scided-mington.com/da1b8edb-2dea-4a2d-90b2-b21e17ba91c6
200 563 B URL HTTP/1.1 scided-mington.com/da1b8edb-2dea-4a2d-90b2-b21e17ba91c6
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (563), with no line terminators
Hash 9bef886436c1e35d81ca68981a765e6c
9eea4c3d128b4e3c17215b5166ea2443e80bf0c7
331e2708316644b9a392e5d3b80b0e43de009f7e4104992ff5f5cf70a4080519
Analyzer Verdict Alert fortinet Phishing
GET /da1b8edb-2dea-4a2d-90b2-b21e17ba91c6 HTTP/1.1
Host: scided-mington.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Server: nginx
Date: Fri, 09 Dec 2022 18:55:50 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 563
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Pragma: no-cache
Set-Cookie: da1b8edb-2dea-4a2d-90b2-b21e17ba91c6-v4=Jx7M5BZt-oTTvW3-CXa5hMR-FJhqONpbxTNOSN2KXbE; Max-Age=86400; Expires=Sat, 10-Dec-2022 18:55:50 GMT; Domain=scided-mington.com; Path=/; HttpOnly
cc-v4=ULiyO3%2BI2858qCJuWgpcMS6fsDXCprqKpJb56Nz081EKoYxc1MmioRuFHAaCYKy4Be0%2BigLQBRVT87OH5gUPH7pCL28GDT0MiwAxZrfY7jVdHK2vvQ%2FKBkR244qFYGzQIOr8y6SmC9vP3wcm0j283g%3D%3D; Max-Age=31536000; Expires=Sat, 09-Dec-2023 18:55:50 GMT; Domain=scided-mington.com; Path=/; HttpOnly
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash aea93551fa9deb76ae49a3b4019d64fe
e3b8862057ebe839959228e42246d7b1807fc90c
7e210f03b140418085e94ec20c1d27d6ecf7a404cbd323e16476ae5ae95d6dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7E210F03B140418085E94EC20C1D27D6ECF7A404CBD323E16476AE5AE95D6DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5777
Expires: Fri, 09 Dec 2022 20:32:08 GMT
Date: Fri, 09 Dec 2022 18:55:51 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f2acd891dc6eb1f09f57a2b086791781
1e2088306501a61edcca1ade62c4d54f23b3b083
51148fed95cc00d60dc3640350f135b1b2763ff0e3cfbffc40f0948317894be9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "51148FED95CC00D60DC3640350F135B1B2763FF0E3CFBFFC40F0948317894BE9"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5860
Expires: Fri, 09 Dec 2022 20:33:31 GMT
Date: Fri, 09 Dec 2022 18:55:51 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 18:33:14 GMT
content-type: application/json
age: 1357
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4343
Expires: Fri, 09 Dec 2022 20:08:14 GMT
Date: Fri, 09 Dec 2022 18:55:51 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: CUKfJ6PCf+YuA5Scss+2VrLOOztaVyRAQeZ5GoYfgZBEwFMW6gB/QdhVzKeGqqG20JuioTjntWw=
x-amz-request-id: B2KAVXX2NMC3M4GG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 09 Dec 2022 18:48:27 GMT
age: 444
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
scided-mington.com/redirect?target=BASE64aHR0cHM6Ly9sbHRsLWdsby5taW5pZ2xvYmFsY2l0aXplbnMuY29tL3QvY2xrP2lkPTA4blZ0Z0E0dHJCWUdUMk8zMXVnJnMxPWRhMWI4ZWRiLTJkZWEtNGEyZC05MGIyLWIyMWUxN2JhOTFjNiZzMj13c3VtMWpjM3FtdGtlYTJsMm9vcXVxOGM&ts=1670612150749&hash=bx05hJ53-25ygZb9OxSzF5qumq1c4J3ZlaiDrKPfMYQ&rm=D
200 395 B URL HTTP/1.1 scided-mington.com/redirect?target=BASE64aHR0cHM6Ly9sbHRsLWdsby5taW5pZ2xvYmFsY2l0aXplbnMuY29tL3QvY2xrP2lkPTA4blZ0Z0E0dHJCWUdUMk8zMXVnJnMxPWRhMWI4ZWRiLTJkZWEtNGEyZC05MGIyLWIyMWUxN2JhOTFjNiZzMj13c3VtMWpjM3FtdGtlYTJsMm9vcXVxOGM&ts=1670612150749&hash=bx05hJ53-25ygZb9OxSzF5qumq1c4J3ZlaiDrKPfMYQ&rm=D
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (395), with no line terminators
Hash da6f44f76e3a9ba3a55ed2be8c241d4b
620693d152456f3c5c20a48be1e2b8603e7cfca3
a9989d917194b5d278ae9c25417f7c175d8ef09be80f99078bfaac313f61f336
GET /redirect?target=BASE64aHR0cHM6Ly9sbHRsLWdsby5taW5pZ2xvYmFsY2l0aXplbnMuY29tL3QvY2xrP2lkPTA4blZ0Z0E0dHJCWUdUMk8zMXVnJnMxPWRhMWI4ZWRiLTJkZWEtNGEyZC05MGIyLWIyMWUxN2JhOTFjNiZzMj13c3VtMWpjM3FtdGtlYTJsMm9vcXVxOGM&ts=1670612150749&hash=bx05hJ53-25ygZb9OxSzF5qumq1c4J3ZlaiDrKPfMYQ&rm=D HTTP/1.1
Host: scided-mington.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: da1b8edb-2dea-4a2d-90b2-b21e17ba91c6-v4=Jx7M5BZt-oTTvW3-CXa5hMR-FJhqONpbxTNOSN2KXbE; cc-v4=ULiyO3%2BI2858qCJuWgpcMS6fsDXCprqKpJb56Nz081EKoYxc1MmioRuFHAaCYKy4Be0%2BigLQBRVT87OH5gUPH7pCL28GDT0MiwAxZrfY7jVdHK2vvQ%2FKBkR244qFYGzQIOr8y6SmC9vP3wcm0j283g%3D%3D
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Server: nginx
Date: Fri, 09 Dec 2022 18:55:51 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Pragma: no-cache
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 18:55:51 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 609f80f1b494e825abafc0949be69d90
e2a9d6a17c55b008f03ec41c21a087ad15d6ee86
56e7bf786ebc7a339ffd0d27cf0fac2c1ef422bc0c4610466b490b653bac4d0d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=147551
Date: Fri, 09 Dec 2022 18:55:51 GMT
Etag: "63932216-1d7"
Expires: Sun, 11 Dec 2022 11:55:02 GMT
Last-Modified: Fri, 09 Dec 2022 11:55:02 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: m8aU2wguCuLu-N5EdsLOYTUs9fUAwJNbbEStM4hMoRJrTbRXZJse9g==
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Cache-Control, Backoff, Content-Length, Content-Type, Last-Modified, ETag, Expires, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 09 Dec 2022 18:07:55 GMT
age: 2876
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
lltl-glo.miniglobalcitizens.com/t/clk?id=08nVtgA4trBYGT2O31ug&s1=da1b8edb-2dea-4a2d-90b2-b21e17ba91c6&s2=wsum1jc3qmtkea2l2ooquq8c
302 Found 0 B URL HTTP/2 lltl-glo.miniglobalcitizens.com/t/clk?id=08nVtgA4trBYGT2O31ug&s1=da1b8edb-2dea-4a2d-90b2-b21e17ba91c6&s2=wsum1jc3qmtkea2l2ooquq8c
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t/clk?id=08nVtgA4trBYGT2O31ug&s1=da1b8edb-2dea-4a2d-90b2-b21e17ba91c6&s2=wsum1jc3qmtkea2l2ooquq8c HTTP/1.1
Host: lltl-glo.miniglobalcitizens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 09 Dec 2022 18:55:51 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://norton.ow5a.net/c/312695/1078124/4405?subId1=1fe57919-5cc0-4cb6-b9dc-003179ca6d26&SharedId=15453_8521
server: nginx/1.12.2
cache-control: no-transform
x-frame-options: SAMEORIGIN
vary: Cookie, Origin
set-cookie: uip="[\"e1r5Y5p5Vb\"\054 {\"lPmld\": \"6LgdLlQ\"}]:1p3iXH:0BuoSHwxQOQEYNJwAfG02Ma5Iu0"; expires=Sun, 08 Jan 2023 18:55:51 GMT; Max-Age=2592000; Path=/
ydt_dae725d917dd452eabbbfbf3047471fd="[\"1fe57919-5cc0-4cb6-b9dc-003179ca6d26\"]:1p3iXH:AcVHKigG9EbZIDqRIJgYebB5OKs"; expires=Sun, 08 Jan 2023 19:55:51 GMT; Max-Age=2595600; Path=/; SameSite=None; Secure
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash e6be4d2155028ffff5d01ab6e7edf6da
07172071b5cf43c4cd7d7930b4ad8518ec1e32e9
4d8a5fa2362fd0910babd6d128d850d4460829468eb23d34ee5ee6eaa42d5a38
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5010
Cache-Control: max-age=142474
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:55:51 GMT
Etag: "6392faaf-1d7"
Expires: Sun, 11 Dec 2022 10:30:25 GMT
Last-Modified: Fri, 09 Dec 2022 09:06:55 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash c2a32273e2b61d6fd3cfdcf428d0136f
eec900b74546edc7b5c0d6ebf68f84afd4a5d7a2
182eb517434b9162f9e22e7781c7aaab133fcdb9851ff4bb7b3a732a1cecb948
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 09 Dec 2022 18:55:51 GMT
Last-Modified: Fri, 09 Dec 2022 18:20:25 GMT
Server: ECS (dcb/7EA2)
X-Cache: Miss from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Dwh3svm5g9__ip1DVZnDFjWH_G1nU2_srjfbnsB5_zHC6BTU4_v1Aw==
Age: 2127
norton.ow5a.net/c/312695/1078124/4405?subId1=1fe57919-5cc0-4cb6-b9dc-003179ca6d26&SharedId=15453_8521
302 Found 232 B URL HTTP/2 norton.ow5a.net/c/312695/1078124/4405?subId1=1fe57919-5cc0-4cb6-b9dc-003179ca6d26&SharedId=15453_8521
IP
File type HTML document, ASCII text
Hash 1b9e3d039c28ec82b9066d7f98e3bb10
6b01a2a5a62271d41729333d79d692914793e44a
6626bae79794501602c0bf5c0a881b74e4ec967a1654c0048a29c8e3fe69a3fa
GET /c/312695/1078124/4405?subId1=1fe57919-5cc0-4cb6-b9dc-003179ca6d26&SharedId=15453_8521 HTTP/1.1
Host: norton.ow5a.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 09 Dec 2022 18:55:52 GMT
content-type: text/html; charset=utf-8
content-length: 232
location: https://www.ojrq.net/p/?return=https%3A%2F%2Fnorton.ow5a.net%2Fc%2F312695%2F1078124%2F4405%3FsubId1%3D1fe57919-5cc0-4cb6-b9dc-003179ca6d26%26SharedId%3D15453_8521%26level%3D1&cid=4405&tpsync=yes
set-cookie: AWSALB=6442O1zbS++4+JHA39N0PHYLKFoKx7Bk99eiOE5Y2eyzq6xQFy2hUTzc0myl17HrZnBQtFKfRh4QdKGGB5N022370ZatI4DbjfewZCwdnevRuSY6YmYhbqZZ89CX; Expires=Fri, 16 Dec 2022 18:55:52 GMT; Path=/
AWSALBCORS=6442O1zbS++4+JHA39N0PHYLKFoKx7Bk99eiOE5Y2eyzq6xQFy2hUTzc0myl17HrZnBQtFKfRh4QdKGGB5N022370ZatI4DbjfewZCwdnevRuSY6YmYhbqZZ89CX; Expires=Fri, 16 Dec 2022 18:55:52 GMT; Path=/; SameSite=None; Secure
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
expires: Fri, 09 Dec 2022 18:55:52 GMT
p3p: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT"
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: bz/C57UQ5Ca7ncV1dRh6/g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3jyuI+JmrKyFGJbDQdWy6ihHa4U=
ocsp.sectigo.com/
200 OK 471 B IP
Hash a1fe46ffc11ad7847f1713fd7fa3c461
ffebe97c4aca7bdaadda5d499e4e0bee479c5618
59c4501bea449a997cd5cd022541371f6f693996440f5ff7083db7cd5bfafe1d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 18:55:52 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 06 Dec 2022 17:55:46 GMT
Expires: Tue, 13 Dec 2022 17:55:45 GMT
Etag: "ffebe97c4aca7bdaadda5d499e4e0bee479c5618"
Cache-Control: max-age=341392,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776ff51eeca5b503-OSL
www.ojrq.net/p/?return=https%3A%2F%2Fnorton.ow5a.net%2Fc%2F312695%2F1078124%2F4405%3FsubId1%3D1fe57919-5cc0-4cb6-b9dc-003179ca6d26%26SharedId%3D15453_8521%26level%3D1&cid=4405&tpsync=yes
302 Found 0 B URL HTTP/2 www.ojrq.net/p/?return=https%3A%2F%2Fnorton.ow5a.net%2Fc%2F312695%2F1078124%2F4405%3FsubId1%3D1fe57919-5cc0-4cb6-b9dc-003179ca6d26%26SharedId%3D15453_8521%26level%3D1&cid=4405&tpsync=yes
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/?return=https%3A%2F%2Fnorton.ow5a.net%2Fc%2F312695%2F1078124%2F4405%3FsubId1%3D1fe57919-5cc0-4cb6-b9dc-003179ca6d26%26SharedId%3D15453_8521%26level%3D1&cid=4405&tpsync=yes HTTP/1.1
Host: www.ojrq.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
expires: Fri, 09 Dec 2022 18:55:52 GMT
p3p: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT"
set-cookie: brwsr=1a80f33c-77f3-11ed-9ec9-d90eb3934b0f; Domain=.ojrq.net; Path=/; Secure; Max-Age=62208000; Expires=Thu, 28 Nov 2024 18:55:52 GMT; HttpOnly; SameSite=None
location: https://norton.ow5a.net/c/312695/1078124/4405?subId1=1fe57919-5cc0-4cb6-b9dc-003179ca6d26&SharedId=15453_8521&level=1&brwsr=1a80f33c-77f3-11ed-9ec9-d90eb3934b0f&brwsrsig=XB31cuyufTXp0HX3whRhsXC0Wc011u
content-length: 0
date: Fri, 09 Dec 2022 18:55:52 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
norton.ow5a.net/c/312695/1078124/4405?subId1=1fe57919-5cc0-4cb6-b9dc-003179ca6d26&SharedId=15453_8521&level=1&brwsr=1a80f33c-77f3-11ed-9ec9-d90eb3934b0f&brwsrsig=XB31cuyufTXp0HX3whRhsXC0Wc011u
301 Moved Permanently 0 B URL HTTP/2 norton.ow5a.net/c/312695/1078124/4405?subId1=1fe57919-5cc0-4cb6-b9dc-003179ca6d26&SharedId=15453_8521&level=1&brwsr=1a80f33c-77f3-11ed-9ec9-d90eb3934b0f&brwsrsig=XB31cuyufTXp0HX3whRhsXC0Wc011u
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/312695/1078124/4405?subId1=1fe57919-5cc0-4cb6-b9dc-003179ca6d26&SharedId=15453_8521&level=1&brwsr=1a80f33c-77f3-11ed-9ec9-d90eb3934b0f&brwsrsig=XB31cuyufTXp0HX3whRhsXC0Wc011u HTTP/1.1
Host: norton.ow5a.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: AWSALB=6442O1zbS++4+JHA39N0PHYLKFoKx7Bk99eiOE5Y2eyzq6xQFy2hUTzc0myl17HrZnBQtFKfRh4QdKGGB5N022370ZatI4DbjfewZCwdnevRuSY6YmYhbqZZ89CX; AWSALBCORS=6442O1zbS++4+JHA39N0PHYLKFoKx7Bk99eiOE5Y2eyzq6xQFy2hUTzc0myl17HrZnBQtFKfRh4QdKGGB5N022370ZatI4DbjfewZCwdnevRuSY6YmYhbqZZ89CX
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Fri, 09 Dec 2022 18:55:52 GMT
content-length: 0
location: https://buy.norton.com/aff_nortonPS3up?irgwc=1&clickid=xO0SQ4yCbxyNR7RVoXTXjwISUkAxvhTpD1MORM0&adid=1078124&IRID=312695&source=ir
set-cookie: AWSALB=kvPopUijzyBIATujfnzA4eb65zfgc3nlFIWCkU9FA6YmNuMH0MvsCBJHzAyMakt+2WxuO/qBAFVnuAAoVUFaEPFHI7VaEf3jtIVG5c9DWujpinqsiincL0OKiPyH; Expires=Fri, 16 Dec 2022 18:55:52 GMT; Path=/
AWSALBCORS=kvPopUijzyBIATujfnzA4eb65zfgc3nlFIWCkU9FA6YmNuMH0MvsCBJHzAyMakt+2WxuO/qBAFVnuAAoVUFaEPFHI7VaEf3jtIVG5c9DWujpinqsiincL0OKiPyH; Expires=Fri, 16 Dec 2022 18:55:52 GMT; Path=/; SameSite=None; Secure
brwsr=1a80f33c-77f3-11ed-9ec9-d90eb3934b0f; Domain=.ow5a.net; Path=/; Secure; Max-Age=62208000; Expires=Thu, 28 Nov 2024 18:55:52 GMT; HttpOnly; SameSite=None
irld=Lx2wTK-xnqTvQQoHXprwrAXIA1YqRL%3A0TeSTSRECRx01HUVl4; Path=/; Secure; Max-Age=15552000; Expires=Wed, 7 Jun 2023 18:55:52 GMT; HttpOnly; SameSite=None
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
expires: Fri, 09 Dec 2022 18:55:52 GMT
p3p: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash a1fe46ffc11ad7847f1713fd7fa3c461
ffebe97c4aca7bdaadda5d499e4e0bee479c5618
59c4501bea449a997cd5cd022541371f6f693996440f5ff7083db7cd5bfafe1d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 18:55:52 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 06 Dec 2022 17:55:46 GMT
Expires: Tue, 13 Dec 2022 17:55:45 GMT
Etag: "ffebe97c4aca7bdaadda5d499e4e0bee479c5618"
Cache-Control: max-age=341392,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776ff520af6bb503-OSL
ocsp.digicert.com/
200 OK 471 B IP
Hash 6b8313f9e33695225653527e2d423cd7
f93d3c7e748b85edc6f0209e73813f13e5bf2070
9fbcb6376f48faf9fab6fada8876197456bb8c5c1c0b5c34b25dcfe323e18354
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2504
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:55:52 GMT
Last-Modified: Fri, 09 Dec 2022 18:14:08 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
buy.norton.com/aff_nortonPS3up?irgwc=1&clickid=xO0SQ4yCbxyNR7RVoXTXjwISUkAxvhTpD1MORM0&adid=1078124&IRID=312695&source=ir
302 Found 0 B URL HTTP/2 buy.norton.com/aff_nortonPS3up?irgwc=1&clickid=xO0SQ4yCbxyNR7RVoXTXjwISUkAxvhTpD1MORM0&adid=1078124&IRID=312695&source=ir
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /aff_nortonPS3up?irgwc=1&clickid=xO0SQ4yCbxyNR7RVoXTXjwISUkAxvhTpD1MORM0&adid=1078124&IRID=312695&source=ir HTTP/1.1
Host: buy.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-length: 0
x-oneagent-js-injection: true
server-timing: dtRpid;desc="-2088954188", dtSInfo;desc="0"
requestid: e955cf03e75f0000
x-frame-options: DENY
location: https://www.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=xO0SQ4yCbxyNR7RVoXTXjwISUkAxvhTpD1MORM0&adid=1078124&IRID=312695&source=ir
strict-transport-security: max-age=31536000; includeSubDomains
expires: Fri, 09 Dec 2022 18:55:52 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 09 Dec 2022 18:55:52 GMT
set-cookie: dtCookie=v_4_srv_1_sn_BB6790C89F8D9F98A9F1B6117574DA92_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; Path=/; Domain=.norton.com
JSESSIONID=4F87A14165F9D70625D17FCF0346EEF2; Path=/; HttpOnly
X-CSRF-TOKEN=sYKu6JZQaTMuwXw8SkyDtHEaP8eVAY_f2AuNpBhSMv8_; Domain=buy.norton.com; Path=/; Secure
cv=exist; Domain=.norton.com; Path=/; Secure
SSE=""; Domain=.norton.com; Expires=Sun, 08-Jan-2023 18:55:52 GMT; Path=/; Secure
es=4e56533d317c5353473d7c4643443d4465632d30392d323032322031303a35353a35327c4c43443d4465632d30392d323032322031303a35353a3532; Domain=.norton.com; Expires=Sun, 08-Jan-2023 18:55:52 GMT; Path=/; Secure
tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31322f30392f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; Domain=.norton.com; Expires=Sun, 08-Jan-2023 18:55:52 GMT; Path=/; Secure
COUNTRY=NO; Domain=.norton.com; Expires=Sun, 08-Jan-2023 18:55:52 GMT; Path=/; Secure
LANGUAGE=no; Domain=.norton.com; Expires=Sun, 08-Jan-2023 18:55:52 GMT; Path=/; Secure
pr=5043443d31322d30392d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; Secure; Path=/; Max-Age=5184000; Domain=.norton.com
PROGRAMID=312695; Domain=.norton.com; Expires=Tue, 07-Feb-2023 18:55:52 GMT; Path=/; Secure
PROGRAM_TYPE=ImpactRadius; Domain=.norton.com; Expires=Tue, 07-Feb-2023 18:55:52 GMT; Path=/; Secure
SHOPPERID=""; Domain=.norton.com; Expires=Tue, 07-Feb-2023 18:55:52 GMT; Path=/; Secure
LSTID=""; Domain=.norton.com; Expires=Tue, 07-Feb-2023 18:55:52 GMT; Path=/; Secure
TLID=4F87A14165F9D70625D17FCF0346EEF2; Domain=.norton.com; Expires=Sun, 08-Jan-2023 18:55:52 GMT; Path=/; Secure
ESID=02c2c74f54-6981-42MCRg7MtRZhtEPGP1-r2HsRjMjFKMTR4RZo7vB6OG1xB53hKPjhcCw1IqtKPTkX00Vqs; path=/; SameSite=None; Secure
X-Firefox-Spdy: h2
www.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=xO0SQ4yCbxyNR7RVoXTXjwISUkAxvhTpD1MORM0&adid=1078124&IRID=312695&source=ir
301 Moved Permanently 0 B URL HTTP/1.1 www.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=xO0SQ4yCbxyNR7RVoXTXjwISUkAxvhTpD1MORM0&adid=1078124&IRID=312695&source=ir
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=xO0SQ4yCbxyNR7RVoXTXjwISUkAxvhTpD1MORM0&adid=1078124&IRID=312695&source=ir HTTP/1.1
Host: www.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: dtCookie=v_4_srv_1_sn_BB6790C89F8D9F98A9F1B6117574DA92_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4465632d30392d323032322031303a35353a35327c4c43443d4465632d30392d323032322031303a35353a3532; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31322f30392f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31322d30392d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=4F87A14165F9D70625D17FCF0346EEF2
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://no.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=xO0SQ4yCbxyNR7RVoXTXjwISUkAxvhTpD1MORM0&adid=1078124&IRID=312695&source=ir
Expires: Fri, 09 Dec 2022 18:55:52 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Fri, 09 Dec 2022 18:55:52 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5598
Expires: Fri, 09 Dec 2022 20:29:11 GMT
Date: Fri, 09 Dec 2022 18:55:53 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5598
Expires: Fri, 09 Dec 2022 20:29:11 GMT
Date: Fri, 09 Dec 2022 18:55:53 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5598
Expires: Fri, 09 Dec 2022 20:29:11 GMT
Date: Fri, 09 Dec 2022 18:55:53 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 730ba1a8edb79ba6f83b46d1ba5aed7b
55a236fedf6f5f7ca2bb88ae13e20846a50fd36d
f8043e76265c59073d111987fd4c08d05a3ac80989af9269cca9ebcc21af4013
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12748
x-amzn-requestid: edd028e3-c23e-4985-b12d-d3ebe760df47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjuciEptIAMFj9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638af783-1c151eb66f590c9c0e0c4c82;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 07:15:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -y4-_OwHl5_OFykJYYZSqwIopjKoYy1MhaGTpVXd4Grq2EsUP2c3IA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 12:33:36 GMT
age: 22937
etag: "55a236fedf6f5f7ca2bb88ae13e20846a50fd36d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2654f7a6-bd8b-4c13-9c46-9b7582ba979a.jpeg
200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2654f7a6-bd8b-4c13-9c46-9b7582ba979a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 06514ce96ae21cb01f526a5febdcbeb4
ebb97e5b97f394e8c67098f55581d5329ce819a2
4099a2fb6ddc4feaa30f357a180d64aeb7c9fc73f115fc762d5fe5c221d2e89e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2654f7a6-bd8b-4c13-9c46-9b7582ba979a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5169
x-amzn-requestid: 277a1b04-4e19-4313-8aac-5f9ab9076305
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctEdkFGrIAMFvHg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638eb456-5b21edd57297665012d536cc;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 03:17:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: swNGUcNy2i0w9UGe-EJhwslE01TzTC3rrDhLhVVxHyhWMGSC1uq0mA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 04:46:15 GMT
age: 50978
etag: "ebb97e5b97f394e8c67098f55581d5329ce819a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg
200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8546542f00ea29ef4df6ab8d3c7c2164
5c8ffe91490006a9890188b53f875568c2b6bd8f
7fb11750ac339ac283da62fd370862c6b95a103a585ca5dd8c90038718d818a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6578
x-amzn-requestid: 6392feb9-e33e-42fa-bc10-b5e31e654c9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cw4beGG7oAMF8hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63903aaf-2c890b7b0a16617346a0f7e7;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 07:03:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: nXaZ1pazAGWMI9GFYZjGlvVVIb8wX6feD0O8VpzjsL8F8l3mFmydAw==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 07:13:59 GMT
age: 42114
etag: "5c8ffe91490006a9890188b53f875568c2b6bd8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg
200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c3214044657f3b876d1f1848bca5684
7558222788f06623ddae6e883413e38e1146281e
e1f9c9c445bba7765f371dbb655cab43c1e12de7cbd015f8034c494118f7f708
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7897
x-amzn-requestid: 032fd8ae-b7e9-4e12-8546-838191a73688
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F51IAMFunw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-345ae6cd107d207f5dbe29a8;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oV7bB5Tek01MFi9x2tr_Wix13-UGlQPIt042XM0ALNUvVFYnu5DRcg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 03:38:26 GMT
age: 55047
etag: "7558222788f06623ddae6e883413e38e1146281e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg
200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fba9a3854df65740512f96efe7442e58
8fbff7725c842d70e047c635a725723a9dc9c55a
6e639298ebc82343cee9267d2910d15735af55f910e2c3de9218266b7c6fffc9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5188
x-amzn-requestid: afb8cbd2-3674-4dac-9cd9-9ff83618ac0a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ck2-5G9joAMFlPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638b6b92-2979ff216b9028aa70baef8b;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 15:30:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dGxzuQ6zj6wXQbkBuKBnOKxwKJDHUyGoi7PgcugcpdX4QYruNiFxsQ==
via: 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 21:51:24 GMT
age: 75869
etag: "8fbff7725c842d70e047c635a725723a9dc9c55a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5de5d319f43d9c9c641419d96655541f
cde4c7fa0145d3645af17e34c83c63c08f76a076
fdb114eb142f035c7a54195d16af51b5b423642c312f4bccc0f407d8fcc245aa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7557
x-amzn-requestid: 09204b5e-8af5-4d4b-8186-628443866e0f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctlz5EISoAMFdWw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ee9b2-357cd4f921c592e1319098dd;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 07:05:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3KZwQ5HqXa_-tUyDHA5m-65OprogFpFgbbKpEJ65k-Yy3lwoCg8M5w==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 07:13:15 GMT
age: 42158
etag: "cde4c7fa0145d3645af17e34c83c63c08f76a076"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
no.norton.com/etc/designs/global/libs-global/head/styles/fonts/roboto-v20-latin/roboto-v20-latin-regular.woff2
200 OK 16 kB URL HTTP/2 no.norton.com/etc/designs/global/libs-global/head/styles/fonts/roboto-v20-latin/roboto-v20-latin-regular.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15736, version 1.0\012- data
Hash 2b21d2b7cfa81790c8f9f12661ec392f
859de30778ae7689c0c27c1e1edd179305556108
dcf4da8125576c3d4212e4de7ab86cb78f636bd868b75d4ac23ca44782cda33f
GET /etc/designs/global/libs-global/head/styles/fonts/roboto-v20-latin/roboto-v20-latin-regular.woff2 HTTP/1.1
Host: no.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=xO0SQ4yCbxyNR7RVoXTXjwISUkAxvhTpD1MORM0&adid=1078124&IRID=312695&source=ir
Cookie: dtCookie=v_4_srv_1_sn_BB6790C89F8D9F98A9F1B6117574DA92_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4465632d30392d323032322031303a35353a35327c4c43443d4465632d30392d323032322031303a35353a3532; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31322f30392f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31322d30392d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=4F87A14165F9D70625D17FCF0346EEF2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
server: Apache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Tue, 12 Jan 2021 19:22:25 GMT
etag: "3d78-5b8b8f14914d3"
accept-ranges: bytes
access-control-allow-origin: https://no.norton.com
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31370341
expires: Thu, 07 Dec 2023 20:54:55 GMT
date: Fri, 09 Dec 2022 18:55:54 GMT
content-length: 15759
X-Firefox-Spdy: h2
now.symassets.com/etc/designs/norton/libs-rebranding/head.min.nEZ1z3eBa3Q75QGpoetESg==.css
200 OK 61 kB URL HTTP/2 now.symassets.com/etc/designs/norton/libs-rebranding/head.min.nEZ1z3eBa3Q75QGpoetESg==.css
IP
File type ASCII text, with very long lines (562)
Hash 191ac8a9dfe09d444e1062192190ba87
8266a7bf7decb362a2cbb39cd07ee1f0c6283855
34ea7a279831ea5cc2d4bbf5fbd7f227eb259c862e2bf07a0d407318c5a524c8
GET /etc/designs/norton/libs-rebranding/head.min.nEZ1z3eBa3Q75QGpoetESg==.css HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 61161
server: Apache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Tue, 06 Dec 2022 12:29:55 GMT
etag: "65b76-5ef27f61dc374-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: *
cache-control: max-age=999050
expires: Wed, 21 Dec 2022 08:26:44 GMT
date: Fri, 09 Dec 2022 18:55:54 GMT
X-Firefox-Spdy: h2
no.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=xO0SQ4yCbxyNR7RVoXTXjwISUkAxvhTpD1MORM0&adid=1078124&IRID=312695&source=ir
200 OK 24 kB URL HTTP/2 no.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=xO0SQ4yCbxyNR7RVoXTXjwISUkAxvhTpD1MORM0&adid=1078124&IRID=312695&source=ir
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8675)
Hash c7dd8c5fd374b7e47015ec9b13ed94ad
b992cc58dfb3f34bbcb0505c7801a32fa5aae852
1b647500e3edaf242eb84337cd86eba56a977ffdaf3773b8de3cf67703a79d0b
GET /ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=xO0SQ4yCbxyNR7RVoXTXjwISUkAxvhTpD1MORM0&adid=1078124&IRID=312695&source=ir HTTP/1.1
Host: no.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: dtCookie=v_4_srv_1_sn_BB6790C89F8D9F98A9F1B6117574DA92_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4465632d30392d323032322031303a35353a35327c4c43443d4465632d30392d323032322031303a35353a3532; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31322f30392f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31322d30392d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=4F87A14165F9D70625D17FCF0346EEF2
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 24411
server: Apache
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff, nosniff
x-powered-by: Jetty(9.2.9.v20150224)
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
date: Fri, 09 Dec 2022 18:55:53 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_dark_web_32x24.png
200 OK 282 B URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_dark_web_32x24.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 3cc90ecde22d0b9a4c315c40c87923e2
fe692eda899c0a65bc9f6e1f0f56aba56c1324d1
48bd6070790c909c53f625091105bd4262ae6cd63ed7ff637b50478a35e8b198
GET /content/dam/norton/global/images/non-product/icons/light/icon_dark_web_32x24.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "176-5cfa8258a38f2"
last-modified: Mon, 18 Jul 2022 15:20:40 GMT
server: Akamai Image Manager
x-serial: 432
x-check-cacheable: YES
content-length: 282
content-type: image/webp
access-control-allow-origin: *
cache-control: private, no-transform, max-age=26370158
expires: Tue, 10 Oct 2023 23:58:32 GMT
date: Fri, 09 Dec 2022 18:55:54 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_online_threat_32x29.png
200 OK 314 B URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_online_threat_32x29.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 697a688a7dd6f197ab7163eacbdab9a6
747015ca7cbbc5903a2936c224f3ac4f8b10aece
cc4029789a2edc492083a4bac3368187c99d9e8dd330668d19431784c7ce74dd
GET /content/dam/norton/global/images/non-product/icons/light/icon_online_threat_32x29.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "22f-5cfca6223ef26"
last-modified: Thu, 03 Feb 2022 08:11:30 GMT
server: Akamai Image Manager
content-length: 314
content-type: image/webp
access-control-allow-origin: *
cache-control: private, no-transform, max-age=26274539
expires: Mon, 09 Oct 2023 21:24:53 GMT
date: Fri, 09 Dec 2022 18:55:54 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_secure_vpn_28x32.png
200 OK 292 B URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_secure_vpn_28x32.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 32d65de9be8ab02316681a58a4dd735a
de341dec2484527c0875fb4e0ec5d94a4eea4a1e
c5230f7556d57e40fb7c67ef65fc9426d5136c9f46858028bfeb2e1d0e6e4724
GET /content/dam/norton/global/images/non-product/icons/light/icon_secure_vpn_28x32.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "1c7-5cfbbd0ea567a"
last-modified: Mon, 07 Feb 2022 12:10:55 GMT
server: Akamai Image Manager
unused62: 8096267
content-length: 292
content-type: image/webp
access-control-allow-origin: *
cache-control: private, no-transform, max-age=24806412
expires: Fri, 22 Sep 2023 21:36:06 GMT
date: Fri, 09 Dec 2022 18:55:54 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_vpp_32x29.png
200 OK 428 B URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_vpp_32x29.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 00ae429025103ed148f1a0795e2d9d77
caf06472f47c849951a2fafba847e5af117cfbb1
f09a7f83f20248cba15d3f8a330835cd5b0d78187111c5a1a90d4abc6a46073f
GET /content/dam/norton/global/images/non-product/icons/light/icon_vpp_32x29.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "22f-5cfbbd0fe42bd"
last-modified: Thu, 03 Feb 2022 08:10:19 GMT
server: Akamai Image Manager
unused62: 8096267
content-length: 428
content-type: image/webp
access-control-allow-origin: *
cache-control: private, no-transform, max-age=26274509
expires: Mon, 09 Oct 2023 21:24:23 GMT
date: Fri, 09 Dec 2022 18:55:54 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_password_mgr_32x32.png
200 OK 678 B URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_password_mgr_32x32.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 7922cb1b44ee50aae0299016f5313ada
ba7b3d3ce4010d9a0b6e82300875e24a09cf8427
9daaf44d1daf71701f012d0bce0381437d2425a1fbebaa53e6f337ea7e14d071
GET /content/dam/norton/global/images/non-product/icons/light/icon_password_mgr_32x32.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "3c9-5d0756fca4fef"
last-modified: Thu, 03 Feb 2022 08:09:29 GMT
server: Akamai Image Manager
content-length: 678
content-type: image/webp
access-control-allow-origin: *
cache-control: private, no-transform, max-age=24914529
expires: Sun, 24 Sep 2023 03:38:03 GMT
date: Fri, 09 Dec 2022 18:55:54 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_cloud_bu_32x22.png
200 OK 320 B URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_cloud_bu_32x22.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash bdfa0542dbb64e17ad56370c9dec410d
2741ca1093834d3ff33a829ab919dc77786d0447
92d90bc227ea9f092a8e06b6ecd713f374d0f8fa58cdf91ae20a8d8f4073660f
GET /content/dam/norton/global/images/non-product/icons/light/icon_cloud_bu_32x22.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "1af-5d3a978e6209d"
last-modified: Thu, 03 Feb 2022 08:10:32 GMT
server: Akamai Image Manager
unused62: 8096267
x-serial: 579
x-check-cacheable: YES
content-length: 320
content-type: image/webp
access-control-allow-origin: *
cache-control: private, no-transform, max-age=26274578
expires: Mon, 09 Oct 2023 21:25:32 GMT
date: Fri, 09 Dec 2022 18:55:54 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_firewall_25x32.png
200 OK 278 B URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_firewall_25x32.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash d373536d5ab58027025ee2099a7b6f2c
c2719c6b150afb2eb71f05618567e489c62dbdb6
ae1b440dbaba4c5563a6f49092e3db84056aac7e6b9906f4064db058d7ddff58
GET /content/dam/norton/global/images/non-product/icons/light/icon_firewall_25x32.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "1dc-5d30c7fb9f99f"
last-modified: Thu, 03 Feb 2022 08:09:12 GMT
server: Akamai Image Manager
unused62: 8096267
content-length: 278
content-type: image/webp
access-control-allow-origin: *
cache-control: private, no-transform, max-age=26274386
expires: Mon, 09 Oct 2023 21:22:20 GMT
date: Fri, 09 Dec 2022 18:55:54 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_parental_controls_32x26.png
200 OK 400 B URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_parental_controls_32x26.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash f2c8f4c53c80d7cd0e95f05c3aa17889
25adb1ad2d18065c7df0a6858dd3b5fdac81bde4
b14736abfcfd4dffba24367d371894c202b8389fe8cfb53f3bb5b9420840f00a
GET /content/dam/norton/global/images/non-product/icons/light/icon_parental_controls_32x26.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "1fa-5d063ef4bc6a5"
last-modified: Thu, 03 Feb 2022 08:14:38 GMT
server: Akamai Image Manager
content-length: 400
content-type: image/webp
access-control-allow-origin: *
cache-control: private, no-transform, max-age=26274744
expires: Mon, 09 Oct 2023 21:28:18 GMT
date: Fri, 09 Dec 2022 18:55:54 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/icon_worldwide_users_32.svg
200 OK 2.3 kB URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/icon_worldwide_users_32.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3780)
Hash 3fa36d5ab93fae7061f865f18cdba552
9b01de461e7c24b49bc19b532ad384d8451c7f96
66b3736ea2801778833919760fc08764bf4df7198533a5ad14d46fab4c222d65
GET /content/dam/norton/global/images/non-product/icons/icon_worldwide_users_32.svg HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: Apache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Wed, 10 Nov 2021 21:21:06 GMT
etag: "1a83-5d075cdd21c7c"
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=24839228
expires: Sat, 23 Sep 2023 06:43:02 GMT
date: Fri, 09 Dec 2022 18:55:54 GMT
content-length: 2290
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/logos/logo_norton_LL_91x37_white.png
200 OK 1.3 kB URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/logos/logo_norton_LL_91x37_white.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash f19124b9a455829448ae501e8e3f9f92
32d43e4c3aaf2bb1c1a28b2934d43d322f64d5ce
27040657301595ce583e52c3a2ba1389af208499e405c90cefd4a643857bf0fa
GET /content/dam/norton/global/images/non-product/logos/logo_norton_LL_91x37_white.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"66c-5d06d91929c55"
last-modified: Wed, 10 Nov 2021 11:31:36 GMT
server: Akamai Image Manager
content-type: image/webp
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: private, max-age=25265173
expires: Thu, 28 Sep 2023 05:02:07 GMT
date: Fri, 09 Dec 2022 18:55:54 GMT
content-length: 1287
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/icon_threat_monitor_30.svg
200 OK 3.1 kB URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/icon_threat_monitor_30.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (6180)
Hash 9c7202f2fc496400a827a4971a742aac
d0915d836dd01530efcf6b7c9d11121ef7762a5d
2e76b5d6fe0358967d2e8c30b41ef73f52d55751da9e634dd2ef88b3347f9527
GET /content/dam/norton/global/images/non-product/icons/icon_threat_monitor_30.svg HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: Apache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Wed, 10 Nov 2021 19:56:30 GMT
etag: "20ae-5d0749f417025"
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=24839219
expires: Sat, 23 Sep 2023 06:42:53 GMT
date: Fri, 09 Dec 2022 18:55:54 GMT
content-length: 3116
X-Firefox-Spdy: h2
no.norton.com/etc/designs/global/libs-global/head/styles/fonts/source-sans-variable/SSV-Latin.woff2
200 OK 66 kB URL HTTP/2 no.norton.com/etc/designs/global/libs-global/head/styles/fonts/source-sans-variable/SSV-Latin.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 62144, version 3.3015\012- data
Hash 19b6f19cc9e06cd076c26083390af8b7
8be8e758b5c3fbe1aa355d17fade3918a341d7b0
75e058836e427a85fa0b0b5b3c7559d7ff1a455aa4a3084bc3aca7799a3fa37e
GET /etc/designs/global/libs-global/head/styles/fonts/source-sans-variable/SSV-Latin.woff2 HTTP/1.1
Host: no.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=xO0SQ4yCbxyNR7RVoXTXjwISUkAxvhTpD1MORM0&adid=1078124&IRID=312695&source=ir
Cookie: dtCookie=v_4_srv_1_sn_BB6790C89F8D9F98A9F1B6117574DA92_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4465632d30392d323032322031303a35353a35327c4c43443d4465632d30392d323032322031303a35353a3532; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31322f30392f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31322d30392d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=4F87A14165F9D70625D17FCF0346EEF2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
server: Apache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Thu, 07 Oct 2021 05:17:42 GMT
etag: "f2c0-5cdbc61dc4c00"
accept-ranges: bytes
access-control-allow-origin: https://no.norton.com
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31370474
expires: Thu, 07 Dec 2023 20:57:08 GMT
date: Fri, 09 Dec 2022 18:55:54 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/no/images/non-product/misc/img_darkweb_notofication_223x449.png
200 OK 8.9 kB URL HTTP/2 now.symassets.com/content/dam/norton/no/images/non-product/misc/img_darkweb_notofication_223x449.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash f882847df083ce264e7349d09ecc199b
66594c0d0a82a02aea5cf094491cb1ad00b3435b
e263478b5daf956074b6ddea4f7510eb097f81537372c09a26e2b1e1f5ebfcb8
GET /content/dam/norton/no/images/non-product/misc/img_darkweb_notofication_223x449.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "cbaf-5c5342ef53168"
last-modified: Sun, 26 Dec 2021 23:28:11 GMT
server: Akamai Image Manager
unused62: 8096267
content-type: image/webp
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: private, no-transform, max-age=25731335
expires: Tue, 03 Oct 2023 14:31:29 GMT
date: Fri, 09 Dec 2022 18:55:54 GMT
content-length: 8943
X-Firefox-Spdy: h2
now.symassets.com/etc/designs/norton/libs-rebranding/footer.min.JCxECjD3FYvubX2MY_562Q==.js
200 OK 98 kB URL HTTP/2 now.symassets.com/etc/designs/norton/libs-rebranding/footer.min.JCxECjD3FYvubX2MY_562Q==.js
IP
File type ASCII text, with very long lines (1403)
Hash d51494ed10e6a0e2f20f9e42a644b640
494fb13b62839e1591ad9722ac454467ea4ed924
cb08101dc29e4c580a2dc20d414636074691bf1a3caa3c7df66de9d2ae60b402
GET /etc/designs/norton/libs-rebranding/footer.min.JCxECjD3FYvubX2MY_562Q==.js HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: Apache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Tue, 06 Dec 2022 12:29:57 GMT
etag: "57af5-5ef27f639ca5e-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 98486
access-control-allow-origin: *
cache-control: max-age=933678
expires: Tue, 20 Dec 2022 14:17:12 GMT
date: Fri, 09 Dec 2022 18:55:54 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/no/images/non-product/icons/light/icon_vpp_seal_yellow.svg
200 OK 5.9 kB URL HTTP/2 now.symassets.com/content/dam/norton/no/images/non-product/icons/light/icon_vpp_seal_yellow.svg
IP
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (17242), with no line terminators
Hash edd45b5633d53d322545c4776f986436
86e2951cd2470a65a32da5c7c9bb3037d603f0ce
bbf568980e72812f3045a5ea8a735dfd751784c164c3f5d7b29f36fc1f763257
GET /content/dam/norton/no/images/non-product/icons/light/icon_vpp_seal_yellow.svg HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: Apache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Tue, 12 Jan 2021 19:28:09 GMT
etag: "435a-5b8b905cad4fb"
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=24841764
expires: Sat, 23 Sep 2023 07:25:18 GMT
date: Fri, 09 Dec 2022 18:55:54 GMT
content-length: 5877
X-Firefox-Spdy: h2
assets.adobedtm.com/launch-EN1cc7556280444b10a3c687a73ed01baa.min.js
200 OK 62 kB URL HTTP/2 assets.adobedtm.com/launch-EN1cc7556280444b10a3c687a73ed01baa.min.js
IP
File type ASCII text, with very long lines (32765)
Hash 9a5b05d7551bf3192366e3e3869e2275
ad63425bd3da223b9920e9d40d17b84bfb2f49b3
a8e02f954327504be7f9cfc4962d342253c84cb1ce3393e51c81c1f7820f01b0
GET /launch-EN1cc7556280444b10a3c687a73ed01baa.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "566136ac57c055d61cfbd7bcf8702891:1663879804.20201"
last-modified: Thu, 22 Sep 2022 20:50:04 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 61753
cache-control: max-age=3600
expires: Fri, 09 Dec 2022 19:55:54 GMT
date: Fri, 09 Dec 2022 18:55:54 GMT
access-control-allow-origin: https://no.norton.com
timing-allow-origin: *
X-Firefox-Spdy: h2
no.norton.com/service/norton/head?ct=NO&lg=no&ref=&irgwc=1&clickid=xO0SQ4yCbxyNR7RVoXTXjwISUkAxvhTpD1MORM0&adid=1078124&IRID=312695&source=ir
200 OK 0 B URL HTTP/2 no.norton.com/service/norton/head?ct=NO&lg=no&ref=&irgwc=1&clickid=xO0SQ4yCbxyNR7RVoXTXjwISUkAxvhTpD1MORM0&adid=1078124&IRID=312695&source=ir
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /service/norton/head?ct=NO&lg=no&ref=&irgwc=1&clickid=xO0SQ4yCbxyNR7RVoXTXjwISUkAxvhTpD1MORM0&adid=1078124&IRID=312695&source=ir HTTP/1.1
Host: no.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=xO0SQ4yCbxyNR7RVoXTXjwISUkAxvhTpD1MORM0&adid=1078124&IRID=312695&source=ir
Cookie: dtCookie=v_4_srv_1_sn_BB6790C89F8D9F98A9F1B6117574DA92_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4465632d30392d323032322031303a35353a35327c4c43443d4465632d30392d323032322031303a35353a3532; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31322f30392f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31322d30392d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=4F87A14165F9D70625D17FCF0346EEF2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/plain
content-length: 0
server: Apache
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff, nosniff
expires: Thu, 01 Jan 1970 00:00:00 GMT
x-powered-by: Jetty(9.2.9.v20150224)
strict-transport-security: max-age=31536000; includeSubDomains
date: Fri, 09 Dec 2022 18:55:54 GMT
set-cookie: es=4e56533d317c5353473d7c4643443d4465632d30392d323032322031303a35353a35327c4c43443d4465632d30392d323032322031303a35353a3532;Expires=Sat, 09-Dec-2023 18:55:54 GMT
tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31322f30392f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d;Expires=Sat, 09-Dec-2023 18:55:54 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/cb/icons/icon_chevron_right_blue_6x9.png
200 OK 144 B URL HTTP/2 now.symassets.com/content/dam/cb/icons/icon_chevron_right_blue_6x9.png
IP
File type PNG image data, 6 x 9, 8-bit/color RGBA, non-interlaced\012- data
Hash 733dc676038509b9f68f14421a641a30
27b6fc87185f3fa48e51d1046119b9259a4a0dff
3ce408c1d2cfc12b73d4d290a0c79c8283014143bcfbf251ad82cd543948be2c
GET /content/dam/cb/icons/icon_chevron_right_blue_6x9.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://now.symassets.com/etc/designs/norton/libs-rebranding/head.min.nEZ1z3eBa3Q75QGpoetESg==.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "90-5c3403115e93b"
last-modified: Wed, 13 Apr 2022 04:55:48 GMT
server: Akamai Image Manager
x-serial: 459
x-check-cacheable: YES
content-length: 144
content-type: image/png
access-control-allow-origin: *
cache-control: private, no-transform, max-age=26320297
expires: Tue, 10 Oct 2023 10:07:31 GMT
date: Fri, 09 Dec 2022 18:55:54 GMT
X-Firefox-Spdy: h2
ensighten.norton.com/symantec/aemprod/Bootstrap.js
200 OK 114 kB URL HTTP/2 ensighten.norton.com/symantec/aemprod/Bootstrap.js
IP
File type C source, ASCII text, with very long lines (1780)
Size 114 kB (114037 bytes)
Hash 3870d70fb5d82295e61a511d332c10b9
9416516e7ab396c6fef741e38b920a224148c011
4f027a75a46a191deef9707bc60e73b87d309e21420bcf791896808f30da64b8
GET /symantec/aemprod/Bootstrap.js HTTP/1.1
Host: ensighten.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Cookie: dtCookie=v_4_srv_1_sn_BB6790C89F8D9F98A9F1B6117574DA92_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4465632d30392d323032322031303a35353a35327c4c43443d4465632d30392d323032322031303a35353a3532; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31322f30392f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31322d30392d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=4F87A14165F9D70625D17FCF0346EEF2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 18:55:54 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Fri, 09 Dec 2022 18:37:42 GMT
etag: W/"cfd237710c8d78c7e15247e4a85d4a25"
x-amz-server-side-encryption: AES256
cache-control: max-age=300
x-amz-version-id: DTM6w5JRyzjq.wSzNUH0PGOaScPL1Wnn
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 1d59c255f8052e022815e934d2cd34bc.cloudfront.net (CloudFront)
x-amz-cf-pop: MAN50-C3
x-amz-cf-id: lye2kP8ux3xCZ-rmFrmBjcvvjVMBxyI0r869rad2IgVvlM6caCZihw==
age: 1067
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a0905812e8498e6c5c0a9b4b584b972f
039b784fd1e0152ec7f49a54ba027f0b2bd1e833
ee3531ef0f334dcd73a86b1e4365a020d5db69ff7b82bad136eaf1a8e9d3b47f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:55:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
now.symassets.com/content/dam/norton/global/images/non-product/icons/nlok.ico
200 OK 4.2 kB URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/nlok.ico
IP
File type PNG image data, 144 x 144, 8-bit/color RGBA, non-interlaced\012- data
Hash d2145e109e45900f4e7e387ba44b90ba
feeb2cd5803c167430e179eb4d5b34201ec9e65d
0382f490de756fafe0167fd9ca170478deb80e59cb652cccee47c3ccbd86aa71
GET /content/dam/norton/global/images/non-product/icons/nlok.ico HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/x-icon
server: Apache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Wed, 10 Nov 2021 11:31:36 GMT
etag: "1039-5d06d91a0e126"
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=24838337
expires: Sat, 23 Sep 2023 06:28:11 GMT
date: Fri, 09 Dec 2022 18:55:54 GMT
content-length: 4176
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a0905812e8498e6c5c0a9b4b584b972f
039b784fd1e0152ec7f49a54ba027f0b2bd1e833
ee3531ef0f334dcd73a86b1e4365a020d5db69ff7b82bad136eaf1a8e9d3b47f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:55:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
no.norton.com/libs/granite/csrf/token.json
200 OK 2 B URL HTTP/2 no.norton.com/libs/granite/csrf/token.json
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /libs/granite/csrf/token.json HTTP/1.1
Host: no.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=xO0SQ4yCbxyNR7RVoXTXjwISUkAxvhTpD1MORM0&adid=1078124&IRID=312695&source=ir
Cookie: dtCookie=v_4_srv_1_sn_BB6790C89F8D9F98A9F1B6117574DA92_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4465632d30392d323032322031303a35353a35327c4c43443d4465632d30392d323032322031303a35353a3532; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31322f30392f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31322d30392d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=4F87A14165F9D70625D17FCF0346EEF2; qs=69726777633d3126636c69636b69643d784f3053513479436278794e523752566f5854586a774953556b41787668547044314d4f524d3026616469643d3130373831323426495249443d33313236393526736f757263653d6972; ttControl=5443473d3130; AMCV_67C716D751E567F70A490D4C%40AdobeOrg=-1124106680%7CMCIDTS%7C19336%7CvVersion%7C5.2.0; at_check=true; mbox=session#c535ef10665049298af00b9104674111#1670614014
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=ISO-8859-1
content-length: 2
server: Apache
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff, nosniff
x-powered-by: Jetty(9.2.9.v20150224)
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache
date: Fri, 09 Dec 2022 18:55:54 GMT
X-Firefox-Spdy: h2
www.nortonlifelock.com/content/dam/norton-adobe-analytics/prod/s_code_norton_min.js
200 OK 25 kB URL HTTP/2 www.nortonlifelock.com/content/dam/norton-adobe-analytics/prod/s_code_norton_min.js
IP
File type Unicode text, UTF-8 text, with very long lines (32095)
Hash 9f2a7bc0144c12de7d037778983e6946
5a1a45cc0e078d6828eb6827d240461de4174e12
06ad098a67a0b704534cbbc57d67783f509d4409c2c212bbf84b6710fb50245c
GET /content/dam/norton-adobe-analytics/prod/s_code_norton_min.js HTTP/1.1
Host: www.nortonlifelock.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 24692
server: Apache
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-disposition: attachment
x-content-type-options: nosniff, nosniff
last-modified: Mon, 28 Nov 2022 16:53:21 GMT
etag: "12a45-5ee8ab5782240-gzip"
accept-ranges: bytes
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=68933
expires: Sat, 10 Dec 2022 14:04:47 GMT
date: Fri, 09 Dec 2022 18:55:54 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 39f8bd1911f1222338ae765da30ee679
c5c84f00a58bb4f486c857f9a8ed7416a2513fcd
c68d448ff357806c05ff74facba946e1a7f7b451c3f7be91e02a4f023f8b10f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4497
Cache-Control: max-age=131160
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:55:54 GMT
Etag: "6392d081-1d7"
Expires: Sun, 11 Dec 2022 07:21:54 GMT
Last-Modified: Fri, 09 Dec 2022 06:06:57 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
dpm.demdex.net/id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=67C716D751E567F70A490D4C%40AdobeOrg&d_nsid=0&ts=1670612153447
200 OK 311 B URL HTTP/1.1 dpm.demdex.net/id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=67C716D751E567F70A490D4C%40AdobeOrg&d_nsid=0&ts=1670612153447
IP
File type JSON data\012- , ASCII text, with very long lines (367), with no line terminators
Hash c3676c1695bfaf066171fdc219acaab3
4f4d36702b5b580d205d9e462ff3914f4a9567c6
aba653040da48015878d7b92bc44ad7bd5c834c5bcf16d2fa512b4a4463160a9
GET /id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=67C716D751E567F70A490D4C%40AdobeOrg&d_nsid=0&ts=1670612153447 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://no.norton.com
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://no.norton.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-1-v045-02fbabcd7.edge-irl1.demdex.com 1 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=59801137522628550364550250097938746154; Max-Age=15552000; Expires=Wed, 07 Jun 2023 18:55:54 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: yoIVIVNpTdY=
Content-Length: 311
Connection: keep-alive
www.youtube.com/embed/HbbecvDLoSM?rel=0%20
200 OK 77 kB URL HTTP/2 www.youtube.com/embed/HbbecvDLoSM?rel=0%20
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (58608)
Hash 726d4e16b2edc2e1f5b67c9194e05168
3aa46c87d5d514ee73a846a217572123e92fef2b
2bc54740b44cb9e726637e5168239c3f92c8f29248aa1f4d1e8076675996c8ba
GET /embed/HbbecvDLoSM?rel=0%20 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 09 Dec 2022 18:55:54 GMT
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=JKtewwz85hY; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=YqbbmpeUevg; Domain=.youtube.com; Expires=Wed, 07-Jun-2023 18:55:54 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+850; expires=Sun, 08-Dec-2024 18:55:54 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash e4f546e102d986faf1029509d599b730
cc045a705fd6758b7b575fde5dfb79facc9c3546
ef492301b2b30e5076f7dffa07973e65e9a200ba9ef4d3568a527d3f973f3349
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:55:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Dec 2022 21:48:03 GMT
expires: Fri, 08 Dec 2023 21:48:03 GMT
cache-control: public, max-age=31536000
age: 76071
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c9208747f2926b414bae65ed0e18fac5
3b25f459b1fe1a63689880699450305a8aee8b77
2c5333a23ade630e8dd8242aa59e371fa2208e265c58916e6fa799683d53f196
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:55:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Dec 2022 16:40:43 GMT
expires: Fri, 08 Dec 2023 16:40:43 GMT
cache-control: public, max-age=31536000
age: 94511
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c9208747f2926b414bae65ed0e18fac5
3b25f459b1fe1a63689880699450305a8aee8b77
2c5333a23ade630e8dd8242aa59e371fa2208e265c58916e6fa799683d53f196
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:55:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash 3ec18a7252ab0a8b42e8ceac1d8437ff
de7b46024669ecab0b0d6146cade2a1f0c43ad5f
de20a2c44dc8953854b5ffecac4d2e426458d140fcec871e4d0742226fce16b1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1255
Cache-Control: max-age=100178
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:55:55 GMT
Etag: "63926426-1d7"
Expires: Sat, 10 Dec 2022 22:45:33 GMT
Last-Modified: Thu, 08 Dec 2022 22:24:38 GMT
Server: ECS (amb/6BC2)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash 404c916f6280c14af93e43751b2555a9
0dde4afe2d3006207fa2c983133e2d88df9f5817
70731af9778db5cdb2b51e34debb1afa3de2143e41aa00fa0db4ba4619419390
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1651
Cache-Control: max-age=169720
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:55:55 GMT
Etag: "63937240-1d7"
Expires: Sun, 11 Dec 2022 18:04:35 GMT
Last-Modified: Fri, 09 Dec 2022 17:37:04 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
oms.norton.com/b/ss/symanteccom/1/JS-2.22.0/s67466494252589?AQB=1&ndh=1&pf=1&t=9%2F11%2F2022%2018%3A55%3A53%205%200&sdid=009A53CFBFC1A058-5E00A0974E58D94C&mid=59601541766942407174570772332749440923&aamlh=6&ce=UTF-8&pageName=norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&g=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html%3Firgwc%3D1%26clickid%3DxO0SQ4yCbxyNR7RVoXTXjwISUkAxvhTpD1MORM0%26adid%3D1078124%26IRID%3D312695%26source%3Dir&server=norton&v0=hho_aff_312695&events=event79%3D19%2Cevent69&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c2=no&c3=no&v5=none&c14=D%3Dv16&v16=norton%3Aaffiliate&v18=D%3DpageName&v21=D%3Dc21&c22=hho_aff_312695&v27=D%3Dc2&v28=D%3Dc3&c35=%3E%20hho_aff_312695%20norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&v35=hho_aff_312695&c41=norton.com&v41=D%3Dc41&c46=html&c47=page&v47=s_code_norton%202022-11-10&c48=3up_norton360_ns_nd_np_reading_tw_nb&v48=D%3Dc49&c49=paidsearch&v49=D%3Dc48&v57=59601541766942407174570772332749440923&c59=norton.com%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&v59=D%3Dc59&v66=ImpactRadius&v72=norton.com&c75=D%3Dv57&v90=existing_customer%3A%20No&v96=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=67C716D751E567F70A490D4C%40AdobeOrg&AQE=1
200 OK 43 B URL HTTP/2 oms.norton.com/b/ss/symanteccom/1/JS-2.22.0/s67466494252589?AQB=1&ndh=1&pf=1&t=9%2F11%2F2022%2018%3A55%3A53%205%200&sdid=009A53CFBFC1A058-5E00A0974E58D94C&mid=59601541766942407174570772332749440923&aamlh=6&ce=UTF-8&pageName=norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&g=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html%3Firgwc%3D1%26clickid%3DxO0SQ4yCbxyNR7RVoXTXjwISUkAxvhTpD1MORM0%26adid%3D1078124%26IRID%3D312695%26source%3Dir&server=norton&v0=hho_aff_312695&events=event79%3D19%2Cevent69&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c2=no&c3=no&v5=none&c14=D%3Dv16&v16=norton%3Aaffiliate&v18=D%3DpageName&v21=D%3Dc21&c22=hho_aff_312695&v27=D%3Dc2&v28=D%3Dc3&c35=%3E%20hho_aff_312695%20norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&v35=hho_aff_312695&c41=norton.com&v41=D%3Dc41&c46=html&c47=page&v47=s_code_norton%202022-11-10&c48=3up_norton360_ns_nd_np_reading_tw_nb&v48=D%3Dc49&c49=paidsearch&v49=D%3Dc48&v57=59601541766942407174570772332749440923&c59=norton.com%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&v59=D%3Dc59&v66=ImpactRadius&v72=norton.com&c75=D%3Dv57&v90=existing_customer%3A%20No&v96=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=67C716D751E567F70A490D4C%40AdobeOrg&AQE=1
IP
File type GIF image data, version 89a, 2 x 2\012- data
Hash ad480fd0732d0f6f1a8b06359e3a42bb
a544538683a2dfe574eeb2e358ac8fcc78289d50
a1ecbaed793a1f564c49c671f2dd0ce36f858534ef6d26b55783a06b884cc506
GET /b/ss/symanteccom/1/JS-2.22.0/s67466494252589?AQB=1&ndh=1&pf=1&t=9%2F11%2F2022%2018%3A55%3A53%205%200&sdid=009A53CFBFC1A058-5E00A0974E58D94C&mid=59601541766942407174570772332749440923&aamlh=6&ce=UTF-8&pageName=norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&g=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html%3Firgwc%3D1%26clickid%3DxO0SQ4yCbxyNR7RVoXTXjwISUkAxvhTpD1MORM0%26adid%3D1078124%26IRID%3D312695%26source%3Dir&server=norton&v0=hho_aff_312695&events=event79%3D19%2Cevent69&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c2=no&c3=no&v5=none&c14=D%3Dv16&v16=norton%3Aaffiliate&v18=D%3DpageName&v21=D%3Dc21&c22=hho_aff_312695&v27=D%3Dc2&v28=D%3Dc3&c35=%3E%20hho_aff_312695%20norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&v35=hho_aff_312695&c41=norton.com&v41=D%3Dc41&c46=html&c47=page&v47=s_code_norton%202022-11-10&c48=3up_norton360_ns_nd_np_reading_tw_nb&v48=D%3Dc49&c49=paidsearch&v49=D%3Dc48&v57=59601541766942407174570772332749440923&c59=norton.com%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&v59=D%3Dc59&v66=ImpactRadius&v72=norton.com&c75=D%3Dv57&v90=existing_customer%3A%20No&v96=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=67C716D751E567F70A490D4C%40AdobeOrg&AQE=1 HTTP/1.1
Host: oms.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Cookie: dtCookie=v_4_srv_1_sn_BB6790C89F8D9F98A9F1B6117574DA92_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4465632d30392d323032322031303a35353a35327c4c43443d4465632d30392d323032322031303a35353a3532; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31322f30392f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31322d30392d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=4F87A14165F9D70625D17FCF0346EEF2; ttControl=5443473d3130; AMCV_67C716D751E567F70A490D4C%40AdobeOrg=-1124106680%7CMCIDTS%7C19336%7CMCMID%7C59601541766942407174570772332749440923%7CMCAAMLH-1671216953%7C6%7CMCAAMB-1671216953%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1670619353s%7CNONE%7CvVersion%7C5.2.0; at_check=true; mbox=session#c535ef10665049298af00b9104674111#1670614014; promocode=DEFAULTWEB; AMCVS_67C716D751E567F70A490D4C%40AdobeOrg=1; s_prop22=hho_aff_312695; s_nr=1670612153911-New; event69=event69; channelStack=s_eVar72~norton.com; s_gpv=norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_gpv_custom=norton.com%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_cc=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
access-control-allow-origin: *
date: Fri, 09 Dec 2022 18:55:55 GMT
expires: Thu, 08 Dec 2022 18:55:55 GMT
last-modified: Sat, 10 Dec 2022 18:55:55 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
etag: 3587612286097063936-4619668947259213535
vary: *
content-type: image/gif;charset=utf-8
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
symantec.tt.omtrdc.net/m2/symantec/mbox/json?mbox=sym_global_mbox&mboxSession=c535ef10665049298af00b9104674111&mboxPC=&mboxPage=af404f102b404722aa875771b38e0f19&mboxRid=84e04aec1a7c423088db4ae11003fd45&mboxVersion=1.8.2&mboxCount=1&mboxTime=1670612153463&mboxHost=no.norton.com&mboxURL=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html%3Firgwc%3D1%26clickid%3DxO0SQ4yCbxyNR7RVoXTXjwISUkAxvhTpD1MORM0%26adid%3D1078124%26IRID%3D312695%26source%3Dir&mboxReferrer=&mboxXDomain=enabled&browserHeight=939&browserWidth=1268&browserTimeOffset=0&screenHeight=1024&screenWidth=1280&colorDepth=24&devicePixelRatio=1&screenOrientation=landscape&profile.TCG=10&vendor_type=none&program_type=ImpactRadius&site_country=no&site_section=norton.com&content_title=3up_norton360_ns_nd_np_reading_tw_nb&site_language=no&traffic_source=affiliates&ExistingCustomer=existing_customer%3A%20No&site_sub_section=paidsearch¤t_subchannel=&site_content_title=3up_norton360_ns_nd_np_reading_tw_nb&original_subchannel=&profile.vendor_type=none&profile.program_type=ImpactRadius&profile.site_country=no&site_sub_sub_section=missing&%20profile.site_section=norton.com&profile.site_language=no&profile.%20traffic_source=affiliates&profile.ExistingCustomer=existing_customer%3A%20No&profile.%20site_sub_section=paidsearch&profile.current_subchannel=&profile.site_content_title=3up_norton360_ns_nd_np_reading_tw_nb&profile.original_subchannel=&mboxMCSDID=009A53CFBFC1A058-5E00A0974E58D94C&mboxMCGVID=59601541766942407174570772332749440923&mboxAAMB=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&mboxMCGLH=6
200 OK 1.1 kB URL HTTP/2 symantec.tt.omtrdc.net/m2/symantec/mbox/json?mbox=sym_global_mbox&mboxSession=c535ef10665049298af00b9104674111&mboxPC=&mboxPage=af404f102b404722aa875771b38e0f19&mboxRid=84e04aec1a7c423088db4ae11003fd45&mboxVersion=1.8.2&mboxCount=1&mboxTime=1670612153463&mboxHost=no.norton.com&mboxURL=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html%3Firgwc%3D1%26clickid%3DxO0SQ4yCbxyNR7RVoXTXjwISUkAxvhTpD1MORM0%26adid%3D1078124%26IRID%3D312695%26source%3Dir&mboxReferrer=&mboxXDomain=enabled&browserHeight=939&browserWidth=1268&browserTimeOffset=0&screenHeight=1024&screenWidth=1280&colorDepth=24&devicePixelRatio=1&screenOrientation=landscape&profile.TCG=10&vendor_type=none&program_type=ImpactRadius&site_country=no&site_section=norton.com&content_title=3up_norton360_ns_nd_np_reading_tw_nb&site_language=no&traffic_source=affiliates&ExistingCustomer=existing_customer%3A%20No&site_sub_section=paidsearch¤t_subchannel=&site_content_title=3up_norton360_ns_nd_np_reading_tw_nb&original_subchannel=&profile.vendor_type=none&profile.program_type=ImpactRadius&profile.site_country=no&site_sub_sub_section=missing&%20profile.site_section=norton.com&profile.site_language=no&profile.%20traffic_source=affiliates&profile.ExistingCustomer=existing_customer%3A%20No&profile.%20site_sub_section=paidsearch&profile.current_subchannel=&profile.site_content_title=3up_norton360_ns_nd_np_reading_tw_nb&profile.original_subchannel=&mboxMCSDID=009A53CFBFC1A058-5E00A0974E58D94C&mboxMCGVID=59601541766942407174570772332749440923&mboxAAMB=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&mboxMCGLH=6
IP
Hash 14035410324da4091b7db72928ae9924
b7163c121605a703f85acb48e93d69b95a3cf66d
4f73a40415134430bbba1a10de1eb0ec07022d85c157eda5f53b9e7a117ba15d
GET /m2/symantec/mbox/json?mbox=sym_global_mbox&mboxSession=c535ef10665049298af00b9104674111&mboxPC=&mboxPage=af404f102b404722aa875771b38e0f19&mboxRid=84e04aec1a7c423088db4ae11003fd45&mboxVersion=1.8.2&mboxCount=1&mboxTime=1670612153463&mboxHost=no.norton.com&mboxURL=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html%3Firgwc%3D1%26clickid%3DxO0SQ4yCbxyNR7RVoXTXjwISUkAxvhTpD1MORM0%26adid%3D1078124%26IRID%3D312695%26source%3Dir&mboxReferrer=&mboxXDomain=enabled&browserHeight=939&browserWidth=1268&browserTimeOffset=0&screenHeight=1024&screenWidth=1280&colorDepth=24&devicePixelRatio=1&screenOrientation=landscape&profile.TCG=10&vendor_type=none&program_type=ImpactRadius&site_country=no&site_section=norton.com&content_title=3up_norton360_ns_nd_np_reading_tw_nb&site_language=no&traffic_source=affiliates&ExistingCustomer=existing_customer%3A%20No&site_sub_section=paidsearch¤t_subchannel=&site_content_title=3up_norton360_ns_nd_np_reading_tw_nb&original_subchannel=&profile.vendor_type=none&profile.program_type=ImpactRadius&profile.site_country=no&site_sub_sub_section=missing&%20profile.site_section=norton.com&profile.site_language=no&profile.%20traffic_source=affiliates&profile.ExistingCustomer=existing_customer%3A%20No&profile.%20site_sub_section=paidsearch&profile.current_subchannel=&profile.site_content_title=3up_norton360_ns_nd_np_reading_tw_nb&profile.original_subchannel=&mboxMCSDID=009A53CFBFC1A058-5E00A0974E58D94C&mboxMCGVID=59601541766942407174570772332749440923&mboxAAMB=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&mboxMCGLH=6 HTTP/1.1
Host: symantec.tt.omtrdc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://no.norton.com
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 18:55:55 GMT
content-type: application/json;charset=UTF-8
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
access-control-allow-origin: https://no.norton.com
access-control-allow-credentials: true
x-request-id: 84e04aec1a7c423088db4ae11003fd45
p3p: CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
set-cookie: symantec!mboxSession=c535ef10665049298af00b9104674111; Max-Age=1860; Expires=Fri, 09-Dec-2022 19:26:55 GMT; Domain=symantec.tt.omtrdc.net; Path=/; Secure; HttpOnly; SameSite=None
symantec!mboxPC=c535ef10665049298af00b9104674111.37_0; Max-Age=63244800; Expires=Tue, 10-Dec-2024 18:55:55 GMT; Domain=symantec.tt.omtrdc.net; Path=/; Secure; HttpOnly; SameSite=None
pragma: no-cache
cache-control: no-cache
timing-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2556512b197b09798af71bea10bb4bbb
23b647aca5f8294ae82fa8cc7e2215ebe3347b60
3b5bd592342d978bcf8919d1a1e2f87295e2e4af5b5b266e6017b7a25725d08d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:55:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Dec 2022 18:51:04 GMT
expires: Fri, 09 Dec 2022 19:06:04 GMT
cache-control: public, max-age=900
age: 291
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Fri, 09 Dec 2022 18:55:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash dcb0ed86727c359c48d60000d5ce055b
f7e736e0e1f78ec89eacaa08fd5648e1cf47d4fc
68713a99b06419fcaa5ee2c4b2b1a2772ff6a47df9ca0f5dda78189fefa108a7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:55:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2556512b197b09798af71bea10bb4bbb
23b647aca5f8294ae82fa8cc7e2215ebe3347b60
3b5bd592342d978bcf8919d1a1e2f87295e2e4af5b5b266e6017b7a25725d08d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:55:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 4e3dc85fd71bdb106039966a96cdd02b
53d3487232ddcac30b53c224c94e63571633e5af
d0a3a292876b50c590a3fa6c04d3471a6fb726c54f57e75c21f2e1bd45424ace
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:55:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash edac2b4e678c48b1fc3be3a06793bfcb
23f1f41a2194536d77a2497d7255b13747fd9af0
e6b36b71f3633bd9d2b80043967f9579820f0ef1d5f66e5c401806de13cbe2a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:55:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 09 Dec 2022 18:55:55 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 23f0fed6cb9af080a75d8b899ae5bd84
2c02a8cb4a6e70d8ba58696fd709838656d443c3
b1102b6924fcffe1f07a07385010a47aa142435d4efc79b338e50f8258a4d5da
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:55:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/YkfklCtf3s5-_1quWHAnTHHVaBZ-i7ToAeXFpu3i2Ro.js
200 OK 14 kB URL HTTP/2 www.google.com/js/th/YkfklCtf3s5-_1quWHAnTHHVaBZ-i7ToAeXFpu3i2Ro.js
IP
File type ASCII text, with very long lines (36162)
Hash e9bf756aa2fac02f3307febffa242635
d0da1ab271c03a49fe6499a38e6f3c34d396c5d4
12655f58f30c13fae1942aae99ace0d8e450ead33ec120b89d78fd98a279e0bb
GET /js/th/YkfklCtf3s5-_1quWHAnTHHVaBZ-i7ToAeXFpu3i2Ro.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14349
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 19:26:54 GMT
expires: Thu, 07 Dec 2023 19:26:54 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 03 Nov 2022 10:00:00 GMT
content-type: text/javascript
age: 170941
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash bf439e0a629dd8cc28fcea33262aff78
f2de8c4fbdfef73e42a47cd3d9a9cab2990b9d3d
1b7c35128fb014799611a8dd3c628eeb1085a9b8e13118416141f9261c8b79a0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:55:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash b20f7c8e7b978e0f71afd82ba8774172
24424cacf43bc5f4c7d4986580f0d946f1e5ab92
88ada02f99d4cb6b0ab5e33a1b4d4cdceb04e84627ffd3f5018201db01649570
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 09 Dec 2022 18:55:55 GMT
server: ESF
cache-control: private
content-length: 31049
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 4e3dc85fd71bdb106039966a96cdd02b
53d3487232ddcac30b53c224c94e63571633e5af
d0a3a292876b50c590a3fa6c04d3471a6fb726c54f57e75c21f2e1bd45424ace
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:55:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi/HbbecvDLoSM/maxresdefault.jpg?sqp=-oaymwEmCIAKENAF8quKqQMa8AEB-AHUBoAC4AOKAgwIABABGEYgWihyMA8=&rs=AOn4CLCqG4JMjzf4DLuZVfufmU8w-EmIkw
200 OK 42 kB URL HTTP/2 i.ytimg.com/vi/HbbecvDLoSM/maxresdefault.jpg?sqp=-oaymwEmCIAKENAF8quKqQMa8AEB-AHUBoAC4AOKAgwIABABGEYgWihyMA8=&rs=AOn4CLCqG4JMjzf4DLuZVfufmU8w-EmIkw
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3\012- data
Hash 971ea9ca0f180b1ab0bd79617e5a2971
d8475c49d2f01ae620b953fd287491db8a467ea5
6e84185a647a1d7b03aac16f232a33e1d1c1553b7b01ced695378caa5381d607
GET /vi/HbbecvDLoSM/maxresdefault.jpg?sqp=-oaymwEmCIAKENAF8quKqQMa8AEB-AHUBoAC4AOKAgwIABABGEYgWihyMA8=&rs=AOn4CLCqG4JMjzf4DLuZVfufmU8w-EmIkw HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 41927
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Dec 2022 18:04:05 GMT
expires: Fri, 09 Dec 2022 20:04:05 GMT
cache-control: public, max-age=7200
age: 3110
etag: "1623336704"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 8585fe73b51c643ee300c3df9313bfe1
c184ce0c12fbfc0f17a81ad0e0bdaad5503bceb1
807b590f961c83886bbd27c879dfbf03a3336005cdabbba42d4d63bdcb11bf51
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:55:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash bf439e0a629dd8cc28fcea33262aff78
f2de8c4fbdfef73e42a47cd3d9a9cab2990b9d3d
1b7c35128fb014799611a8dd3c628eeb1085a9b8e13118416141f9261c8b79a0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:55:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 3b873c6396aca4019ea51aed119cc8b6
b9684a5bf5075eb4e8ae2512b9ab3f1ddbddf80a
0045a8cb68ae0065903c118fcce7eb8b5eb1ad3bf92da3a50630346f5b45ca34
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:55:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/4Yl2QFmkHUq0kr-Lw0_9lJd4YN9EYUjfbGutMYWk2haviJr4FrOjEQ01Yma0xZkZAwMuUyW2RA=s68-c-k-c0x00ffffff-no-rj
200 OK 2.0 kB URL HTTP/2 yt3.ggpht.com/4Yl2QFmkHUq0kr-Lw0_9lJd4YN9EYUjfbGutMYWk2haviJr4FrOjEQ01Yma0xZkZAwMuUyW2RA=s68-c-k-c0x00ffffff-no-rj
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data
Hash 5bb232e1cdf3d294276741580edcee1d
1bd4fbfed31e0cf42b90fd65e6ac4379df98825c
637f4c9af77d922cebe55ddcf2d14e3781481174b5a631434ed7be568b71e398
GET /4Yl2QFmkHUq0kr-Lw0_9lJd4YN9EYUjfbGutMYWk2haviJr4FrOjEQ01Yma0xZkZAwMuUyW2RA=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1969
x-xss-protection: 0
date: Fri, 09 Dec 2022 15:41:11 GMT
expires: Wed, 15 Jun 2022 07:18:30 GMT
cache-control: public, max-age=86400, no-transform
age: 11684
etag: "v1"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 3b873c6396aca4019ea51aed119cc8b6
b9684a5bf5075eb4e8ae2512b9ab3f1ddbddf80a
0045a8cb68ae0065903c118fcce7eb8b5eb1ad3bf92da3a50630346f5b45ca34
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:55:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ensighten.norton.com/privacy/v1/b/r.rnc?n=0&c=21&i=5400r6&p=aemprod&s=330&d=8G57InZlcnNpb24iOiIxLjAuMCIsImdhdGV3YXkiOiIyLjMuNjAyIiwiY2xpZW50SWQiOjIxLCJwdWJsaXNoUGF0aCI6ImFlbXByb2QiLCJpbnN0YW5jZUlkIjoiNTQwMHI2IiwicGFja2V0IjowLCJtb2RlIjoiZW5mb3JjZVgA8ixvb2tpZXMiOnt9LCJlbnZpcm9ubWVudCI6Ik5PIE5vcnRvbiIsInJlcXVlc3RzIjpbeyJkZXN0aW5hdLYA8BkiLCJ0eXBlIjoiYmlsbGluZyIsInN0YXJ0IjoxNjcwNjEyMTU0NjcxXwDAZCI6LTEsInNvdXJjMgACKwBhdHVzIjoiZgBAYXNvbmUA1F0sImRhdGFQYXR0ZXISAMJsaXN0IjpbXSwiaWRdAMA2MTIxNTQ2NzF9XX0
204 No Content 0 B URL HTTP/2 ensighten.norton.com/privacy/v1/b/r.rnc?n=0&c=21&i=5400r6&p=aemprod&s=330&d=8G57InZlcnNpb24iOiIxLjAuMCIsImdhdGV3YXkiOiIyLjMuNjAyIiwiY2xpZW50SWQiOjIxLCJwdWJsaXNoUGF0aCI6ImFlbXByb2QiLCJpbnN0YW5jZUlkIjoiNTQwMHI2IiwicGFja2V0IjowLCJtb2RlIjoiZW5mb3JjZVgA8ixvb2tpZXMiOnt9LCJlbnZpcm9ubWVudCI6Ik5PIE5vcnRvbiIsInJlcXVlc3RzIjpbeyJkZXN0aW5hdLYA8BkiLCJ0eXBlIjoiYmlsbGluZyIsInN0YXJ0IjoxNjcwNjEyMTU0NjcxXwDAZCI6LTEsInNvdXJjMgACKwBhdHVzIjoiZgBAYXNvbmUA1F0sImRhdGFQYXR0ZXISAMJsaXN0IjpbXSwiaWRdAMA2MTIxNTQ2NzF9XX0
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /privacy/v1/b/r.rnc?n=0&c=21&i=5400r6&p=aemprod&s=330&d=8G57InZlcnNpb24iOiIxLjAuMCIsImdhdGV3YXkiOiIyLjMuNjAyIiwiY2xpZW50SWQiOjIxLCJwdWJsaXNoUGF0aCI6ImFlbXByb2QiLCJpbnN0YW5jZUlkIjoiNTQwMHI2IiwicGFja2V0IjowLCJtb2RlIjoiZW5mb3JjZVgA8ixvb2tpZXMiOnt9LCJlbnZpcm9ubWVudCI6Ik5PIE5vcnRvbiIsInJlcXVlc3RzIjpbeyJkZXN0aW5hdLYA8BkiLCJ0eXBlIjoiYmlsbGluZyIsInN0YXJ0IjoxNjcwNjEyMTU0NjcxXwDAZCI6LTEsInNvdXJjMgACKwBhdHVzIjoiZgBAYXNvbmUA1F0sImRhdGFQYXR0ZXISAMJsaXN0IjpbXSwiaWRdAMA2MTIxNTQ2NzF9XX0 HTTP/1.1
Host: ensighten.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Cookie: dtCookie=v_4_srv_1_sn_BB6790C89F8D9F98A9F1B6117574DA92_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4465632d30392d323032322031303a35353a35327c4c43443d4465632d30392d323032322031303a35353a3532; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31322f30392f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31322d30392d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=4F87A14165F9D70625D17FCF0346EEF2; ttControl=5443473d3130; AMCV_67C716D751E567F70A490D4C%40AdobeOrg=-1124106680%7CMCIDTS%7C19336%7CMCMID%7C59601541766942407174570772332749440923%7CMCAAMLH-1671216953%7C6%7CMCAAMB-1671216953%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1670619353s%7CNONE%7CvVersion%7C5.2.0; at_check=true; mbox=session#c535ef10665049298af00b9104674111#1670614015|PC#c535ef10665049298af00b9104674111.37_0#1733856955; promocode=DEFAULTWEB; AMCVS_67C716D751E567F70A490D4C%40AdobeOrg=1; s_prop22=hho_aff_312695; s_nr=1670612153911-New; event69=event69; channelStack=s_eVar72~norton.com; s_gpv=norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_gpv_custom=norton.com%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_cc=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Fri, 09 Dec 2022 18:55:55 GMT
expires: Fri, 09 Dec 2022 18:55:54 GMT
cache-control: no-cache, no-store
X-Firefox-Spdy: h2
buy.norton.com/redirector/seo?callback=jQuery3110697529422642966_1670612153489&ptype=cartpopover&COUNTRY=NO&LANGUAGE=no&_=1670612153490
200 OK 63 B URL HTTP/2 buy.norton.com/redirector/seo?callback=jQuery3110697529422642966_1670612153489&ptype=cartpopover&COUNTRY=NO&LANGUAGE=no&_=1670612153490
IP
Hash 06824e4543408d3f77d858048493c241
436b54c91207bd093b3869ef194c41901f711958
42f0748b255a00d8a49439f55cc44d3cba437d74796f042ada208b9be95b5c27
GET /redirector/seo?callback=jQuery3110697529422642966_1670612153489&ptype=cartpopover&COUNTRY=NO&LANGUAGE=no&_=1670612153490 HTTP/1.1
Host: buy.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Cookie: dtCookie=v_4_srv_1_sn_BB6790C89F8D9F98A9F1B6117574DA92_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; JSESSIONID=4F87A14165F9D70625D17FCF0346EEF2; X-CSRF-TOKEN=sYKu6JZQaTMuwXw8SkyDtHEaP8eVAY_f2AuNpBhSMv8_; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4465632d30392d323032322031303a35353a35327c4c43443d4465632d30392d323032322031303a35353a3532; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31322f30392f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31322d30392d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=4F87A14165F9D70625D17FCF0346EEF2; ESID=02c2c74f54-6981-42MCRg7MtRZhtEPGP1-r2HsRjMjFKMTR4RZo7vB6OG1xB53hKPjhcCw1IqtKPTkX00Vqs; ttControl=5443473d3130; AMCV_67C716D751E567F70A490D4C%40AdobeOrg=-1124106680%7CMCIDTS%7C19336%7CMCMID%7C59601541766942407174570772332749440923%7CMCAAMLH-1671216953%7C6%7CMCAAMB-1671216953%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1670619353s%7CNONE%7CvVersion%7C5.2.0; at_check=true; mbox=session#c535ef10665049298af00b9104674111#1670614015|PC#c535ef10665049298af00b9104674111.37_0#1733856955; promocode=DEFAULTWEB; AMCVS_67C716D751E567F70A490D4C%40AdobeOrg=1; s_prop22=hho_aff_312695; s_nr=1670612153911-New; event69=event69; channelStack=s_eVar72~norton.com; s_gpv=norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_gpv_custom=norton.com%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_cc=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript;charset=utf-8
content-length: 63
x-oneagent-js-injection: true
server-timing: dtRpid;desc="-165203713", dtSInfo;desc="0"
requestid: e955cf34bf5f0000
strict-transport-security: max-age=31536000; includeSubDomains
expires: Fri, 09 Dec 2022 18:55:55 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 09 Dec 2022 18:55:55 GMT
X-Firefox-Spdy: h2
ensighten.norton.com/privacy/v1/c/r.rnc?n=0&c=21&i=5z1o05&p=aemprod&s=428&d=9CV7InZlcnNpb24iOiIxLjAuMCIsImdhdGV3YXkiOiIyLjMuNjAyIiwiY2xpZW50SWQiOjIxDgDwHk5hbWUiOiJzeW1hbnRlYyIsInB1Ymxpc2hQYXRoIjoiYWVtcHJvZCIsIm1vZCoAkHdoaXRlbGlzdFEA8CNvb2tpZXMiOnsiU1lNQU5URUNfRU5TSUdIVEVOX1BSSVZBQ1lfQkFOTkVSX0xPQURFRKMA8Q8ifSwiZHQiOjE2NzA2MTIxNTQ2OTMsInNldHRpbmdPAPEnbW9kYWwiOiJlbnRlcnByaXNlIiwiZW52aXJvbm1lbnQiOiJOTyBOb3J0b24iLCJkZWZhdWx0OwDxH1NvY2lhbCBNZWRpYSI6MCwiUGVyZm9ybWFuY2UgYW5kIEZ1bmN0aW9uYWxpdHkiALJBZHZlcnRpc2luZxAA8ARuYWx5dGljcyI6MH19LCJldmVuXQAiW3sLAEEiOiJj-wBgQ2hhbmdlHgEP0AAABfgAwEFERUQiOiIxIn1dfQ
204 No Content 0 B URL HTTP/2 ensighten.norton.com/privacy/v1/c/r.rnc?n=0&c=21&i=5z1o05&p=aemprod&s=428&d=9CV7InZlcnNpb24iOiIxLjAuMCIsImdhdGV3YXkiOiIyLjMuNjAyIiwiY2xpZW50SWQiOjIxDgDwHk5hbWUiOiJzeW1hbnRlYyIsInB1Ymxpc2hQYXRoIjoiYWVtcHJvZCIsIm1vZCoAkHdoaXRlbGlzdFEA8CNvb2tpZXMiOnsiU1lNQU5URUNfRU5TSUdIVEVOX1BSSVZBQ1lfQkFOTkVSX0xPQURFRKMA8Q8ifSwiZHQiOjE2NzA2MTIxNTQ2OTMsInNldHRpbmdPAPEnbW9kYWwiOiJlbnRlcnByaXNlIiwiZW52aXJvbm1lbnQiOiJOTyBOb3J0b24iLCJkZWZhdWx0OwDxH1NvY2lhbCBNZWRpYSI6MCwiUGVyZm9ybWFuY2UgYW5kIEZ1bmN0aW9uYWxpdHkiALJBZHZlcnRpc2luZxAA8ARuYWx5dGljcyI6MH19LCJldmVuXQAiW3sLAEEiOiJj-wBgQ2hhbmdlHgEP0AAABfgAwEFERUQiOiIxIn1dfQ
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /privacy/v1/c/r.rnc?n=0&c=21&i=5z1o05&p=aemprod&s=428&d=9CV7InZlcnNpb24iOiIxLjAuMCIsImdhdGV3YXkiOiIyLjMuNjAyIiwiY2xpZW50SWQiOjIxDgDwHk5hbWUiOiJzeW1hbnRlYyIsInB1Ymxpc2hQYXRoIjoiYWVtcHJvZCIsIm1vZCoAkHdoaXRlbGlzdFEA8CNvb2tpZXMiOnsiU1lNQU5URUNfRU5TSUdIVEVOX1BSSVZBQ1lfQkFOTkVSX0xPQURFRKMA8Q8ifSwiZHQiOjE2NzA2MTIxNTQ2OTMsInNldHRpbmdPAPEnbW9kYWwiOiJlbnRlcnByaXNlIiwiZW52aXJvbm1lbnQiOiJOTyBOb3J0b24iLCJkZWZhdWx0OwDxH1NvY2lhbCBNZWRpYSI6MCwiUGVyZm9ybWFuY2UgYW5kIEZ1bmN0aW9uYWxpdHkiALJBZHZlcnRpc2luZxAA8ARuYWx5dGljcyI6MH19LCJldmVuXQAiW3sLAEEiOiJj-wBgQ2hhbmdlHgEP0AAABfgAwEFERUQiOiIxIn1dfQ HTTP/1.1
Host: ensighten.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Cookie: dtCookie=v_4_srv_1_sn_BB6790C89F8D9F98A9F1B6117574DA92_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4465632d30392d323032322031303a35353a35327c4c43443d4465632d30392d323032322031303a35353a3532; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31322f30392f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31322d30392d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=4F87A14165F9D70625D17FCF0346EEF2; ttControl=5443473d3130; AMCV_67C716D751E567F70A490D4C%40AdobeOrg=-1124106680%7CMCIDTS%7C19336%7CMCMID%7C59601541766942407174570772332749440923%7CMCAAMLH-1671216953%7C6%7CMCAAMB-1671216953%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1670619353s%7CNONE%7CvVersion%7C5.2.0; at_check=true; mbox=session#c535ef10665049298af00b9104674111#1670614015|PC#c535ef10665049298af00b9104674111.37_0#1733856955; promocode=DEFAULTWEB; AMCVS_67C716D751E567F70A490D4C%40AdobeOrg=1; s_prop22=hho_aff_312695; s_nr=1670612153911-New; event69=event69; channelStack=s_eVar72~norton.com; s_gpv=norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_gpv_custom=norton.com%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_cc=true; SYMANTEC_ENSIGHTEN_PRIVACY_BANNER_LOADED=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Fri, 09 Dec 2022 18:55:55 GMT
expires: Fri, 09 Dec 2022 18:55:54 GMT
cache-control: no-cache, no-store
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 09 Dec 2022 18:55:55 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
200 OK 110 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 5dc3b77a13917d7920a8bf9d892288ec
4252262d14e0db6690efa9f9e0de14f33d916c16
5a9cd6f772230c99d73aff61c924742f8e9a410cf145e0f925f18204a0f6916e
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1259
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 09 Dec 2022 18:55:55 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ensighten.norton.com/privacy/v1/b/r.rnc?n=1&c=21&i=5400r6&p=aemprod&s=8098&d=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_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_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_AgMSAKRXaWR0aD0xMjY4JAAAOwHzAE9mZnNldD0wJnNjcmVlbjcAAVkDAhIABDcA0DgwJmNvbG9yRGVwdGhzA8BkZXZpY2VQaXhlbFLXCiM9MUQAIE9ydgsAEwDwE249bGFuZHNjYXBlJnByb2ZpbGUuVENHPTEwJnZlbmRvcl-6CgJfBnJwcm9ncmFtEgAJdwRgc2l0ZV9j8wEgcnmRBgEQADBzZWNLCwfwBO8mY29udGVudF90aXRsZYQFEwFLAFBsYW5ndbcCUG5vJnRyzgYiY1_IAxA9DQAB2wYzcyZF3gQTQ90ED-8ECAFWAERzdWJfpQAH2wVAY3VycqUAwXN1YmNoYW5uZWw9JjAAD74AIJhvcmlnaW5hbF9NAARoAQ9hAQEBgQEPaQEHBDsAA5AAOHVudHEBANAAAAQAA3kBMG1pc7MKSSYlMjA4AAT0AAarBwX7AQFYAAhuAQQ5AD8lMjB5AQcEJQAPgQEYBDMAMSUyMHQAD4wBBAQnAA-UAQEEHAABQAAPnAEgBEAAD6QBAgDGA39NQ1NESUQ9SwsQn2JveE1DR1ZJRAgIFQBfAE9BQU1C_AkjAD4Adk1DR0xIPTYIBz94aHI5DQIuMjYIBwAUAAJAA-IiOiJYSFJfTUFOQUdFUkEAAk0ODwAHJr83MTU4ODMwMjMzNxkNBw8AB________14fNwAHABc3ORQPAAdHHzgABwcPGRT______20dMmkbACMTBxEGMW11dBsRIk9i3RcYQRcNMGxvYXQbBmEbDxQUGy85MBQGBzhidXktGvcjcmVkaXJlY3Rvci9zZW8_Y2FsbGJhY2s9alF1ZXJ5MzExMDY5NzUyOTQyMjY0Mjk2Nl9kE0E4OSZwuhHwEGNhcnRwb3BvdmVyJkNPVU5UUlk9Tk8mTEFOR1VBR0WuERhfnRMQOaodADoAkiI6InNjcmlwdP4ACY8bTDQ2NTFWBzg0ODFWB6BhcHBlbmRDaGlsLwEyc3RhVg4PPwEjvzcxMjkxNjk4MTQ1PwGzLzcwPwEMDIQCIkNMhwEPRgErwDI5MTY5ODE2NH1dfQ
204 No Content 0 B URL HTTP/2 ensighten.norton.com/privacy/v1/b/r.rnc?n=1&c=21&i=5400r6&p=aemprod&s=8098&d=8G57InZlcnNpb24iOiIxLjAuMCIsImdhdGV3YXkiOiIyLjMuNjAyIiwiY2xpZW50SWQiOjIxLCJwdWJsaXNoUGF0aCI6ImFlbXByb2QiLCJpbnN0YW5jZUlkIjoiNTQwMHI2IiwicGFja2V0IjoxLCJtb2RlIjoiZW5mb3JjZVgA8ixvb2tpZXMiOnt9LCJlbnZpcm9ubWVudCI6Ik5PIE5vcnRvbiIsInJlcXVlc3RzIjpbeyJkZXN0aW5hdLYA8A1odHRwczovL3N5bWFudGVjLmRlbWRleC5uZXQvKgDxATUuaHRtbD9kX25zaWQ9MCMwANElM0ElMkYlMkZuby5uZQDwDC5jb20iLCJ0eXBlIjoiaWZyYW1lIiwic3RhcrsAwDY3MDYxMjE1Mzg5NKkAR2QiOjEUAIY4LCJzb3VyYzwA8gFfRE9NQXR0ck1vZGlmaWVkTACxdHVzIjoiYmxvY2sTAGByZWFzb27XAPEJIldoaXRlbGlzdCJdLCJkYXRhUGF0dGVyHQAxXSwiGgDAOlsiQW5hbHl0aWNzJwAUaYcArzkzMDc4NTQ0fSwfAQXhY20uZXZlcmVzdHRlY2geAfckY20vZGQ_ZF91dWlkPTU5ODAxMTM3NTIyNjI4NTUwMzY0NTUwMjUwMDk3OTM4NzQ2MTU0IgEibWfTAAofAT05MDMfATg5MDQfAS9tZxwBRqdkdmVydGlzaW5nHgGvMTYxOTI4MTUyMR4BBzdvbXMIAlUvYi9zc1EC8HJjb20vMS9KUy0yLjIyLjAvczY3NDY2NDk0MjUyNTg5P0FRQj0xJm5kaD0xJnBmPTEmdD05JTJGMTElMkYyMDIyJTIwMTglM0E1NSUzQTUzJTIwNSUyMDAmc2RpZD0wMDlBNTNDRkJGQzFBMDU4LTVFMDBBMDk3NEU1OEQ5NEMmbWmdAfYwNjAxNTQxNzY2OTQyNDA3MTc0NTcwNzcyMzMyNzQ5NDQwOTIzJmFhbWxoPTYmY2U9VVRGLTgmcGFnZU5hbWU95ALyCiUzQW5vJTNBcGFpZHNlYXJjaCUzQTN1cF8jAP8OMzYwX25zX25kX25wX1JlYWRpbmdfdHdfbmImZz07AwiPJTJGcHMlMkZKABEBkQPxNiUzRmlyZ3djJTNEMSUyNmNsaWNraWQlM0R4TzBTUTR5Q2J4eU5SN1JWb1hUWGp3SVNVa0F4dmhUcEQxTU9STTAlMjZhZDEA8gsxMDc4MTI0JTI2SVJJRCUzRDMxMjY5NSUyNpMD0iUzRGlyJnNlcnZlcj3mAMImdjA9aGhvX2FmZl8uAIEmZXZlbnRzPQcAIDc5lgBBOSUyQw8AIDY5WgHwMGI9NkcxeW5ZY0xQdWlReFlacnN6X3BrcWZMRzl5TVhCcGIyelg1ZHZKZFlRSnpQWEltZGoweSZjMj1ubyZjMwYAwHY1PW5vbmUmYzE0PakAc3YxNiZ2MTaVAPEBJTNBYWZmaWxpYXRlJnYxOCMABMIBQSZ2MjERAHxjMjEmYzIyvwAzdjI3HwAyJnYyOwDaYzMmYzM1PSUzRSUyMO4AMiUyMAkBAPYEDxICJzx2MzWIADNjNDHPAABbADMmdjS2AHA0MSZjNDY9iwVQJmM0Nz3YALMmdjQ3PXNfY29kZX4CMCUyMDIDvy0xMS0xMCZjNDg9UAIEGXKaAiN2NPIAdjQ5JmM0OT3cAkImdjQ5GAGfNDgmdjU3PTU5SgMSN2M1OccADy8DIiN2NXoA8Ac1OSZ2NjY9SW1wYWN0UmFkaXVzJnY3FwIA3QYBJwExYzc1pgCwdjU3JnY5MD1leGnjBqFnX2N1c3RvbWVysAZgME5vJnY5RQExdHBzEgANwgYPhwMe8RMmcz0xMjgweDEwMjQmYz0yNCZqPTEuNiZ2PU4maz1ZJmJ3IAD_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_AgMSAKRXaWR0aD0xMjY4JAAAOwHzAE9mZnNldD0wJnNjcmVlbjcAAVkDAhIABDcA0DgwJmNvbG9yRGVwdGhzA8BkZXZpY2VQaXhlbFLXCiM9MUQAIE9ydgsAEwDwE249bGFuZHNjYXBlJnByb2ZpbGUuVENHPTEwJnZlbmRvcl-6CgJfBnJwcm9ncmFtEgAJdwRgc2l0ZV9j8wEgcnmRBgEQADBzZWNLCwfwBO8mY29udGVudF90aXRsZYQFEwFLAFBsYW5ndbcCUG5vJnRyzgYiY1_IAxA9DQAB2wYzcyZF3gQTQ90ED-8ECAFWAERzdWJfpQAH2wVAY3VycqUAwXN1YmNoYW5uZWw9JjAAD74AIJhvcmlnaW5hbF9NAARoAQ9hAQEBgQEPaQEHBDsAA5AAOHVudHEBANAAAAQAA3kBMG1pc7MKSSYlMjA4AAT0AAarBwX7AQFYAAhuAQQ5AD8lMjB5AQcEJQAPgQEYBDMAMSUyMHQAD4wBBAQnAA-UAQEEHAABQAAPnAEgBEAAD6QBAgDGA39NQ1NESUQ9SwsQn2JveE1DR1ZJRAgIFQBfAE9BQU1C_AkjAD4Adk1DR0xIPTYIBz94aHI5DQIuMjYIBwAUAAJAA-IiOiJYSFJfTUFOQUdFUkEAAk0ODwAHJr83MTU4ODMwMjMzNxkNBw8AB________14fNwAHABc3ORQPAAdHHzgABwcPGRT______20dMmkbACMTBxEGMW11dBsRIk9i3RcYQRcNMGxvYXQbBmEbDxQUGy85MBQGBzhidXktGvcjcmVkaXJlY3Rvci9zZW8_Y2FsbGJhY2s9alF1ZXJ5MzExMDY5NzUyOTQyMjY0Mjk2Nl9kE0E4OSZwuhHwEGNhcnRwb3BvdmVyJkNPVU5UUlk9Tk8mTEFOR1VBR0WuERhfnRMQOaodADoAkiI6InNjcmlwdP4ACY8bTDQ2NTFWBzg0ODFWB6BhcHBlbmRDaGlsLwEyc3RhVg4PPwEjvzcxMjkxNjk4MTQ1PwGzLzcwPwEMDIQCIkNMhwEPRgErwDI5MTY5ODE2NH1dfQ
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /privacy/v1/b/r.rnc?n=1&c=21&i=5400r6&p=aemprod&s=8098&d=8G57InZlcnNpb24iOiIxLjAuMCIsImdhdGV3YXkiOiIyLjMuNjAyIiwiY2xpZW50SWQiOjIxLCJwdWJsaXNoUGF0aCI6ImFlbXByb2QiLCJpbnN0YW5jZUlkIjoiNTQwMHI2IiwicGFja2V0IjoxLCJtb2RlIjoiZW5mb3JjZVgA8ixvb2tpZXMiOnt9LCJlbnZpcm9ubWVudCI6Ik5PIE5vcnRvbiIsInJlcXVlc3RzIjpbeyJkZXN0aW5hdLYA8A1odHRwczovL3N5bWFudGVjLmRlbWRleC5uZXQvKgDxATUuaHRtbD9kX25zaWQ9MCMwANElM0ElMkYlMkZuby5uZQDwDC5jb20iLCJ0eXBlIjoiaWZyYW1lIiwic3RhcrsAwDY3MDYxMjE1Mzg5NKkAR2QiOjEUAIY4LCJzb3VyYzwA8gFfRE9NQXR0ck1vZGlmaWVkTACxdHVzIjoiYmxvY2sTAGByZWFzb27XAPEJIldoaXRlbGlzdCJdLCJkYXRhUGF0dGVyHQAxXSwiGgDAOlsiQW5hbHl0aWNzJwAUaYcArzkzMDc4NTQ0fSwfAQXhY20uZXZlcmVzdHRlY2geAfckY20vZGQ_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_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_AgMSAKRXaWR0aD0xMjY4JAAAOwHzAE9mZnNldD0wJnNjcmVlbjcAAVkDAhIABDcA0DgwJmNvbG9yRGVwdGhzA8BkZXZpY2VQaXhlbFLXCiM9MUQAIE9ydgsAEwDwE249bGFuZHNjYXBlJnByb2ZpbGUuVENHPTEwJnZlbmRvcl-6CgJfBnJwcm9ncmFtEgAJdwRgc2l0ZV9j8wEgcnmRBgEQADBzZWNLCwfwBO8mY29udGVudF90aXRsZYQFEwFLAFBsYW5ndbcCUG5vJnRyzgYiY1_IAxA9DQAB2wYzcyZF3gQTQ90ED-8ECAFWAERzdWJfpQAH2wVAY3VycqUAwXN1YmNoYW5uZWw9JjAAD74AIJhvcmlnaW5hbF9NAARoAQ9hAQEBgQEPaQEHBDsAA5AAOHVudHEBANAAAAQAA3kBMG1pc7MKSSYlMjA4AAT0AAarBwX7AQFYAAhuAQQ5AD8lMjB5AQcEJQAPgQEYBDMAMSUyMHQAD4wBBAQnAA-UAQEEHAABQAAPnAEgBEAAD6QBAgDGA39NQ1NESUQ9SwsQn2JveE1DR1ZJRAgIFQBfAE9BQU1C_AkjAD4Adk1DR0xIPTYIBz94aHI5DQIuMjYIBwAUAAJAA-IiOiJYSFJfTUFOQUdFUkEAAk0ODwAHJr83MTU4ODMwMjMzNxkNBw8AB________14fNwAHABc3ORQPAAdHHzgABwcPGRT______20dMmkbACMTBxEGMW11dBsRIk9i3RcYQRcNMGxvYXQbBmEbDxQUGy85MBQGBzhidXktGvcjcmVkaXJlY3Rvci9zZW8_Y2FsbGJhY2s9alF1ZXJ5MzExMDY5NzUyOTQyMjY0Mjk2Nl9kE0E4OSZwuhHwEGNhcnRwb3BvdmVyJkNPVU5UUlk9Tk8mTEFOR1VBR0WuERhfnRMQOaodADoAkiI6InNjcmlwdP4ACY8bTDQ2NTFWBzg0ODFWB6BhcHBlbmRDaGlsLwEyc3RhVg4PPwEjvzcxMjkxNjk4MTQ1PwGzLzcwPwEMDIQCIkNMhwEPRgErwDI5MTY5ODE2NH1dfQ HTTP/1.1
Host: ensighten.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Cookie: dtCookie=v_4_srv_1_sn_BB6790C89F8D9F98A9F1B6117574DA92_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4465632d30392d323032322031303a35353a35327c4c43443d4465632d30392d323032322031303a35353a3532; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31322f30392f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31322d30392d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=4F87A14165F9D70625D17FCF0346EEF2; ttControl=5443473d3130; AMCV_67C716D751E567F70A490D4C%40AdobeOrg=-1124106680%7CMCIDTS%7C19336%7CMCMID%7C59601541766942407174570772332749440923%7CMCAAMLH-1671216953%7C6%7CMCAAMB-1671216953%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1670619353s%7CNONE%7CvVersion%7C5.2.0; at_check=true; mbox=session#c535ef10665049298af00b9104674111#1670614015|PC#c535ef10665049298af00b9104674111.37_0#1733856955; promocode=DEFAULTWEB; AMCVS_67C716D751E567F70A490D4C%40AdobeOrg=1; s_prop22=hho_aff_312695; s_nr=1670612153911-New; event69=event69; channelStack=s_eVar72~norton.com; s_gpv=norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_gpv_custom=norton.com%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_cc=true; SYMANTEC_ENSIGHTEN_PRIVACY_BANNER_LOADED=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Fri, 09 Dec 2022 18:55:57 GMT
expires: Fri, 09 Dec 2022 18:55:56 GMT
cache-control: no-cache, no-store
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/banners/bnr_familyselfie_1405x645.jpg
200 OK 0 B URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/banners/bnr_familyselfie_1405x645.jpg
IP
GET /content/dam/norton/global/images/non-product/banners/bnr_familyselfie_1405x645.jpg HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "1563e-5d3079cb478ee"
last-modified: Thu, 03 Feb 2022 08:21:27 GMT
server: Akamai Image Manager
content-type: image/webp
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: private, no-transform, max-age=25783156
expires: Wed, 04 Oct 2023 04:55:10 GMT
date: Fri, 09 Dec 2022 18:55:54 GMT
X-Firefox-Spdy: h2
18.195.174.160
216.58.211.10
54.154.56.4
23.38.200.126
15.236.176.210
93.184.220.29
23.32.109.171
0.0.0.0