzMz0mczQ9JnNpdGU9&action=action_tmp
Set-Cookie: unique_id=63792a7a00030ce0; Path=/; Expires=Wed, 18 Jan 2023 19:11:54 GMT
unique_id2=63792a7a000316a1; Path=/; Expires=Fri, 17 Feb 2023 19:11:54 GMT
impression=; Path=/; Expires=Sat, 19 Nov 2022 19:11:54 GMT
tid=nzccj63792a7a000ebbd4; Path=/; Expires=Sun, 24 Oct 2027 19:11:54 GMT
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash eb76c0b3adf4098ad8a9d1e38250758f
99610ddb2b4ec6d04250ac244f966951695d4f00
01ed8c191c175471aee23cbc196d558e5bf5209f166806fc97db08eb06544bab
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01ED8C191C175471AEE23CBC196D558E5BF5209F166806FC97DB08EB06544BAB"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16794
Expires: Sat, 19 Nov 2022 23:51:48 GMT
Date: Sat, 19 Nov 2022 19:11:54 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f732c50f6a2482aeea20552e0370c2d0
6f33119d5c38e92a0a62f3a46766ff86014e4d68
a47e38c199c5fecd5594544a3889e1cfca5547d85f19056f06eaeeadf17f4fe9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6273
Cache-Control: max-age=147832
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 19:11:54 GMT
Etag: "6378b071-1d7"
Expires: Mon, 21 Nov 2022 12:15:46 GMT
Last-Modified: Sat, 19 Nov 2022 10:31:13 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 19 Nov 2022 18:45:10 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1604
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1cee7787feebac18f9eca273e56e3741
3a7dac544172921e24c2a1701beef5079b21d01b
79ff4a450c749d64e116c00ca3b00d40e968906c5c3881d6eeb2dc6374a4c858
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "79FF4A450C749D64E116C00CA3B00D40E968906C5C3881D6EEB2DC6374A4C858"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14338
Expires: Sat, 19 Nov 2022 23:10:52 GMT
Date: Sat, 19 Nov 2022 19:11:54 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 3CZWzKUqWLjQeWHsIGGUgdDQugvQKSUCvq3a3aolGBOZpyp388k2RFdfuY3Ov84Ta2f8EyMeh7k=
x-amz-request-id: Q0XG6K8X5BX9H2VE
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 19 Nov 2022 18:38:25 GMT
age: 2009
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 60695e2c2669ada1c6a6cb8d298874af
5a732734d0034bab36176ea4f74156c8677f70e0
53961577d68e2e699159346c6682172ed66b4d6fa6656cc1e841496b8826dbae
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "53961577D68E2E699159346C6682172ED66B4D6FA6656CC1E841496B8826DBAE"
Last-Modified: Sat, 19 Nov 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2339
Expires: Sat, 19 Nov 2022 19:50:53 GMT
Date: Sat, 19 Nov 2022 19:11:54 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 19 Nov 2022 19:11:54 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
nfuq.hdrefertrck.com/redirect/index?type=script&to=aHR0cHM6Ly9uZnVxLmhkcmVmZXJ0cmNrLmNvbQ==&data=aHR0cHM6Ly9sbHRsLWdsby5taW5pZ2xvYmFsY2l0aXplbnMuY29tL3QvY2xrP2Jyb3dzZXI9JmNhbXA9JmZlZWQ9JmlkPW5SQXJpMzFBdTA0NkRzZzA3Z1Q3Jm9zPSZwZHBpZD0mczE9JnMyPW56Y2NqNjM3OTJhN2EwMDBlYmJkNCZzMz0mczQ9JnNpdGU9&action=action_tmp
52.19.101.114200 OK 327 B URL HTTP/2 nfuq.hdrefertrck.com/redirect/index?type=script&to=aHR0cHM6Ly9uZnVxLmhkcmVmZXJ0cmNrLmNvbQ==&data=aHR0cHM6Ly9sbHRsLWdsby5taW5pZ2xvYmFsY2l0aXplbnMuY29tL3QvY2xrP2Jyb3dzZXI9JmNhbXA9JmZlZWQ9JmlkPW5SQXJpMzFBdTA0NkRzZzA3Z1Q3Jm9zPSZwZHBpZD0mczE9JnMyPW56Y2NqNjM3OTJhN2EwMDBlYmJkNCZzMz0mczQ9JnNpdGU9&action=action_tmp
IP 52.19.101.114:0
File type HTML document, ASCII text, with very long lines (327), with no line terminators
Hash d0ec6f0203746b6bfa277c026d143e60
cfa849184330b2359a4d6758dd44025eb5d4374b
e5746ead72e6d11574f7b683a00e4701d45f45e14dc6a12aaa58a701929d06e6
GET /redirect/index?type=script&to=aHR0cHM6Ly9uZnVxLmhkcmVmZXJ0cmNrLmNvbQ==&data=aHR0cHM6Ly9sbHRsLWdsby5taW5pZ2xvYmFsY2l0aXplbnMuY29tL3QvY2xrP2Jyb3dzZXI9JmNhbXA9JmZlZWQ9JmlkPW5SQXJpMzFBdTA0NkRzZzA3Z1Q3Jm9zPSZwZHBpZD0mczE9JnMyPW56Y2NqNjM3OTJhN2EwMDBlYmJkNCZzMz0mczQ9JnNpdGU9&action=action_tmp HTTP/1.1
Host: nfuq.hdrefertrck.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Sat, 19 Nov 2022 19:11:54 GMT
content-type: text/html; charset=utf-8
content-length: 327
X-Firefox-Spdy: h2
nfuq.hdrefertrck.com/redirect/index?type=script&to=aHR0cHM6Ly9uZnVxLmhkcmVmZXJ0cmNrLmNvbQ==&data=aHR0cHM6Ly9sbHRsLWdsby5taW5pZ2xvYmFsY2l0aXplbnMuY29tL3QvY2xrP2Jyb3dzZXI9JmNhbXA9JmZlZWQ9JmlkPW5SQXJpMzFBdTA0NkRzZzA3Z1Q3Jm9zPSZwZHBpZD0mczE9JnMyPW56Y2NqNjM3OTJhN2EwMDBlYmJkNCZzMz0mczQ9JnNpdGU9&action=action_final
52.19.101.114200 OK 182 B URL HTTP/2 nfuq.hdrefertrck.com/redirect/index?type=script&to=aHR0cHM6Ly9uZnVxLmhkcmVmZXJ0cmNrLmNvbQ==&data=aHR0cHM6Ly9sbHRsLWdsby5taW5pZ2xvYmFsY2l0aXplbnMuY29tL3QvY2xrP2Jyb3dzZXI9JmNhbXA9JmZlZWQ9JmlkPW5SQXJpMzFBdTA0NkRzZzA3Z1Q3Jm9zPSZwZHBpZD0mczE9JnMyPW56Y2NqNjM3OTJhN2EwMDBlYmJkNCZzMz0mczQ9JnNpdGU9&action=action_final
IP 52.19.101.114:0
File type HTML document, ASCII text, with no line terminators
Hash 05995adbf0e066e104f2548214f6ad82
a145d0151df2ebe464cb23d57f1881d68a21f7da
4289ca8bb1873bea6461b75fd741f9ea68ec640d71128ea36445a15d864f0449
GET /redirect/index?type=script&to=aHR0cHM6Ly9uZnVxLmhkcmVmZXJ0cmNrLmNvbQ==&data=aHR0cHM6Ly9sbHRsLWdsby5taW5pZ2xvYmFsY2l0aXplbnMuY29tL3QvY2xrP2Jyb3dzZXI9JmNhbXA9JmZlZWQ9JmlkPW5SQXJpMzFBdTA0NkRzZzA3Z1Q3Jm9zPSZwZHBpZD0mczE9JnMyPW56Y2NqNjM3OTJhN2EwMDBlYmJkNCZzMz0mczQ9JnNpdGU9&action=action_final HTTP/1.1
Host: nfuq.hdrefertrck.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nfuq.hdrefertrck.com/redirect/index?type=script&to=aHR0cHM6Ly9uZnVxLmhkcmVmZXJ0cmNrLmNvbQ==&data=aHR0cHM6Ly9sbHRsLWdsby5taW5pZ2xvYmFsY2l0aXplbnMuY29tL3QvY2xrP2Jyb3dzZXI9JmNhbXA9JmZlZWQ9JmlkPW5SQXJpMzFBdTA0NkRzZzA3Z1Q3Jm9zPSZwZHBpZD0mczE9JnMyPW56Y2NqNjM3OTJhN2EwMDBlYmJkNCZzMz0mczQ9JnNpdGU9&action=action_tmp
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 19 Nov 2022 19:11:54 GMT
content-type: text/html; charset=utf-8
content-length: 182
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 19 Nov 2022 18:44:49 GMT
cache-control: public,max-age=3600
age: 1625
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash b14e9f82dc4e0a58af03bd50ca46b9c3
fb54f1aeec33fc0bbd24310621a774ca8c8cb6f6
a14ef4076abe5cb9d6a10f3c2c19448bbdfdfd6a7bc1fb589f69a57d18837df6
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sat, 19 Nov 2022 19:11:54 GMT
Server: ECS (dcb/7EEA)
X-Cache: Miss from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Wjb142sxVKkIaecnVAlWgpcHar5tjQHh911lmiXzClSmQLREcPIESQ==
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 060d538b33e370fcd033339830d33a42
4a37d427988358eb318e18e2678c3484ef4a5ebd
efa33f92547243814b5bd3bca4f94d26055d590a4431611b3ba251a8d774bfbb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1987
Cache-Control: max-age=138484
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 19:11:55 GMT
Etag: "63789cac-1d7"
Expires: Mon, 21 Nov 2022 09:39:59 GMT
Last-Modified: Sat, 19 Nov 2022 09:06:52 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
lltl-glo.miniglobalcitizens.com/t/clk?browser=&camp=&feed=&id=nRAri31Au046Dsg07gT7&os=&pdpid=&s1=&s2=nzccj63792a7a000ebbd4&s3=&s4=&site=
52.28.59.112302 Found 0 B URL HTTP/2 lltl-glo.miniglobalcitizens.com/t/clk?browser=&camp=&feed=&id=nRAri31Au046Dsg07gT7&os=&pdpid=&s1=&s2=nzccj63792a7a000ebbd4&s3=&s4=&site=
IP 52.28.59.112:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t/clk?browser=&camp=&feed=&id=nRAri31Au046Dsg07gT7&os=&pdpid=&s1=&s2=nzccj63792a7a000ebbd4&s3=&s4=&site= HTTP/1.1
Host: lltl-glo.miniglobalcitizens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nfuq.hdrefertrck.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 19 Nov 2022 19:11:55 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://norton.ow5a.net/c/312695/1078124/4405?subId1=53df1c1f-f66d-4d40-abd0-435a6aa73af7&SharedId=15076_4971
server: nginx/1.12.2
cache-control: no-transform
x-frame-options: SAMEORIGIN
vary: Cookie, Origin
set-cookie: uip="[\"R2B63fhGM\"\054 {\"6PA6P\": \"LpmAW0w\"}]:1owTFr:39tbTD7vA7E9e8osjlqjuL-mrx0"; expires=Mon, 19 Dec 2022 19:11:55 GMT; Max-Age=2592000; Path=/
ydt_dae725d917dd452eabbbfbf3047471fd="[\"53df1c1f-f66d-4d40-abd0-435a6aa73af7\"]:1owTFr:eWc7NdgTXe2UczvV0QCE1apqVqI"; expires=Mon, 19 Dec 2022 20:11:55 GMT; Max-Age=2595600; Path=/; SameSite=None; Secure
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash d11d2b90783dfa8dffec0e7f341563e9
53316e1c75fa58e888f6564fd6b67a09390439f0
c826afcc899c6de6a3ed07cde0525bb591324b00a30ac00cc79533c0b6466539
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=89389
Date: Sat, 19 Nov 2022 19:11:55 GMT
Etag: "6377d4e1-1d7"
Expires: Sun, 20 Nov 2022 20:01:44 GMT
Last-Modified: Fri, 18 Nov 2022 18:54:25 GMT
Server: ECS (dcb/7FA8)
X-Cache: Miss from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 0l2y2PopOsTFJALYm2F5IhW6BfOCAmzH5dr18NSZsJxumZo_MFb2NA==
Age: 4039
norton.ow5a.net/c/312695/1078124/4405?subId1=53df1c1f-f66d-4d40-abd0-435a6aa73af7&SharedId=15076_4971
52.19.8.86302 Found 289 B URL HTTP/2 norton.ow5a.net/c/312695/1078124/4405?subId1=53df1c1f-f66d-4d40-abd0-435a6aa73af7&SharedId=15076_4971
IP 52.19.8.86:0
File type HTML document, ASCII text
Hash 3dd92817ef1427cf97bf1a9eac55c8a0
e69b27a7ee3673c2f2f7c60a410fee64e979055f
e23b02e5f340b3920ceb0fa59928272df807f589ca09ba931831f1886a1fe6a6
GET /c/312695/1078124/4405?subId1=53df1c1f-f66d-4d40-abd0-435a6aa73af7&SharedId=15076_4971 HTTP/1.1
Host: norton.ow5a.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nfuq.hdrefertrck.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 19 Nov 2022 19:11:55 GMT
content-type: text/html; charset=utf-8
content-length: 289
location: https://www.ojrq.net/p/?return=https%3A%2F%2Fnorton.ow5a.net%2Fc%2F312695%2F1078124%2F4405%3FsubId1%3D53df1c1f-f66d-4d40-abd0-435a6aa73af7%26SharedId%3D15076_4971%26level%3D1%26srcref%3Dhttps%253A%252F%252Fnfuq.hdrefertrck.com%252F&cid=4405&tpsync=yes
set-cookie: AWSALB=lo78Z5g7VPYp8JSYvA4ITbWe+RglzWAEA68Js3SUqizItochwOIg9xQ8B/XavIlAFr7IqW5YHslAcjPthF7ZAJYZMi4cjIGV/sEP5ItmqjERrz5g6rUOafI/g6ef; Expires=Sat, 26 Nov 2022 19:11:55 GMT; Path=/
AWSALBCORS=lo78Z5g7VPYp8JSYvA4ITbWe+RglzWAEA68Js3SUqizItochwOIg9xQ8B/XavIlAFr7IqW5YHslAcjPthF7ZAJYZMi4cjIGV/sEP5ItmqjERrz5g6rUOafI/g6ef; Expires=Sat, 26 Nov 2022 19:11:55 GMT; Path=/; SameSite=None; Secure
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
expires: Sat, 19 Nov 2022 19:11:55 GMT
p3p: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT"
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.186.117.16101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.186.117.16:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: A/8UBg+Yo/EeMLSbrGOlTg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 27hyItDsx15J7EWPiuY9vAsF6K0=
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash e1a2788d684b193a979651087d710506
0f6215dc50ff05b41c32b5b78481ff79d42578f6
c42886f0419af50034cb2d4e35033c38f95917b13ba47806fc374b7ba29cc38f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 19 Nov 2022 19:11:55 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 19 Nov 2022 05:55:46 GMT
Expires: Sat, 26 Nov 2022 05:55:45 GMT
Etag: "0f6215dc50ff05b41c32b5b78481ff79d42578f6"
Cache-Control: max-age=556429,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76cb41239896b518-OSL
www.ojrq.net/p/?return=https%3A%2F%2Fnorton.ow5a.net%2Fc%2F312695%2F1078124%2F4405%3FsubId1%3D53df1c1f-f66d-4d40-abd0-435a6aa73af7%26SharedId%3D15076_4971%26level%3D1%26srcref%3Dhttps%253A%252F%252Fnfuq.hdrefertrck.com%252F&cid=4405&tpsync=yes
34.95.127.121302 Found 0 B URL HTTP/2 www.ojrq.net/p/?return=https%3A%2F%2Fnorton.ow5a.net%2Fc%2F312695%2F1078124%2F4405%3FsubId1%3D53df1c1f-f66d-4d40-abd0-435a6aa73af7%26SharedId%3D15076_4971%26level%3D1%26srcref%3Dhttps%253A%252F%252Fnfuq.hdrefertrck.com%252F&cid=4405&tpsync=yes
IP 34.95.127.121:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/?return=https%3A%2F%2Fnorton.ow5a.net%2Fc%2F312695%2F1078124%2F4405%3FsubId1%3D53df1c1f-f66d-4d40-abd0-435a6aa73af7%26SharedId%3D15076_4971%26level%3D1%26srcref%3Dhttps%253A%252F%252Fnfuq.hdrefertrck.com%252F&cid=4405&tpsync=yes HTTP/1.1
Host: www.ojrq.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nfuq.hdrefertrck.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
expires: Sat, 19 Nov 2022 19:11:55 GMT
p3p: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT"
set-cookie: brwsr=08534806-683e-11ed-9ec9-d90eb3934b0f; Domain=.ojrq.net; Path=/; Secure; Max-Age=62208000; Expires=Fri, 8 Nov 2024 19:11:55 GMT; HttpOnly; SameSite=None
location: https://norton.ow5a.net/c/312695/1078124/4405?subId1=53df1c1f-f66d-4d40-abd0-435a6aa73af7&SharedId=15076_4971&level=1&srcref=https%3A%2F%2Fnfuq.hdrefertrck.com%2F&brwsr=08534806-683e-11ed-9ec9-d90eb3934b0f&brwsrsig=wacwkoyv11zDVxi0V3XhPUKC0KF3Q7
content-length: 0
date: Sat, 19 Nov 2022 19:11:55 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
norton.ow5a.net/c/312695/1078124/4405?subId1=53df1c1f-f66d-4d40-abd0-435a6aa73af7&SharedId=15076_4971&level=1&srcref=https%3A%2F%2Fnfuq.hdrefertrck.com%2F&brwsr=08534806-683e-11ed-9ec9-d90eb3934b0f&brwsrsig=wacwkoyv11zDVxi0V3XhPUKC0KF3Q7
52.19.8.86301 Moved Permanently 0 B URL HTTP/2 norton.ow5a.net/c/312695/1078124/4405?subId1=53df1c1f-f66d-4d40-abd0-435a6aa73af7&SharedId=15076_4971&level=1&srcref=https%3A%2F%2Fnfuq.hdrefertrck.com%2F&brwsr=08534806-683e-11ed-9ec9-d90eb3934b0f&brwsrsig=wacwkoyv11zDVxi0V3XhPUKC0KF3Q7
IP 52.19.8.86:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/312695/1078124/4405?subId1=53df1c1f-f66d-4d40-abd0-435a6aa73af7&SharedId=15076_4971&level=1&srcref=https%3A%2F%2Fnfuq.hdrefertrck.com%2F&brwsr=08534806-683e-11ed-9ec9-d90eb3934b0f&brwsrsig=wacwkoyv11zDVxi0V3XhPUKC0KF3Q7 HTTP/1.1
Host: norton.ow5a.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nfuq.hdrefertrck.com/
Connection: keep-alive
Cookie: AWSALB=lo78Z5g7VPYp8JSYvA4ITbWe+RglzWAEA68Js3SUqizItochwOIg9xQ8B/XavIlAFr7IqW5YHslAcjPthF7ZAJYZMi4cjIGV/sEP5ItmqjERrz5g6rUOafI/g6ef; AWSALBCORS=lo78Z5g7VPYp8JSYvA4ITbWe+RglzWAEA68Js3SUqizItochwOIg9xQ8B/XavIlAFr7IqW5YHslAcjPthF7ZAJYZMi4cjIGV/sEP5ItmqjERrz5g6rUOafI/g6ef
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Sat, 19 Nov 2022 19:11:55 GMT
content-length: 0
location: https://buy.norton.com/aff_nortonPS3up?irgwc=1&clickid=0pjws33s-xyNR7RVoXTXjwISUkDS4ayND1MORM0&adid=1078124&IRID=312695&source=ir
set-cookie: AWSALB=132cSoOjefwUIyRYuZ4KeC4NZlvTc5hUnP93llEM/p2lBl34IfXnZxl7l6X7bv0V6dTEF15rBokO+QQYAVdJ0M1N2stBN0YMaQfU0GiNSDyVUvbA8yUiWWXHe+dJ; Expires=Sat, 26 Nov 2022 19:11:55 GMT; Path=/
AWSALBCORS=132cSoOjefwUIyRYuZ4KeC4NZlvTc5hUnP93llEM/p2lBl34IfXnZxl7l6X7bv0V6dTEF15rBokO+QQYAVdJ0M1N2stBN0YMaQfU0GiNSDyVUvbA8yUiWWXHe+dJ; Expires=Sat, 26 Nov 2022 19:11:55 GMT; Path=/; SameSite=None; Secure
brwsr=08534806-683e-11ed-9ec9-d90eb3934b0f; Domain=.ow5a.net; Path=/; Secure; Max-Age=62208000; Expires=Fri, 8 Nov 2024 19:11:55 GMT; HttpOnly; SameSite=None
irld=L2AuWreV-N0l0WiJxYbxemS4eXD0XrExcKTUfVv01SB3ggwfI; Path=/; Secure; Max-Age=15552000; Expires=Thu, 18 May 2023 19:11:55 GMT; HttpOnly; SameSite=None
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
expires: Sat, 19 Nov 2022 19:11:55 GMT
p3p: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash e1a2788d684b193a979651087d710506
0f6215dc50ff05b41c32b5b78481ff79d42578f6
c42886f0419af50034cb2d4e35033c38f95917b13ba47806fc374b7ba29cc38f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 19 Nov 2022 19:11:55 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 19 Nov 2022 05:55:46 GMT
Expires: Sat, 26 Nov 2022 05:55:45 GMT
Etag: "0f6215dc50ff05b41c32b5b78481ff79d42578f6"
Cache-Control: max-age=556429,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76cb4124594cb518-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c2fe75458a179936a385aaed1f6cf377
dea5edeb6e65804dd2e310686a33b51251b7290d
09af04b0d97e216f820891417a1f7a41c4a7c4850c5c77c308ba7af1d7d03f53
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3940
Cache-Control: max-age=112390
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 19:11:55 GMT
Etag: "63782f1d-1d7"
Expires: Mon, 21 Nov 2022 02:25:05 GMT
Last-Modified: Sat, 19 Nov 2022 01:19:25 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
buy.norton.com/aff_nortonPS3up?irgwc=1&clickid=0pjws33s-xyNR7RVoXTXjwISUkDS4ayND1MORM0&adid=1078124&IRID=312695&source=ir
23.32.109.171302 Found 0 B URL HTTP/2 buy.norton.com/aff_nortonPS3up?irgwc=1&clickid=0pjws33s-xyNR7RVoXTXjwISUkDS4ayND1MORM0&adid=1078124&IRID=312695&source=ir
IP 23.32.109.171:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /aff_nortonPS3up?irgwc=1&clickid=0pjws33s-xyNR7RVoXTXjwISUkDS4ayND1MORM0&adid=1078124&IRID=312695&source=ir HTTP/1.1
Host: buy.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nfuq.hdrefertrck.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-length: 0
x-oneagent-js-injection: true
server-timing: dtRpid;desc="-1558719878", dtSInfo;desc="0"
requestid: e7ba0d0c5a1e0000
x-frame-options: DENY
location: https://www.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=0pjws33s-xyNR7RVoXTXjwISUkDS4ayND1MORM0&adid=1078124&IRID=312695&source=ir
strict-transport-security: max-age=31536000; includeSubDomains
expires: Sat, 19 Nov 2022 19:11:55 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 19 Nov 2022 19:11:55 GMT
set-cookie: dtCookie=v_4_srv_4_sn_6F2F46BF36F105C72E7277D2C87EAAD2_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; Path=/; Domain=.norton.com
JSESSIONID=68C29AD5630BAB96A247A5C6D126093E; Path=/; HttpOnly
X-CSRF-TOKEN=CnlRS3CBFsvh8HpZSHz5W3Gqbmo_ZokP8Im/Tw6Giac_; Domain=buy.norton.com; Path=/; Secure
cv=exist; Domain=.norton.com; Path=/; Secure
SSE=""; Domain=.norton.com; Expires=Mon, 19-Dec-2022 19:11:55 GMT; Path=/; Secure
es=4e56533d317c5353473d7c4643443d4e6f762d31392d323032322031313a31313a35357c4c43443d4e6f762d31392d323032322031313a31313a3535; Domain=.norton.com; Expires=Mon, 19-Dec-2022 19:11:55 GMT; Path=/; Secure
tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31312f31392f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; Domain=.norton.com; Expires=Mon, 19-Dec-2022 19:11:55 GMT; Path=/; Secure
COUNTRY=NO; Domain=.norton.com; Expires=Mon, 19-Dec-2022 19:11:55 GMT; Path=/; Secure
LANGUAGE=no; Domain=.norton.com; Expires=Mon, 19-Dec-2022 19:11:55 GMT; Path=/; Secure
pr=5043443d31312d31392d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; Secure; Path=/; Max-Age=5184000; Domain=.norton.com
PROGRAMID=312695; Domain=.norton.com; Expires=Wed, 18-Jan-2023 19:11:55 GMT; Path=/; Secure
PROGRAM_TYPE=ImpactRadius; Domain=.norton.com; Expires=Wed, 18-Jan-2023 19:11:55 GMT; Path=/; Secure
SHOPPERID=""; Domain=.norton.com; Expires=Wed, 18-Jan-2023 19:11:55 GMT; Path=/; Secure
LSTID=""; Domain=.norton.com; Expires=Wed, 18-Jan-2023 19:11:55 GMT; Path=/; Secure
TLID=68C29AD5630BAB96A247A5C6D126093E; Domain=.norton.com; Expires=Mon, 19-Dec-2022 19:11:55 GMT; Path=/; Secure
ESID=02c2c74f54-6981-42Mac7C5zqV8yoHc3dye8hJlZUNHsjG8IS_TA1wbBAtPaLyT_4jcCYnqMNGSfjNOKkS7I; path=/; SameSite=None; Secure
X-Firefox-Spdy: h2
www.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=0pjws33s-xyNR7RVoXTXjwISUkDS4ayND1MORM0&adid=1078124&IRID=312695&source=ir
23.38.200.32301 Moved Permanently 0 B URL HTTP/1.1 www.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=0pjws33s-xyNR7RVoXTXjwISUkDS4ayND1MORM0&adid=1078124&IRID=312695&source=ir
IP 23.38.200.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=0pjws33s-xyNR7RVoXTXjwISUkDS4ayND1MORM0&adid=1078124&IRID=312695&source=ir HTTP/1.1
Host: www.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nfuq.hdrefertrck.com/
Connection: keep-alive
Cookie: dtCookie=v_4_srv_4_sn_6F2F46BF36F105C72E7277D2C87EAAD2_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4e6f762d31392d323032322031313a31313a35357c4c43443d4e6f762d31392d323032322031313a31313a3535; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31312f31392f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31312d31392d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=68C29AD5630BAB96A247A5C6D126093E
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://no.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=0pjws33s-xyNR7RVoXTXjwISUkDS4ayND1MORM0&adid=1078124&IRID=312695&source=ir
Expires: Sat, 19 Nov 2022 19:11:55 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sat, 19 Nov 2022 19:11:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12544
Expires: Sat, 19 Nov 2022 22:41:00 GMT
Date: Sat, 19 Nov 2022 19:11:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12544
Expires: Sat, 19 Nov 2022 22:41:00 GMT
Date: Sat, 19 Nov 2022 19:11:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12544
Expires: Sat, 19 Nov 2022 22:41:00 GMT
Date: Sat, 19 Nov 2022 19:11:56 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffad6fa40-abda-4ea3-b899-aef6906a01e1.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffad6fa40-abda-4ea3-b899-aef6906a01e1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 93b326374b3808d0af42e295643cdc14
dd691328acf190c745465208f18a41a75878df18
224ac3995e2e78ee5fcc6c5c3d5fb1f4b0ceca1c42b7a1a493c756aa199bf75f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffad6fa40-abda-4ea3-b899-aef6906a01e1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5198
x-amzn-requestid: ba4e00c8-a996-41f3-b15a-1e304907ca2a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw9UpH1ioAMF6ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376a8ea-2f9f794c4de03f8b212e072f;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:34:34 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: KVRDYZKrzaOvLC1NCAb6clyHxqb40wjyE0itVFOi1cwdGTvS2zsjUg==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 18 Nov 2022 21:57:26 GMT
age: 76470
etag: "dd691328acf190c745465208f18a41a75878df18"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 481c033b9ffd030ff0de6e35cf788b47
85d3baad9217af2b5d75c019d2ef95dbb919a788
02443c7869914c2b29892deb0c645395bcf4e8379da3cf20974614ff9c92893b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11249
x-amzn-requestid: 65a3db77-b2e6-40b9-a776-021c2e9b56d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bubSsHbZoAMFZNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6375a5aa-1286b97968cc2e4c7fe8ab29;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 03:08:26 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: PYoD_MxycYfiNvyRlBnLWCcyqQK9sZi8y2ir1U9eCavNoAB-3oFcxg==
via: 1.1 38eecd3ca21bf068d69a2f9cfe668d14.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 19 Nov 2022 03:43:53 GMT
age: 55683
etag: "85d3baad9217af2b5d75c019d2ef95dbb919a788"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0d2467c-b158-442b-92be-e4cb236d17fa.jpeg
34.120.237.76200 OK 3.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0d2467c-b158-442b-92be-e4cb236d17fa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d6b026c34985bbf2ebf89a62d0724c66
72369ebeccf447fa91ef77711d6297063c99777e
e5598ada634274ab9995dedda8c1fd18344abcfdd49b3a1aaede0a86fafc0f40
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0d2467c-b158-442b-92be-e4cb236d17fa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3035
x-amzn-requestid: 3e3f3a7f-9a1d-4b37-b932-22c6e3e638f1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b0QRcFOuoAMF_fQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6377fa6f-09dc20ea5620dd167e3f7265;Sampled=0
x-amzn-remapped-date: Fri, 18 Nov 2022 21:34:39 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: xvVfLfP2DUilu7GSJMGArO90Kdoq5cPBVtmtyVjZmX5ZKnvOjpR_UQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Fri, 18 Nov 2022 21:36:25 GMT
age: 77731
etag: "72369ebeccf447fa91ef77711d6297063c99777e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9f5ec29-13c7-4ee7-a4ea-622220191305.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9f5ec29-13c7-4ee7-a4ea-622220191305.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0ff2770df5107848fe589d7f51ea73ef
081539f9c15c39d7e2f792ece7c07a97a6d33490
4040ad5142106d8485e43a23c9f76f3f2b6344cd095a094391640cf09dcfda93
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9f5ec29-13c7-4ee7-a4ea-622220191305.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6974
x-amzn-requestid: 16813c5f-b493-4e0c-8d08-bbec896b0e63
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b0QQyGe6oAMFtKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6377fa6b-5e25925b709a2d300a8267ad;Sampled=0
x-amzn-remapped-date: Fri, 18 Nov 2022 21:34:35 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: dWLfRRHUtz2co2rPQWvtDAGOqrnjbz3aSg08wvRSlluiRyBJdCV7lw==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 18 Nov 2022 21:36:22 GMT
age: 77734
etag: "081539f9c15c39d7e2f792ece7c07a97a6d33490"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b2b393e36ee2c9649d90db136aa49542
e88c5832ff0c49bab181d948c3a510d88343bb6f
8b524701df43bff56ac52a021ff0fbd964e06f00e84b4861aa557ec6ae6b4ffd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7631
x-amzn-requestid: b47e545d-1fb6-4a62-ab45-28cdb9d3f0b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-vQE0XoAMFS3w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab2e-56365eed3d4c082c53b172b3;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:44:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: WpaBFpaCu0GBiHiiQzCCsyXrA7uzesHS92c_PsgxROxPkqjZ8RyI6Q==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Fri, 18 Nov 2022 21:52:45 GMT
age: 76751
etag: "e88c5832ff0c49bab181d948c3a510d88343bb6f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47c537d4-e03f-4ec6-8922-6dce72c72ab9.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47c537d4-e03f-4ec6-8922-6dce72c72ab9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 459df915ce91b32b2dcc4850516d68a0
d7a5473d367e7965a4af55acbf4675ed7088fab2
a03e26ebee79ad9b9dda1bf680e0d2467ae6d5e582589ada9fe6ddfa437c483c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47c537d4-e03f-4ec6-8922-6dce72c72ab9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4851
x-amzn-requestid: 8c868655-d0eb-428d-9fc0-a7449f770bd4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: brtDFF9HoAMFV9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63748ee0-4f7daf8f7451dc5e0840f620;Sampled=0
x-amzn-remapped-date: Wed, 16 Nov 2022 07:18:56 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: xirMw5z5GPbmx9Sii_I4iNeh1GS5k9lGmaaJvUGAPWoVyP0Tldhf1w==
via: 1.1 e9ba0a9a729ff2960a04323bf1833df8.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Sat, 19 Nov 2022 07:17:42 GMT
age: 42854
etag: "d7a5473d367e7965a4af55acbf4675ed7088fab2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
no.norton.com/etc/designs/global/libs-global/head/styles/fonts/roboto-v20-latin/roboto-v20-latin-regular.woff2
23.38.200.126200 OK 16 kB URL HTTP/2 no.norton.com/etc/designs/global/libs-global/head/styles/fonts/roboto-v20-latin/roboto-v20-latin-regular.woff2
IP 23.38.200.126:0
File type Web Open Font Format (Version 2), TrueType, length 15736, version 1.0\012- data
Hash 2b21d2b7cfa81790c8f9f12661ec392f
859de30778ae7689c0c27c1e1edd179305556108
dcf4da8125576c3d4212e4de7ab86cb78f636bd868b75d4ac23ca44782cda33f
GET /etc/designs/global/libs-global/head/styles/fonts/roboto-v20-latin/roboto-v20-latin-regular.woff2 HTTP/1.1
Host: no.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=0pjws33s-xyNR7RVoXTXjwISUkDS4ayND1MORM0&adid=1078124&IRID=312695&source=ir
Cookie: dtCookie=v_4_srv_4_sn_6F2F46BF36F105C72E7277D2C87EAAD2_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4e6f762d31392d323032322031313a31313a35357c4c43443d4e6f762d31392d323032322031313a31313a3535; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31312f31392f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31312d31392d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=68C29AD5630BAB96A247A5C6D126093E
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
server: Apache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Tue, 12 Jan 2021 19:22:25 GMT
etag: "3d78-5b8b8f14914d3"
accept-ranges: bytes
access-control-allow-origin: https://no.norton.com
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31366663
expires: Fri, 17 Nov 2023 20:09:39 GMT
date: Sat, 19 Nov 2022 19:11:56 GMT
content-length: 15759
X-Firefox-Spdy: h2
no.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=0pjws33s-xyNR7RVoXTXjwISUkDS4ayND1MORM0&adid=1078124&IRID=312695&source=ir
23.38.200.126200 OK 24 kB URL HTTP/2 no.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=0pjws33s-xyNR7RVoXTXjwISUkDS4ayND1MORM0&adid=1078124&IRID=312695&source=ir
IP 23.38.200.126:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8675)
Hash 8c3b59e5a329cc5309b1d881b1264501
cb6f319aa62933ecdd55b6819e43cf3e29cd92b8
479f1781fd04e4407852217636418548f8641f278e969f414b221ce00ef8f192
GET /ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=0pjws33s-xyNR7RVoXTXjwISUkDS4ayND1MORM0&adid=1078124&IRID=312695&source=ir HTTP/1.1
Host: no.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nfuq.hdrefertrck.com/
Connection: keep-alive
Cookie: dtCookie=v_4_srv_4_sn_6F2F46BF36F105C72E7277D2C87EAAD2_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4e6f762d31392d323032322031313a31313a35357c4c43443d4e6f762d31392d323032322031313a31313a3535; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31312f31392f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31312d31392d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=68C29AD5630BAB96A247A5C6D126093E
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 24407
server: Apache
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff, nosniff
x-powered-by: Jetty(9.2.9.v20150224)
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
date: Sat, 19 Nov 2022 19:11:56 GMT
X-Firefox-Spdy: h2
assets.adobedtm.com/launch-EN1cc7556280444b10a3c687a73ed01baa.min.js
23.38.200.237200 OK 62 kB URL HTTP/2 assets.adobedtm.com/launch-EN1cc7556280444b10a3c687a73ed01baa.min.js
IP 23.38.200.237:0
File type ASCII text, with very long lines (32765)
Hash 9a5b05d7551bf3192366e3e3869e2275
ad63425bd3da223b9920e9d40d17b84bfb2f49b3
a8e02f954327504be7f9cfc4962d342253c84cb1ce3393e51c81c1f7820f01b0
GET /launch-EN1cc7556280444b10a3c687a73ed01baa.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "566136ac57c055d61cfbd7bcf8702891:1663879804.20201"
last-modified: Thu, 22 Sep 2022 20:50:04 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 61753
cache-control: max-age=3600
expires: Sat, 19 Nov 2022 20:11:56 GMT
date: Sat, 19 Nov 2022 19:11:56 GMT
access-control-allow-origin: https://no.norton.com
timing-allow-origin: *
X-Firefox-Spdy: h2
now.symassets.com/etc/designs/norton/libs-rebranding/head.min.nEZ1z3eBa3Q75QGpoetESg==.css
23.38.200.126200 OK 61 kB URL HTTP/2 now.symassets.com/etc/designs/norton/libs-rebranding/head.min.nEZ1z3eBa3Q75QGpoetESg==.css
IP 23.38.200.126:0
File type ASCII text, with very long lines (562)
Hash 191ac8a9dfe09d444e1062192190ba87
8266a7bf7decb362a2cbb39cd07ee1f0c6283855
34ea7a279831ea5cc2d4bbf5fbd7f227eb259c862e2bf07a0d407318c5a524c8
GET /etc/designs/norton/libs-rebranding/head.min.nEZ1z3eBa3Q75QGpoetESg==.css HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 61161
server: Apache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Mon, 24 Oct 2022 17:56:57 GMT
etag: "65b76-5ebcb8484234f-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: *
cache-control: max-age=207797
expires: Tue, 22 Nov 2022 04:55:13 GMT
date: Sat, 19 Nov 2022 19:11:56 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_online_threat_32x29.png
23.38.200.126200 OK 314 B URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_online_threat_32x29.png
IP 23.38.200.126:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 697a688a7dd6f197ab7163eacbdab9a6
747015ca7cbbc5903a2936c224f3ac4f8b10aece
cc4029789a2edc492083a4bac3368187c99d9e8dd330668d19431784c7ce74dd
GET /content/dam/norton/global/images/non-product/icons/light/icon_online_threat_32x29.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "22f-5cfca6223ef26"
last-modified: Thu, 03 Feb 2022 08:11:30 GMT
server: Akamai Image Manager
content-length: 314
content-type: image/webp
access-control-allow-origin: *
cache-control: private, no-transform, max-age=28001577
expires: Mon, 09 Oct 2023 21:24:53 GMT
date: Sat, 19 Nov 2022 19:11:56 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_secure_vpn_28x32.png
23.38.200.126200 OK 292 B URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_secure_vpn_28x32.png
IP 23.38.200.126:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 32d65de9be8ab02316681a58a4dd735a
de341dec2484527c0875fb4e0ec5d94a4eea4a1e
c5230f7556d57e40fb7c67ef65fc9426d5136c9f46858028bfeb2e1d0e6e4724
GET /content/dam/norton/global/images/non-product/icons/light/icon_secure_vpn_28x32.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "1c7-5cfbbd0ea567a"
last-modified: Mon, 07 Feb 2022 12:10:55 GMT
server: Akamai Image Manager
unused62: 8096267
content-length: 292
content-type: image/webp
access-control-allow-origin: *
cache-control: private, no-transform, max-age=26533450
expires: Fri, 22 Sep 2023 21:36:06 GMT
date: Sat, 19 Nov 2022 19:11:56 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_dark_web_32x24.png
23.38.200.126200 OK 282 B URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_dark_web_32x24.png
IP 23.38.200.126:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 3cc90ecde22d0b9a4c315c40c87923e2
fe692eda899c0a65bc9f6e1f0f56aba56c1324d1
48bd6070790c909c53f625091105bd4262ae6cd63ed7ff637b50478a35e8b198
GET /content/dam/norton/global/images/non-product/icons/light/icon_dark_web_32x24.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "176-5cfa8258a38f2"
last-modified: Mon, 18 Jul 2022 15:20:40 GMT
server: Akamai Image Manager
x-serial: 432
x-check-cacheable: YES
content-length: 282
content-type: image/webp
access-control-allow-origin: *
cache-control: private, no-transform, max-age=28097196
expires: Tue, 10 Oct 2023 23:58:32 GMT
date: Sat, 19 Nov 2022 19:11:56 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/icon_worldwide_users_32.svg
23.38.200.126200 OK 2.3 kB URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/icon_worldwide_users_32.svg
IP 23.38.200.126:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3780)
Hash 3fa36d5ab93fae7061f865f18cdba552
9b01de461e7c24b49bc19b532ad384d8451c7f96
66b3736ea2801778833919760fc08764bf4df7198533a5ad14d46fab4c222d65
GET /content/dam/norton/global/images/non-product/icons/icon_worldwide_users_32.svg HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: Apache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Wed, 10 Nov 2021 21:21:06 GMT
etag: "1a83-5d075cdd21c7c"
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=26566266
expires: Sat, 23 Sep 2023 06:43:02 GMT
date: Sat, 19 Nov 2022 19:11:56 GMT
content-length: 2290
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/icon_threat_monitor_30.svg
23.38.200.126200 OK 3.1 kB URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/icon_threat_monitor_30.svg
IP 23.38.200.126:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (6180)
Hash 9c7202f2fc496400a827a4971a742aac
d0915d836dd01530efcf6b7c9d11121ef7762a5d
2e76b5d6fe0358967d2e8c30b41ef73f52d55751da9e634dd2ef88b3347f9527
GET /content/dam/norton/global/images/non-product/icons/icon_threat_monitor_30.svg HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: Apache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Wed, 10 Nov 2021 19:56:30 GMT
etag: "20ae-5d0749f417025"
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=26566257
expires: Sat, 23 Sep 2023 06:42:53 GMT
date: Sat, 19 Nov 2022 19:11:56 GMT
content-length: 3116
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/product-family/norton-360/awards/light/award-PCMag-horizontal-48-light_330X54.png
23.38.200.126200 OK 4.2 kB URL HTTP/2 now.symassets.com/content/dam/norton/global/images/product-family/norton-360/awards/light/award-PCMag-horizontal-48-light_330X54.png
IP 23.38.200.126:0
File type PNG image data, 331 x 55, 8-bit colormap, non-interlaced\012- data
Hash 03dc75960288b35ca8eca39ecdc51382
845438a3dddf2cb36ae7dd35f1f0b7de5fa1d14d
e3aa7d5ae64992fe5a8d930ad945d87885465045442d81e5249a1861784d2e84
GET /content/dam/norton/global/images/product-family/norton-360/awards/light/award-PCMag-horizontal-48-light_330X54.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"24cf-5db6c1a48c048"
last-modified: Wed, 30 Mar 2022 09:23:47 GMT
server: Akamai Image Manager
content-type: image/png
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: private, no-transform, max-age=27868428
expires: Sun, 08 Oct 2023 08:25:44 GMT
date: Sat, 19 Nov 2022 19:11:56 GMT
content-length: 4231
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/no/images/non-product/misc/img_darkweb_notofication_223x449.png
23.38.200.126200 OK 8.9 kB URL HTTP/2 now.symassets.com/content/dam/norton/no/images/non-product/misc/img_darkweb_notofication_223x449.png
IP 23.38.200.126:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash f882847df083ce264e7349d09ecc199b
66594c0d0a82a02aea5cf094491cb1ad00b3435b
e263478b5daf956074b6ddea4f7510eb097f81537372c09a26e2b1e1f5ebfcb8
GET /content/dam/norton/no/images/non-product/misc/img_darkweb_notofication_223x449.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "cbaf-5c5342ef53168"
last-modified: Sun, 26 Dec 2021 23:28:11 GMT
server: Akamai Image Manager
unused62: 8096267
content-type: image/webp
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: private, no-transform, max-age=27458373
expires: Tue, 03 Oct 2023 14:31:29 GMT
date: Sat, 19 Nov 2022 19:11:56 GMT
content-length: 8943
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/logos/logo_norton_LL_91x37_white.png
23.38.200.126200 OK 1.3 kB URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/logos/logo_norton_LL_91x37_white.png
IP 23.38.200.126:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash f19124b9a455829448ae501e8e3f9f92
32d43e4c3aaf2bb1c1a28b2934d43d322f64d5ce
27040657301595ce583e52c3a2ba1389af208499e405c90cefd4a643857bf0fa
GET /content/dam/norton/global/images/non-product/logos/logo_norton_LL_91x37_white.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"66c-5d06d91929c55"
last-modified: Wed, 10 Nov 2021 11:31:36 GMT
server: Akamai Image Manager
content-type: image/webp
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: private, max-age=26992211
expires: Thu, 28 Sep 2023 05:02:07 GMT
date: Sat, 19 Nov 2022 19:11:56 GMT
content-length: 1287
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_vpp_32x29.png
23.38.200.126200 OK 428 B URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_vpp_32x29.png
IP 23.38.200.126:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 00ae429025103ed148f1a0795e2d9d77
caf06472f47c849951a2fafba847e5af117cfbb1
f09a7f83f20248cba15d3f8a330835cd5b0d78187111c5a1a90d4abc6a46073f
GET /content/dam/norton/global/images/non-product/icons/light/icon_vpp_32x29.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "22f-5cfbbd0fe42bd"
last-modified: Thu, 03 Feb 2022 08:10:19 GMT
server: Akamai Image Manager
unused62: 8096267
content-length: 428
content-type: image/webp
access-control-allow-origin: *
cache-control: private, no-transform, max-age=28001547
expires: Mon, 09 Oct 2023 21:24:23 GMT
date: Sat, 19 Nov 2022 19:11:56 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_password_mgr_32x32.png
23.38.200.126200 OK 678 B URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_password_mgr_32x32.png
IP 23.38.200.126:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 7922cb1b44ee50aae0299016f5313ada
ba7b3d3ce4010d9a0b6e82300875e24a09cf8427
9daaf44d1daf71701f012d0bce0381437d2425a1fbebaa53e6f337ea7e14d071
GET /content/dam/norton/global/images/non-product/icons/light/icon_password_mgr_32x32.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "3c9-5d0756fca4fef"
last-modified: Thu, 03 Feb 2022 08:09:29 GMT
server: Akamai Image Manager
content-length: 678
content-type: image/webp
access-control-allow-origin: *
cache-control: private, no-transform, max-age=26641567
expires: Sun, 24 Sep 2023 03:38:03 GMT
date: Sat, 19 Nov 2022 19:11:56 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_cloud_bu_32x22.png
23.38.200.126200 OK 320 B URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_cloud_bu_32x22.png
IP 23.38.200.126:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash bdfa0542dbb64e17ad56370c9dec410d
2741ca1093834d3ff33a829ab919dc77786d0447
92d90bc227ea9f092a8e06b6ecd713f374d0f8fa58cdf91ae20a8d8f4073660f
GET /content/dam/norton/global/images/non-product/icons/light/icon_cloud_bu_32x22.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "1af-5d3a978e6209d"
last-modified: Thu, 03 Feb 2022 08:10:32 GMT
server: Akamai Image Manager
unused62: 8096267
x-serial: 579
x-check-cacheable: YES
content-length: 320
content-type: image/webp
access-control-allow-origin: *
cache-control: private, no-transform, max-age=28001616
expires: Mon, 09 Oct 2023 21:25:32 GMT
date: Sat, 19 Nov 2022 19:11:56 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_firewall_25x32.png
23.38.200.126200 OK 278 B URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_firewall_25x32.png
IP 23.38.200.126:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash d373536d5ab58027025ee2099a7b6f2c
c2719c6b150afb2eb71f05618567e489c62dbdb6
ae1b440dbaba4c5563a6f49092e3db84056aac7e6b9906f4064db058d7ddff58
GET /content/dam/norton/global/images/non-product/icons/light/icon_firewall_25x32.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "1dc-5d30c7fb9f99f"
last-modified: Thu, 03 Feb 2022 08:09:12 GMT
server: Akamai Image Manager
unused62: 8096267
content-length: 278
content-type: image/webp
access-control-allow-origin: *
cache-control: private, no-transform, max-age=28001423
expires: Mon, 09 Oct 2023 21:22:20 GMT
date: Sat, 19 Nov 2022 19:11:57 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_parental_controls_32x26.png
23.38.200.126200 OK 400 B URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_parental_controls_32x26.png
IP 23.38.200.126:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash f2c8f4c53c80d7cd0e95f05c3aa17889
25adb1ad2d18065c7df0a6858dd3b5fdac81bde4
b14736abfcfd4dffba24367d371894c202b8389fe8cfb53f3bb5b9420840f00a
GET /content/dam/norton/global/images/non-product/icons/light/icon_parental_controls_32x26.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "1fa-5d063ef4bc6a5"
last-modified: Thu, 03 Feb 2022 08:14:38 GMT
server: Akamai Image Manager
content-length: 400
content-type: image/webp
access-control-allow-origin: *
cache-control: private, no-transform, max-age=28001781
expires: Mon, 09 Oct 2023 21:28:18 GMT
date: Sat, 19 Nov 2022 19:11:57 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/no/images/non-product/icons/light/icon_vpp_seal_yellow.svg
23.38.200.126200 OK 5.9 kB URL HTTP/2 now.symassets.com/content/dam/norton/no/images/non-product/icons/light/icon_vpp_seal_yellow.svg
IP 23.38.200.126:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (17242), with no line terminators
Hash edd45b5633d53d322545c4776f986436
86e2951cd2470a65a32da5c7c9bb3037d603f0ce
bbf568980e72812f3045a5ea8a735dfd751784c164c3f5d7b29f36fc1f763257
GET /content/dam/norton/no/images/non-product/icons/light/icon_vpp_seal_yellow.svg HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: Apache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Tue, 12 Jan 2021 19:28:09 GMT
etag: "435a-5b8b905cad4fb"
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=26568801
expires: Sat, 23 Sep 2023 07:25:18 GMT
date: Sat, 19 Nov 2022 19:11:57 GMT
content-length: 5877
X-Firefox-Spdy: h2
no.norton.com/service/norton/head?ct=NO&lg=no&ref=https%3A%2F%2Fnfuq.hdrefertrck.com%2F&irgwc=1&clickid=0pjws33s-xyNR7RVoXTXjwISUkDS4ayND1MORM0&adid=1078124&IRID=312695&source=ir
23.38.200.126200 OK 0 B URL HTTP/2 no.norton.com/service/norton/head?ct=NO&lg=no&ref=https%3A%2F%2Fnfuq.hdrefertrck.com%2F&irgwc=1&clickid=0pjws33s-xyNR7RVoXTXjwISUkDS4ayND1MORM0&adid=1078124&IRID=312695&source=ir
IP 23.38.200.126:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /service/norton/head?ct=NO&lg=no&ref=https%3A%2F%2Fnfuq.hdrefertrck.com%2F&irgwc=1&clickid=0pjws33s-xyNR7RVoXTXjwISUkDS4ayND1MORM0&adid=1078124&IRID=312695&source=ir HTTP/1.1
Host: no.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=0pjws33s-xyNR7RVoXTXjwISUkDS4ayND1MORM0&adid=1078124&IRID=312695&source=ir
Cookie: dtCookie=v_4_srv_4_sn_6F2F46BF36F105C72E7277D2C87EAAD2_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4e6f762d31392d323032322031313a31313a35357c4c43443d4e6f762d31392d323032322031313a31313a3535; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31312f31392f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31312d31392d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=68C29AD5630BAB96A247A5C6D126093E
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/plain
content-length: 0
server: Apache
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff, nosniff
expires: Thu, 01 Jan 1970 00:00:00 GMT
x-powered-by: Jetty(9.2.9.v20150224)
strict-transport-security: max-age=31536000; includeSubDomains
date: Sat, 19 Nov 2022 19:11:57 GMT
set-cookie: es=4e56533d317c5353473d7c4643443d4e6f762d31392d323032322031313a31313a35357c4c43443d4e6f762d31392d323032322031313a31313a3535;Expires=Sun, 19-Nov-2023 19:11:57 GMT
tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31312f31392f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d;Expires=Sun, 19-Nov-2023 19:11:57 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/cb/icons/icon_chevron_right_blue_6x9.png
23.38.200.126200 OK 144 B URL HTTP/2 now.symassets.com/content/dam/cb/icons/icon_chevron_right_blue_6x9.png
IP 23.38.200.126:0
File type PNG image data, 6 x 9, 8-bit/color RGBA, non-interlaced\012- data
Hash 733dc676038509b9f68f14421a641a30
27b6fc87185f3fa48e51d1046119b9259a4a0dff
3ce408c1d2cfc12b73d4d290a0c79c8283014143bcfbf251ad82cd543948be2c
GET /content/dam/cb/icons/icon_chevron_right_blue_6x9.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://now.symassets.com/etc/designs/norton/libs-rebranding/head.min.nEZ1z3eBa3Q75QGpoetESg==.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "90-5c3403115e93b"
last-modified: Wed, 13 Apr 2022 04:55:48 GMT
server: Akamai Image Manager
x-serial: 459
x-check-cacheable: YES
content-length: 144
content-type: image/png
access-control-allow-origin: *
cache-control: private, no-transform, max-age=28047334
expires: Tue, 10 Oct 2023 10:07:31 GMT
date: Sat, 19 Nov 2022 19:11:57 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/csp_test/banners/bnr_laptop_hands_1800x450.jpg
23.38.200.126200 OK 11 kB URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/csp_test/banners/bnr_laptop_hands_1800x450.jpg
IP 23.38.200.126:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1800x450, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ffa99b7c897814d67b23c0f8bd2cc0ac
38cb989101748eda3d1ef4ee683f017ea9fedce1
e06b4f4205c09e908a85c6f1e265eca2f2a43b32850bee7d225f7eb870633f38
GET /content/dam/norton/global/images/non-product/csp_test/banners/bnr_laptop_hands_1800x450.jpg HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "12fb8-5d112b698547e"
last-modified: Thu, 03 Feb 2022 08:10:22 GMT
server: Akamai Image Manager
unused62: 8096267
x-serial: 1664
x-check-cacheable: YES
content-type: image/webp
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: private, no-transform, max-age=28001563
expires: Mon, 09 Oct 2023 21:24:40 GMT
date: Sat, 19 Nov 2022 19:11:57 GMT
content-length: 10932
X-Firefox-Spdy: h2
www.nortonlifelock.com/content/dam/norton-adobe-analytics/prod/s_code_norton_min.js
23.38.200.126200 OK 25 kB URL HTTP/2 www.nortonlifelock.com/content/dam/norton-adobe-analytics/prod/s_code_norton_min.js
IP 23.38.200.126:0
File type Unicode text, UTF-8 text, with very long lines (32058)
Hash 272a4786720f033e46550ada392492fd
4eb325bc0f8043718112006618295fc5f830da81
f8a2a4670bc5fe98448356ddb46755a3599c7138b84b12106de56666137134f9
GET /content/dam/norton-adobe-analytics/prod/s_code_norton_min.js HTTP/1.1
Host: www.nortonlifelock.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 24639
server: Apache
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-disposition: attachment
x-content-type-options: nosniff, nosniff
last-modified: Wed, 26 Oct 2022 16:13:53 GMT
etag: "129a2-5ebf24f8ff240-gzip"
accept-ranges: bytes
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=39896
expires: Sun, 20 Nov 2022 06:16:53 GMT
date: Sat, 19 Nov 2022 19:11:57 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a00fff9dd1711061b285e2136c973d13
66548ac11fc58024c6994539ab81804add41d2f2
4b87c5468c15817686a8497324c2a06d18fd5574141aa0476bf98aa3b8395a8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 19:11:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b45c840e89e6d53e733bddc0ced9f941
66dfcfe702bcdc7d9db5a138d8e5ddc7b09799b2
074ca6b901a00c885e0f076776eff6aca6eba590be6df196f46f6da687f1d81b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6569
Cache-Control: max-age=132269
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 19:11:57 GMT
Etag: "63787281-1d7"
Expires: Mon, 21 Nov 2022 07:56:26 GMT
Last-Modified: Sat, 19 Nov 2022 06:06:57 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
now.symassets.com/content/dam/norton/global/images/non-product/icons/nlok.ico
23.38.200.126200 OK 4.2 kB URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/nlok.ico
IP 23.38.200.126:0
File type PNG image data, 144 x 144, 8-bit/color RGBA, non-interlaced\012- data
Hash d2145e109e45900f4e7e387ba44b90ba
feeb2cd5803c167430e179eb4d5b34201ec9e65d
0382f490de756fafe0167fd9ca170478deb80e59cb652cccee47c3ccbd86aa71
GET /content/dam/norton/global/images/non-product/icons/nlok.ico HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/x-icon
server: Apache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Wed, 10 Nov 2021 11:31:36 GMT
etag: "1039-5d06d91a0e126"
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=26565374
expires: Sat, 23 Sep 2023 06:28:11 GMT
date: Sat, 19 Nov 2022 19:11:57 GMT
content-length: 4176
X-Firefox-Spdy: h2
no.norton.com/libs/granite/csrf/token.json
23.38.200.126200 OK 2 B URL HTTP/2 no.norton.com/libs/granite/csrf/token.json
IP 23.38.200.126:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /libs/granite/csrf/token.json HTTP/1.1
Host: no.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=0pjws33s-xyNR7RVoXTXjwISUkDS4ayND1MORM0&adid=1078124&IRID=312695&source=ir
Cookie: dtCookie=v_4_srv_4_sn_6F2F46BF36F105C72E7277D2C87EAAD2_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4e6f762d31392d323032322031313a31313a35357c4c43443d4e6f762d31392d323032322031313a31313a3535; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31312f31392f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31312d31392d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=68C29AD5630BAB96A247A5C6D126093E; qs=69726777633d3126636c69636b69643d30706a77733333732d78794e523752566f5854586a774953556b44533461794e44314d4f524d3026616469643d3130373831323426495249443d33313236393526736f757263653d6972; ttControl=5443473d34; AMCV_67C716D751E567F70A490D4C%40AdobeOrg=-1124106680%7CMCIDTS%7C19316%7CvVersion%7C5.2.0; at_check=true; mbox=session#d9ed2418e31a47ab8a5c36bec6ef5320#1668886978
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=ISO-8859-1
content-length: 2
server: Apache
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff, nosniff
x-powered-by: Jetty(9.2.9.v20150224)
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache
date: Sat, 19 Nov 2022 19:11:57 GMT
X-Firefox-Spdy: h2
dpm.demdex.net/id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=67C716D751E567F70A490D4C%40AdobeOrg&d_nsid=0&ts=1668885117444
176.34.205.255200 OK 307 B URL HTTP/1.1 dpm.demdex.net/id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=67C716D751E567F70A490D4C%40AdobeOrg&d_nsid=0&ts=1668885117444
IP 176.34.205.255:0
File type JSON data\012- , ASCII text, with very long lines (367), with no line terminators
Hash d6d9029a4145bc52138a8d74752da923
0f2f54de169f138148313ccfc9086e4d3ab028fc
75dc6d2cc7d826a1e23658623ff1bbec95e3123d3ad41bcb2f766677896e4db2
GET /id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=67C716D751E567F70A490D4C%40AdobeOrg&d_nsid=0&ts=1668885117444 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://no.norton.com
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://no.norton.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-2-v045-0dc3ea27c.edge-irl1.demdex.com 2 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=01923251510771915531233852327157890029; Max-Age=15552000; Expires=Thu, 18 May 2023 19:11:57 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: 83u0XJrVSaA=
Content-Length: 307
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c58de690a701dea26333a42815dc3003
91d9e60c285f6578b5d814901a90f52cafbb8790
179d035993138ec5fdb0b2bf1987888f751903e959af09e335ada210be842ca6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 19:11:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 19 Nov 2022 12:31:58 GMT
expires: Sun, 19 Nov 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 23999
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c58de690a701dea26333a42815dc3003
91d9e60c285f6578b5d814901a90f52cafbb8790
179d035993138ec5fdb0b2bf1987888f751903e959af09e335ada210be842ca6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 19:11:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 21:46:16 GMT
expires: Fri, 17 Nov 2023 21:46:16 GMT
cache-control: public, max-age=31536000
age: 163541
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3344bfe4d8c2fca9f8c8e75fa470ff60
e3129e8e3a6d3a2957f020baa201213a336046dd
cb2b0e2a93482dfe64a0271c98c6d11e261c62909b5ee61109cd18dd047a60da
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6004
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 19:11:57 GMT
Last-Modified: Sat, 19 Nov 2022 17:31:53 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 379bb2f1de34b4558319509934c58e86
adbc65ba28186d5565ce4c070c359fe51d26788f
daf12a75607d54a3a17966089ebedcc34f082cd5dc5d3db45b10a46d95936fe6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1724
Cache-Control: max-age=99677
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 19:11:57 GMT
Etag: "6378061e-1d7"
Expires: Sun, 20 Nov 2022 22:53:14 GMT
Last-Modified: Fri, 18 Nov 2022 22:24:30 GMT
Server: ECS (amb/6B98)
X-Cache: HIT
Content-Length: 471
oms.norton.com/b/ss/symanteccom/1/JS-2.22.0/s69454870732461?AQB=1&ndh=1&pf=1&t=19%2F10%2F2022%2019%3A11%3A57%206%200&sdid=5A7444E89775300B-2E44077C9BD6B32D&mid=02072709624853798881248798114013083484&aamlh=6&ce=UTF-8&pageName=norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&g=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html%3Firgwc%3D1%26clickid%3D0pjws33s-xyNR7RVoXTXjwISUkDS4ayND1MORM0%26adid%3D1078124%26IRID%3D312695%26source%3Dir&r=https%3A%2F%2Fnfuq.hdrefertrck.com%2F&server=norton&v0=hho_aff_312695&events=event79%3D18%2Cevent69&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c2=no&c3=no&v5=none&c14=D%3Dv16&v16=norton%3Aaffiliate&v18=D%3DpageName&v21=D%3Dc21&c22=hho_aff_312695&v27=D%3Dc2&v28=D%3Dc3&c35=%3E%20hho_aff_312695%20norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&v35=hho_aff_312695&c41=norton.com&v41=D%3Dc41&c46=html&c47=page&v47=s_code_norton&c48=3up_norton360_ns_nd_np_reading_tw_nb&v48=D%3Dc49&c49=paidsearch&v49=D%3Dc48&v57=02072709624853798881248798114013083484&c59=norton.com%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&v59=D%3Dc59&v66=ImpactRadius&v72=norton.com&c75=D%3Dv57&v90=existing_customer%3A%20No&v96=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1152&bh=836&mcorgid=67C716D751E567F70A490D4C%40AdobeOrg&AQE=1
13.36.218.177200 OK 43 B URL HTTP/2 oms.norton.com/b/ss/symanteccom/1/JS-2.22.0/s69454870732461?AQB=1&ndh=1&pf=1&t=19%2F10%2F2022%2019%3A11%3A57%206%200&sdid=5A7444E89775300B-2E44077C9BD6B32D&mid=02072709624853798881248798114013083484&aamlh=6&ce=UTF-8&pageName=norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&g=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html%3Firgwc%3D1%26clickid%3D0pjws33s-xyNR7RVoXTXjwISUkDS4ayND1MORM0%26adid%3D1078124%26IRID%3D312695%26source%3Dir&r=https%3A%2F%2Fnfuq.hdrefertrck.com%2F&server=norton&v0=hho_aff_312695&events=event79%3D18%2Cevent69&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c2=no&c3=no&v5=none&c14=D%3Dv16&v16=norton%3Aaffiliate&v18=D%3DpageName&v21=D%3Dc21&c22=hho_aff_312695&v27=D%3Dc2&v28=D%3Dc3&c35=%3E%20hho_aff_312695%20norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&v35=hho_aff_312695&c41=norton.com&v41=D%3Dc41&c46=html&c47=page&v47=s_code_norton&c48=3up_norton360_ns_nd_np_reading_tw_nb&v48=D%3Dc49&c49=paidsearch&v49=D%3Dc48&v57=02072709624853798881248798114013083484&c59=norton.com%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&v59=D%3Dc59&v66=ImpactRadius&v72=norton.com&c75=D%3Dv57&v90=existing_customer%3A%20No&v96=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1152&bh=836&mcorgid=67C716D751E567F70A490D4C%40AdobeOrg&AQE=1
IP 13.36.218.177:0
File type GIF image data, version 89a, 2 x 2\012- data
Hash ad480fd0732d0f6f1a8b06359e3a42bb
a544538683a2dfe574eeb2e358ac8fcc78289d50
a1ecbaed793a1f564c49c671f2dd0ce36f858534ef6d26b55783a06b884cc506
GET /b/ss/symanteccom/1/JS-2.22.0/s69454870732461?AQB=1&ndh=1&pf=1&t=19%2F10%2F2022%2019%3A11%3A57%206%200&sdid=5A7444E89775300B-2E44077C9BD6B32D&mid=02072709624853798881248798114013083484&aamlh=6&ce=UTF-8&pageName=norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&g=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html%3Firgwc%3D1%26clickid%3D0pjws33s-xyNR7RVoXTXjwISUkDS4ayND1MORM0%26adid%3D1078124%26IRID%3D312695%26source%3Dir&r=https%3A%2F%2Fnfuq.hdrefertrck.com%2F&server=norton&v0=hho_aff_312695&events=event79%3D18%2Cevent69&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c2=no&c3=no&v5=none&c14=D%3Dv16&v16=norton%3Aaffiliate&v18=D%3DpageName&v21=D%3Dc21&c22=hho_aff_312695&v27=D%3Dc2&v28=D%3Dc3&c35=%3E%20hho_aff_312695%20norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&v35=hho_aff_312695&c41=norton.com&v41=D%3Dc41&c46=html&c47=page&v47=s_code_norton&c48=3up_norton360_ns_nd_np_reading_tw_nb&v48=D%3Dc49&c49=paidsearch&v49=D%3Dc48&v57=02072709624853798881248798114013083484&c59=norton.com%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&v59=D%3Dc59&v66=ImpactRadius&v72=norton.com&c75=D%3Dv57&v90=existing_customer%3A%20No&v96=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1152&bh=836&mcorgid=67C716D751E567F70A490D4C%40AdobeOrg&AQE=1 HTTP/1.1
Host: oms.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Cookie: dtCookie=v_4_srv_4_sn_6F2F46BF36F105C72E7277D2C87EAAD2_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4e6f762d31392d323032322031313a31313a35357c4c43443d4e6f762d31392d323032322031313a31313a3535; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31312f31392f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31312d31392d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=68C29AD5630BAB96A247A5C6D126093E; ttControl=5443473d34; AMCV_67C716D751E567F70A490D4C%40AdobeOrg=-1124106680%7CMCIDTS%7C19316%7CMCMID%7C02072709624853798881248798114013083484%7CMCAAMLH-1669489917%7C6%7CMCAAMB-1669489917%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1668892317s%7CNONE%7CvVersion%7C5.2.0; at_check=true; mbox=session#d9ed2418e31a47ab8a5c36bec6ef5320#1668886978; promocode=DEFAULTWEB; AMCVS_67C716D751E567F70A490D4C%40AdobeOrg=1; s_prop22=hho_aff_312695; s_nr=1668885117889-New; event69=event69; channelStack=s_eVar72~norton.com; s_gpv=norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_gpv_custom=norton.com%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_cc=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
access-control-allow-origin: *
date: Sat, 19 Nov 2022 19:11:58 GMT
expires: Fri, 18 Nov 2022 19:11:58 GMT
last-modified: Sun, 20 Nov 2022 19:11:58 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
etag: 3583903501647511552-4619728862535989500
vary: *
content-type: image/gif;charset=utf-8
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash da2d83e904cd35e185b36b715ab785df
258667d57898e4559332a419918f9e8f1e5cd39c
2a11aab970c28cba544f5e4c734b94d8c25dd6f435affc4f28d35e4bdd114e86
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 19:11:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 53d56fb68da96a50df543c9c9fb58f52
d802493bcf8c683b1ac73b035c51cd02b907a251
68b4e1c61fb6285a348937a2f6f81000f7979d90dd2882d5933fc4e64af68158
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 19:11:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.166200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.166:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 19 Nov 2022 18:59:05 GMT
expires: Sat, 19 Nov 2022 19:14:05 GMT
cache-control: public, max-age=900
age: 773
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
symantec.tt.omtrdc.net/m2/symantec/mbox/json?mbox=sym_global_mbox&mboxSession=d9ed2418e31a47ab8a5c36bec6ef5320&mboxPC=&mboxPage=63ebcfc37f124770824c01f0e5bde643&mboxRid=b78d30fa8e24470cbbe25249b0034ad7&mboxVersion=1.8.2&mboxCount=1&mboxTime=1668885117466&mboxHost=no.norton.com&mboxURL=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html%3Firgwc%3D1%26clickid%3D0pjws33s-xyNR7RVoXTXjwISUkDS4ayND1MORM0%26adid%3D1078124%26IRID%3D312695%26source%3Dir&mboxReferrer=https%3A%2F%2Fnfuq.hdrefertrck.com%2F&mboxXDomain=enabled&browserHeight=836&browserWidth=1140&browserTimeOffset=0&screenHeight=1024&screenWidth=1280&colorDepth=24&devicePixelRatio=1&screenOrientation=landscape&profile.TCG=4&vendor_type=none&program_type=ImpactRadius&site_country=no&site_section=norton.com&content_title=3up_norton360_ns_nd_np_reading_tw_nb&site_language=no&traffic_source=affiliates&ExistingCustomer=existing_customer%3A%20No&site_sub_section=paidsearch¤t_subchannel=&site_content_title=3up_norton360_ns_nd_np_reading_tw_nb&original_subchannel=&profile.vendor_type=none&profile.program_type=ImpactRadius&profile.site_country=no&site_sub_sub_section=missing&%20profile.site_section=norton.com&profile.site_language=no&profile.%20traffic_source=affiliates&profile.ExistingCustomer=existing_customer%3A%20No&profile.%20site_sub_section=paidsearch&profile.current_subchannel=&profile.site_content_title=3up_norton360_ns_nd_np_reading_tw_nb&profile.original_subchannel=&mboxMCSDID=5A7444E89775300B-2E44077C9BD6B32D&mboxMCGVID=02072709624853798881248798114013083484&mboxAAMB=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&mboxMCGLH=6
108.129.53.90200 OK 662 B URL HTTP/2 symantec.tt.omtrdc.net/m2/symantec/mbox/json?mbox=sym_global_mbox&mboxSession=d9ed2418e31a47ab8a5c36bec6ef5320&mboxPC=&mboxPage=63ebcfc37f124770824c01f0e5bde643&mboxRid=b78d30fa8e24470cbbe25249b0034ad7&mboxVersion=1.8.2&mboxCount=1&mboxTime=1668885117466&mboxHost=no.norton.com&mboxURL=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html%3Firgwc%3D1%26clickid%3D0pjws33s-xyNR7RVoXTXjwISUkDS4ayND1MORM0%26adid%3D1078124%26IRID%3D312695%26source%3Dir&mboxReferrer=https%3A%2F%2Fnfuq.hdrefertrck.com%2F&mboxXDomain=enabled&browserHeight=836&browserWidth=1140&browserTimeOffset=0&screenHeight=1024&screenWidth=1280&colorDepth=24&devicePixelRatio=1&screenOrientation=landscape&profile.TCG=4&vendor_type=none&program_type=ImpactRadius&site_country=no&site_section=norton.com&content_title=3up_norton360_ns_nd_np_reading_tw_nb&site_language=no&traffic_source=affiliates&ExistingCustomer=existing_customer%3A%20No&site_sub_section=paidsearch¤t_subchannel=&site_content_title=3up_norton360_ns_nd_np_reading_tw_nb&original_subchannel=&profile.vendor_type=none&profile.program_type=ImpactRadius&profile.site_country=no&site_sub_sub_section=missing&%20profile.site_section=norton.com&profile.site_language=no&profile.%20traffic_source=affiliates&profile.ExistingCustomer=existing_customer%3A%20No&profile.%20site_sub_section=paidsearch&profile.current_subchannel=&profile.site_content_title=3up_norton360_ns_nd_np_reading_tw_nb&profile.original_subchannel=&mboxMCSDID=5A7444E89775300B-2E44077C9BD6B32D&mboxMCGVID=02072709624853798881248798114013083484&mboxAAMB=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&mboxMCGLH=6
IP 108.129.53.90:0
File type JSON data\012- HTML document, ASCII text, with very long lines (1345), with no line terminators
Hash 7a5effc1ec2acacb996e54b98eb3e845
337a9dfbfd41b208cea255bb6777ab781b6ce494
8cb64562013b36760cd4b378ec90890155e996cfae213ff43fd4da4b722b8e9c
GET /m2/symantec/mbox/json?mbox=sym_global_mbox&mboxSession=d9ed2418e31a47ab8a5c36bec6ef5320&mboxPC=&mboxPage=63ebcfc37f124770824c01f0e5bde643&mboxRid=b78d30fa8e24470cbbe25249b0034ad7&mboxVersion=1.8.2&mboxCount=1&mboxTime=1668885117466&mboxHost=no.norton.com&mboxURL=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html%3Firgwc%3D1%26clickid%3D0pjws33s-xyNR7RVoXTXjwISUkDS4ayND1MORM0%26adid%3D1078124%26IRID%3D312695%26source%3Dir&mboxReferrer=https%3A%2F%2Fnfuq.hdrefertrck.com%2F&mboxXDomain=enabled&browserHeight=836&browserWidth=1140&browserTimeOffset=0&screenHeight=1024&screenWidth=1280&colorDepth=24&devicePixelRatio=1&screenOrientation=landscape&profile.TCG=4&vendor_type=none&program_type=ImpactRadius&site_country=no&site_section=norton.com&content_title=3up_norton360_ns_nd_np_reading_tw_nb&site_language=no&traffic_source=affiliates&ExistingCustomer=existing_customer%3A%20No&site_sub_section=paidsearch¤t_subchannel=&site_content_title=3up_norton360_ns_nd_np_reading_tw_nb&original_subchannel=&profile.vendor_type=none&profile.program_type=ImpactRadius&profile.site_country=no&site_sub_sub_section=missing&%20profile.site_section=norton.com&profile.site_language=no&profile.%20traffic_source=affiliates&profile.ExistingCustomer=existing_customer%3A%20No&profile.%20site_sub_section=paidsearch&profile.current_subchannel=&profile.site_content_title=3up_norton360_ns_nd_np_reading_tw_nb&profile.original_subchannel=&mboxMCSDID=5A7444E89775300B-2E44077C9BD6B32D&mboxMCGVID=02072709624853798881248798114013083484&mboxAAMB=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&mboxMCGLH=6 HTTP/1.1
Host: symantec.tt.omtrdc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://no.norton.com
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 19 Nov 2022 19:11:58 GMT
content-type: application/json;charset=UTF-8
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
access-control-allow-origin: https://no.norton.com
access-control-allow-credentials: true
x-request-id: b78d30fa8e24470cbbe25249b0034ad7
p3p: CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
set-cookie: symantec!mboxSession=d9ed2418e31a47ab8a5c36bec6ef5320; Max-Age=1860; Expires=Sat, 19-Nov-2022 19:42:58 GMT; Domain=symantec.tt.omtrdc.net; Path=/; Secure; HttpOnly; SameSite=None
symantec!mboxPC=d9ed2418e31a47ab8a5c36bec6ef5320.37_0; Max-Age=63244800; Expires=Wed, 20-Nov-2024 19:11:58 GMT; Domain=symantec.tt.omtrdc.net; Path=/; Secure; HttpOnly; SameSite=None
pragma: no-cache
cache-control: no-cache
timing-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 07caf241d63e15426cd26434ef88e9dd
ec289ab860ffccd49ce9a62d2c47c59dc181fbd5
d1f4bc6604b8a399049b5943d23dbfb842d9a100bf6f5c71e91a27cd3588cecb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 19:11:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 07caf241d63e15426cd26434ef88e9dd
ec289ab860ffccd49ce9a62d2c47c59dc181fbd5
d1f4bc6604b8a399049b5943d23dbfb842d9a100bf6f5c71e91a27cd3588cecb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 19:11:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash da2d83e904cd35e185b36b715ab785df
258667d57898e4559332a419918f9e8f1e5cd39c
2a11aab970c28cba544f5e4c734b94d8c25dd6f435affc4f28d35e4bdd114e86
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 19:11:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ensighten.norton.com/symantec/aemprod/Bootstrap.js
34.242.179.188200 OK 103 kB URL HTTP/2 ensighten.norton.com/symantec/aemprod/Bootstrap.js
IP 34.242.179.188:0
File type C source, ASCII text, with very long lines (1780)
Size 103 kB (103079 bytes)
Hash cc29c249138dc3d9c93eff6c07ed0a82
8e78e097e46a7f235811ac19a1f818e526857182
3b9aaf3ce740d90bf7b8ffe7763fe45dc98c6d15f1af8e8d0472871630791456
GET /symantec/aemprod/Bootstrap.js HTTP/1.1
Host: ensighten.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Cookie: dtCookie=v_4_srv_4_sn_6F2F46BF36F105C72E7277D2C87EAAD2_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4e6f762d31392d323032322031313a31313a35357c4c43443d4e6f762d31392d323032322031313a31313a3535; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31312f31392f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31312d31392d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=68C29AD5630BAB96A247A5C6D126093E
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Sat, 19 Nov 2022 19:11:57 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Thu, 17 Nov 2022 22:20:01 GMT
etag: W/"5ca4c9b88983ba341ea69f4478de27e8"
x-amz-server-side-encryption: AES256
cache-control: max-age=300
x-amz-version-id: md58zkDiu18LXe.AD1CzfDXnQBQnzA12
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 7285dbd4c05f1133ea7048c8307b03ee.cloudfront.net (CloudFront)
x-amz-cf-pop: DUB56-P1
x-amz-cf-id: 5XLdu17C8vKAdYHaoq0-ONtSuP9DnBjOKEPPMvtW6OxJfC-a_xfTZA==
age: 161492
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 53d56fb68da96a50df543c9c9fb58f52
d802493bcf8c683b1ac73b035c51cd02b907a251
68b4e1c61fb6285a348937a2f6f81000f7979d90dd2882d5933fc4e64af68158
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 19:11:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.170200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.170:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 97d23c73d7e5799a5cd7dd2fb01620dc
f109b661a7d225c9c750cd4bcea18ef18a7d3155
bb264aa92546d6beb9e3b6d309a7fc3311227e3fbc6fad289bc0a6e9fe3a70d5
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 19 Nov 2022 19:11:58 GMT
server: ESF
cache-control: private
content-length: 30943
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js
142.250.74.164200 OK 14 kB URL HTTP/2 www.google.com/js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (36106)
Hash 7fc7e22ecccb0cfd0ae897bb40a58efe
5d46470a711120793c362235105836fe49e699a4
1907005cab41fbd6d1d67df3b25586f3232e053a261c9e2b2503459f4980b1c5
GET /js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14302
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 13 Nov 2022 10:09:03 GMT
expires: Mon, 13 Nov 2023 10:09:03 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 03 Nov 2022 10:00:00 GMT
content-type: text/javascript
age: 550975
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d84b243e44a7b2208f595604ed8d9971
4f354f1ceede56972f2a2411a985ba877d0fca10
85799b4fe640f7a04b3dd08f775042b6b8dcfd38c45a9e6960f0910cf0bec6ae
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 19:11:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 07caf241d63e15426cd26434ef88e9dd
ec289ab860ffccd49ce9a62d2c47c59dc181fbd5
d1f4bc6604b8a399049b5943d23dbfb842d9a100bf6f5c71e91a27cd3588cecb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 19:11:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi/HbbecvDLoSM/maxresdefault.jpg?sqp=-oaymwEmCIAKENAF8quKqQMa8AEB-AHUBoAC4AOKAgwIABABGEYgWihyMA8=&rs=AOn4CLCqG4JMjzf4DLuZVfufmU8w-EmIkw
142.250.74.54200 OK 42 kB URL HTTP/2 i.ytimg.com/vi/HbbecvDLoSM/maxresdefault.jpg?sqp=-oaymwEmCIAKENAF8quKqQMa8AEB-AHUBoAC4AOKAgwIABABGEYgWihyMA8=&rs=AOn4CLCqG4JMjzf4DLuZVfufmU8w-EmIkw
IP 142.250.74.54:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3\012- data
Hash 971ea9ca0f180b1ab0bd79617e5a2971
d8475c49d2f01ae620b953fd287491db8a467ea5
6e84185a647a1d7b03aac16f232a33e1d1c1553b7b01ced695378caa5381d607
GET /vi/HbbecvDLoSM/maxresdefault.jpg?sqp=-oaymwEmCIAKENAF8quKqQMa8AEB-AHUBoAC4AOKAgwIABABGEYgWihyMA8=&rs=AOn4CLCqG4JMjzf4DLuZVfufmU8w-EmIkw HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 41927
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 19 Nov 2022 17:46:03 GMT
expires: Sat, 19 Nov 2022 19:46:03 GMT
cache-control: public, max-age=7200
age: 5155
etag: "1623336704"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d84b243e44a7b2208f595604ed8d9971
4f354f1ceede56972f2a2411a985ba877d0fca10
85799b4fe640f7a04b3dd08f775042b6b8dcfd38c45a9e6960f0910cf0bec6ae
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 19:11:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 59277a4dca16f49864f375aed6f1dac7
7002f5a369d26c4958d927858157c76c27a3b80f
812626c4c69994fa1e7474408de2a88bf558ed8a9eccd580b12acacbbb4ce418
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 19:11:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/4Yl2QFmkHUq0kr-Lw0_9lJd4YN9EYUjfbGutMYWk2haviJr4FrOjEQ01Yma0xZkZAwMuUyW2RA=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 2.0 kB URL HTTP/2 yt3.ggpht.com/4Yl2QFmkHUq0kr-Lw0_9lJd4YN9EYUjfbGutMYWk2haviJr4FrOjEQ01Yma0xZkZAwMuUyW2RA=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data
Hash 5bb232e1cdf3d294276741580edcee1d
1bd4fbfed31e0cf42b90fd65e6ac4379df98825c
637f4c9af77d922cebe55ddcf2d14e3781481174b5a631434ed7be568b71e398
GET /4Yl2QFmkHUq0kr-Lw0_9lJd4YN9EYUjfbGutMYWk2haviJr4FrOjEQ01Yma0xZkZAwMuUyW2RA=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1969
x-xss-protection: 0
date: Sat, 19 Nov 2022 17:35:39 GMT
expires: Wed, 15 Jun 2022 07:18:30 GMT
cache-control: public, max-age=86400, no-transform
age: 5779
etag: "v1"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 59277a4dca16f49864f375aed6f1dac7
7002f5a369d26c4958d927858157c76c27a3b80f
812626c4c69994fa1e7474408de2a88bf558ed8a9eccd580b12acacbbb4ce418
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 19:11:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ensighten.norton.com/privacy/v1/b/r.rnc?n=0&c=21&i=7u8sog&p=aemprod&s=330&d=8G57InZlcnNpb24iOiIxLjAuMCIsImdhdGV3YXkiOiIyLjMuNjAyIiwiY2xpZW50SWQiOjIxLCJwdWJsaXNoUGF0aCI6ImFlbXByb2QiLCJpbnN0YW5jZUlkIjoiN3U4c29nIiwicGFja2V0IjowLCJtb2RlIjoiZW5mb3JjZVgA8ixvb2tpZXMiOnt9LCJlbnZpcm9ubWVudCI6Ik5PIE5vcnRvbiIsInJlcXVlc3RzIjpbeyJkZXN0aW5hdLYA8BkiLCJ0eXBlIjoiYmlsbGluZyIsInN0YXJ0IjoxNjY4ODg1MTE4NjYwXwDAZCI6LTEsInNvdXJjMgACKwBhdHVzIjoiZgBAYXNvbmUA1F0sImRhdGFQYXR0ZXISAMJsaXN0IjpbXSwiaWRdAMA4ODUxMTg2NjB9XX0
34.242.179.188204 No Content 0 B URL HTTP/2 ensighten.norton.com/privacy/v1/b/r.rnc?n=0&c=21&i=7u8sog&p=aemprod&s=330&d=8G57InZlcnNpb24iOiIxLjAuMCIsImdhdGV3YXkiOiIyLjMuNjAyIiwiY2xpZW50SWQiOjIxLCJwdWJsaXNoUGF0aCI6ImFlbXByb2QiLCJpbnN0YW5jZUlkIjoiN3U4c29nIiwicGFja2V0IjowLCJtb2RlIjoiZW5mb3JjZVgA8ixvb2tpZXMiOnt9LCJlbnZpcm9ubWVudCI6Ik5PIE5vcnRvbiIsInJlcXVlc3RzIjpbeyJkZXN0aW5hdLYA8BkiLCJ0eXBlIjoiYmlsbGluZyIsInN0YXJ0IjoxNjY4ODg1MTE4NjYwXwDAZCI6LTEsInNvdXJjMgACKwBhdHVzIjoiZgBAYXNvbmUA1F0sImRhdGFQYXR0ZXISAMJsaXN0IjpbXSwiaWRdAMA4ODUxMTg2NjB9XX0
IP 34.242.179.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /privacy/v1/b/r.rnc?n=0&c=21&i=7u8sog&p=aemprod&s=330&d=8G57InZlcnNpb24iOiIxLjAuMCIsImdhdGV3YXkiOiIyLjMuNjAyIiwiY2xpZW50SWQiOjIxLCJwdWJsaXNoUGF0aCI6ImFlbXByb2QiLCJpbnN0YW5jZUlkIjoiN3U4c29nIiwicGFja2V0IjowLCJtb2RlIjoiZW5mb3JjZVgA8ixvb2tpZXMiOnt9LCJlbnZpcm9ubWVudCI6Ik5PIE5vcnRvbiIsInJlcXVlc3RzIjpbeyJkZXN0aW5hdLYA8BkiLCJ0eXBlIjoiYmlsbGluZyIsInN0YXJ0IjoxNjY4ODg1MTE4NjYwXwDAZCI6LTEsInNvdXJjMgACKwBhdHVzIjoiZgBAYXNvbmUA1F0sImRhdGFQYXR0ZXISAMJsaXN0IjpbXSwiaWRdAMA4ODUxMTg2NjB9XX0 HTTP/1.1
Host: ensighten.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Cookie: dtCookie=v_4_srv_4_sn_6F2F46BF36F105C72E7277D2C87EAAD2_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4e6f762d31392d323032322031313a31313a35357c4c43443d4e6f762d31392d323032322031313a31313a3535; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31312f31392f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31312d31392d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=68C29AD5630BAB96A247A5C6D126093E; ttControl=5443473d34; AMCV_67C716D751E567F70A490D4C%40AdobeOrg=-1124106680%7CMCIDTS%7C19316%7CMCMID%7C02072709624853798881248798114013083484%7CMCAAMLH-1669489917%7C6%7CMCAAMB-1669489917%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1668892317s%7CNONE%7CvVersion%7C5.2.0; at_check=true; mbox=session#d9ed2418e31a47ab8a5c36bec6ef5320#1668886979|PC#d9ed2418e31a47ab8a5c36bec6ef5320.37_0#1732129919; promocode=DEFAULTWEB; AMCVS_67C716D751E567F70A490D4C%40AdobeOrg=1; s_prop22=hho_aff_312695; s_nr=1668885117889-New; event69=event69; channelStack=s_eVar72~norton.com; s_gpv=norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_gpv_custom=norton.com%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_cc=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sat, 19 Nov 2022 19:11:58 GMT
expires: Sat, 19 Nov 2022 19:11:57 GMT
cache-control: no-cache, no-store
X-Firefox-Spdy: h2
ensighten.norton.com/privacy/v1/c/r.rnc?n=0&c=21&i=7ew4t3&p=aemprod&s=428&d=9CV7InZlcnNpb24iOiIxLjAuMCIsImdhdGV3YXkiOiIyLjMuNjAyIiwiY2xpZW50SWQiOjIxDgDwHk5hbWUiOiJzeW1hbnRlYyIsInB1Ymxpc2hQYXRoIjoiYWVtcHJvZCIsIm1vZCoAkHdoaXRlbGlzdFEA8CNvb2tpZXMiOnsiU1lNQU5URUNfRU5TSUdIVEVOX1BSSVZBQ1lfQkFOTkVSX0xPQURFRKMA8Q8ifSwiZHQiOjE2Njg4ODUxMTg2ODMsInNldHRpbmdPAPEnbW9kYWwiOiJlbnRlcnByaXNlIiwiZW52aXJvbm1lbnQiOiJOTyBOb3J0b24iLCJkZWZhdWx0OwDxH1NvY2lhbCBNZWRpYSI6MCwiUGVyZm9ybWFuY2UgYW5kIEZ1bmN0aW9uYWxpdHkiALJBZHZlcnRpc2luZxAA8ARuYWx5dGljcyI6MH19LCJldmVuXQAiW3sLAEEiOiJj-wBgQ2hhbmdlHgEP0AAABfgAwEFERUQiOiIxIn1dfQ
34.242.179.188204 No Content 0 B URL HTTP/2 ensighten.norton.com/privacy/v1/c/r.rnc?n=0&c=21&i=7ew4t3&p=aemprod&s=428&d=9CV7InZlcnNpb24iOiIxLjAuMCIsImdhdGV3YXkiOiIyLjMuNjAyIiwiY2xpZW50SWQiOjIxDgDwHk5hbWUiOiJzeW1hbnRlYyIsInB1Ymxpc2hQYXRoIjoiYWVtcHJvZCIsIm1vZCoAkHdoaXRlbGlzdFEA8CNvb2tpZXMiOnsiU1lNQU5URUNfRU5TSUdIVEVOX1BSSVZBQ1lfQkFOTkVSX0xPQURFRKMA8Q8ifSwiZHQiOjE2Njg4ODUxMTg2ODMsInNldHRpbmdPAPEnbW9kYWwiOiJlbnRlcnByaXNlIiwiZW52aXJvbm1lbnQiOiJOTyBOb3J0b24iLCJkZWZhdWx0OwDxH1NvY2lhbCBNZWRpYSI6MCwiUGVyZm9ybWFuY2UgYW5kIEZ1bmN0aW9uYWxpdHkiALJBZHZlcnRpc2luZxAA8ARuYWx5dGljcyI6MH19LCJldmVuXQAiW3sLAEEiOiJj-wBgQ2hhbmdlHgEP0AAABfgAwEFERUQiOiIxIn1dfQ
IP 34.242.179.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /privacy/v1/c/r.rnc?n=0&c=21&i=7ew4t3&p=aemprod&s=428&d=9CV7InZlcnNpb24iOiIxLjAuMCIsImdhdGV3YXkiOiIyLjMuNjAyIiwiY2xpZW50SWQiOjIxDgDwHk5hbWUiOiJzeW1hbnRlYyIsInB1Ymxpc2hQYXRoIjoiYWVtcHJvZCIsIm1vZCoAkHdoaXRlbGlzdFEA8CNvb2tpZXMiOnsiU1lNQU5URUNfRU5TSUdIVEVOX1BSSVZBQ1lfQkFOTkVSX0xPQURFRKMA8Q8ifSwiZHQiOjE2Njg4ODUxMTg2ODMsInNldHRpbmdPAPEnbW9kYWwiOiJlbnRlcnByaXNlIiwiZW52aXJvbm1lbnQiOiJOTyBOb3J0b24iLCJkZWZhdWx0OwDxH1NvY2lhbCBNZWRpYSI6MCwiUGVyZm9ybWFuY2UgYW5kIEZ1bmN0aW9uYWxpdHkiALJBZHZlcnRpc2luZxAA8ARuYWx5dGljcyI6MH19LCJldmVuXQAiW3sLAEEiOiJj-wBgQ2hhbmdlHgEP0AAABfgAwEFERUQiOiIxIn1dfQ HTTP/1.1
Host: ensighten.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Cookie: dtCookie=v_4_srv_4_sn_6F2F46BF36F105C72E7277D2C87EAAD2_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4e6f762d31392d323032322031313a31313a35357c4c43443d4e6f762d31392d323032322031313a31313a3535; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31312f31392f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31312d31392d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=68C29AD5630BAB96A247A5C6D126093E; ttControl=5443473d34; AMCV_67C716D751E567F70A490D4C%40AdobeOrg=-1124106680%7CMCIDTS%7C19316%7CMCMID%7C02072709624853798881248798114013083484%7CMCAAMLH-1669489917%7C6%7CMCAAMB-1669489917%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1668892317s%7CNONE%7CvVersion%7C5.2.0; at_check=true; mbox=session#d9ed2418e31a47ab8a5c36bec6ef5320#1668886979|PC#d9ed2418e31a47ab8a5c36bec6ef5320.37_0#1732129919; promocode=DEFAULTWEB; AMCVS_67C716D751E567F70A490D4C%40AdobeOrg=1; s_prop22=hho_aff_312695; s_nr=1668885117889-New; event69=event69; channelStack=s_eVar72~norton.com; s_gpv=norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_gpv_custom=norton.com%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_cc=true; SYMANTEC_ENSIGHTEN_PRIVACY_BANNER_LOADED=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sat, 19 Nov 2022 19:11:58 GMT
expires: Sat, 19 Nov 2022 19:11:57 GMT
cache-control: no-cache, no-store
X-Firefox-Spdy: h2
buy.norton.com/redirector/seo?callback=jQuery31104176152960584636_1668885117574&ptype=cartpopover&COUNTRY=NO&LANGUAGE=no&_=1668885117575
23.32.109.171200 OK 64 B URL HTTP/2 buy.norton.com/redirector/seo?callback=jQuery31104176152960584636_1668885117574&ptype=cartpopover&COUNTRY=NO&LANGUAGE=no&_=1668885117575
IP 23.32.109.171:0
Hash bd79a3b56e0fed3479b015dabac85afd
f78f5772c8a598458d3c3d607f36cfbd20855064
e781c39c96be43b06c012e348db3b3ccc65f9800ba638b0034d85a4fef4cea10
GET /redirector/seo?callback=jQuery31104176152960584636_1668885117574&ptype=cartpopover&COUNTRY=NO&LANGUAGE=no&_=1668885117575 HTTP/1.1
Host: buy.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Cookie: dtCookie=v_4_srv_4_sn_6F2F46BF36F105C72E7277D2C87EAAD2_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; JSESSIONID=68C29AD5630BAB96A247A5C6D126093E; X-CSRF-TOKEN=CnlRS3CBFsvh8HpZSHz5W3Gqbmo_ZokP8Im/Tw6Giac_; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4e6f762d31392d323032322031313a31313a35357c4c43443d4e6f762d31392d323032322031313a31313a3535; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31312f31392f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31312d31392d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=68C29AD5630BAB96A247A5C6D126093E; ESID=02c2c74f54-6981-42Mac7C5zqV8yoHc3dye8hJlZUNHsjG8IS_TA1wbBAtPaLyT_4jcCYnqMNGSfjNOKkS7I; ttControl=5443473d34; AMCV_67C716D751E567F70A490D4C%40AdobeOrg=-1124106680%7CMCIDTS%7C19316%7CMCMID%7C02072709624853798881248798114013083484%7CMCAAMLH-1669489917%7C6%7CMCAAMB-1669489917%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1668892317s%7CNONE%7CvVersion%7C5.2.0; at_check=true; mbox=session#d9ed2418e31a47ab8a5c36bec6ef5320#1668886979|PC#d9ed2418e31a47ab8a5c36bec6ef5320.37_0#1732129919; promocode=DEFAULTWEB; AMCVS_67C716D751E567F70A490D4C%40AdobeOrg=1; s_prop22=hho_aff_312695; s_nr=1668885117889-New; event69=event69; channelStack=s_eVar72~norton.com; s_gpv=norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_gpv_custom=norton.com%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_cc=true; SYMANTEC_ENSIGHTEN_PRIVACY_BANNER_LOADED=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript;charset=utf-8
content-length: 64
x-oneagent-js-injection: true
server-timing: dtRpid;desc="-1157156667", dtSInfo;desc="0"
requestid: e7ba0d3bf21e0000
strict-transport-security: max-age=31536000; includeSubDomains
expires: Sat, 19 Nov 2022 19:11:58 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 19 Nov 2022 19:11:58 GMT
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.170200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sat, 19 Nov 2022 19:11:58 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.170200 OK 110 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.170:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 04b2c9d506900dd41d614dec1cab3422
864803cbe3772ea17659a2456c8a99f12acc263b
a7d01d66c10ebc78559ed1d2dd4b6dbdb9eabeb9ec054692796bac6754decc44
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1335
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 19 Nov 2022 19:11:58 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ensighten.norton.com/privacy/v1/b/r.rnc?n=1&c=21&i=7u8sog&p=aemprod&s=8680&d=8G57InZlcnNpb24iOiIxLjAuMCIsImdhdGV3YXkiOiIyLjMuNjAyIiwiY2xpZW50SWQiOjIxLCJwdWJsaXNoUGF0aCI6ImFlbXByb2QiLCJpbnN0YW5jZUlkIjoiN3U4c29nIiwicGFja2V0IjoxLCJtb2RlIjoiZW5mb3JjZVgA8ixvb2tpZXMiOnt9LCJlbnZpcm9ubWVudCI6Ik5PIE5vcnRvbiIsInJlcXVlc3RzIjpbeyJkZXN0aW5hdLYAwWh0dHBzOi8vbm8ubi8A8RAuY29tL2xpYnMvZ3Jhbml0ZS9jc3JmL3Rva2VuLmpzUADwAnR5cGUiOiJ4aHIiLCJzdGFynwDANjY4ODg1MTE3NTgxjQBHZCI6MRQAgDIsInNvdXJjOQCyWEhSX01BTkFHRVJBADB0dXMKAWFsbG93ZWSxAEBhc29usADUXSwiZGF0YVBhdHRlchIAsmxpc3QiOltdLCJpZgDPNzQ2NzY3MzQ3NX0s4gBSHzLiAGYfNuIAB_AFc3ltYW50ZWMuZGVtZGV4Lm5ldC_uAfEBNS5odG1sP2RfbnNpZD0wI_QBmSUzQSUyRiUyRvoBMyIsIt0BYmlmcmFtZZ8BCuABPTg3Nv4AKDg44AECPADhX0RPTUF0dHJNb2RpZmnYATJzdGHrAVFibG9jaxMAJHJl6wFhIldoaXRl3AEP9gEJtiJBbmFseXRpY3MiAQKfODk2NjA0MjUyHwEI4WNtLmV2ZXJlc3R0ZWNoHgGgY20vZGQ_ZF91dRkB9xYxOTIzMjUxNTEwNzcxOTE1NTMxMjMzODUyMzI3MTU3ODkwMDI5IgEvbWcfAQIvODUfAQAXNv8CP2ltZxwBRqdkdmVydGlzaW5nHgGvOTY1NTg5MTA0MT0CBzhvbXMCBFRiL3NzL1ECABME8G4xL0pTLTIuMjIuMC9zNjk0NTQ4NzA3MzI0NjE_QVFCPTEmbmRoPTEmcGY9MSZ0PTE5JTJGMTAlMkYyMDIyJTIwMTklM0ExMSUzQTU3JTIwNiUyMDAmc2RpZD01QTc0NDRFODk3NzUzMDBCLTJFNDQwNzdDOUJENkIzMkQmbZ4B9TIyMDcyNzA5NjI0ODUzNzk4ODgxMjQ4Nzk4MTE0MDEzMDgzNDg0JmFhbWxoPTYmY2U9VVRGLTgmcGFnZU5hbWU9bt8E8golM0FubyUzQXBhaWRzZWFyY2glM0EzdXBfAgX_DjM2MF9uc19uZF9ucF9SZWFkaW5nX3R3X25iJmc9PAMIjyUyRnBzJTJGSgARAZID8TYlM0Zpcmd3YyUzRDElMjZjbGlja2lkJTNEMHBqd3MzM3MteHlOUjdSVm9YVFhqd0lTVWtEUzRheU5EMU1PUk0wJTI2YWQxADAxMDcOAfIEJTI2SVJJRCUzRDMxMjY5NSUyNnQFfCUzRGlyJnK-APAAZnVxLmhkcmVmZXJ0cmNr-wWjJTJGJnNlcnZlcjEBwiZ2MD1oaG9fYWZmX1YAgSZldmVudHM9BwAgNzm-AEE4JTJDDwAgNjmCAfAwYj02RzF5blljTFB1aVF4WVpyc3pfcGtxZkxHOXlNWEJwYjJ6WDVkdkpkWVFKelBYSW1kajB5JmMyPW5vJmMzBgDAdjU9bm9uZSZjMTQ90QBzdjE2JnYxNpUA8QElM0FhZmZpbGlhdGUmdjE4IwAE6gFBJnYyMREAfGMyMSZjMjK_ADN2MjcfADImdjI7ANpjMyZjMzU9JTNFJTIw7gAyJTIwFwIBHgEPOgImPHYzNYgAM2M0Mc8AAFsAMyZ2NLYAcDQxJmM0Nj20BVAmYzQ3PdgAsyZ2NDc9c19jb2RlpgJfJmM0OD1rAgQZcrUCI3Y05QB2NDkmYzQ5PfcCQiZ2NDkLAY80OCZ2NTc9MGUDEzdjNTm6AA9KAyIjdjV6APAHNTkmdjY2PUltcGFjdFJhZGl1cyZ2NwoCAL0IARoBMWM3NaYAsHY1NyZ2OTA9ZXhpwwihZ19jdXN0b21lcswGYDBObyZ2OTgBMXRwcxIADd4GD6IDHvZSJnM9MTI4MHgxMDI0JmM9MjQmaj0xLjYmdj1OJms9WSZidz0xMTUyJmJoPTgzNiZtY29yZ2lkPTY3QzcxNkQ3NTFFNTY3RjcwQTQ5MEQ0QyU0MEFkb2JlT3JnJkFRRT0xIm8HD00GBB85TQYAABQAAtgDPyI6Ik0GDB9hVAkmrzk0MzY4ODIyNDI1BgcEIQahLnR0Lm9tdHJkY1cHJW0yOwZgL21ib3gvOAoQPwoAwD1zeW1fZ2xvYmFsXxAAECYFADBTZXNEC_ESPWQ5ZWQyNDE4ZTMxYTQ3YWI4YTVjMzZiZWM2ZWY1MzIwLQAyUEM9CADxFWFnZT02M2ViY2ZjMzdmMTI0NzcwODI0YzAxZjBlNWJkZTY0MyoA8RVSaWQ9Yjc4ZDMwZmE4ZTI0NDcwY2JiZTI1MjQ5YjAwMzRhZDcpABJWzAthPTEuOC4yEgBxQ291bnQ9MQwAVlRpbWU90goxNDY2FwBZSG9zdD1ECQEXADxVUkxuBQhiCw-KAh4PLAZdAJgBEFIZBi9yZTcGFQAzAPEOWERvbWFpbj1lbmFibGVkJmJyb3dzZXJIZWlnaHQkAwMSAGBXaWR0aD27BwQkAABgAfMAT2Zmc2V0PTAmc2NyZWVuNwABfgMCEgADNwDgMjgwJmNvbG9yRGVwdGiYA8BkZXZpY2VQaXhlbFLcDCM9MUQAIE9yew0AEwDwEm49bGFuZHNjYXBlJnByb2ZpbGUuVENHPTQmdmVuZG9yX_oKAnYGcnByb2dyYW0SAAmbBGBzaXRlX2MXAiByeagGARAAMHNlY08NBxQF7yZjb250ZW50X3RpdGxlqAUTAUsAUGxhbmd12wJQbm8mdHLlBiJjX-wDED0NAAHyBjNzJkUCBRNDAQUPEwUIAVYARHN1Yl-lAAf_BUBjdXJypQDBc3ViY2hhbm5lbD0mMAAPvgAgmG9yaWdpbmFsX00ABGcBD2EBAQGAAQ9pAQcEOwADkAA4dW50cQEA0AAABAADeQEwbWlz8wpJJiUyMDgABPQABsIHBfoBAVgACG4BBDkAPyUyMHkBBwQlAA-BARgEMwAxJTIwdAAPjAEEBCcAD5QBAQQcAAFAAA-cASAEQAAPpAECALcDb01DU0RJRIoLEZ9ib3hNQ0dWSUQsCBUAXwBPQUFNQhMKIwA-AHZNQ0dMSD02eQ0PeBAEPjg5OXkNABQAAkADPyI6IngQPp84MTE3NzIxMzN4EAgPJAf_________GA99FP______ig1RDUc4MDQ1yhoxbXV0WhEiT2I0GBJBERsC5Bs_bG9hzB0hBXgUD8sbCDhidXmtGvARcmVkaXJlY3Rvci9zZW8_Y2FsbGJhY2s9alF1ZXJ5MzH6GvYANzYxNTI5NjA1ODQ2MzZfyRNRNTc0JnD7EfAQY2FydHBvcG92ZXImQ09VTlRSWT1OTyZMQU5HVUFHRe8RF18CFDY1NzWUDmJzY3JpcHT_AAkvHT04NjkPH0c4ODE5RgGgYXBwZW5kQ2hpbDABBSQdD0ABJK84MTEyNzQxNzgwuBUHD0ABmS03MG8eC0ABDIYCIkNMiAEPhwIq0DgxMTI3NDE3OTV9XX0
34.242.179.188204 No Content 0 B URL HTTP/2 ensighten.norton.com/privacy/v1/b/r.rnc?n=1&c=21&i=7u8sog&p=aemprod&s=8680&d=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_AFc3ltYW50ZWMuZGVtZGV4Lm5ldC_uAfEBNS5odG1sP2RfbnNpZD0wI_QBmSUzQSUyRiUyRvoBMyIsIt0BYmlmcmFtZZ8BCuABPTg3Nv4AKDg44AECPADhX0RPTUF0dHJNb2RpZmnYATJzdGHrAVFibG9jaxMAJHJl6wFhIldoaXRl3AEP9gEJtiJBbmFseXRpY3MiAQKfODk2NjA0MjUyHwEI4WNtLmV2ZXJlc3R0ZWNoHgGgY20vZGQ_ZF91dRkB9xYxOTIzMjUxNTEwNzcxOTE1NTMxMjMzODUyMzI3MTU3ODkwMDI5IgEvbWcfAQIvODUfAQAXNv8CP2ltZxwBRqdkdmVydGlzaW5nHgGvOTY1NTg5MTA0MT0CBzhvbXMCBFRiL3NzL1ECABME8G4xL0pTLTIuMjIuMC9zNjk0NTQ4NzA3MzI0NjE_QVFCPTEmbmRoPTEmcGY9MSZ0PTE5JTJGMTAlMkYyMDIyJTIwMTklM0ExMSUzQTU3JTIwNiUyMDAmc2RpZD01QTc0NDRFODk3NzUzMDBCLTJFNDQwNzdDOUJENkIzMkQmbZ4B9TIyMDcyNzA5NjI0ODUzNzk4ODgxMjQ4Nzk4MTE0MDEzMDgzNDg0JmFhbWxoPTYmY2U9VVRGLTgmcGFnZU5hbWU9bt8E8golM0FubyUzQXBhaWRzZWFyY2glM0EzdXBfAgX_DjM2MF9uc19uZF9ucF9SZWFkaW5nX3R3X25iJmc9PAMIjyUyRnBzJTJGSgARAZID8TYlM0Zpcmd3YyUzRDElMjZjbGlja2lkJTNEMHBqd3MzM3MteHlOUjdSVm9YVFhqd0lTVWtEUzRheU5EMU1PUk0wJTI2YWQxADAxMDcOAfIEJTI2SVJJRCUzRDMxMjY5NSUyNnQFfCUzRGlyJnK-APAAZnVxLmhkcmVmZXJ0cmNr-wWjJTJGJnNlcnZlcjEBwiZ2MD1oaG9fYWZmX1YAgSZldmVudHM9BwAgNzm-AEE4JTJDDwAgNjmCAfAwYj02RzF5blljTFB1aVF4WVpyc3pfcGtxZkxHOXlNWEJwYjJ6WDVkdkpkWVFKelBYSW1kajB5JmMyPW5vJmMzBgDAdjU9bm9uZSZjMTQ90QBzdjE2JnYxNpUA8QElM0FhZmZpbGlhdGUmdjE4IwAE6gFBJnYyMREAfGMyMSZjMjK_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_ESPWQ5ZWQyNDE4ZTMxYTQ3YWI4YTVjMzZiZWM2ZWY1MzIwLQAyUEM9CADxFWFnZT02M2ViY2ZjMzdmMTI0NzcwODI0YzAxZjBlNWJkZTY0MyoA8RVSaWQ9Yjc4ZDMwZmE4ZTI0NDcwY2JiZTI1MjQ5YjAwMzRhZDcpABJWzAthPTEuOC4yEgBxQ291bnQ9MQwAVlRpbWU90goxNDY2FwBZSG9zdD1ECQEXADxVUkxuBQhiCw-KAh4PLAZdAJgBEFIZBi9yZTcGFQAzAPEOWERvbWFpbj1lbmFibGVkJmJyb3dzZXJIZWlnaHQkAwMSAGBXaWR0aD27BwQkAABgAfMAT2Zmc2V0PTAmc2NyZWVuNwABfgMCEgADNwDgMjgwJmNvbG9yRGVwdGiYA8BkZXZpY2VQaXhlbFLcDCM9MUQAIE9yew0AEwDwEm49bGFuZHNjYXBlJnByb2ZpbGUuVENHPTQmdmVuZG9yX_oKAnYGcnByb2dyYW0SAAmbBGBzaXRlX2MXAiByeagGARAAMHNlY08NBxQF7yZjb250ZW50X3RpdGxlqAUTAUsAUGxhbmd12wJQbm8mdHLlBiJjX-wDED0NAAHyBjNzJkUCBRNDAQUPEwUIAVYARHN1Yl-lAAf_BUBjdXJypQDBc3ViY2hhbm5lbD0mMAAPvgAgmG9yaWdpbmFsX00ABGcBD2EBAQGAAQ9pAQcEOwADkAA4dW50cQEA0AAABAADeQEwbWlz8wpJJiUyMDgABPQABsIHBfoBAVgACG4BBDkAPyUyMHkBBwQlAA-BARgEMwAxJTIwdAAPjAEEBCcAD5QBAQQcAAFAAA-cASAEQAAPpAECALcDb01DU0RJRIoLEZ9ib3hNQ0dWSUQsCBUAXwBPQUFNQhMKIwA-AHZNQ0dMSD02eQ0PeBAEPjg5OXkNABQAAkADPyI6IngQPp84MTE3NzIxMzN4EAgPJAf_________GA99FP______ig1RDUc4MDQ1yhoxbXV0WhEiT2I0GBJBERsC5Bs_bG9hzB0hBXgUD8sbCDhidXmtGvARcmVkaXJlY3Rvci9zZW8_Y2FsbGJhY2s9alF1ZXJ5MzH6GvYANzYxNTI5NjA1ODQ2MzZfyRNRNTc0JnD7EfAQY2FydHBvcG92ZXImQ09VTlRSWT1OTyZMQU5HVUFHRe8RF18CFDY1NzWUDmJzY3JpcHT_AAkvHT04NjkPH0c4ODE5RgGgYXBwZW5kQ2hpbDABBSQdD0ABJK84MTEyNzQxNzgwuBUHD0ABmS03MG8eC0ABDIYCIkNMiAEPhwIq0DgxMTI3NDE3OTV9XX0
IP 34.242.179.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /privacy/v1/b/r.rnc?n=1&c=21&i=7u8sog&p=aemprod&s=8680&d=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_AFc3ltYW50ZWMuZGVtZGV4Lm5ldC_uAfEBNS5odG1sP2RfbnNpZD0wI_QBmSUzQSUyRiUyRvoBMyIsIt0BYmlmcmFtZZ8BCuABPTg3Nv4AKDg44AECPADhX0RPTUF0dHJNb2RpZmnYATJzdGHrAVFibG9jaxMAJHJl6wFhIldoaXRl3AEP9gEJtiJBbmFseXRpY3MiAQKfODk2NjA0MjUyHwEI4WNtLmV2ZXJlc3R0ZWNoHgGgY20vZGQ_ZF91dRkB9xYxOTIzMjUxNTEwNzcxOTE1NTMxMjMzODUyMzI3MTU3ODkwMDI5IgEvbWcfAQIvODUfAQAXNv8CP2ltZxwBRqdkdmVydGlzaW5nHgGvOTY1NTg5MTA0MT0CBzhvbXMCBFRiL3NzL1ECABME8G4xL0pTLTIuMjIuMC9zNjk0NTQ4NzA3MzI0NjE_QVFCPTEmbmRoPTEmcGY9MSZ0PTE5JTJGMTAlMkYyMDIyJTIwMTklM0ExMSUzQTU3JTIwNiUyMDAmc2RpZD01QTc0NDRFODk3NzUzMDBCLTJFNDQwNzdDOUJENkIzMkQmbZ4B9TIyMDcyNzA5NjI0ODUzNzk4ODgxMjQ4Nzk4MTE0MDEzMDgzNDg0JmFhbWxoPTYmY2U9VVRGLTgmcGFnZU5hbWU9bt8E8golM0FubyUzQXBhaWRzZWFyY2glM0EzdXBfAgX_DjM2MF9uc19uZF9ucF9SZWFkaW5nX3R3X25iJmc9PAMIjyUyRnBzJTJGSgARAZID8TYlM0Zpcmd3YyUzRDElMjZjbGlja2lkJTNEMHBqd3MzM3MteHlOUjdSVm9YVFhqd0lTVWtEUzRheU5EMU1PUk0wJTI2YWQxADAxMDcOAfIEJTI2SVJJRCUzRDMxMjY5NSUyNnQFfCUzRGlyJnK-APAAZnVxLmhkcmVmZXJ0cmNr-wWjJTJGJnNlcnZlcjEBwiZ2MD1oaG9fYWZmX1YAgSZldmVudHM9BwAgNzm-AEE4JTJDDwAgNjmCAfAwYj02RzF5blljTFB1aVF4WVpyc3pfcGtxZkxHOXlNWEJwYjJ6WDVkdkpkWVFKelBYSW1kajB5JmMyPW5vJmMzBgDAdjU9bm9uZSZjMTQ90QBzdjE2JnYxNpUA8QElM0FhZmZpbGlhdGUmdjE4IwAE6gFBJnYyMREAfGMyMSZjMjK_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_ESPWQ5ZWQyNDE4ZTMxYTQ3YWI4YTVjMzZiZWM2ZWY1MzIwLQAyUEM9CADxFWFnZT02M2ViY2ZjMzdmMTI0NzcwODI0YzAxZjBlNWJkZTY0MyoA8RVSaWQ9Yjc4ZDMwZmE4ZTI0NDcwY2JiZTI1MjQ5YjAwMzRhZDcpABJWzAthPTEuOC4yEgBxQ291bnQ9MQwAVlRpbWU90goxNDY2FwBZSG9zdD1ECQEXADxVUkxuBQhiCw-KAh4PLAZdAJgBEFIZBi9yZTcGFQAzAPEOWERvbWFpbj1lbmFibGVkJmJyb3dzZXJIZWlnaHQkAwMSAGBXaWR0aD27BwQkAABgAfMAT2Zmc2V0PTAmc2NyZWVuNwABfgMCEgADNwDgMjgwJmNvbG9yRGVwdGiYA8BkZXZpY2VQaXhlbFLcDCM9MUQAIE9yew0AEwDwEm49bGFuZHNjYXBlJnByb2ZpbGUuVENHPTQmdmVuZG9yX_oKAnYGcnByb2dyYW0SAAmbBGBzaXRlX2MXAiByeagGARAAMHNlY08NBxQF7yZjb250ZW50X3RpdGxlqAUTAUsAUGxhbmd12wJQbm8mdHLlBiJjX-wDED0NAAHyBjNzJkUCBRNDAQUPEwUIAVYARHN1Yl-lAAf_BUBjdXJypQDBc3ViY2hhbm5lbD0mMAAPvgAgmG9yaWdpbmFsX00ABGcBD2EBAQGAAQ9pAQcEOwADkAA4dW50cQEA0AAABAADeQEwbWlz8wpJJiUyMDgABPQABsIHBfoBAVgACG4BBDkAPyUyMHkBBwQlAA-BARgEMwAxJTIwdAAPjAEEBCcAD5QBAQQcAAFAAA-cASAEQAAPpAECALcDb01DU0RJRIoLEZ9ib3hNQ0dWSUQsCBUAXwBPQUFNQhMKIwA-AHZNQ0dMSD02eQ0PeBAEPjg5OXkNABQAAkADPyI6IngQPp84MTE3NzIxMzN4EAgPJAf_________GA99FP______ig1RDUc4MDQ1yhoxbXV0WhEiT2I0GBJBERsC5Bs_bG9hzB0hBXgUD8sbCDhidXmtGvARcmVkaXJlY3Rvci9zZW8_Y2FsbGJhY2s9alF1ZXJ5MzH6GvYANzYxNTI5NjA1ODQ2MzZfyRNRNTc0JnD7EfAQY2FydHBvcG92ZXImQ09VTlRSWT1OTyZMQU5HVUFHRe8RF18CFDY1NzWUDmJzY3JpcHT_AAkvHT04NjkPH0c4ODE5RgGgYXBwZW5kQ2hpbDABBSQdD0ABJK84MTEyNzQxNzgwuBUHD0ABmS03MG8eC0ABDIYCIkNMiAEPhwIq0DgxMTI3NDE3OTV9XX0 HTTP/1.1
Host: ensighten.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Cookie: dtCookie=v_4_srv_4_sn_6F2F46BF36F105C72E7277D2C87EAAD2_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4e6f762d31392d323032322031313a31313a35357c4c43443d4e6f762d31392d323032322031313a31313a3535; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31312f31392f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31312d31392d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=68C29AD5630BAB96A247A5C6D126093E; ttControl=5443473d34; AMCV_67C716D751E567F70A490D4C%40AdobeOrg=-1124106680%7CMCIDTS%7C19316%7CMCMID%7C02072709624853798881248798114013083484%7CMCAAMLH-1669489917%7C6%7CMCAAMB-1669489917%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1668892317s%7CNONE%7CvVersion%7C5.2.0; at_check=true; mbox=session#d9ed2418e31a47ab8a5c36bec6ef5320#1668886979|PC#d9ed2418e31a47ab8a5c36bec6ef5320.37_0#1732129919; promocode=DEFAULTWEB; AMCVS_67C716D751E567F70A490D4C%40AdobeOrg=1; s_prop22=hho_aff_312695; s_nr=1668885117889-New; event69=event69; channelStack=s_eVar72~norton.com; s_gpv=norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_gpv_custom=norton.com%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_cc=true; SYMANTEC_ENSIGHTEN_PRIVACY_BANNER_LOADED=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sat, 19 Nov 2022 19:12:00 GMT
expires: Sat, 19 Nov 2022 19:11:59 GMT
cache-control: no-cache, no-store
X-Firefox-Spdy: h2
now.symassets.com/etc/designs/norton/libs-rebranding/footer.min.t9Udk3ATD2XPOdVSt8LdfQ==.js
23.38.200.126200 OK 0 B URL HTTP/2 now.symassets.com/etc/designs/norton/libs-rebranding/footer.min.t9Udk3ATD2XPOdVSt8LdfQ==.js
IP 23.38.200.126:0
GET /etc/designs/norton/libs-rebranding/footer.min.t9Udk3ATD2XPOdVSt8LdfQ==.js HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: Apache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Mon, 24 Oct 2022 17:56:58 GMT
etag: "57ac9-5ebcb84978b57-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 98474
access-control-allow-origin: *
cache-control: max-age=204976
expires: Tue, 22 Nov 2022 04:08:13 GMT
date: Sat, 19 Nov 2022 19:11:57 GMT
X-Firefox-Spdy: h2
no.norton.com/etc/designs/global/libs-global/head/styles/fonts/source-sans-variable/SSV-Latin.woff2
23.38.200.126200 OK 0 B URL HTTP/2 no.norton.com/etc/designs/global/libs-global/head/styles/fonts/source-sans-variable/SSV-Latin.woff2
IP 23.38.200.126:0
GET /etc/designs/global/libs-global/head/styles/fonts/source-sans-variable/SSV-Latin.woff2 HTTP/1.1
Host: no.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=0pjws33s-xyNR7RVoXTXjwISUkDS4ayND1MORM0&adid=1078124&IRID=312695&source=ir
Cookie: dtCookie=v_4_srv_4_sn_6F2F46BF36F105C72E7277D2C87EAAD2_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4e6f762d31392d323032322031313a31313a35357c4c43443d4e6f762d31392d323032322031313a31313a3535; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31312f31392f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31312d31392d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=68C29AD5630BAB96A247A5C6D126093E
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
server: Apache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Thu, 07 Oct 2021 05:17:42 GMT
etag: "f2c0-5cdbc61dc4c00"
accept-ranges: bytes
access-control-allow-origin: https://no.norton.com
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31366637
expires: Fri, 17 Nov 2023 20:09:13 GMT
date: Sat, 19 Nov 2022 19:11:56 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/banners/bnr_familyselfie_1405x645.jpg
23.38.200.126200 OK 0 B URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/banners/bnr_familyselfie_1405x645.jpg
IP 23.38.200.126:0
GET /content/dam/norton/global/images/non-product/banners/bnr_familyselfie_1405x645.jpg HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "1563e-5d3079cb478ee"
last-modified: Thu, 03 Feb 2022 08:21:27 GMT
server: Akamai Image Manager
content-type: image/webp
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: private, no-transform, max-age=27510193
expires: Wed, 04 Oct 2023 04:55:10 GMT
date: Sat, 19 Nov 2022 19:11:57 GMT
X-Firefox-Spdy: h2
www.youtube.com/embed/HbbecvDLoSM?rel=0%20
216.58.211.14200 OK 0 B URL HTTP/2 www.youtube.com/embed/HbbecvDLoSM?rel=0%20
IP 216.58.211.14:0
GET /embed/HbbecvDLoSM?rel=0%20 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 19 Nov 2022 19:11:57 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=T_kDtnFmLxg; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=F65WrkNo-ns; Domain=.youtube.com; Expires=Thu, 18-May-2023 19:11:57 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+198; expires=Mon, 18-Nov-2024 19:11:57 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2