settrogens.com/link?z=4356956&var={zoneid}&ymid=wl6r76p7paobk05j2g2kc286&acb=proxy-smart-link&axcusid2=Smartlink&axadvid=1053995&axcamid=2890
139.45.197.238302 Found 0 B URL HTTP/1.1 settrogens.com/link?z=4356956&var={zoneid}&ymid=wl6r76p7paobk05j2g2kc286&acb=proxy-smart-link&axcusid2=Smartlink&axadvid=1053995&axcamid=2890
IP 139.45.197.238:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /link?z=4356956&var={zoneid}&ymid=wl6r76p7paobk05j2g2kc286&acb=proxy-smart-link&axcusid2=Smartlink&axadvid=1053995&axcamid=2890 HTTP/1.1
Host: settrogens.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx
Date: Tue, 20 Sep 2022 14:28:05 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin:
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Pragma: no-cache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Tue, 11 Jan 1994 10:00:00 GMT
X-Trace-Id: 33376aa257c1a4179096c9825b50374e
Link: <https://tagstaticx.com>; rel="dns-prefetch preconnect"
Location: https://tagstaticx.com/r.html?axcid=e7ddf874-40d2-43d7-b8fd-56541bff0853&axtsid=4356956&axcusid1={zoneid}&clid={ymid}&r=http%3A%2F%2Fsettrogens.com%2Flink%3Fz%3D4356956%26var%3D%7Bzoneid%7D%26ymid%3Dwl6r76p7paobk05j2g2kc286%26acb%3Dproxy-smart-link%26axcusid2%3DSmartlink%26axadvid%3D1053995%26axcamid%3D2890%26acb%3Dproxy-smart-link&axcusid2=Smartlink&axadvid=1053995&axcamid=2890
Set-Cookie: OAID=461b55cbbbf24f3880ad33791136e2ce; expires=Wed, 20 Sep 2023 14:28:05 GMT
oaidts=1663684085; expires=Wed, 20 Sep 2023 14:28:05 GMT
phpckd4356956=true; expires=Wed, 21 Sep 2022 14:28:05 GMT
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *
firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 20 Sep 2022 13:36:52 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: oLHJnQs_05gpxjXXhGE7_KcdN-PMJJXsSCejaNqIjxYAiz1IBNxlEg==
Age: 3072
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 861cfa99de956423d917ed0ddbea4b9c
ad65dbc394b48b04a45c205f56af296c8d008db4
5c706b2718b1698995f4feb91223779aef4bf6dc967c31f9ef9a93873197d5f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5C706B2718B1698995F4FEB91223779AEF4BF6DC967C31F9EF9A93873197D5F9"
Last-Modified: Sun, 18 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9976
Expires: Tue, 20 Sep 2022 17:14:21 GMT
Date: Tue, 20 Sep 2022 14:28:05 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 20 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kPLZNjB_F6MBBv-t4v4BD-2HWPFoL5y5VxbLyWX0C3cVbuShRk0d8A==
age: 35572
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 14:28:05 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 75925b52065e8c40d078aee85c947946
72219bfe4412de462135af38de924431a60cd5f5
e4931e694c717412c066464f1c206f1049ebe3fa70270dd550c84129e49b68bb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 14:28:06 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 19 Sep 2022 06:25:21 GMT
Expires: Mon, 26 Sep 2022 06:25:20 GMT
Etag: "72219bfe4412de462135af38de924431a60cd5f5"
Cache-Control: max-age=488833,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74db3ee3fa4c0b3d-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash a8723a9530e954c7042277228b245fc7
503c3234f1e99e2a0c070fb6c2824984fff602ec
ee9cf51dc84be6c2985bc1071acd2686c7378ea7406138cae351cd59f3b17666
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 14:28:06 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 19 Sep 2022 09:40:14 GMT
Expires: Mon, 26 Sep 2022 09:40:13 GMT
Etag: "503c3234f1e99e2a0c070fb6c2824984fff602ec"
Cache-Control: max-age=500526,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74db3ee42d14b505-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash a8723a9530e954c7042277228b245fc7
503c3234f1e99e2a0c070fb6c2824984fff602ec
ee9cf51dc84be6c2985bc1071acd2686c7378ea7406138cae351cd59f3b17666
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 14:28:06 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 19 Sep 2022 09:40:14 GMT
Expires: Mon, 26 Sep 2022 09:40:13 GMT
Etag: "503c3234f1e99e2a0c070fb6c2824984fff602ec"
Cache-Control: max-age=500526,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74db3ee428dfb511-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash a8723a9530e954c7042277228b245fc7
503c3234f1e99e2a0c070fb6c2824984fff602ec
ee9cf51dc84be6c2985bc1071acd2686c7378ea7406138cae351cd59f3b17666
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 14:28:06 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 19 Sep 2022 09:40:14 GMT
Expires: Mon, 26 Sep 2022 09:40:13 GMT
Etag: "503c3234f1e99e2a0c070fb6c2824984fff602ec"
Cache-Control: max-age=500526,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74db3ee43ae71bfa-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash a8723a9530e954c7042277228b245fc7
503c3234f1e99e2a0c070fb6c2824984fff602ec
ee9cf51dc84be6c2985bc1071acd2686c7378ea7406138cae351cd59f3b17666
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 14:28:06 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 19 Sep 2022 09:40:14 GMT
Expires: Mon, 26 Sep 2022 09:40:13 GMT
Etag: "503c3234f1e99e2a0c070fb6c2824984fff602ec"
Cache-Control: max-age=500526,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74db3ee439300b41-OSL
my.rtmark.net/gid.js
139.45.195.8200 OK 65 B IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash 9b5cef4b5f97b4389e82dfbb5f5c7a5c
0579b7292cc2a06bff9c98f4fb11aedc72c1c0b2
e5abc57919d9f7fd33356f757caf295f9fda851c5af3c39cca4895f3aeed5e51
GET /gid.js HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tagstaticx.com/
Origin: https://tagstaticx.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 14:28:06 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://tagstaticx.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=38efed3c03ad48ae911e8baacbb5b091; expires=Wed, 20 Sep 2023 14:28:06 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
tagdatax.com/ir/add?cid=e7ddf874-40d2-43d7-b8fd-56541bff0853
139.45.195.253200 OK 2 B URL HTTP/1.1 tagdatax.com/ir/add?cid=e7ddf874-40d2-43d7-b8fd-56541bff0853
IP 139.45.195.253:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /ir/add?cid=e7ddf874-40d2-43d7-b8fd-56541bff0853 HTTP/1.1
Host: tagdatax.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tagstaticx.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://tagstaticx.com
Content-Length: 365
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Tue, 20 Sep 2022 14:28:06 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 2
Connection: keep-alive
Access-Control-Allow-Origin: https://tagstaticx.com
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
tagdatax.com/version.js?cid=e7ddf874-40d2-43d7-b8fd-56541bff0853
139.45.195.253200 OK 57 B URL HTTP/1.1 tagdatax.com/version.js?cid=e7ddf874-40d2-43d7-b8fd-56541bff0853
IP 139.45.195.253:0
File type ASCII text, with no line terminators
Hash a294df961613bd71837245ee50e253df
95051e4d9e50bc646b8dc2f64cb6a24814dce889
cf775e1077929ad41f53cad7478a4809450b59e6a9d6a16341435d3e3e460890
GET /version.js?cid=e7ddf874-40d2-43d7-b8fd-56541bff0853 HTTP/1.1
Host: tagdatax.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tagstaticx.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Tue, 20 Sep 2022 14:28:06 GMT
Content-Type: application/javascript
Content-Length: 57
Connection: keep-alive
Cache-Control: private, max-age=63072000
tagdatax.com/pix.jpg?cid=e7ddf874-40d2-43d7-b8fd-56541bff0853
139.45.195.253200 OK 28 B URL HTTP/1.1 tagdatax.com/pix.jpg?cid=e7ddf874-40d2-43d7-b8fd-56541bff0853
IP 139.45.195.253:0
File type ASCII text, with no line terminators
Hash 160988f32f3a9fc12fd2958350f5a758
ea0e78c6b9e28345b0c69748ed7b4a6dca96c711
3c72e06c040c15327faa313315f1d6f4b2c9159267051c3e173336efa4cd7a18
GET /pix.jpg?cid=e7ddf874-40d2-43d7-b8fd-56541bff0853 HTTP/1.1
Host: tagdatax.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tagstaticx.com/
Origin: https://tagstaticx.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Tue, 20 Sep 2022 14:28:06 GMT
Content-Type: image/jpeg
Content-Length: 28
Connection: keep-alive
Access-Control-Allow-Origin: https://tagstaticx.com
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
Access-Control-Expose-Headers: ETag
Etag: 5c547332-a651-4935-8b75-bf8b8404817e
Cache-Control: private, must-revalidate, proxy-revalidate
tagdatax.com/ws?cid=e7ddf874-40d2-43d7-b8fd-56541bff0853
139.45.195.253101 Switching Protocols 0 B URL HTTP/1.1 tagdatax.com/ws?cid=e7ddf874-40d2-43d7-b8fd-56541bff0853
IP 139.45.195.253:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ws?cid=e7ddf874-40d2-43d7-b8fd-56541bff0853 HTTP/1.1
Host: tagdatax.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://tagstaticx.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: E3FhEy4Pbww57nS2XDUlUw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx/1.19.10
Date: Tue, 20 Sep 2022 14:28:06 GMT
Connection: upgrade
Upgrade: websocket
Sec-Websocket-Accept: 0HdOzVg/jllyR7+GFUYCKedfpYE=
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Tue, 20 Sep 2022 14:03:22 GMT
Expires: Tue, 20 Sep 2022 14:28:18 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: u5v7-skhaZRHxPHeXTDua6FX6-LEIEuf8IdDMF5FMpGZqrwWxq4eYQ==
Age: 1484
tagdatax.com/etag?cid=e7ddf874-40d2-43d7-b8fd-56541bff0853
139.45.195.253200 OK 2 B URL HTTP/1.1 tagdatax.com/etag?cid=e7ddf874-40d2-43d7-b8fd-56541bff0853
IP 139.45.195.253:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /etag?cid=e7ddf874-40d2-43d7-b8fd-56541bff0853 HTTP/1.1
Host: tagdatax.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tagstaticx.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://tagstaticx.com
Content-Length: 386
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Tue, 20 Sep 2022 14:28:06 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 2
Connection: keep-alive
Access-Control-Allow-Origin: https://tagstaticx.com
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dda77a44a7f9eeb9bd828f659ccb7e22
9af43f88835600fd3206e4f18b0c1c2571a3959c
c8effed6366a20b26e104fc4f64d24213eb357d61e7683e28f812d0c21edd044
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:28:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c53364cae0510b97de38fb4b3396ff56
d6088b7fe775ebc077d116271fbe7fce898c06f0
2df909d86d97fbb9a27dd94ca9335ea29eae8f9325fccc8d0ef00a4f7cd7cdc6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:28:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c53364cae0510b97de38fb4b3396ff56
d6088b7fe775ebc077d116271fbe7fce898c06f0
2df909d86d97fbb9a27dd94ca9335ea29eae8f9325fccc8d0ef00a4f7cd7cdc6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:28:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c53364cae0510b97de38fb4b3396ff56
d6088b7fe775ebc077d116271fbe7fce898c06f0
2df909d86d97fbb9a27dd94ca9335ea29eae8f9325fccc8d0ef00a4f7cd7cdc6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:28:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c53364cae0510b97de38fb4b3396ff56
d6088b7fe775ebc077d116271fbe7fce898c06f0
2df909d86d97fbb9a27dd94ca9335ea29eae8f9325fccc8d0ef00a4f7cd7cdc6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:28:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.130200 OK 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tagstaticx.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
date: Tue, 20 Sep 2022 14:28:06 GMT
expires: Tue, 20 Sep 2022 14:28:06 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 15567350217011096679
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/images/branding/googlelogo/2x/googlelogo_color_120x44dp.png
142.250.74.164200 OK 5.1 kB URL HTTP/2 www.google.com/images/branding/googlelogo/2x/googlelogo_color_120x44dp.png
IP 142.250.74.164:0
File type PNG image data, 240 x 88, 8-bit/color RGBA, non-interlaced\012- data
Hash 8d2b7f3d00f50b8aebb7d1c002c64ca1
b3d5a78c18020868d322a0ac54c9d8e45a59a3b3
29c50fa4422ac0a690af5b0987dee6a030a7eeaafa9dda8543cf022368f545aa
GET /images/branding/googlelogo/2x/googlelogo_color_120x44dp.png HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tagstaticx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 5087
date: Tue, 20 Sep 2022 14:28:06 GMT
expires: Tue, 20 Sep 2022 14:28:06 GMT
cache-control: private, max-age=31536000
last-modified: Tue, 22 Oct 2019 18:30:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/images/branding/googlelogo/2x/googlelogo_color_90x40dp.png
142.250.74.164200 OK 3.9 kB URL HTTP/2 www.google.com/images/branding/googlelogo/2x/googlelogo_color_90x40dp.png
IP 142.250.74.164:0
File type PNG image data, 180 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash c198051c3b22e6fa2e26712e855da980
6cac1226aff75d94809534c373f43a28253879da
a9cac8d49feccd603bac334c92c1e7dd5a829a1c01d4130550e8c9c0d9c72f7b
GET /images/branding/googlelogo/2x/googlelogo_color_90x40dp.png HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tagstaticx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 3934
date: Tue, 20 Sep 2022 14:28:06 GMT
expires: Tue, 20 Sep 2022 14:28:06 GMT
cache-control: private, max-age=31536000
last-modified: Tue, 22 Oct 2019 18:30:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/images/branding/googlelogo/2x/googlelogo_color_272x92dp.png
142.250.74.164200 OK 31 kB URL HTTP/2 www.google.com/images/branding/googlelogo/2x/googlelogo_color_272x92dp.png
IP 142.250.74.164:0
Hash 12cb8a3e51622f066997a0e2c38d4360
65275cc9acbee4a56c03b4e7947ef861f8bb0664
12bdff5b687e9186a25ad48208d4b9f91006c8a5c8c3e47d3f5c2b9469bd970e
GET /images/branding/googlelogo/2x/googlelogo_color_272x92dp.png HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tagstaticx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 13504
date: Tue, 20 Sep 2022 14:28:06 GMT
expires: Tue, 20 Sep 2022 14:28:06 GMT
cache-control: private, max-age=31536000
last-modified: Tue, 22 Oct 2019 18:30:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/images/branding/googlelogo/2x/googlelogo_color_160x56dp.png
142.250.74.164200 OK 7.0 kB URL HTTP/2 www.google.com/images/branding/googlelogo/2x/googlelogo_color_160x56dp.png
IP 142.250.74.164:0
File type PNG image data, 320 x 112, 8-bit/color RGBA, non-interlaced\012- data
Hash d6b993cd3a71d84e8dd51dc9bf01f537
41f57a52be2447b7b4ee458887e860a702150396
9e611fba6a87626e60f74d361f0c94d1ba226bc0726a05791f40ddb7fbba2c4f
GET /images/branding/googlelogo/2x/googlelogo_color_160x56dp.png HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tagstaticx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 7048
date: Tue, 20 Sep 2022 14:28:06 GMT
expires: Tue, 20 Sep 2022 14:28:06 GMT
cache-control: private, max-age=31536000
last-modified: Tue, 22 Oct 2019 18:30:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash edf07cd621f733b0eb50c632387ebf4f
61a082d26501c2c8d481b1676d0de2e585269613
e5c4324e4c55824b86f48bf0b9a1d317a82e7d3c19bdea7a91d78ce98d68a980
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3623
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:28:06 GMT
Last-Modified: Tue, 20 Sep 2022 13:27:43 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dda77a44a7f9eeb9bd828f659ccb7e22
9af43f88835600fd3206e4f18b0c1c2571a3959c
c8effed6366a20b26e104fc4f64d24213eb357d61e7683e28f812d0c21edd044
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:28:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 81fa7001b4b94f54d2ab4f3237ecaabb
e21bb07f34d9bed91f5caac3f9a83e9600a5652c
0ecbe6e0c5198d792a0eeb4197c88ec1d3a9f8b215efae7a6bb87776f7673b6a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:28:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
35.162.110.205101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.162.110.205:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3SCJIOSpVADu7cKSF9zyqg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: BdXeGE+W8GApfaAU85H2OFQPdv8=
tagdatax.com/log/add?cid=e7ddf874-40d2-43d7-b8fd-56541bff0853
139.45.195.253200 OK 2 B URL HTTP/1.1 tagdatax.com/log/add?cid=e7ddf874-40d2-43d7-b8fd-56541bff0853
IP 139.45.195.253:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /log/add?cid=e7ddf874-40d2-43d7-b8fd-56541bff0853 HTTP/1.1
Host: tagdatax.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tagstaticx.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://tagstaticx.com
Content-Length: 2021
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Tue, 20 Sep 2022 14:28:07 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 2
Connection: keep-alive
Access-Control-Allow-Origin: https://tagstaticx.com
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
settrogens.com/link?z=4356956&var=null&ymid=wl6r76p7paobk05j2g2kc286&acb=proxy-smart-link&axcusid2=Smartlink&axadvid=1053995&axcamid=2890&acb=proxy-smart-link&axcusid2=Smartlink&axadvid=1053995&axcamid=2890
139.45.197.238200 OK 3.0 kB URL HTTP/1.1 settrogens.com/link?z=4356956&var=null&ymid=wl6r76p7paobk05j2g2kc286&acb=proxy-smart-link&axcusid2=Smartlink&axadvid=1053995&axcamid=2890&acb=proxy-smart-link&axcusid2=Smartlink&axadvid=1053995&axcamid=2890
IP 139.45.197.238:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5406)
Hash d213952a8ef4902620c59607213915c1
8049aa5daa01151aa76e2db8b980a0af3c1ace73
686dfa5943a8d8e1b571471d634a47be56ef5949125bf2cec9a23910e4d6a0bc
Analyzer Verdict Alert quad9 Sinkholed
GET /link?z=4356956&var=null&ymid=wl6r76p7paobk05j2g2kc286&acb=proxy-smart-link&axcusid2=Smartlink&axadvid=1053995&axcamid=2890&acb=proxy-smart-link&axcusid2=Smartlink&axadvid=1053995&axcamid=2890 HTTP/1.1
Host: settrogens.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: OAID=461b55cbbbf24f3880ad33791136e2ce; oaidts=1663684085; phpckd4356956=true
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Sep 2022 14:28:07 GMT
Content-Type: text/html; charset=utf8
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: 1a2674c39c2f55423b94fa73c51ab6a9
Link: <https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://my.rtmark.net>; rel="preconnect dns-prefetch"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Max-Age: 86400
Pragma: no-cache
Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Set-Cookie: OAID=461b55cbbbf24f3880ad33791136e2ce; expires=Wed, 20 Sep 2023 14:28:07 GMT; path=/
oaidts=1663684085; expires=Wed, 20 Sep 2023 14:28:07 GMT; path=/
allcnt=1; expires=Wed, 20 Sep 2023 14:28:07 GMT
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip
settrogens.com/favicon.ico
139.45.197.238204 No Content 0 B URL HTTP/1.1 settrogens.com/favicon.ico
IP 139.45.197.238:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: settrogens.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://settrogens.com/link?z=4356956&var=null&ymid=wl6r76p7paobk05j2g2kc286&acb=proxy-smart-link&axcusid2=Smartlink&axadvid=1053995&axcamid=2890&acb=proxy-smart-link&axcusid2=Smartlink&axadvid=1053995&axcamid=2890
Cookie: OAID=461b55cbbbf24f3880ad33791136e2ce; oaidts=1663684085; phpckd4356956=true; allcnt=1
HTTP/1.1 204 No Content
Server: nginx
Date: Tue, 20 Sep 2022 14:28:07 GMT
Connection: keep-alive
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Pragma: public
Cache-Control: max-age=315360000, public, must-revalidate, proxy-revalidate
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 75925b52065e8c40d078aee85c947946
72219bfe4412de462135af38de924431a60cd5f5
e4931e694c717412c066464f1c206f1049ebe3fa70270dd550c84129e49b68bb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 14:28:07 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 19 Sep 2022 06:25:21 GMT
Expires: Mon, 26 Sep 2022 06:25:20 GMT
Etag: "72219bfe4412de462135af38de924431a60cd5f5"
Cache-Control: max-age=488832,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74db3eea8d98b505-OSL
my.rtmark.net/img.gif?f=merge&userId=461b55cbbbf24f3880ad33791136e2ce
139.45.195.8200 OK 43 B URL HTTP/2 my.rtmark.net/img.gif?f=merge&userId=461b55cbbbf24f3880ad33791136e2ce
IP 139.45.195.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /img.gif?f=merge&userId=461b55cbbbf24f3880ad33791136e2ce HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://settrogens.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 14:28:07 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=461b55cbbbf24f3880ad33791136e2ce; expires=Wed, 20 Sep 2023 14:28:07 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
betzapdoson.com/?z=4356957&syncedCookie=true&rhd=false
139.45.197.236302 Found 0 B URL HTTP/1.1 betzapdoson.com/?z=4356957&syncedCookie=true&rhd=false
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /?z=4356957&syncedCookie=true&rhd=false HTTP/1.1
Host: betzapdoson.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded
Content-Length: 681
Origin: http://settrogens.com
Connection: keep-alive
Referer: http://settrogens.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx
Date: Tue, 20 Sep 2022 14:28:07 GMT
Content-Length: 0
Connection: keep-alive
X-Trace-Id: 024033d8e28989dfd6237842433df093
Link: <https://toapodazoay.com>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
Referrer-Policy: no-referrer
Location: https://toapodazoay.com/?l=qCqekRDLtEBTXwP&s=596096871118938171&z=4356957&g=NO&svar=1663684087&ba=0&dm=0&ep=0&vi=0&vo=0&i18db=0&tr=default&svar=1663684087&ssk=45cc6e2b4c341be76940600e43a4a211&svarok=1&b=79056&oaid=6bf0c6f3f11c4fe6aef5d00bcdf6c1ae&rdk=rk3
Access-Control-Allow-Origin: http://settrogens.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Max-Age: 86400
Pragma: no-cache
Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Set-Cookie: OAID=6bf0c6f3f11c4fe6aef5d00bcdf6c1ae; expires=Wed, 20 Sep 2023 14:28:07 GMT; path=/
oaidts=1663684087; expires=Wed, 20 Sep 2023 14:28:07 GMT; path=/
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0436d1a137dd03774d70af4d8eca38b0
faaccdfa39bb45db09f25e1f5cde3d8206378388
913d940e87839af66fcd9efc3808fbdb4dc10d2d49fbc4c4e0cedd6a6323f281
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "913D940E87839AF66FCD9EFC3808FBDB4DC10D2D49FBC4C4E0CEDD6A6323F281"
Last-Modified: Sun, 18 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6200
Expires: Tue, 20 Sep 2022 16:11:27 GMT
Date: Tue, 20 Sep 2022 14:28:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d2c3fc46c7794dba5a952bf021293e47
b3d9846c7364bb0714bd5b508b5d99236e489a3e
67f9e6f46b2856ff1e65c5577b67703f63df387768941ce08b4849f0179f85a7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "67F9E6F46B2856FF1E65C5577B67703F63DF387768941CE08B4849F0179F85A7"
Last-Modified: Mon, 19 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5952
Expires: Tue, 20 Sep 2022 16:07:20 GMT
Date: Tue, 20 Sep 2022 14:28:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 75bc45ee5e65213c101d1efb1be080f7
63263a037945e41ac525d931f56844b304a03928
88d36447127d0ea43f309c78275be6abc5ec99cbed430697d445929c2746224d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "88D36447127D0EA43F309C78275BE6ABC5EC99CBED430697D445929C2746224D"
Last-Modified: Mon, 19 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9213
Expires: Tue, 20 Sep 2022 17:01:41 GMT
Date: Tue, 20 Sep 2022 14:28:08 GMT
Connection: keep-alive
unphionetor.com/fv.js?t=56193&cb=1105670949
139.45.197.236200 OK 2.2 kB URL HTTP/2 unphionetor.com/fv.js?t=56193&cb=1105670949
IP 139.45.197.236:0
Hash 1c50568a7371811955c63575a3f8bb6e
eea11a189e90f6e8c1479ebc3cce0b5fc83e2a57
0576e2f6dc9a17ce7b854321cd734c93eae0fa0f667586f9b5b3848aa893dd5a
Analyzer Verdict Alert quad9 Sinkholed
GET /fv.js?t=56193&cb=1105670949 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://toapodazoay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 14:28:08 GMT
content-type: text/javascript; charset=utf8
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: c83d80b89f23770a879a4dceee77b438
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
toapodazoay.com/favicon.ico
139.45.197.153204 No Content 0 B URL HTTP/2 toapodazoay.com/favicon.ico
IP 139.45.197.153:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: toapodazoay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://toapodazoay.com/?rzi=4356957&rsz=4356957&rid=
Cookie: reverse=GpcTDFYLP0EVPq9RckkvYwmiCRgY_HngIAe90bVgvpY
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Tue, 20 Sep 2022 14:28:08 GMT
strict-transport-security: max-age=60
x-content-type-options: nosniff
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fe5ffc0bb967bf39c053d24cdfae521a
87bc50876b1600714e2c29608bf4af00fbfbd23e
ceaf52d90eaf692a8da9f6c353d09011e26d8e2b971ec4c17fcbcab8676c70c3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEAF52D90EAF692A8DA9F6C353D09011E26D8E2B971EC4C17FCBCAB8676C70C3"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6177
Expires: Tue, 20 Sep 2022 16:11:05 GMT
Date: Tue, 20 Sep 2022 14:28:08 GMT
Connection: keep-alive
ptauxofi.net/pfe/current/micro.tag.min.js?sw=/sw-check-permissions/3683319&var=qCqekRDLtEBTXwP&z=3683319
139.45.197.250200 OK 40 kB URL HTTP/2 ptauxofi.net/pfe/current/micro.tag.min.js?sw=/sw-check-permissions/3683319&var=qCqekRDLtEBTXwP&z=3683319
IP 139.45.197.250:0
Hash f24b042141b32532574080f66c2ec851
dd62538925d4f482cb3e377a3b9a3355409fe012
819500b0d108bffa187e451af0ce53139a3b5d20b9f7979aa1cceda66d9d0216
Analyzer Verdict Alert quad9 Sinkholed
GET /pfe/current/micro.tag.min.js?sw=/sw-check-permissions/3683319&var=qCqekRDLtEBTXwP&z=3683319 HTTP/1.1
Host: ptauxofi.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://toapodazoay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 14:28:08 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 07:25:49 GMT
etag: W/"63296afd-1a407"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
unphionetor.com/vbl?t=56193&bid=79056&aid=596096871118938171
139.45.197.236204 No Content 0 B URL HTTP/2 unphionetor.com/vbl?t=56193&bid=79056&aid=596096871118938171
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /vbl?t=56193&bid=79056&aid=596096871118938171 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://toapodazoay.com
Connection: keep-alive
Referer: https://toapodazoay.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Tue, 20 Sep 2022 14:28:08 GMT
access-control-allow-origin: https://toapodazoay.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: de5360c6de7680ca03df30a9a660394a
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28b8af49-2631-4a57-aeca-43e33f0f6d83.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28b8af49-2631-4a57-aeca-43e33f0f6d83.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c283017ec789693602177a2785177e21
ff8286c4d2cf87a1865d56d082bc5235dba60ad7
520db2567ad5529d35d2ac63b94d4186848382e9c86d0c4355ab979b34f0e0ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28b8af49-2631-4a57-aeca-43e33f0f6d83.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11145
x-amzn-requestid: dcb726a6-2f43-4170-a53c-4f0d2883309e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yuh7yHfHIAMFu4g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e37e-11bf06e96123e01c11854cbb;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:47:42 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: DwufJXA1yHz_jnJL0PWjCQYF9fa3jlJ0e-2hIomInAXCpmPISX3mjg==
via: 1.1 b47618c03bd47cf085f27b1e215f76cc.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:02:33 GMT
age: 59135
etag: "ff8286c4d2cf87a1865d56d082bc5235dba60ad7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72c9eb8-103b-4d09-b405-97d1a7ae99a8.webp
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72c9eb8-103b-4d09-b405-97d1a7ae99a8.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 30fbdfee7ec4513a5ff3dfcb7282f816
a852edb64a7220532aa619ab2a440c3a7e11b97a
4adee59f97bea412c6a0a786d0a27e431a497198b9047a75841b0a530803bdfe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72c9eb8-103b-4d09-b405-97d1a7ae99a8.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9543
x-amzn-requestid: 17be04c9-54f0-4988-82dd-f13911a2a629
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugINHN1IAMF8iA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09a-35496b4c21c23dec75257964;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: y3urrVdjZEds_DKf3yL2XfaOy-5UPBwU-YVWe5eKYsDpl3JPmqffsw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:23:30 GMT
age: 57878
etag: "a852edb64a7220532aa619ab2a440c3a7e11b97a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d1af9c9-23b5-42e1-b7c6-655c21db6627.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d1af9c9-23b5-42e1-b7c6-655c21db6627.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7ca0c1a7f205ad07f1cce80b26448873
0e14f5062e40ce94346494ff947bfcf74b5e88c1
ebc960279032671136749823c126ec807334d9eaf2b019abcc63b41bcdbf4a7f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d1af9c9-23b5-42e1-b7c6-655c21db6627.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9873
x-amzn-requestid: 7171299f-e6e3-40ef-a292-33779346e1ee
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugI-FDIIAMF-xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09f-31f9413434a6b00e77e7709b;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: evL3aL1ULo6B2a8Rp6iILKCX7F14O9HMSbEqkEY3XHFhmMptE8FaVw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 21:50:04 GMT
age: 59884
etag: "0e14f5062e40ce94346494ff947bfcf74b5e88c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2ed7323b395e757f7766ea0045efdaca
8b91bc3069a3217bc719c27959d578b353b5d9dc
8daf8cb1464daa5f72bc4f1049adb4aba00b2c2dec11cb3ade3454ec2ebbfb63
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11832
x-amzn-requestid: 75065a71-5f2d-4987-915b-9bddc772c76a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugI_EsLIAMFdmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09f-1248d25405209da3353d4a4a;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7sCevVX1nGXxZxnrXSURjUcap1a7vCZwrMMIXfzcBPR1srMxJHLGUg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:07:05 GMT
age: 58863
etag: "8b91bc3069a3217bc719c27959d578b353b5d9dc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b9b6fcc-4a98-463a-8c9c-a60812d5b535.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b9b6fcc-4a98-463a-8c9c-a60812d5b535.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1a7d863845e96c5927e812f325c08c16
b8484fb5443344b03e52dd56b1d6c5682eb6221a
fcb382029332a44deaf212298b618074a752d674d0c735a1b8b861ab4bb6ff0f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b9b6fcc-4a98-463a-8c9c-a60812d5b535.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9865
x-amzn-requestid: 7eeeff5b-cb13-4060-96a6-bf5a4be57331
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugokGQVoAMFXmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e169-4211dbbe1a22d0255a45aff0;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:38:49 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: zDPKSOJ7SJImKcluUMhGvVMHv4t2oKLD2AJfGKAFSfedsdSA4VgZ_g==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:02:56 GMT
etag: "b8484fb5443344b03e52dd56b1d6c5682eb6221a"
content-type: image/jpeg
age: 59112
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d3e70b2859ca89b353682d03f6b46b93
ebd83f29edd95217dfa4f4c7a94eddf34dd58b14
43ad8f8b0a664bbec39e0410c1201498a2d2e36e5bd7d5ece8d65b15230ec50b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10894
x-amzn-requestid: f7aad96e-af80-4db7-8bc1-d1e09a9b37e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeJQGHhOIAMFYuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322559a-538534e91448af217c59ab3d;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:28:42 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: P7aZQzmAvqn2rcHJUQjHo0Dcg8dsrqseey5mNOabfq1b857M4SUMDQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 02:46:17 GMT
age: 42111
etag: "ebd83f29edd95217dfa4f4c7a94eddf34dd58b14"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
go.ad2upapp.com/afu.php?id=792658&rt=1
139.45.197.237302 Moved Temporarily 138 B URL HTTP/1.1 go.ad2upapp.com/afu.php?id=792658&rt=1
IP 139.45.197.237:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash aff950cab4c0265e21d401db15f1026d
f03e18461817f7a6546c8bf8fa8d686d7e30aca0
753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0
GET /afu.php?id=792658&rt=1 HTTP/1.1
Host: go.ad2upapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Tue, 20 Sep 2022 14:28:09 GMT
Content-Type: text/html
Content-Length: 138
Connection: keep-alive
Location: http://go.deliverymodo.com/afu.php?id=792658&rt=1
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *
go.deliverymodo.com/afu.php?id=792658&rt=1
139.45.197.236200 OK 737 B URL HTTP/1.1 go.deliverymodo.com/afu.php?id=792658&rt=1
IP 139.45.197.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash dbc5b06e90ce4396101733b21f3a6646
8443bb4866a1748a48dd5cf03f2c813242dcf2aa
4878103a9ca9be9d0cef67f918d7a9a631c58c52ccf4186d4ccfa10a52ca3a11
GET /afu.php?id=792658&rt=1 HTTP/1.1
Host: go.deliverymodo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Sep 2022 14:28:09 GMT
Content-Type: text/html; charset=utf8
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: 4bd4ada4809d57da5f1327fc8ae35e8e
Link: <https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://my.rtmark.net>; rel="preconnect dns-prefetch", <https://www.lyca-mobile.no>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Max-Age: 86400
Pragma: no-cache
Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Set-Cookie: OAID=d8acbdb0100d49d991944fabd0a69dbf; expires=Wed, 20 Sep 2023 14:28:09 GMT; path=/
oaidts=1663684089; expires=Wed, 20 Sep 2023 14:28:09 GMT; path=/
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip
unphionetor.com/vb?t=56193&bid=79056&aid=596096871118938171&tp=2023
139.45.197.236204 No Content 0 B URL HTTP/2 unphionetor.com/vb?t=56193&bid=79056&aid=596096871118938171&tp=2023
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /vb?t=56193&bid=79056&aid=596096871118938171&tp=2023 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://toapodazoay.com
Connection: keep-alive
Referer: https://toapodazoay.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Tue, 20 Sep 2022 14:28:09 GMT
access-control-allow-origin: https://toapodazoay.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 6d353339c2c48f1236c0c26a2188c28d
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
go.deliverymodo.com/favicon.ico
139.45.197.236204 No Content 0 B URL HTTP/1.1 go.deliverymodo.com/favicon.ico
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: go.deliverymodo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: OAID=d8acbdb0100d49d991944fabd0a69dbf; oaidts=1663684089
HTTP/1.1 204 No Content
Server: nginx
Date: Tue, 20 Sep 2022 14:28:09 GMT
Connection: keep-alive
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Pragma: public
Cache-Control: max-age=315360000, public, must-revalidate, proxy-revalidate
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 75925b52065e8c40d078aee85c947946
72219bfe4412de462135af38de924431a60cd5f5
e4931e694c717412c066464f1c206f1049ebe3fa70270dd550c84129e49b68bb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 14:28:09 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 19 Sep 2022 06:25:21 GMT
Expires: Mon, 26 Sep 2022 06:25:20 GMT
Etag: "72219bfe4412de462135af38de924431a60cd5f5"
Cache-Control: max-age=488830,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74db3ef9bbdbb511-OSL
my.rtmark.net/img.gif?f=merge&userId=d8acbdb0100d49d991944fabd0a69dbf
139.45.195.8200 OK 43 B URL HTTP/2 my.rtmark.net/img.gif?f=merge&userId=d8acbdb0100d49d991944fabd0a69dbf
IP 139.45.195.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
POST /img.gif?f=merge&userId=d8acbdb0100d49d991944fabd0a69dbf HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 14:28:09 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: null
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=d8acbdb0100d49d991944fabd0a69dbf; expires=Wed, 20 Sep 2023 14:28:09 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
ocsp.netsolssl.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 152bb047b89b1d363eeac85c22ed6d70
f5be75cc51cb62f5792b553acc792e79926aee54
81df929c660cced477c157bb62c887d2425be2c76b93a0234c8cf0be17daa41d
POST / HTTP/1.1
Host: ocsp.netsolssl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 14:28:10 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 19 Sep 2022 01:06:07 GMT
Expires: Mon, 26 Sep 2022 01:06:06 GMT
Etag: "f5be75cc51cb62f5792b553acc792e79926aee54"
Cache-Control: max-age=469675,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74db3ef99f640b45-OSL
www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
3.120.43.17200 OK 32 kB URL HTTP/1.1 www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
IP 3.120.43.17:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1692), with CRLF, LF line terminators
Hash 2971e1f5230cd550917f2b8248107f9f
743b8807d53378c9cfa863d00a7c59392515995b
d6eea8b85adfe7e26e34282c8d4ca9c44970ff8e2ad9b1257e689f2360a92c56
GET /nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1 HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: text/html; charset=UTF-8
Date: Tue, 20 Sep 2022 14:28:10 GMT
Link: <https://www.lyca-mobile.no/nb/?p=170722>; rel=shortlink
Server: Apache
Set-Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; path=/; domain=.lyca-mobile.no; secure; HttpOnly;HttpOnly; Secure; SameSite=None;HttpOnly; Secure; SameSite=None;SameSite=None;Secure
newsim_tab=0; expires=Tue, 20-Sep-2022 14:38:10 GMT; Max-Age=600; path=/;HttpOnly; Secure; SameSite=None;HttpOnly; Secure; SameSite=None;SameSite=None;Secure
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 31920
Connection: keep-alive
www.lyca-mobile.no/wp-content/plugins/simple-sitemap/lib/assets/css/simple-sitemap.css
3.120.43.17200 OK 1.8 kB URL HTTP/1.1 www.lyca-mobile.no/wp-content/plugins/simple-sitemap/lib/assets/css/simple-sitemap.css
IP 3.120.43.17:0
Hash 999af40135d16a152caaee08d90f72d8
7462b3f3d77148eb3601c302b182ba74265def75
a67e5b0779241cd4c4d99b2b47e4ead0f0ce2cb2ab2a1fb5464d62f5a543dd3f
GET /wp-content/plugins/simple-sitemap/lib/assets/css/simple-sitemap.css HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: text/css
Date: Tue, 20 Sep 2022 14:28:11 GMT
Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 1763
Connection: keep-alive
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/vendor/flat-icon/flaticon.css
143.204.42.190200 OK 417 B URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/vendor/flat-icon/flaticon.css
IP 143.204.42.190:0
File type ASCII text, with very long lines (1000), with no line terminators
Hash 5e5c8838d3f45e076213445010a63eb8
6aedac1cb54fd087ea16c8bae11c0687bef29ce8
653364905a7234231046bf7134bfb1d2f8f957e10463e74d636e4465bf1b8139
GET /wp-content/themes/Divi-child/vendor/flat-icon/flaticon.css HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 27 Aug 2019 08:27:43 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 20 Sep 2022 07:27:47 GMT
Cache-Control: 2592000
ETag: W/"944296da525e8552632efd1dc0fd0480"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: AVNnarYGhMCKlSFyXlJPZCX-dl9OyX1X_93XqTsGjKX7BHRiB-zgnQ==
Age: 25225
www.lyca-mobile.no/wp-content/plugins/custom-search-plugin/css/style.css
3.120.43.17200 OK 251 B URL HTTP/1.1 www.lyca-mobile.no/wp-content/plugins/custom-search-plugin/css/style.css
IP 3.120.43.17:0
Hash 90fe42aaed8e5c04b824b1ca3cf3ea34
737cfe50f07686fb94ca84b3e836ac7d85d425d9
2a50c1b8ad7b97eea3b52d13f8623eeffe389262e3eccfb676eaacd15619345b
GET /wp-content/plugins/custom-search-plugin/css/style.css HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: text/css
Date: Tue, 20 Sep 2022 14:28:11 GMT
Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 251
Connection: keep-alive
d3uayxmzbnco7f.cloudfront.net/wp-includes/css/dist/block-library/style.css
143.204.42.190200 OK 9.3 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-includes/css/dist/block-library/style.css
IP 143.204.42.190:0
Hash 70fd97e2f6b21c3c1155dbb7e808cc21
34e267889e689ec4fabf0cca81f975b906b5355a
9d956e3571ad35ae7cb2ca2de9daff0c527443a5d28f185ad04723a7a0bdab97
GET /wp-includes/css/dist/block-library/style.css HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 20 Sep 2022 14:11:59 GMT
Last-Modified: Thu, 06 Aug 2020 03:32:13 GMT
ETag: W/"ff1e4526d778743bf4370b47ff17e7c7"
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: r-vwlN0LbPxXnro-PCOxkjnAXKIB6YLJFPDfVcOrxwBWJ6JIBnH-vA==
Age: 972
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/vendor/line-awesome/css/line-awesome.min.css
143.204.42.190200 OK 6.1 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/vendor/line-awesome/css/line-awesome.min.css
IP 143.204.42.190:0
File type ASCII text, with very long lines (27557)
Hash bad301c5adb8e3a1f14e88e9cc5cb1ac
9a67b42d4164ac10ed861cc6445a6196354f9fc6
25a3f0a2cdadc277d0fc7c43c967591b2a18ddc6317e9024888abed1022c70ac
GET /wp-content/themes/Divi-child/vendor/line-awesome/css/line-awesome.min.css HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 27 Aug 2019 08:27:44 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 20 Sep 2022 13:19:48 GMT
Cache-Control: 2592000
ETag: W/"4334c8c70998d81bde3e6765828811a6"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: N9B0GIOJFqnkZchqyP9EDtkYP_7gt70p0nHNCVS9dwrOZvBQ7yfOCw==
Age: 4104
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/vendor/linear-icons/style.css
143.204.42.190200 OK 1.6 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/vendor/linear-icons/style.css
IP 143.204.42.190:0
File type ASCII text, with very long lines (7000), with no line terminators
Hash e77b4c5adc36759a673b6b76cbf6a196
d311136f4aea1048b139fa65ee46e4c14db9e72e
d773b8cc485d6b33e888f1e52ae212f8489899e922ef3757d8c293ec46976a76
GET /wp-content/themes/Divi-child/vendor/linear-icons/style.css HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 20 Sep 2022 13:29:42 GMT
Last-Modified: Tue, 27 Aug 2019 08:27:44 GMT
ETag: W/"e93b8e4cf5dc750d2d02a5b9d19f9706"
Cache-Control: 2592000
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: VvPmB816VgN6eedXpbGX7vpXEuLF_DClho5faH5HIMj8khTJ0ivghA==
Age: 3510
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/vendor/bootstrap/css/bootstrap.min.css
143.204.42.190200 OK 20 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/vendor/bootstrap/css/bootstrap.min.css
IP 143.204.42.190:0
File type ASCII text, with very long lines (65371)
Hash 3cbea92648d50d801097255f154e828e
8758b47c097ddcf74d5bdc94fde38c8dc8a75642
96ed4cf781b3a371622b814c97e792c867b0e5fd5681bce05644a186b64573a0
GET /wp-content/themes/Divi-child/vendor/bootstrap/css/bootstrap.min.css HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 27 Aug 2019 08:27:42 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 20 Sep 2022 09:51:00 GMT
Cache-Control: 2592000
ETag: W/"ac9de5b47373547a27390517f13fe21a"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: TNvC--j0wxr-GMlJFlClhxECMEJNw_alAjDan6vFKcpNdHhU7C6yeQ==
Age: 16632
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/vendor/font-awesome/css/font-awesome.min.css
143.204.42.190200 OK 6.6 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/vendor/font-awesome/css/font-awesome.min.css
IP 143.204.42.190:0
File type ASCII text, with very long lines (28877), with no line terminators
Hash b81af5ae320a4aa9ea9dac06f9496e91
68a50203ceb6cfd48a32924d047bdb35d0be4643
e3f6f8c3a41392d829880854b37ef965c24f4cbd4aeff01521068f3ba77250cd
GET /wp-content/themes/Divi-child/vendor/font-awesome/css/font-awesome.min.css HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 27 Aug 2019 08:27:43 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 20 Sep 2022 09:11:50 GMT
Cache-Control: 2592000
ETag: W/"4f0c935c3631f777ea790a05a44c1744"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: r7gTswO-4LSJ5ST3KoMohgeQ5tcGWa-NEpQdJpddoCBdLUmooUgVPg==
Age: 18982
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/css/countries.css
143.204.42.190200 OK 1.6 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/css/countries.css
IP 143.204.42.190:0
File type ASCII text, with very long lines (15687), with no line terminators
Hash b6fc7c5d9c30ffe0603ef40625419ae3
8e6f738bd8b1449fac08ed9e7c4a078adcc49bb5
3612dd5c745a1a90407d1f82e0377dfe1eb19a35ab35bbb9be971cb3b530a1c4
GET /wp-content/themes/Divi-child/css/countries.css HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 20 Sep 2022 08:43:45 GMT
Last-Modified: Tue, 27 Aug 2019 08:27:32 GMT
ETag: W/"31ec7a36deac6eda43f22dd60a421a40"
Cache-Control: 2592000
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: jcB_EYEfxRgdHjfzXdXnDtjhmNVg3BcDaK4Vn6XV6rY4oN1RCWXHUg==
Age: 20667
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi/style.css
143.204.42.190200 OK 44 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi/style.css
IP 143.204.42.190:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 3d5f530ed8aa9d03ac04bfaa85f65069
a5028adfe0677fbffebc92daaecedfc389e74801
62d3aac22b7e1c1a833290c67620f359379fb711894867882464c61ba3c15877
GET /wp-content/themes/Divi/style.css HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 27 Aug 2019 08:27:55 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 20 Sep 2022 06:18:21 GMT
Cache-Control: 2592000
ETag: W/"817303872fd1f4d16b34fcd79ab7d2d3"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: P_ls0reEI2HFjEhpXzdAjBs1aLOggWm-ORNwgscHyjVskQ6tCDB_9A==
Age: 29391
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/css/student-style.css
143.204.42.190200 OK 966 B URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/css/student-style.css
IP 143.204.42.190:0
File type ASCII text, with CR line terminators
Hash 64eaec02b035ad1628a7890becee905c
d9a7cd1dd7d3400c09e341e4bba580b80b0a41d9
370ce3c5280f78beb793f8773f3f74b225a2e54f35449df02aa8e181a4842255
GET /wp-content/themes/Divi-child/css/student-style.css HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 966
Connection: keep-alive
Date: Tue, 20 Sep 2022 08:41:18 GMT
Last-Modified: Thu, 18 Nov 2021 11:11:57 GMT
ETag: "64eaec02b035ad1628a7890becee905c"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: pcpreI_9h_sa283sbdtKcrOvpSmU5Z_mt0grB-6h0hAEDLkl5SiMyg==
Age: 20814
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/style.css
143.204.42.190200 OK 118 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/style.css
IP 143.204.42.190:0
File type ASCII text, with very long lines (505)
Size 118 kB (117724 bytes)
Hash cf9a050bab1a7ed6a179e1fc1f1d9a11
ad048774ff7c24f4086b0319390123e5b097d379
ef8330c093a21ff45e8aade49ed02de3f1c550a51fd9fd924d542f81355abbca
GET /wp-content/themes/Divi-child/style.css HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 20 Sep 2022 07:28:42 GMT
Last-Modified: Fri, 15 Jul 2022 07:16:49 GMT
ETag: W/"07571e83ac07033388dffa6b348bc459"
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Lu5wSh1qJib2uOYD2u2twgjBAJuN9Jg5Lm31Ko-H7pxR6l41f8-cNw==
Age: 25170
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi/epanel/shortcodes/css/shortcodes.css
143.204.42.190200 OK 5.8 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi/epanel/shortcodes/css/shortcodes.css
IP 143.204.42.190:0
File type ASCII text, with very long lines (859)
Hash 2b49540cfd68caad557ec07fd3cb7be4
086bf648ae6cefcfb3bace0bcffe9819d3903c63
3117934c12c8469659819e8684924f510bc1e11c31c260ccf25056f61da407d5
GET /wp-content/themes/Divi/epanel/shortcodes/css/shortcodes.css HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 20 Sep 2022 13:16:41 GMT
Last-Modified: Tue, 27 Aug 2019 08:27:49 GMT
ETag: W/"ea1a16f72cd2c8d66fdf5e8924f78eee"
Cache-Control: 2592000
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: cKY9T9K5_7qPVDAUFyKmjoZjNfit1WB-klzGPahOOCV5qLGEa1Ec0Q==
Age: 4291
www.lyca-mobile.no/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown/style.css
3.120.43.17200 OK 552 B URL HTTP/1.1 www.lyca-mobile.no/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown/style.css
IP 3.120.43.17:0
File type ASCII text, with very long lines (1756)
Hash cf85cdcf046f700267df1aaf104a2b39
852c3e9da0e745e68109819957b9ca45f4e55886
6f64c08cd674c507292ff081be79f54bb5bde34b90a25e2a619f4c7c0e1c421c
GET /wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown/style.css HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: text/css
Date: Tue, 20 Sep 2022 14:28:11 GMT
Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 552
Connection: keep-alive
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi/epanel/shortcodes/css/shortcodes_responsive.css
143.204.42.190200 OK 850 B URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi/epanel/shortcodes/css/shortcodes_responsive.css
IP 143.204.42.190:0
Hash fbb62c29d6e4d7b17fa04d46fac139b5
5c08f5b2f6fedcbd8a78088d593433690d4e1393
065866e03105a8f268a0c37dcc6214e0f00cf507eb3727136a158199a06a6fc1
GET /wp-content/themes/Divi/epanel/shortcodes/css/shortcodes_responsive.css HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 27 Aug 2019 08:27:49 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 20 Sep 2022 08:48:10 GMT
Cache-Control: 2592000
ETag: W/"58f7be607923d9296d5628a2d7469422"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: VOz0Hj0OBma4Y3JxDO5xGCkBEAVVtpWG8Axhs2AMxHNJNroSUY_8Pg==
Age: 20402
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi/includes/builder/styles/magnific_popup.css
143.204.42.190200 OK 2.0 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi/includes/builder/styles/magnific_popup.css
IP 143.204.42.190:0
File type ASCII text, with very long lines (311)
Hash e530857d5e5c6c58a23a6f5891a1e05e
9a9021e356e30ffb3abca51f44aa10b1db3633ef
1fb2418b27303d07ac2c32dd282fbaa15f6945085f380f58d4160bd0b784873d
GET /wp-content/themes/Divi/includes/builder/styles/magnific_popup.css HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 27 Aug 2019 08:27:54 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 20 Sep 2022 11:53:47 GMT
Cache-Control: 2592000
ETag: W/"6e30bbc36a055e4e39e3b1fe966ba0b2"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5RWyS1UpxRGCEa-tRLCxnyRh4UyvbNM3ARo2U2M4fXiuSYP7_b15Kg==
Age: 9265
d3uayxmzbnco7f.cloudfront.net/wp-includes/js/jquery/jquery.js
143.204.42.190200 OK 34 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-includes/js/jquery/jquery.js
IP 143.204.42.190:0
File type ASCII text, with very long lines (31997)
Hash 7d78b5ea31255351af37ed598f589d47
b53a6cdd93b9e69b96548b3cb8cc6e979c289128
74e662603b3b6fc5d9c8fb84b142db7d18889fe076e1824b579fbd02cc78b165
GET /wp-includes/js/jquery/jquery.js HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 20 Sep 2022 11:41:15 GMT
Last-Modified: Thu, 06 Aug 2020 03:32:44 GMT
ETag: W/"49edccea2e7ba985cadc9ba0531cbed1"
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 32_AJtA6xKQYY3qyVP0grFPTASAyKhR90gA5GiGYCczTh7etsQG7ew==
Age: 10017
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/my-account.css
143.204.42.190200 OK 2.7 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/my-account.css
IP 143.204.42.190:0
File type ASCII text, with very long lines (12687)
Hash edaef7b1579fa6b17bc49b100a520d53
d3de40dee60300755798e57f58196ab9817feb0a
8fda9db90799c72fc0f7ede446d691091a9af13dff76563e8d69e4ae62ffbda3
GET /wp-content/themes/Divi-child/my-account.css HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 20 Sep 2022 07:55:13 GMT
Last-Modified: Thu, 18 Nov 2021 11:11:57 GMT
ETag: W/"5e2d79452ec87ed86924ea2519c341ef"
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: eHMy0d0g8nMckxQqOOb3DUjZwWe5Z8DpZT0Y5nFsoOsZgJLnJH_Kbw==
Age: 23579
d3uayxmzbnco7f.cloudfront.net/wp-includes/js/jquery/jquery-migrate.js
143.204.42.190200 OK 7.8 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-includes/js/jquery/jquery-migrate.js
IP 143.204.42.190:0
Hash 92c11d1a40d360aaa7e6264080eb74de
8be744b1bdffca10b7320fb5f95c55e526817b38
074190ad05ddad097f5b03a17307ff9856bffc03a97b10bdb3a8537873e740cf
GET /wp-includes/js/jquery/jquery-migrate.js HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 06 Aug 2020 03:32:44 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 20 Sep 2022 11:43:05 GMT
ETag: W/"6c57b762589f13ea5b3579ca5e6c369b"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 7_Ms5cyPfKWoQm3R-SGJJuTCByYupUnm9gqJSrFcUTv2PRAB-KLDjA==
Age: 9907
d3uayxmzbnco7f.cloudfront.net/wp-includes/js/jquery/ui/core.min.js
143.204.42.190200 OK 1.8 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-includes/js/jquery/ui/core.min.js
IP 143.204.42.190:0
File type ASCII text, with very long lines (3706)
Hash 52e1a9b065ba39d28db010fd286ae204
da3f9265eac53855df786c6f4b8f813f7ac7fb29
ef0cac6d41ec158c95903b585c5421f3c59e1677fe5943bdd50feb2288a2104f
GET /wp-includes/js/jquery/ui/core.min.js HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 06 Aug 2020 03:32:47 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Mon, 19 Sep 2022 14:29:19 GMT
ETag: W/"96ff65c925bbaf3e4e7891a7ca1f2b1f"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Fk_Si4Nz4fJuwWbmmaoqU64r1XrR-AkrZHCFfm675Pbl--lGN2jniw==
Age: 86333
d3uayxmzbnco7f.cloudfront.net/wp-includes/js/jquery/ui/widget.min.js
143.204.42.190200 OK 2.6 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-includes/js/jquery/ui/widget.min.js
IP 143.204.42.190:0
File type ASCII text, with very long lines (6614)
Hash 884ee2b2e803a291b853c08255016448
2259adbff19abbd89e781a9618120d7cf4464427
f8724610dd962f75d78abb851586de3a2458a6c01e6ea8b9ff05106a65801a63
GET /wp-includes/js/jquery/ui/widget.min.js HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 06 Aug 2020 03:32:47 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 20 Sep 2022 10:53:22 GMT
ETag: W/"00dedd56324da186973a3b2cc5e8023c"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: kRveYBx2ZsG2Dx6Va333rkBi3QhE8H8t9Sy5NDbKfKer9kfDO7NODA==
Age: 12890
www.lyca-mobile.no/wp-content/plugins/registration-portin-facility/vendor/jquery-ui-1.12.1.custom/jquery-ui.css
3.120.43.17200 OK 8.4 kB URL HTTP/1.1 www.lyca-mobile.no/wp-content/plugins/registration-portin-facility/vendor/jquery-ui-1.12.1.custom/jquery-ui.css
IP 3.120.43.17:0
File type ASCII text, with very long lines (2363)
Hash 211e9acb7b08468bf462f3cc35d58dba
30b16e5f18fb53e5536e1dff154a4288dea94c41
a31c685f9330266e5b4a2fb4c7c6439f0550fefcdadebd2548f746387820359c
GET /wp-content/plugins/registration-portin-facility/vendor/jquery-ui-1.12.1.custom/jquery-ui.css HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: text/css
Date: Tue, 20 Sep 2022 14:28:11 GMT
Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 8384
Connection: keep-alive
d3uayxmzbnco7f.cloudfront.net/wp-includes/js/jquery/ui/mouse.min.js
143.204.42.190200 OK 1.0 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-includes/js/jquery/ui/mouse.min.js
IP 143.204.42.190:0
File type ASCII text, with very long lines (2927)
Hash 8a7da5cde10f35fb9a7bdb3771934aad
bfd711e7a804c6857f8741e8d64a7559f6251d43
13da76b8f2c4eab3819a0792d658d6eff91761eaec03ea70f7d07d52a35ec8e2
GET /wp-includes/js/jquery/ui/mouse.min.js HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 20 Sep 2022 04:05:51 GMT
Last-Modified: Thu, 06 Aug 2020 03:32:45 GMT
ETag: W/"b317c4ccc9aa140339ad72fa27c77266"
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 8xEBEGSHkbiA9JBQE8bd_g7VEFwlsy50iCBqZCX1naEcpymoxuR6oQ==
Age: 37341
d3uayxmzbnco7f.cloudfront.net/wp-includes/js/jquery/ui/sortable.min.js
143.204.42.190200 OK 6.5 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-includes/js/jquery/ui/sortable.min.js
IP 143.204.42.190:0
File type HTML document, ASCII text, with very long lines (24670)
Hash e639718faff21c9f92bfd32e6d67ac39
9e6c6166549c95a6d3977a689bcac4d3b3a67872
38407b2aad4a94c965422a2bc5ae63fd63cf81fae44549cc4fe3ddb52847bc0c
GET /wp-includes/js/jquery/ui/sortable.min.js HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 20 Sep 2022 09:54:03 GMT
Last-Modified: Thu, 06 Aug 2020 03:32:47 GMT
ETag: W/"efa8171f2226a422003417095d8549dd"
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: OcsKFpBBbzpUAzLHWy2TDczoU3Nh-Z1tU_y37_Gh3trOrRaUjld_jw==
Age: 16449
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/js/theme.js
143.204.42.190200 OK 12 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/js/theme.js
IP 143.204.42.190:0
File type ASCII text, with very long lines (348)
Hash 47e908fd5ebb75aa332e3fe946712ecf
efe00cac12352cb7586d09921d31982d27e7d8f8
61803011ac5dd75765e3507780060c6d193a2466d4f098bffbe4b19831947274
GET /wp-content/themes/Divi-child/js/theme.js HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 15 Feb 2022 04:49:45 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 20 Sep 2022 07:24:07 GMT
ETag: W/"d056838fef7522c86d80206e3384d0d3"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: bupPnOR7AIjjKztNIjXtVNHJmvG3CkZcqWZBhm7jKSOI-ndgRGY15A==
Age: 25445
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/js/countries.js
143.204.42.190200 OK 3.4 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/js/countries.js
IP 143.204.42.190:0
File type ASCII text, with very long lines (7323), with no line terminators
Hash 491d3e77e07d9019a0c88383c0def37c
c2045104226430ed0dc0175015c7de44cbf99b14
6d96a380bc00eb62b68eb56e0b66f260430f3aeb682416c1e2e1b48e06a47924
GET /wp-content/themes/Divi-child/js/countries.js HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 27 Aug 2019 08:27:41 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Mon, 19 Sep 2022 16:27:31 GMT
Cache-Control: 2592000
ETag: W/"41a7f1d63de5dc564de5d2e96ba33db8"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: NUhrWO9abA1Vg0tKUXs2KU4l6zupDFWVauZUUbqH0kqclAEMmXZWPw==
Age: 79241
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/js/jquery.validate.js
143.204.42.190200 OK 7.4 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/js/jquery.validate.js
IP 143.204.42.190:0
File type Unicode text, UTF-8 text, with very long lines (22821)
Hash 0b995d527b8a6da73804c99c9295eebb
de1a05d0a238042d0c8e30a1c8871ea29a6149a0
418b337044bb4900803c0d68f84801ac84ca552a04d3ed9b9231c49805cbb7b4
GET /wp-content/themes/Divi-child/js/jquery.validate.js HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 27 Aug 2019 08:27:41 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 20 Sep 2022 09:22:25 GMT
Cache-Control: 2592000
ETag: W/"50d37feba6afb8e8ee322a7b7871550e"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5NQAGEPm3Yfyc782OxWcDDTv1dK0kbCtAVp6uBtq9MAnTEbJRb7J9w==
Age: 18347
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/js/jquery.marquee.js
143.204.42.190200 OK 2.3 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/js/jquery.marquee.js
IP 143.204.42.190:0
File type ASCII text, with very long lines (1219)
Hash 8baaa88a7c512a4bed1b9dce3fd2b17d
cf1d581f7283682af4b9635970716d277ea2ff1b
6b0bae3be5b035e2dbcf39cb85ebe77669a7fdec22dd93ebff2eeef144ca8d9d
GET /wp-content/themes/Divi-child/js/jquery.marquee.js HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 27 Aug 2019 08:27:41 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 20 Sep 2022 12:09:20 GMT
Cache-Control: 2592000
ETag: W/"a2ac3fef53d651ac8562f1412b28b359"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 9oogSIBEM26zjp9FFzj45VVhFE5qOz5yu5mC-N6p0iDSe5GU0iTogg==
Age: 8332
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/js/additional-methods.js
143.204.42.190200 OK 5.9 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/js/additional-methods.js
IP 143.204.42.190:0
File type Non-ISO extended-ASCII text, with very long lines (2940)
Hash 9af830db4012ef71ffb5f46e7aa92772
c82f2d0122337791bc03e180716b1f28283dc993
1f719d96232cbbab9fe783de6513ed87258e7b36e12a53c3aa4efddbd9a56bb5
GET /wp-content/themes/Divi-child/js/additional-methods.js HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 20 Sep 2022 06:25:38 GMT
Last-Modified: Tue, 27 Aug 2019 08:27:40 GMT
ETag: W/"074966e2db7e1caa07fd7d0bac25e844"
Cache-Control: 2592000
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: QvLlJCfQLrbfEY4bhEy8ICL7qlG90G8f3PI6vXCr4q7PJwC9TlR8xA==
Age: 28954
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/js/selectize.js
143.204.42.190200 OK 18 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/js/selectize.js
IP 143.204.42.190:0
File type Unicode text, UTF-8 text, with very long lines (3172)
Hash 0d25bf2096f78595df103c775f1cf470
bf74ce2a9f85d55aebe6ccf532b4db9322738759
b27ff37ba157571df8de17c0d9a24c2e95279600da6846f3c5ba491a5a141599
GET /wp-content/themes/Divi-child/js/selectize.js HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 27 Aug 2019 08:27:41 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 20 Sep 2022 11:46:25 GMT
Cache-Control: 2592000
ETag: W/"0941c2f6d545a74b27f2ccdbe7bdc931"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 3j3Oo8xafpuKcd0mqLcNiamqoP7smyuI2mJWywURNeD-WwIGTSirhw==
Age: 9707
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/js/roaming_rates.js
143.204.42.190200 OK 8.3 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/js/roaming_rates.js
IP 143.204.42.190:0
Hash 974dbadcfa34a5d5703ab99815b5a43d
d6d3aea3c5f79cfb8ff4d395db59cfc756514ab5
41e15e8b51191efcc069c76309f67cbb30d6bf1a311b6293170acc9778620db6
GET /wp-content/themes/Divi-child/js/roaming_rates.js HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 15 Feb 2022 04:49:50 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 20 Sep 2022 09:11:50 GMT
ETag: W/"456f0e734f90e7e3ccc2835bf708306d"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 11bws5zzMm8-C2sGazTJeDvO5Kq8XGwDHZVuxSIgfH-0HtuJ7McLyQ==
Age: 18982
www.lyca-mobile.no/wp-content/plugins/registration-portin-facility/public/css/registration_portin_facility-public.css
3.120.43.17200 OK 5.3 kB URL HTTP/1.1 www.lyca-mobile.no/wp-content/plugins/registration-portin-facility/public/css/registration_portin_facility-public.css
IP 3.120.43.17:0
File type ASCII text, with very long lines (1963)
Hash 724d0ef3e346ba677dd5987ce62cb5dc
e73088909d38fc9a932e679f3a4545297899f26e
0021049ab8e09b826fbef1cc74d8ce9794a2a9baa88a793e0773ac3e67f43073
GET /wp-content/plugins/registration-portin-facility/public/css/registration_portin_facility-public.css HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: text/css
Date: Tue, 20 Sep 2022 14:28:11 GMT
Last-Modified: Mon, 18 Oct 2021 05:15:42 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 5306
Connection: keep-alive
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/js/register.js
143.204.42.190200 OK 2.8 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/js/register.js
IP 143.204.42.190:0
Hash f06338492a7cb2abf84cf8c2bd435a95
bf7f5b7655d35984e06af5ef10bb605e2555f3f9
ab990ebef231bdb58d7f69d156742a8a75dbc6a22ff7594afdff67ed0eb97c01
GET /wp-content/themes/Divi-child/js/register.js HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 20 Sep 2022 09:14:48 GMT
Last-Modified: Thu, 20 Feb 2020 06:59:06 GMT
ETag: W/"a4c47e49f1b792925db5d2ee23d17942"
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 70DGOt3R_wTZdORkTymDFwGFKjO56YhKSGQzEjwNu5JD6tzQQASLtQ==
Age: 18804
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/js/bootstrap-datepicker.js
143.204.42.190200 OK 8.0 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/js/bootstrap-datepicker.js
IP 143.204.42.190:0
File type ASCII text, with very long lines (1634)
Hash 0efd4a2c0ba39477a4a1dec0a32324e1
8fd6895ddfb48542ce37288686811039229fdfdc
1f5098ca76f7dd6c73e4747a5dc74aaf8ae58a19c4d416e3259c7009735e1d48
GET /wp-content/themes/Divi-child/js/bootstrap-datepicker.js HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 27 Aug 2019 08:27:40 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 20 Sep 2022 10:31:22 GMT
Cache-Control: 2592000
ETag: W/"8260533cc46428d9b49e3f137ef2efe7"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: PnYAc3cBJ5EMuaN-SKFZUhWXhPYomsapAc5yOljcfX6DIKEQwpNBAg==
Age: 14210
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/js/bootstrap.min.js
143.204.42.190200 OK 9.9 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/js/bootstrap.min.js
IP 143.204.42.190:0
File type ASCII text, with very long lines (32033)
Hash 965f5ce6be30282cbf761448ea0c8aba
b3fc02751673f2e8f3809f73bbbc7c28a4eb7751
538e0702b4d0f696dbe296c2383a19079778117d633f060c4793f27d673b2700
GET /wp-content/themes/Divi-child/js/bootstrap.min.js HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 27 Aug 2019 08:27:40 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Mon, 19 Sep 2022 19:46:21 GMT
Cache-Control: 2592000
ETag: W/"5869c96cc8f19086aee625d670d741f9"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 2o81E9c-Zpz-YljQG6eLsGarlNwqd_XcPJtYp815tkd3hmratgFhRg==
Age: 67311
www.lyca-mobile.no/wp-content/plugins/email-subscribers/widget/es-widget.css
3.120.43.17200 OK 150 B URL HTTP/1.1 www.lyca-mobile.no/wp-content/plugins/email-subscribers/widget/es-widget.css
IP 3.120.43.17:0
File type ASCII text, with no line terminators
Hash 641533dacb82a11aa947513a4892de5a
b77427d8626d847a80a762456f98beb3e64764b1
a9316286d70257c135d2a0aacf0bf2bc6acba8c1b5e487c97086459c04849155
GET /wp-content/plugins/email-subscribers/widget/es-widget.css HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: text/css
Date: Tue, 20 Sep 2022 14:28:11 GMT
Last-Modified: Thu, 17 Jun 2021 16:19:16 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 150
Connection: keep-alive
cdnjs.cloudflare.com/ajax/libs/bootstrap-datetimepicker/4.17.37/js/bootstrap-datetimepicker.min.js
104.17.24.14200 OK 8.3 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/bootstrap-datetimepicker/4.17.37/js/bootstrap-datetimepicker.min.js
IP 104.17.24.14:0
File type HTML document, ASCII text, with very long lines (32010)
Hash 52b30dc893d14995df58d34ecc5a9f7f
e360fd76bd734011484ed559fd1780e31949353f
eab9dfacfbbb59d341c72a7fe6dd9c12ea4e87f20ccf78bf13bd98ffeab243d4
GET /ajax/libs/bootstrap-datetimepicker/4.17.37/js/bootstrap-datetimepicker.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Sep 2022 14:28:11 GMT
content-type: application/javascript; charset=utf-8
content-length: 8256
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03d8e-9443"
last-modified: Mon, 04 May 2020 16:06:38 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 70233
expires: Sun, 10 Sep 2023 14:28:11 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FnkeGS9EkfJVv7n2ChocZ5tYL8szQ8rVrKZIF4zoLw7w1nfQZUkaSHwgYsXmg5%2FHpkCOZb0hECVIVELEhBWfU60YNHNEE2apPHLMY%2BdmsocN7r84hg0Le3SECjIhQBb%2F2hu8NyoT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74db3f063ddbb517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/js/custom_validate.js
143.204.42.190200 OK 391 B URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/js/custom_validate.js
IP 143.204.42.190:0
File type ASCII text, with very long lines (391), with no line terminators
Hash 9f4e4bb98cbc4c5fe6ddfc05c7c48095
e87b52374a265e471462e297fad51a39763f2d3b
d48f2166d51e343d4d91b80bf04c970d3d10603d8a6fc5060a53b73c2a8b70cf
GET /wp-content/themes/Divi-child/js/custom_validate.js HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Length: 391
Connection: keep-alive
Last-Modified: Tue, 27 Aug 2019 08:27:41 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Tue, 20 Sep 2022 08:25:38 GMT
Cache-Control: 2592000
ETag: "9f4e4bb98cbc4c5fe6ddfc05c7c48095"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: EP-1ZTrckJT0jAQg6Er_TWC2ki4EqgQHIkqhBxfBXFK_DxE0cSMkOA==
Age: 21754
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/js/tab_custome_function.js
143.204.42.190200 OK 497 B URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/js/tab_custome_function.js
IP 143.204.42.190:0
File type ASCII text, with very long lines (1045)
Hash 0d9940739863c08755bd6f02069459af
4026b8e0dfc4678de7cee25bfc7a72477e53ce70
1dfff59a8db555caf80801642c545695c90f8471c520559d3841d38e54f7c5b5
GET /wp-content/themes/Divi-child/js/tab_custome_function.js HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 27 Aug 2019 08:27:41 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 20 Sep 2022 06:58:49 GMT
Cache-Control: 2592000
ETag: W/"5ad0eb623e462948f1ac5a7f6174f22a"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: NB6qTxKlx2n6W-4it3KEPp_yqUZTSzPkDwPi8vl2_E3TMNex8TzcRw==
Age: 26963
www.lyca-mobile.no/wp-content/plugins/wpml-translation-management/res/css/admin-bar-style.css
3.120.43.17200 OK 113 B URL HTTP/1.1 www.lyca-mobile.no/wp-content/plugins/wpml-translation-management/res/css/admin-bar-style.css
IP 3.120.43.17:0
Hash 8bd858d224c135ea74666d7f05df248e
5ef009ed8087ce73a4912d9749d7f041bc16961b
77e5f04f2f5d3a83c50b55652151182633e799d0daf2280c85e4650a0b06d8ab
GET /wp-content/plugins/wpml-translation-management/res/css/admin-bar-style.css HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: text/css
Date: Tue, 20 Sep 2022 14:28:11 GMT
Last-Modified: Thu, 17 Jun 2021 16:25:57 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 113
Connection: keep-alive
www.lyca-mobile.no/wp-content/plugins/wpml-cms-nav/res/css/cms-navigation-base.css
3.120.43.17200 OK 933 B URL HTTP/1.1 www.lyca-mobile.no/wp-content/plugins/wpml-cms-nav/res/css/cms-navigation-base.css
IP 3.120.43.17:0
Hash cb13db3c09d0076dc19a1dbf520c7827
c01159a4163902f3dc824ffade25949d3a9a4097
039804219c46536ac7cdc83d30e672a0467df803c5348a5733e18a687dc828b1
GET /wp-content/plugins/wpml-cms-nav/res/css/cms-navigation-base.css HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: text/css
Date: Tue, 20 Sep 2022 14:28:11 GMT
Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 933
Connection: keep-alive
www.lyca-mobile.no/wp-content/plugins/wpml-cms-nav/res/css/cms-navigation.css
3.120.43.17200 OK 645 B URL HTTP/1.1 www.lyca-mobile.no/wp-content/plugins/wpml-cms-nav/res/css/cms-navigation.css
IP 3.120.43.17:0
Hash c98f02f1afd562a7288aa2dc828e6186
d0f42b73794b0d3ffb9e3eb2d79218d14c40dc88
9fb5a2a2bea5341dd17ec72403d66f0903278030092ae829fe6bb4e23e6af725
GET /wp-content/plugins/wpml-cms-nav/res/css/cms-navigation.css HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: text/css
Date: Tue, 20 Sep 2022 14:28:11 GMT
Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 645
Connection: keep-alive
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/js/custom-ajax-script.js
143.204.42.190200 OK 6.4 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/js/custom-ajax-script.js
IP 143.204.42.190:0
File type ASCII text, with very long lines (507)
Hash a46ed0a6836212f10a4c0f7347e74e30
5a501f5a65921e5d4305e853b279a96e3d94900c
519a0038380349a37d45158ec1c865853daac4e54778b10162b7861f8a7c8737
GET /wp-content/themes/Divi-child/js/custom-ajax-script.js HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 16 Apr 2021 07:45:53 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 20 Sep 2022 07:21:56 GMT
ETag: W/"2348f035e1ba7ad6b8df58dbbbd5818e"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: VxtMVr9M1cNdMf7pY-wKBx6m4pVfmvgnRSK508qoZzoTkYGKBs8G1w==
Age: 25576
www.lyca-mobile.no/wp-content/plugins/testimonialslider/css/jquery.bxslider.css
3.120.43.17200 OK 885 B URL HTTP/1.1 www.lyca-mobile.no/wp-content/plugins/testimonialslider/css/jquery.bxslider.css
IP 3.120.43.17:0
File type Unicode text, UTF-8 text, with very long lines (3002), with no line terminators
Hash 3a8400b070b74650e9c7927466b226cf
7669a8def8bca883fbbceed367b8037f35fd1968
0d23aabe78d874edcef092bcc9611dd3c3e8656a03c58ad6e01d6d98ad9165ed
GET /wp-content/plugins/testimonialslider/css/jquery.bxslider.css HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: text/css
Date: Tue, 20 Sep 2022 14:28:12 GMT
Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 885
Connection: keep-alive
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/js/nc_ajax_script.js
143.204.42.190200 OK 7.1 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/js/nc_ajax_script.js
IP 143.204.42.190:0
Hash 26e937ba7bc3d35153bc72cc64de9874
f2e5dc1b949bc1f15f96e9bd069905e650bd6ce1
82275e149b7f1ec3aa4ff48f1eb3f647a8e365325148568972d4af17927e0197
GET /wp-content/themes/Divi-child/js/nc_ajax_script.js HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 05 May 2022 06:47:46 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 20 Sep 2022 10:02:07 GMT
ETag: W/"9353377fb1b76e466a7ac26634defc75"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: OqDkzHoB43ehsWpQQpWOGwMvskQvj2Vvt08zSxkoU4H-TOSYhVjsuA==
Age: 15966
d3uayxmzbnco7f.cloudfront.net/wp-includes/js/wp-embed.js
143.204.42.190200 OK 1.3 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-includes/js/wp-embed.js
IP 143.204.42.190:0
Hash 9c885d01cafd053718bf59057f5d0c2c
58a85948d7c2cbac8b3537de90ba34aef817641a
89ae7bcd725b32e777a2e2eb8b1dce1d64d3a99619700b4a16ca7a04cc99fbf5
GET /wp-includes/js/wp-embed.js HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 06 Aug 2020 03:32:49 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 20 Sep 2022 07:49:35 GMT
ETag: W/"23e24e824f384c5eb11e73576b4ac93c"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: VggBBl-A8w1Lvye9Dx9w-GAbKQZMN7Px6TdvMdR1d82K6VGQnImgjQ==
Age: 23918
www.lyca-mobile.no/wp-content/plugins/sitepress-multilingual-cms/res/js/jquery.cookie.js
3.120.43.17200 OK 1.1 kB URL HTTP/1.1 www.lyca-mobile.no/wp-content/plugins/sitepress-multilingual-cms/res/js/jquery.cookie.js
IP 3.120.43.17:0
Hash d2c9e62ba741c5dc1cd388f4cb4322c1
57ad65e2ffdb51d2751763b8bee9ad67f372e2a7
0ad3c73c3eaf52b9deb1941a12db921002dbfb2326ca007c6838d9a936a31b02
GET /wp-content/plugins/sitepress-multilingual-cms/res/js/jquery.cookie.js HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: application/javascript
Date: Tue, 20 Sep 2022 14:28:12 GMT
Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 1109
Connection: keep-alive
www.lyca-mobile.no/wp-content/plugins/sitepress-multilingual-cms/res/js/cookies/language-cookie.js
3.120.43.17200 OK 155 B URL HTTP/1.1 www.lyca-mobile.no/wp-content/plugins/sitepress-multilingual-cms/res/js/cookies/language-cookie.js
IP 3.120.43.17:0
Hash d3453f9d25d07fae0b6919f644988971
dba21fa483385a873ca38d99bf2433b77dd17fb0
f0fa5140f70a19702bdf6bbf7d495857cadc158e12975983212a36068cab241d
GET /wp-content/plugins/sitepress-multilingual-cms/res/js/cookies/language-cookie.js HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: application/javascript
Date: Tue, 20 Sep 2022 14:28:12 GMT
Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 155
Connection: keep-alive
www.lyca-mobile.no/wp-content/plugins/custom-search-plugin/js/script.js
3.120.43.17200 OK 506 B URL HTTP/1.1 www.lyca-mobile.no/wp-content/plugins/custom-search-plugin/js/script.js
IP 3.120.43.17:0
Hash 99ad164c48c30d4ea72bdb15d6efe582
f5186aa17398f4034199e9f58308fcf753dfe467
9fb201a9702f44e2d06fd910dc024bb0707badce77b09613754e3ff07038cee1
GET /wp-content/plugins/custom-search-plugin/js/script.js HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: application/javascript
Date: Tue, 20 Sep 2022 14:28:12 GMT
Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 506
Connection: keep-alive
www.lyca-mobile.no/wp-content/plugins/registration-portin-facility/public/js/registration_portin_facility-public.js
3.120.43.17200 OK 3.8 kB URL HTTP/1.1 www.lyca-mobile.no/wp-content/plugins/registration-portin-facility/public/js/registration_portin_facility-public.js
IP 3.120.43.17:0
Hash 01179df43b1213ab1106977745e9b906
9e3ea134dd317bc273af92dc88c44d52a3e73e64
1afad8260106e543ae55da914750a910dcf8bcf16327589f1d9d9ef21713ef2d
GET /wp-content/plugins/registration-portin-facility/public/js/registration_portin_facility-public.js HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: application/javascript
Date: Tue, 20 Sep 2022 14:28:12 GMT
Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 3837
Connection: keep-alive
www.lyca-mobile.no/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown/script.js
3.120.43.17200 OK 383 B URL HTTP/1.1 www.lyca-mobile.no/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown/script.js
IP 3.120.43.17:0
Hash 6c0ff919dd37f978ea0c1511f47c132c
86c6f73c7f81b5121d666d6968d7debd26c7ab17
790c5d96a9a9be889b5b7113a7b22868d8803355f7e215f8c7481945850b6de5
GET /wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown/script.js HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: application/javascript
Date: Tue, 20 Sep 2022 14:28:12 GMT
Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 383
Connection: keep-alive
www.lyca-mobile.no/wp-content/themes/Divi-child/js/lyca_login.js
3.120.43.17200 OK 2.9 kB URL HTTP/1.1 www.lyca-mobile.no/wp-content/themes/Divi-child/js/lyca_login.js
IP 3.120.43.17:0
Hash 139463c6855f901b3896c4958ef4392c
b0fb2a97f006267aae2924021731fe5527d8e2c7
2801af8987984312d4009ff3f665af9da6ad50faa59367fd9cb0405a03ab9fae
GET /wp-content/themes/Divi-child/js/lyca_login.js HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: application/javascript
Date: Tue, 20 Sep 2022 14:28:12 GMT
Last-Modified: Thu, 17 Jun 2021 16:25:57 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 2926
Connection: keep-alive
www.lyca-mobile.no/wp-content/plugins/registration-portin-facility/vendor/moment.min.js
3.120.43.17200 OK 17 kB URL HTTP/1.1 www.lyca-mobile.no/wp-content/plugins/registration-portin-facility/vendor/moment.min.js
IP 3.120.43.17:0
File type ASCII text, with very long lines (51679), with no line terminators
Hash 174f71b5e532bbee86b7e51ed2d11a82
abbec602df1ebf647b88d18cbd1dd162d7f1f6ad
34084291d4c3f11af71b71f00c969a81380daa917e3e90ad1a08e836ced4e5f9
GET /wp-content/plugins/registration-portin-facility/vendor/moment.min.js HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: application/javascript
Date: Tue, 20 Sep 2022 14:28:12 GMT
Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 16804
Connection: keep-alive
www.lyca-mobile.no/wp-content/plugins/testimonialslider/js/jquery.bxslider.min.js
3.120.43.17200 OK 5.0 kB URL HTTP/1.1 www.lyca-mobile.no/wp-content/plugins/testimonialslider/js/jquery.bxslider.min.js
IP 3.120.43.17:0
File type ASCII text, with very long lines (19040), with no line terminators
Hash e85a20dd54c74b8868f84e0a6bba50ea
bada9d0db6d46c9ec2d9b8c62fbcab76abe79aa8
127606d08299d86a42cff2be53731e7f2b437d64331bb2ed94b974bafac0fab0
GET /wp-content/plugins/testimonialslider/js/jquery.bxslider.min.js HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: application/javascript
Date: Tue, 20 Sep 2022 14:28:12 GMT
Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 4966
Connection: keep-alive
www.lyca-mobile.no/wp-content/themes/Divi-child/css/datepicker.min.css
3.120.43.17200 OK 1.9 kB URL HTTP/1.1 www.lyca-mobile.no/wp-content/themes/Divi-child/css/datepicker.min.css
IP 3.120.43.17:0
File type ASCII text, with very long lines (15319), with no line terminators
Hash 0cd6045269849e0f5ef595828d512ae4
35fa424ca6bfb09fa6b66d99edc3a22a7bda8f05
5b007aa8be84adf6a8a09166efcb085efdf4e252a834b13908a0d58708fa290b
GET /wp-content/themes/Divi-child/css/datepicker.min.css HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: text/css
Date: Tue, 20 Sep 2022 14:28:12 GMT
Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 1895
Connection: keep-alive
www.lyca-mobile.no/wp-content/plugins/email-subscribers/widget/es-widget.js
3.120.43.17200 OK 1.2 kB URL HTTP/1.1 www.lyca-mobile.no/wp-content/plugins/email-subscribers/widget/es-widget.js
IP 3.120.43.17:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (1311)
Hash 59066978220b7f1b7b925b47ff5e46ab
bab1c3c14f4b9649864cb46c1c96250ccdc95024
5fcbd0de5e51104006331763dcf23084505ea9d876e0904815e603e5e0230e90
GET /wp-content/plugins/email-subscribers/widget/es-widget.js HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: application/javascript
Date: Tue, 20 Sep 2022 14:28:12 GMT
Last-Modified: Thu, 17 Jun 2021 16:19:16 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 1182
Connection: keep-alive
www.lyca-mobile.no/wp-content/themes/Divi-child/js/personal-details.js
3.120.43.17200 OK 1.1 kB URL HTTP/1.1 www.lyca-mobile.no/wp-content/themes/Divi-child/js/personal-details.js
IP 3.120.43.17:0
Hash 1be41f82152e3a9f3dfb3765d314e9a1
50f7c3ad307d0cedf238b0e373116943dd0e0d30
8c4b153673568490f76767839493b7011d1fc1befc88025df6c1a9f6b58dc747
GET /wp-content/themes/Divi-child/js/personal-details.js HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: application/javascript
Date: Tue, 20 Sep 2022 14:28:12 GMT
Last-Modified: Thu, 17 Jun 2021 16:25:57 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 1052
Connection: keep-alive
www.lyca-mobile.no/wp-content/themes/Divi/includes/builder/scripts/frontend-builder-global-functions.js
3.120.43.17200 OK 2.5 kB URL HTTP/1.1 www.lyca-mobile.no/wp-content/themes/Divi/includes/builder/scripts/frontend-builder-global-functions.js
IP 3.120.43.17:0
Hash 9d72b69bced27d34ea9ed566ecd17462
3649a5d95346ab4c1a5d5da15ecf8e05ab8ba9ed
4ac3bc0988ec7ebf426c9e152daf84e76eea339bc79a92981695bdaca5ed809e
GET /wp-content/themes/Divi/includes/builder/scripts/frontend-builder-global-functions.js HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: application/javascript
Date: Tue, 20 Sep 2022 14:28:12 GMT
Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 2477
Connection: keep-alive
www.lyca-mobile.no/wp-content/plugins/email-subscribers/widget/es-widget-page.js
3.120.43.17200 OK 1.2 kB URL HTTP/1.1 www.lyca-mobile.no/wp-content/plugins/email-subscribers/widget/es-widget-page.js
IP 3.120.43.17:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (1362)
Hash 6bccf039385dadace241e9d47cdc2a0b
5cd85d67c6422cedfb4f5ac10df547928d37f7fb
c27abc361c9a25a87199ebfd36119491c278a33c46bbf06aff3c15d2a9560e0e
GET /wp-content/plugins/email-subscribers/widget/es-widget-page.js HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: application/javascript
Date: Tue, 20 Sep 2022 14:28:12 GMT
Last-Modified: Thu, 17 Jun 2021 16:19:16 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 1229
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 26fcf8aea27805b4a6a29e3e2a4ba19b
f920fd6c5a79a4adb2f456edcee678757ff1602c
7aa63d03f514e4f51190e85f167f747563f980e0e6fdee6cce9393321dff1038
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:28:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.lyca-mobile.no/wp-content/plugins/lyca-marketing/assets/js/marketing-script.js
3.120.43.17200 OK 893 B URL HTTP/1.1 www.lyca-mobile.no/wp-content/plugins/lyca-marketing/assets/js/marketing-script.js
IP 3.120.43.17:0
File type ASCII text, with CRLF line terminators
Hash 81ac1712537559cdec808b954a7490d8
33f1f5ea6a334887020b71577c72953afda05148
30aabbaab74bd6f87cefb998ef1d09a36cb7f36d5c7ddd4bf519ba1059494e8f
GET /wp-content/plugins/lyca-marketing/assets/js/marketing-script.js HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: application/javascript
Date: Tue, 20 Sep 2022 14:28:12 GMT
Last-Modified: Wed, 05 Jan 2022 02:41:28 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 893
Connection: keep-alive
www.lyca-mobile.no/wp-content/plugins/lyca-marketing/assets/js/jquery.lazy.min.js
3.120.43.17200 OK 2.3 kB URL HTTP/1.1 www.lyca-mobile.no/wp-content/plugins/lyca-marketing/assets/js/jquery.lazy.min.js
IP 3.120.43.17:0
File type ASCII text, with very long lines (4890)
Hash a6cc20d3609181f768dc325025b32715
3911e55e11ce33370a2ec382aafb2447cdffc740
c676fc1d198ec9437a42cbfa639bf2bb95cd4502e49e897c922855e4d3d29bd4
GET /wp-content/plugins/lyca-marketing/assets/js/jquery.lazy.min.js HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: application/javascript
Date: Tue, 20 Sep 2022 14:28:12 GMT
Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 2331
Connection: keep-alive
www.lyca-mobile.no/wp-content/themes/Divi/includes/builder/scripts/jquery.fitvids.js
3.120.43.17200 OK 1.3 kB URL HTTP/1.1 www.lyca-mobile.no/wp-content/themes/Divi/includes/builder/scripts/jquery.fitvids.js
IP 3.120.43.17:0
File type HTML document, ASCII text
Hash 31bd6f103266422712d7f21fd221259c
478fe2a563f8edd20468c878ad0c8dabcc506159
4f7cd006453252967505df8f72f72333de4ba5b2734773aaeca3f250fcf0b5e1
GET /wp-content/themes/Divi/includes/builder/scripts/jquery.fitvids.js HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: application/javascript
Date: Tue, 20 Sep 2022 14:28:12 GMT
Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 1298
Connection: keep-alive
www.lyca-mobile.no/wp-content/themes/Divi/includes/builder/scripts/waypoints.min.js
3.120.43.17200 OK 2.7 kB URL HTTP/1.1 www.lyca-mobile.no/wp-content/themes/Divi/includes/builder/scripts/waypoints.min.js
IP 3.120.43.17:0
File type Unicode text, UTF-8 text, with very long lines (8668)
Hash f7d4b6ef09365ba331dda4e3648c05fc
f852f915b87c84eb1c3590829e8d9f5c97fbe620
61e3dba589d367496e409a346677b89db66ee134e7370f06a8629ce0492eb6c6
GET /wp-content/themes/Divi/includes/builder/scripts/waypoints.min.js HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: application/javascript
Date: Tue, 20 Sep 2022 14:28:12 GMT
Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 2698
Connection: keep-alive
www.lyca-mobile.no/wp-content/themes/Divi/includes/builder/scripts/jquery.mobile.custom.min.js
3.120.43.17200 OK 2.9 kB URL HTTP/1.1 www.lyca-mobile.no/wp-content/themes/Divi/includes/builder/scripts/jquery.mobile.custom.min.js
IP 3.120.43.17:0
File type ASCII text, with very long lines (7687)
Hash a7bc9bd6d7a143a13d7072ee406c8692
42a46eca1ae6c1b50602917cc52b4b61e13f24f7
63b52e7a859b8943c2d1255b30e1d3b8fa262285797a69098def3967d112ad5b
GET /wp-content/themes/Divi/includes/builder/scripts/jquery.mobile.custom.min.js HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: application/javascript
Date: Tue, 20 Sep 2022 14:28:12 GMT
Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 2872
Connection: keep-alive
www.lyca-mobile.no/wp-content/themes/Divi/js/custom.js
3.120.43.17200 OK 12 kB URL HTTP/1.1 www.lyca-mobile.no/wp-content/themes/Divi/js/custom.js
IP 3.120.43.17:0
File type ASCII text, with very long lines (372)
Hash fc1ad29248d5c0b974cca2d3687eadd1
854c8b173575abe5b2da21b079276788c31149ae
cef043ceda82b48795b26c0873caaeebbc5bbe7c3aa3d1bfd9339dd7010a208f
GET /wp-content/themes/Divi/js/custom.js HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: application/javascript
Date: Tue, 20 Sep 2022 14:28:12 GMT
Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 11702
Connection: keep-alive
www.lyca-mobile.no/wp-content/themes/Divi/includes/builder/scripts/jquery.magnific-popup.js
3.120.43.17200 OK 8.4 kB URL HTTP/1.1 www.lyca-mobile.no/wp-content/themes/Divi/includes/builder/scripts/jquery.magnific-popup.js
IP 3.120.43.17:0
File type ASCII text, with very long lines (21123)
Hash dc28e6a88fd9930fed07d0de45b3a0ea
6181203be9d6e425d138533edaf3121c1a1968b1
497c6f92880fe8e1e12aff1c833910958d7b46379980da1ded707c39a2ca33ee
GET /wp-content/themes/Divi/includes/builder/scripts/jquery.magnific-popup.js HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: application/javascript
Date: Tue, 20 Sep 2022 14:28:12 GMT
Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 8382
Connection: keep-alive
www.googletagmanager.com/gtm.js?id=GTM-PNQZL82
142.250.74.72200 OK 87 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-PNQZL82
IP 142.250.74.72:0
File type Unicode text, UTF-8 text, with very long lines (39318)
Hash b14a4dd217aae60befc8259c36a6cf7b
41a5cc5e0afd4d3384507b9698c7244fe525e5a0
1e5b2705a7cac51797413c5ffdff7b60e96d615487968cec6b10f3fa0b5d0306
GET /gtm.js?id=GTM-PNQZL82 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 20 Sep 2022 14:28:12 GMT
expires: Tue, 20 Sep 2022 14:28:12 GMT
cache-control: private, max-age=900
last-modified: Tue, 20 Sep 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 87436
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.lyca-mobile.no/wp-content/themes/Divi/includes/builder/scripts/frontend-builder-scripts.js
3.120.43.17200 OK 31 kB URL HTTP/1.1 www.lyca-mobile.no/wp-content/themes/Divi/includes/builder/scripts/frontend-builder-scripts.js
IP 3.120.43.17:0
Hash faf26a56e651031ab3c631961808985a
d6c1f352c66f23c36af8c32ffe09c8bda908285b
7cccf0da734eccae2b86e7638e6c6ca280bed97e23741dcdc3db06ca2b6cc707
GET /wp-content/themes/Divi/includes/builder/scripts/frontend-builder-scripts.js HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: application/javascript
Date: Tue, 20 Sep 2022 14:28:12 GMT
Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 31305
Connection: keep-alive
www.lyca-mobile.no/wp-content/plugins/lyca_cart/resources/functions.js
3.120.43.17200 OK 5.6 kB URL HTTP/1.1 www.lyca-mobile.no/wp-content/plugins/lyca_cart/resources/functions.js
IP 3.120.43.17:0
Hash 19623a96f7e8ef3b8ec858b256ebeb7e
ab3151c6eab5b8a97036a570a69ce5d3f50928e1
cba271af1e8eff52a65e1e7584c0e4a7f962c79839866f94924eaa84e6fa3762
GET /wp-content/plugins/lyca_cart/resources/functions.js HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: application/javascript
Date: Tue, 20 Sep 2022 14:28:12 GMT
Last-Modified: Mon, 20 Sep 2021 04:57:09 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 5643
Connection: keep-alive
www.lyca-mobile.no/wp-content/themes/Divi-child/js/forget-password.js
3.120.43.17200 OK 1.3 kB URL HTTP/1.1 www.lyca-mobile.no/wp-content/themes/Divi-child/js/forget-password.js
IP 3.120.43.17:0
File type ASCII text, with very long lines (359)
Hash d9496518c9ca0e9e5de95991baffb89f
175543365d682ab41f7ec04640a5bd7a49312998
d224f7efdd43321dbd29ab5d128a5ab30e8eaca50879978ddbdb68a85647dafa
GET /wp-content/themes/Divi-child/js/forget-password.js HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: application/javascript
Date: Tue, 20 Sep 2022 14:28:12 GMT
Last-Modified: Thu, 05 May 2022 06:42:29 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 1287
Connection: keep-alive
www.lyca-mobile.no/wp-content/plugins/rocket-lazy-load/assets/js/12.0/lazyload.js
3.120.43.17200 OK 3.6 kB URL HTTP/1.1 www.lyca-mobile.no/wp-content/plugins/rocket-lazy-load/assets/js/12.0/lazyload.js
IP 3.120.43.17:0
File type ASCII text, with very long lines (351)
Hash b53e31a064849939c6a41bb35108dbbe
6153863799c6e67ee3b6340ffca9574ebd995b31
790d3da167b670f0ba09a9f30368be07cdaeffc32f9cd79648be9c892c78fcd8
GET /wp-content/plugins/rocket-lazy-load/assets/js/12.0/lazyload.js HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: application/javascript
Date: Tue, 20 Sep 2022 14:28:12 GMT
Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 3633
Connection: keep-alive
www.lyca-mobile.no/wp-content/plugins/email-subscribers/widget/es-widget-customize.js
3.120.43.17200 OK 1.7 kB URL HTTP/1.1 www.lyca-mobile.no/wp-content/plugins/email-subscribers/widget/es-widget-customize.js
IP 3.120.43.17:0
Hash e5c46c336e35e9bd8dbf55e4d0fc96c4
e4c2bc6c99aade340b1c1484096c79a970b3f019
544db6899780bebc6a30b6e86f3c89023f2b67b9ad9509258739b5005d16c000
GET /wp-content/plugins/email-subscribers/widget/es-widget-customize.js HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: application/javascript
Date: Tue, 20 Sep 2022 14:28:12 GMT
Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 1657
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 26fcf8aea27805b4a6a29e3e2a4ba19b
f920fd6c5a79a4adb2f456edcee678757ff1602c
7aa63d03f514e4f51190e85f167f747563f980e0e6fdee6cce9393321dff1038
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:28:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash babf4fb872be2bed2ba620a6078d1a90
1c534e2e04fda38de1b47b7d60af0c4ba76d0e0a
740d01ac92e8e517b1057d58c24d3fb7e9200b0bd76bb015a188bbe9343a1fbe
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 14:28:12 GMT
Last-Modified: Tue, 20 Sep 2022 13:54:34 GMT
Server: ECS (nyb/1D25)
X-Cache: Miss from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 9yNugjGVD45TiGxXR2Qrcj36xXVk1Z5-8CukYDT5ukFkXPBAf_HOJA==
Age: 2018
www.lyca-mobile.no/wp-content/plugins/registration-portin-facility/vendor/jquery-ui-1.12.1.custom/jquery-ui.js
3.120.43.17200 OK 170 kB URL HTTP/1.1 www.lyca-mobile.no/wp-content/plugins/registration-portin-facility/vendor/jquery-ui-1.12.1.custom/jquery-ui.js
IP 3.120.43.17:0
Size 170 kB (170284 bytes)
Hash a5a6b71255dc832da585d5c94fa1a115
6a632e0244ae68e70aeb8c8a5d3b360e1648712b
6a2cfb7e61dd09d77526fd314b256894094f96e3a6f3149d9f8000c1132ef4b8
GET /wp-content/plugins/registration-portin-facility/vendor/jquery-ui-1.12.1.custom/jquery-ui.js HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: application/javascript
Date: Tue, 20 Sep 2022 14:28:12 GMT
Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
transfer-encoding: chunked
Connection: keep-alive
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/vendor/font-awesome/fonts/fontawesome-webfont.woff2?v=4.6.3
143.204.42.190200 OK 72 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/vendor/font-awesome/fonts/fontawesome-webfont.woff2?v=4.6.3
IP 143.204.42.190:0
File type Web Open Font Format (Version 2), TrueType, length 71896, version 4.393\012- data
Hash e6cf7c6ec7c2d6f670ae9d762604cb0b
97e438cc545714309882fbceadbf344fcaddcec5
7dacf83f51179de8d7980a513e67ab3a08f2c6272bb5946df8fd77c0d1763b73
GET /wp-content/themes/Divi-child/vendor/font-awesome/fonts/fontawesome-webfont.woff2?v=4.6.3 HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.lyca-mobile.no
Connection: keep-alive
Referer: https://d3uayxmzbnco7f.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 71896
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, HEAD
Access-Control-Max-Age: 3000
Last-Modified: Tue, 27 Aug 2019 08:27:43 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Tue, 20 Sep 2022 12:14:26 GMT
Cache-Control: 2592000
ETag: "e6cf7c6ec7c2d6f670ae9d762604cb0b"
Vary: Accept-Encoding,Origin
X-Cache: Hit from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: OecNDfRIWia8Z4qpnoTQkOIZIyKV7OHrdyO0p5pKLvE3dOgKh6G-bA==
Age: 8027
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi/core/admin/fonts/modules.ttf
143.204.42.190200 OK 83 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi/core/admin/fonts/modules.ttf
IP 143.204.42.190:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, modules \012- data
Hash 87a9fcfa516cd7576d52480b0bb21dae
7b2b31c6f1e91d53b76daad7fedea802592e4da4
c683211e591f2048ec4a840586e4f849894c8a57c147f23d7b5652d61c1260e2
GET /wp-content/themes/Divi/core/admin/fonts/modules.ttf HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lyca-mobile.no
Connection: keep-alive
Referer: https://d3uayxmzbnco7f.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/vnd.ms-opentype
Content-Length: 82920
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, HEAD
Access-Control-Max-Age: 3000
Last-Modified: Tue, 27 Aug 2019 08:27:45 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Tue, 20 Sep 2022 10:36:51 GMT
Cache-Control: 2592000
ETag: "87a9fcfa516cd7576d52480b0bb21dae"
Vary: Accept-Encoding,Origin
X-Cache: Hit from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Q67_9c2RySTgfwJsvzIaaahkTrw_6lMnvGZ48scG3bVyW0PX7lLKDg==
Age: 13882
s3-eu-central-1.amazonaws.com/lycamobile-norway-website/lycamobile-nor-cms/wp-content/uploads/2018/06/05101008/logo-new-br.svg
52.219.170.177200 OK 3.9 kB URL HTTP/1.1 s3-eu-central-1.amazonaws.com/lycamobile-norway-website/lycamobile-nor-cms/wp-content/uploads/2018/06/05101008/logo-new-br.svg
IP 52.219.170.177:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (3871), with no line terminators
Hash 600e6fd78377375dfc3cc9b9dadbfdfa
e3bb1098f191d2f9bc63a6402f5ae40d80edcd2c
b5260409c7187bbfd8d84eccf7bf1ccf96644798946c228af252775f7cb0cc13
GET /lycamobile-norway-website/lycamobile-nor-cms/wp-content/uploads/2018/06/05101008/logo-new-br.svg HTTP/1.1
Host: s3-eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 602yUHQ2AfcUwPoxM7M4mH1mX283UgTYwSxcahwaENBCxMsXw2LavH9/WRXgL1FxniMli4UQaFs=
x-amz-request-id: VX79BWTY8JGB4PR7
Date: Tue, 20 Sep 2022 14:28:13 GMT
Last-Modified: Thu, 06 Jan 2022 06:57:00 GMT
ETag: "600e6fd78377375dfc3cc9b9dadbfdfa"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 3871
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/vendor/linear-icons/Linearicons-Free.woff2?w118d
143.204.42.190200 OK 22 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/vendor/linear-icons/Linearicons-Free.woff2?w118d
IP 143.204.42.190:0
File type Web Open Font Format (Version 2), TrueType, length 21780, version 1.0\012- data
Hash 03e91f122aa5fd425abbe23c85546eb0
c87a3db06c5db4e75e639382f174eafa439aeb27
296945e5922e764eef17b1b4a3ee3e60dc202b3c7f074150b62158915bf74e33
GET /wp-content/themes/Divi-child/vendor/linear-icons/Linearicons-Free.woff2?w118d HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.lyca-mobile.no
Connection: keep-alive
Referer: https://d3uayxmzbnco7f.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 21780
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, HEAD
Access-Control-Max-Age: 3000
Last-Modified: Tue, 27 Aug 2019 08:27:44 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Tue, 20 Sep 2022 12:14:26 GMT
Cache-Control: 2592000
ETag: "03e91f122aa5fd425abbe23c85546eb0"
Vary: Accept-Encoding,Origin
X-Cache: Hit from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: fjzecC0wGQ6wjyrf7sZxdqpOAvrsTpvEswsmj_X7WkKUFx6D-Q3xCA==
Age: 8027
s3-eu-central-1.amazonaws.com/lycamobile-norway-website/lycamobile-nor-cms/wp-content/uploads/2018/08/30120503/germ-one.svg
52.219.170.177200 OK 2.0 kB URL HTTP/1.1 s3-eu-central-1.amazonaws.com/lycamobile-norway-website/lycamobile-nor-cms/wp-content/uploads/2018/08/30120503/germ-one.svg
IP 52.219.170.177:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 27398d9974a03682bca55a5d1c83cfc0
011509bac7ec598f0ba6ff215d92487fc8965bac
28a2f89175ec3599ef375767ea6996f5bb73d38e5a54025deb7f0370505c382f
GET /lycamobile-norway-website/lycamobile-nor-cms/wp-content/uploads/2018/08/30120503/germ-one.svg HTTP/1.1
Host: s3-eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://d3uayxmzbnco7f.cloudfront.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: oy36o+ul/kiykG9og3kNZt+RWLhHOeK+GKDcbRK5YpkX1h+SNApfsK7KIWVzBUC/rwY7IIM/2pU=
x-amz-request-id: VX7C74MJZJQCRHJS
Date: Tue, 20 Sep 2022 14:28:13 GMT
Last-Modified: Thu, 30 Aug 2018 12:03:58 GMT
ETag: "27398d9974a03682bca55a5d1c83cfc0"
Cache-Control: max-age=31536000
Content-Encoding: gzip
Expires: Fri, 30 Aug 2019 12:05:03 GMT
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 2016
s3-eu-central-1.amazonaws.com/lycamobile-norway-website/lycamobile-nor-cms/wp-content/uploads/2018/06/06075441/thumbnail_livechat-home-new.png
52.219.170.177200 OK 4.6 kB URL HTTP/1.1 s3-eu-central-1.amazonaws.com/lycamobile-norway-website/lycamobile-nor-cms/wp-content/uploads/2018/06/06075441/thumbnail_livechat-home-new.png
IP 52.219.170.177:0
File type PNG image data, 169 x 101, 8-bit/color RGBA, non-interlaced\012- data
Hash 997934aedeaea00686b8b3ddae955e3f
6f1ab00c2308c25108bd68368cbacfc6410bdc43
d9d42de448b8e9c5ba116ccd270456367179a295167174953421fafafb5a932b
GET /lycamobile-norway-website/lycamobile-nor-cms/wp-content/uploads/2018/06/06075441/thumbnail_livechat-home-new.png HTTP/1.1
Host: s3-eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://d3uayxmzbnco7f.cloudfront.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: PS41nV3IQCwB5EV7+wF6iD5NKJAFIIl1XXOoFjEw/KwRFeVuURN54L+QkcAwRZGXmK5ohudbN3g=
x-amz-request-id: VX7DXK6FRC3NPY0J
Date: Tue, 20 Sep 2022 14:28:13 GMT
Last-Modified: Wed, 06 Oct 2021 07:51:37 GMT
ETag: "997934aedeaea00686b8b3ddae955e3f"
Cache-Control: max-age=31536000
Expires: Thu, 06 Oct 2022 07:54:41 GMT
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 4589
s3-eu-central-1.amazonaws.com/lycamobilespain-website/lycamobile-es-cms/wp-content/uploads/2018/06/25105546/activate-your-sim.svg
52.219.170.177200 OK 1.9 kB URL HTTP/1.1 s3-eu-central-1.amazonaws.com/lycamobilespain-website/lycamobile-es-cms/wp-content/uploads/2018/06/25105546/activate-your-sim.svg
IP 52.219.170.177:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1914), with no line terminators
Hash f6081e075c11d4ee9be3b614cdcab433
5b46fc85e5698f59567f0446251f52e1207e8d72
6369d8666187a0119acd2ad3f3bff8472f2cc720649cfa8966fc23719078dd39
GET /lycamobilespain-website/lycamobile-es-cms/wp-content/uploads/2018/06/25105546/activate-your-sim.svg HTTP/1.1
Host: s3-eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://d3uayxmzbnco7f.cloudfront.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 6SP+QnK332skzE6nUF+zDWxhW7AzqnoNEDc2gJdfRKcGXWLVrOgWRIHxcl7W/Q2jDc0UdBi8Q+Q=
x-amz-request-id: VX7F6SB0JY5V31GH
Date: Tue, 20 Sep 2022 14:28:13 GMT
Last-Modified: Mon, 16 Jul 2018 16:00:42 GMT
ETag: "f6081e075c11d4ee9be3b614cdcab433"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 1914
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/img/buy-bundles.svg
143.204.42.190200 OK 530 B URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/img/buy-bundles.svg
IP 143.204.42.190:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 246e189c0e743057c53c8ba2bef9fa95
0fd4a1c18665c324365d94cbea47ce838a44c539
40acfa1c4dd1064edb6182d9ac729810857b35975fb58d0a9da6bf3a911a2c8b
GET /wp-content/themes/Divi-child/img/buy-bundles.svg HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 27 Aug 2019 08:27:33 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 20 Sep 2022 09:47:42 GMT
Cache-Control: 2592000
ETag: W/"5fb98b5d9331ffac000aa38ccddcc058"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: GC2XP9elb7qeW3MAD0MibGAw4owl6n0MrzS7l-sp-6-d1c60haNJKQ==
Age: 16831
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/img/quick-topup.svg
143.204.42.190200 OK 794 B URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/img/quick-topup.svg
IP 143.204.42.190:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (568)
Hash cf1e3a7aa04f38e1620d798558f2d606
2c9ad3c5756a3992d80838aea679b7d13fe2e17b
aa9f77e1ebcb1a541bf88994cecc556f52cf27c8176ee8ae14789f38ff55de84
GET /wp-content/themes/Divi-child/img/quick-topup.svg HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Content-Length: 794
Connection: keep-alive
Date: Tue, 20 Sep 2022 08:47:14 GMT
Last-Modified: Tue, 27 Aug 2019 08:27:38 GMT
ETag: "cf1e3a7aa04f38e1620d798558f2d606"
Cache-Control: 2592000
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _4D6D1kgICI5TJfTCGq9PkEckbrob1dQ9Bqitrhd5dLGK6QTiNnwlQ==
Age: 20459
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/img/faq.svg
143.204.42.190200 OK 785 B URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/img/faq.svg
IP 143.204.42.190:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b97c7e4122996f575e68c944d87095d8
d8a4695fe27064b95e4918099aaa3c2be1821f32
42ab849ec5e04c9bad98c11a45f2363492238778f29a64b0a9dc5896dcc90892
GET /wp-content/themes/Divi-child/img/faq.svg HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 27 Aug 2019 08:27:36 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 20 Sep 2022 09:12:51 GMT
Cache-Control: 2592000
ETag: W/"6f426cc5e8b051ff22516894f385ff7b"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: jpIo51eF1ouorTohvdMTm2Vu6i_7oKZGbw5tK-7ircxjGry_yC0OoA==
Age: 18922
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/img/international-1.svg
143.204.42.190200 OK 2.0 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/img/international-1.svg
IP 143.204.42.190:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e241cbde90ecbd5a21a851ec1c0d806e
66e85e599a77f141b5b51f7f56fda9a05c348631
bfe76a79be638c8c32cc23e2cc26ac45743aeaf3c16c6851e10d3683f56d17be
GET /wp-content/themes/Divi-child/img/international-1.svg HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 27 Aug 2019 08:27:37 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 20 Sep 2022 08:01:21 GMT
Cache-Control: 2592000
ETag: W/"5056ce6c6883a123509cb1cca4031429"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: fH_oJBY7Yvv24_ozUFGYcsQJil1xWeiJ5hey50erw4gSQFhbrlS_QQ==
Age: 23212
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/img/store-locator.svg
143.204.42.190200 OK 958 B URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/img/store-locator.svg
IP 143.204.42.190:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e21443e37ca744aa7d29d2829b46591a
ca3158f56f1c6e1de9564583c398e78d097ed4c4
d07b478885d58c759e9494a4756dbec42b616fc46a14d5b5eed6bbc0dae35352
GET /wp-content/themes/Divi-child/img/store-locator.svg HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Content-Length: 958
Connection: keep-alive
Date: Tue, 20 Sep 2022 07:24:07 GMT
Last-Modified: Tue, 27 Aug 2019 08:27:39 GMT
ETag: "e21443e37ca744aa7d29d2829b46591a"
Cache-Control: 2592000
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: VtandVMJzzjVkAWpCDEAR4RRIIotGQgxTnutdM6hs6df8Lp2hle8Mg==
Age: 25446
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/img/roaming.svg
143.204.42.190200 OK 1.2 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/img/roaming.svg
IP 143.204.42.190:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 85a478244d79ab2a1e7caa74f73e89f7
eb1209457084c01a4a6685a268d4e495ea67a5d0
cab3eb0e16aec816bf8f738a6fbe7de33f67f2703c00fd13213385314f497f60
GET /wp-content/themes/Divi-child/img/roaming.svg HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 27 Aug 2019 08:27:38 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 20 Sep 2022 08:01:21 GMT
Cache-Control: 2592000
ETag: W/"babdb0858ab2d63fb92348873cb8ddba"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: uZNzivJss6wJ5WlK3oh7A7pMJrE229A-OLE_gwsgs7yWqotqrjIIPQ==
Age: 23212
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/img/mobile-settings.svg
143.204.42.190200 OK 1.2 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/img/mobile-settings.svg
IP 143.204.42.190:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3b9d0b16e49f983feb68c71c0c435ec4
e6d82cd2b529e1ec219aa8503080b5815a3d271f
9e17a9e0e46f86caaac0774b886dce68c39a3de44469efb7088200e449343d22
GET /wp-content/themes/Divi-child/img/mobile-settings.svg HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 20 Sep 2022 08:02:54 GMT
Last-Modified: Tue, 27 Aug 2019 08:27:37 GMT
ETag: W/"94e63e235909be075a2884c96906c941"
Cache-Control: 2592000
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Nn3f2YnDJU6-HAq0BagghApsQhNO10gBdlYGBlyJG0QQXTfNelQ4Gw==
Age: 23119
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/img/contactus.svg
143.204.42.190200 OK 646 B URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/img/contactus.svg
IP 143.204.42.190:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b127a283d70bf1c4ecbfab932da2aa69
90be95e05ee092b3b78059ec4d8451468c0f3b64
9d9ef67ed9cdf2eae32c4f8ffb5a1c154501573a36d37bfd0ca910e1e8ae5ca2
GET /wp-content/themes/Divi-child/img/contactus.svg HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 27 Aug 2019 08:27:36 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 20 Sep 2022 08:22:18 GMT
Cache-Control: 2592000
ETag: W/"be5d61340a17d803b181cf8d2cee077c"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: kjNN6o_jBZSkE1fTUkoHoDzY4bCvcJpkLWy8TggKYLiI7rw_172Chg==
Age: 21955
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/img/favicon.ico
143.204.42.190200 OK 1.2 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/img/favicon.ico
IP 143.204.42.190:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 2eed3e79d00bb4bc002d5cff16db207b
dc4cdaf71a4d8fa44eabfe5530403988de1d2bf8
0ed56bfe2a738fc69afc0c991d8c65abe9f5a2204c9a44fa0570e5bd8e47466f
GET /wp-content/themes/Divi-child/img/favicon.ico HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/x-icon
Content-Length: 1150
Connection: keep-alive
Last-Modified: Mon, 18 Oct 2021 07:31:03 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Tue, 20 Sep 2022 07:28:51 GMT
ETag: "2eed3e79d00bb4bc002d5cff16db207b"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 85kc34g5711eo_El_Db8bLHVri1IF3SdVyr80NgmnVo90VagjtGpxA==
Age: 25162
www.lyca-mobile.no/wp-content/uploads/json_uploads/errorhandle.json
3.120.43.17200 OK 4.1 kB URL HTTP/1.1 www.lyca-mobile.no/wp-content/uploads/json_uploads/errorhandle.json
IP 3.120.43.17:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (1442)
Hash 9c8e140cc95739dfbfa7e6bb132e890c
6995f8ca8d9fb5a68cd8fae4460502bc73fa2c92
3906c7164353e4321efbc4637888bd17c95938e6329f2df1f19c444350f7bbad
GET /wp-content/uploads/json_uploads/errorhandle.json HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Type: application/json
Date: Tue, 20 Sep 2022 14:28:12 GMT
Last-Modified: Thu, 17 Jun 2021 16:25:58 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 4099
Connection: keep-alive
s3-eu-central-1.amazonaws.com/lycamobile-norway-website/lycamobile-nor-cms/wp-content/uploads/2018/06/05102139/header-fb-new.svg
52.219.170.177200 OK 8.4 kB URL HTTP/1.1 s3-eu-central-1.amazonaws.com/lycamobile-norway-website/lycamobile-nor-cms/wp-content/uploads/2018/06/05102139/header-fb-new.svg
IP 52.219.170.177:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (11262)
Hash 852b81efbbae0dcfd857f87d6c98189a
d8022ff32daac638cb94b4bd15ec7e7891eaefcb
58480bbcf53220a5a596bebc793c65cd7a22b77f49e4329c0f5f7c8ed8da125a
GET /lycamobile-norway-website/lycamobile-nor-cms/wp-content/uploads/2018/06/05102139/header-fb-new.svg HTTP/1.1
Host: s3-eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: lBzqLHOQetlLSVM4gZZSkK9msK6gtoo8y036ze/Ik0RpkfysiJms8gQOYLvgTPh3xbyUMnBwiAI=
x-amz-request-id: VX76S2PJ871WH5RS
Date: Tue, 20 Sep 2022 14:28:13 GMT
Last-Modified: Tue, 05 Oct 2021 10:18:37 GMT
ETag: "852b81efbbae0dcfd857f87d6c98189a"
Cache-Control: max-age=31536000
Content-Encoding: gzip
Expires: Wed, 05 Oct 2022 10:21:39 GMT
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 8393
s3-eu-central-1.amazonaws.com/lycamobile-norway-website/lycamobile-nor-cms/wp-content/uploads/2018/06/05102144/header-twitter-new.svg
52.219.170.177200 OK 15 kB URL HTTP/1.1 s3-eu-central-1.amazonaws.com/lycamobile-norway-website/lycamobile-nor-cms/wp-content/uploads/2018/06/05102144/header-twitter-new.svg
IP 52.219.170.177:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (20393)
Hash 1b0607b1b648a1f756b1419bbbfaacd9
fd5d74112b7172baffc62e024b91f398f0d280cd
2fedb7c9aad7c7e9473f4ce37fe4ffb0f23ed83dbc188a14aad73de5e858e542
GET /lycamobile-norway-website/lycamobile-nor-cms/wp-content/uploads/2018/06/05102144/header-twitter-new.svg HTTP/1.1
Host: s3-eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: FduyvNlPJXoC/XVPpY7CWoglPVtI2FnswSpZIckwIObjjtgeYOnTtxsBfcrYvIClQ/PxdofyFoI=
x-amz-request-id: VX76PG3X3HKCNK52
Date: Tue, 20 Sep 2022 14:28:13 GMT
Last-Modified: Tue, 05 Oct 2021 10:18:42 GMT
ETag: "1b0607b1b648a1f756b1419bbbfaacd9"
Cache-Control: max-age=31536000
Content-Encoding: gzip
Expires: Wed, 05 Oct 2022 10:21:44 GMT
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 15288
s3-eu-central-1.amazonaws.com/lycamobile-norway-website/lycamobile-nor-cms/wp-content/uploads/2018/06/05102142/header-insta-new.svg
52.219.170.177200 OK 18 kB URL HTTP/1.1 s3-eu-central-1.amazonaws.com/lycamobile-norway-website/lycamobile-nor-cms/wp-content/uploads/2018/06/05102142/header-insta-new.svg
IP 52.219.170.177:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (23958)
Hash 9a55d81cd439e49798109bd463dd1f1b
1afef555c1541124cc9b6c85ae258a72b6818ec1
61f9f838ab4dd5a633b7ae5329af4d2acae8045d2e0e667fd73a3f116b00dab6
GET /lycamobile-norway-website/lycamobile-nor-cms/wp-content/uploads/2018/06/05102142/header-insta-new.svg HTTP/1.1
Host: s3-eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: oaFt+SmBuJ+Xo1hA2JD1wR47KjZBG6K5gYzTxIiJ9UDGWNf9utRt/ti1a6YYt6B4dbzDTFaJLs4=
x-amz-request-id: VX74WM876ZNF3E1K
Date: Tue, 20 Sep 2022 14:28:13 GMT
Last-Modified: Tue, 05 Oct 2021 10:18:40 GMT
ETag: "9a55d81cd439e49798109bd463dd1f1b"
Cache-Control: max-age=31536000
Content-Encoding: gzip
Expires: Wed, 05 Oct 2022 10:21:42 GMT
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 17998
s3-eu-central-1.amazonaws.com/lycamobile-norway-website/lycamobile-nor-cms/wp-content/uploads/2018/06/05102146/header-youtube-new.svg
52.219.170.177200 OK 18 kB URL HTTP/1.1 s3-eu-central-1.amazonaws.com/lycamobile-norway-website/lycamobile-nor-cms/wp-content/uploads/2018/06/05102146/header-youtube-new.svg
IP 52.219.170.177:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (24655)
Hash 74d50291fad9e577ecbde522f9882145
7dcf477169f8d5a1d0ee5dd970c10da54cde13f1
a9fc0811ec1d0594b50275f6bb1e275a61144d25f8885333fd5172d34b7f8655
GET /lycamobile-norway-website/lycamobile-nor-cms/wp-content/uploads/2018/06/05102146/header-youtube-new.svg HTTP/1.1
Host: s3-eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: RQQ8bod25RZdQwfwev+/D43LOPoXhKRxRDgi70OjmePrlP4eNCxjdEhlJd/jPgZYje5ivji1CHY=
x-amz-request-id: VX78N67J2X4H8254
Date: Tue, 20 Sep 2022 14:28:13 GMT
Last-Modified: Tue, 05 Oct 2021 10:18:44 GMT
ETag: "74d50291fad9e577ecbde522f9882145"
Cache-Control: max-age=31536000
Content-Encoding: gzip
Expires: Wed, 05 Oct 2022 10:21:46 GMT
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 18504
s3-eu-central-1.amazonaws.com/lycamobile-norway-website/lycamobile-nor-cms/wp-content/uploads/2018/06/07072809/breadcrumb_newbrand_be.png
52.219.170.177200 OK 24 kB URL HTTP/1.1 s3-eu-central-1.amazonaws.com/lycamobile-norway-website/lycamobile-nor-cms/wp-content/uploads/2018/06/07072809/breadcrumb_newbrand_be.png
IP 52.219.170.177:0
File type PNG image data, 1920 x 140, 8-bit/color RGB, non-interlaced\012- data
Hash ad2b8da460e7f9706da7008773b132b3
5f7ddfbb68f26ba1fb5f0769dca8f88bc01d7829
a55b84d8174fc43917cae9c623df2b1758d7c05493b0881252a55ca87dcfdbf0
GET /lycamobile-norway-website/lycamobile-nor-cms/wp-content/uploads/2018/06/07072809/breadcrumb_newbrand_be.png HTTP/1.1
Host: s3-eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 7bilIeSVp9scJ3GrS+fmoaHhOkCLcwvL32WpSVY0kzYT3HhWhhc3Qyby/h1zsYrGaqsjCMibSy4=
x-amz-request-id: VX7CPN3H8RV41TGZ
Date: Tue, 20 Sep 2022 14:28:13 GMT
Last-Modified: Thu, 07 Oct 2021 07:25:03 GMT
ETag: "ad2b8da460e7f9706da7008773b132b3"
Cache-Control: max-age=31536000
Expires: Fri, 07 Oct 2022 07:28:09 GMT
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 23600
s3-eu-central-1.amazonaws.com/lycamobile-norway-website/lycamobile-nor-cms/wp-content/uploads/2018/06/11065021/european-union_new.svg
52.219.170.177200 OK 726 B URL HTTP/1.1 s3-eu-central-1.amazonaws.com/lycamobile-norway-website/lycamobile-nor-cms/wp-content/uploads/2018/06/11065021/european-union_new.svg
IP 52.219.170.177:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (2193), with no line terminators
Hash 300ca84c801a3dff40b9f85bd024669a
d6a6b760a33b8db7e552cb63ad7ca064ef4fae70
9de40f884583d6bc5bbd40bd5b74d0b20c853538aa6a3fabf4144c23ef674983
GET /lycamobile-norway-website/lycamobile-nor-cms/wp-content/uploads/2018/06/11065021/european-union_new.svg HTTP/1.1
Host: s3-eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: zf+/XCDE9q4o2sQrCYlVmckApVfNiZHmF0hio6wEWqrcjE45mwk/IR6bSc+0ulKYj1MljAaBrmc=
x-amz-request-id: F1REXNERYA3GJV2V
Date: Tue, 20 Sep 2022 14:28:14 GMT
Last-Modified: Mon, 11 Oct 2021 06:50:14 GMT
ETag: "300ca84c801a3dff40b9f85bd024669a"
Cache-Control: max-age=31536000
Content-Encoding: gzip
Expires: Tue, 11 Oct 2022 06:50:21 GMT
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 726
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash a94215297255970dc68e418fa4696866
c4ce85a8ba603274f5013090d5e8df2983ef040b
e4eed6d19b3a0530ddeeea5c0bc7daa87cd78cee0609422b8fa4ae1619f4cacb
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 14:28:13 GMT
Last-Modified: Tue, 20 Sep 2022 12:57:48 GMT
Server: ECS (nyb/1D19)
X-Cache: Miss from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5mQGm0ZJZb-DLYyeh2WiZZFWX6jZTVvYZi8A0uLx5vjE0oo1h514oQ==
Age: 5425
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3146bb0aaba22619df206969792ed383
07db3170920b9ba82ecf00e6135eecf08f167942
cba7793fa0a6de6486e3515f886a42efeb21f3b4c84d5e7395f6468a5925d27f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:28:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.lyca-mobile.no/wp-content/plugins/wp-store-locator/css/styles.css
3.120.43.17200 OK 31 kB URL HTTP/1.1 www.lyca-mobile.no/wp-content/plugins/wp-store-locator/css/styles.css
IP 3.120.43.17:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (65499)
Hash 1f7f6b319b01271a5c96673234d1997d
217522b7111ec672fcc593c5fcd9f6688e96241c
c22fe53aab4bcf40528aa983600a7580140b22624da715018aa274750bbfd84c
GET /wp-content/plugins/wp-store-locator/css/styles.css HTTP/1.1
Host: www.lyca-mobile.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-m/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=5828477&rtkcid={clickid}&rdk=rk1
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=a4lg0151p7ur3ok67o5s76bkgs; newsim_tab=0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: text/css
Date: Tue, 20 Sep 2022 14:28:11 GMT
Last-Modified: Thu, 17 Jun 2021 16:25:57 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubdomains;
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 4432
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash a94215297255970dc68e418fa4696866
c4ce85a8ba603274f5013090d5e8df2983ef040b
e4eed6d19b3a0530ddeeea5c0bc7daa87cd78cee0609422b8fa4ae1619f4cacb
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 14:28:13 GMT
Last-Modified: Tue, 20 Sep 2022 13:09:28 GMT
Server: ECS (nyb/1D08)
X-Cache: Miss from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: qEKPLoH1DYal0U1XUCFfxMaAbyz2-5LQ-U0FyQFM31U8_0W8188cuA==
Age: 4725
s3-eu-west-2.amazonaws.com/lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05112045/France1.png
52.95.150.8200 OK 3.8 kB URL HTTP/1.1 s3-eu-west-2.amazonaws.com/lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05112045/France1.png
IP 52.95.150.8:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash a77830776e897150a6ff71086e102b0d
d51b723d1070266baa7c5f7d7c848245791f7729
aef7056201ef0b57ad96204bca42e09d38886c1139ed77c6d4d102fcdac339fd
GET /lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05112045/France1.png HTTP/1.1
Host: s3-eu-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: czv6NW93VqHJbDBSinod+x+nm9MVs5MUvYWSB4ZIfh/t0hiG03OXiQYipmZXVBAmBeYJeSgkcTM=
x-amz-request-id: F1R555CD1XA9MCH5
Date: Tue, 20 Sep 2022 14:28:14 GMT
Last-Modified: Mon, 19 Apr 2021 09:38:32 GMT
ETag: "a77830776e897150a6ff71086e102b0d"
Cache-Control: max-age=31536000
Expires: Wed, 05 Dec 2018 11:20:45 GMT
x-amz-version-id: pu8R6M7CKxBCciwISencqH_AybVJLBjI
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 3805
d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/fonts/RobotoCondensed-Bold.ttf
143.204.42.190200 OK 3.1 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/fonts/RobotoCondensed-Bold.ttf
IP 143.204.42.190:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 05b0430105aa244028af3d4812cfa862
9eab0b05bd6168d57cce062705562be4feb82f6f
58c034ac6bd3419e05ea16f2ebfbc4682fb594f29a4e2d5d794bcfec5b0993fb
GET /wp-content/themes/Divi-child/fonts/RobotoCondensed-Bold.ttf HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lyca-mobile.no
Connection: keep-alive
Referer: https://d3uayxmzbnco7f.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/vnd.ms-opentype
Content-Length: 169800
Connection: keep-alive
Date: Tue, 20 Sep 2022 01:11:29 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, HEAD
Access-Control-Max-Age: 3000
Last-Modified: Tue, 27 Aug 2019 08:27:32 GMT
ETag: "36b5da0333389306669655a13f2209ad"
Cache-Control: 2592000
Accept-Ranges: bytes
Server: AmazonS3
Vary: Origin
X-Cache: Hit from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: dGRBsZGFrm8_rznXtx7ZVejOxiRl71QaSYvb_hIzRb0PBbZSI7YXMg==
Age: 47804
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash a94215297255970dc68e418fa4696866
c4ce85a8ba603274f5013090d5e8df2983ef040b
e4eed6d19b3a0530ddeeea5c0bc7daa87cd78cee0609422b8fa4ae1619f4cacb
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 14:28:13 GMT
Last-Modified: Tue, 20 Sep 2022 12:44:31 GMT
Server: ECS (bsa/EB22)
X-Cache: Miss from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: NZL9NmK_pXVHUwV7vLSMf1z4ZcclSy49ZahzQJ1VuzwvMIVFik6vIQ==
Age: 6222
11029147.fls.doubleclick.net/activityi;src=11029147;type=invmedia;cat=nolyc0;ord=3313280538455;gtm=2wg9j0;auiddc=1622501922.1663684093;~oref=https%3A%2F%2Fwww.lyca-mobile.no%2Fnb%2Fbundle%2Flyca-smart-m%2F%3Futm_source%3DSelectivv%26utm_medium%3Dbanner%26utm_campaign%3DNOR22070001%26utm_term%3DP5%26user_id%3D%7Bclickid%7D%26cmpid%3D5828477%26rtkcid%3D%7Bclickid%7D%26rdk%3Drk1?
142.250.74.70200 OK 473 B URL HTTP/2 11029147.fls.doubleclick.net/activityi;src=11029147;type=invmedia;cat=nolyc0;ord=3313280538455;gtm=2wg9j0;auiddc=1622501922.1663684093;~oref=https%3A%2F%2Fwww.lyca-mobile.no%2Fnb%2Fbundle%2Flyca-smart-m%2F%3Futm_source%3DSelectivv%26utm_medium%3Dbanner%26utm_campaign%3DNOR22070001%26utm_term%3DP5%26user_id%3D%7Bclickid%7D%26cmpid%3D5828477%26rtkcid%3D%7Bclickid%7D%26rdk%3Drk1?
IP 142.250.74.70:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (654), with no line terminators
Hash 671708de08869b4fc86f2b84e8e43a39
723dab76fa8a253b009c29bbae10dd77c247c6ef
5c4293d162b9167dc95e683d7625d46b0201d292dd0a190ec1fdc77309a6bf69
GET /activityi;src=11029147;type=invmedia;cat=nolyc0;ord=3313280538455;gtm=2wg9j0;auiddc=1622501922.1663684093;~oref=https%3A%2F%2Fwww.lyca-mobile.no%2Fnb%2Fbundle%2Flyca-smart-m%2F%3Futm_source%3DSelectivv%26utm_medium%3Dbanner%26utm_campaign%3DNOR22070001%26utm_term%3DP5%26user_id%3D%7Bclickid%7D%26cmpid%3D5828477%26rtkcid%3D%7Bclickid%7D%26rdk%3Drk1? HTTP/1.1
Host: 11029147.fls.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 20 Sep 2022 14:28:13 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 473
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 20-Sep-2022 14:43:13 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash a94215297255970dc68e418fa4696866
c4ce85a8ba603274f5013090d5e8df2983ef040b
e4eed6d19b3a0530ddeeea5c0bc7daa87cd78cee0609422b8fa4ae1619f4cacb
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 14:28:13 GMT
Last-Modified: Tue, 20 Sep 2022 13:43:55 GMT
Server: ECS (nyb/1D2C)
X-Cache: Miss from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: a2XPQyiydJKol_C5gfG47q3fxJNsHvdAuy53lIkx4VNX7GKosocOmQ==
Age: 2658
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash a94215297255970dc68e418fa4696866
c4ce85a8ba603274f5013090d5e8df2983ef040b
e4eed6d19b3a0530ddeeea5c0bc7daa87cd78cee0609422b8fa4ae1619f4cacb
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 14:28:13 GMT
Last-Modified: Tue, 20 Sep 2022 13:58:44 GMT
Server: ECS (nyb/1D2F)
X-Cache: Miss from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: hAR_0eUI-vxgAb-5zakrHYc0PHvAn7DheKdvv3nyTcNEUfPwAEkbTQ==
Age: 1769
s3-eu-west-2.amazonaws.com/lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05112541/greece1.png
52.95.150.8200 OK 4.4 kB URL HTTP/1.1 s3-eu-west-2.amazonaws.com/lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05112541/greece1.png
IP 52.95.150.8:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 9f96f9ec7e6c20ae3e2fffad9e2d5935
d20f275da48cf934daae0622fba00ac789996576
a5bf00e8fce671f3814258643082db0739a309e5c4f9900e34e08eb12203ab14
GET /lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05112541/greece1.png HTTP/1.1
Host: s3-eu-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: sw7Nq2vo/Wj0NhWrG856+DYP2IYXpHJuj5C+10XIJY1NkZzitD8H5zVofzGjWKNh5f4VvYIpIgE=
x-amz-request-id: F1R3M1GK6NFVR285
Date: Tue, 20 Sep 2022 14:28:14 GMT
Last-Modified: Mon, 19 Apr 2021 09:38:32 GMT
ETag: "9f96f9ec7e6c20ae3e2fffad9e2d5935"
Cache-Control: max-age=31536000
Expires: Wed, 05 Dec 2018 11:25:41 GMT
x-amz-version-id: Q7IT_DK9DqY8YXPoF3wYqidHHps8u5mo
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 4373
s3-eu-west-2.amazonaws.com/lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05113518/Ireland1.png
52.95.150.8200 OK 2.4 kB URL HTTP/1.1 s3-eu-west-2.amazonaws.com/lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05113518/Ireland1.png
IP 52.95.150.8:0
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash 43d299857d925a89b5e9d9ed735137e6
98dfeb70ca2e020803d0bce2b702762856c1bbe9
f3582ced229071311c510cec9ec473bc624d73866c637def53b9156c8e0007a3
GET /lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05113518/Ireland1.png HTTP/1.1
Host: s3-eu-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: TVM+tNfPtspxiKzvMI6RRKsuWprf5YEB2wjSgE2g2ZVbefICG94qZWbSsyW+RCl0cPjiYAt0yQ8=
x-amz-request-id: F1R9HZB9Q0QNPZA7
Date: Tue, 20 Sep 2022 14:28:14 GMT
Last-Modified: Wed, 14 Jul 2021 12:18:42 GMT
ETag: "43d299857d925a89b5e9d9ed735137e6"
x-amz-version-id: 144H9sB0.wvoZ7J_SgDb17LmdFMdZ4mk
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 2353
s3-eu-west-2.amazonaws.com/lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05105612/Bulgaria1.png
52.95.150.8200 OK 3.6 kB URL HTTP/1.1 s3-eu-west-2.amazonaws.com/lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05105612/Bulgaria1.png
IP 52.95.150.8:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash a988ef19186744cb92fbb0b29fd46956
f44b4bca4cbeb6af59414d97e487de1177106ac5
c0a8e61b25f5d6a64c9f45deda84748f57d25db76108601fca0a705188664d3c
GET /lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05105612/Bulgaria1.png HTTP/1.1
Host: s3-eu-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 2TdUQ5m58Hcetw3OcwRkdx+FLUgwqMLMFuSumyCwkf9OpuqGOtPrkJnJtG6NxwBG9p3YYhLrSgs=
x-amz-request-id: F1R327ZJ81NC7EYG
Date: Tue, 20 Sep 2022 14:28:14 GMT
Last-Modified: Mon, 19 Apr 2021 09:38:28 GMT
ETag: "a988ef19186744cb92fbb0b29fd46956"
Cache-Control: max-age=31536000
Expires: Wed, 05 Dec 2018 10:56:12 GMT
x-amz-version-id: rhxVu5a7c0dtIOfOVBZfLRNgZLQcxKbW
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 3556
s3-eu-west-2.amazonaws.com/lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05111205/Denmark1.png
52.95.150.8200 OK 3.9 kB URL HTTP/1.1 s3-eu-west-2.amazonaws.com/lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05111205/Denmark1.png
IP 52.95.150.8:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 017dcaacabe7f7dfbf5b430b8188b614
f4cdef6d7cd166e354bcd343aac76dd867eac2eb
4b7007c107f881d48678205fd27f0fdd50d23088bdbf1c7b12af442630909a34
GET /lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05111205/Denmark1.png HTTP/1.1
Host: s3-eu-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: O37pJGq3cY2XT5oKoC8fF9W1Wl+j1eY5/BlX7K2L87kQxg3RcjU7p0RpUkboVQAmEiH2JnasLb0=
x-amz-request-id: F1R9B3Q489WF4AV9
Date: Tue, 20 Sep 2022 14:28:14 GMT
Last-Modified: Mon, 19 Apr 2021 09:38:32 GMT
ETag: "017dcaacabe7f7dfbf5b430b8188b614"
Cache-Control: max-age=31536000
Expires: Wed, 05 Dec 2018 11:12:05 GMT
x-amz-version-id: uiFsOj3HohBE.Jebck2oQOY6RiDfxk3Q
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 3893
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3146bb0aaba22619df206969792ed383
07db3170920b9ba82ecf00e6135eecf08f167942
cba7793fa0a6de6486e3515f886a42efeb21f3b4c84d5e7395f6468a5925d27f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:28:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s3-eu-west-2.amazonaws.com/lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05112017/Finland1.png
52.95.150.8200 OK 3.6 kB URL HTTP/1.1 s3-eu-west-2.amazonaws.com/lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05112017/Finland1.png
IP 52.95.150.8:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 5e1cfce111a4d74a372c674d4cc37413
83f346da964635dea608a27d54f85df4477e1fb9
618376f66c76753dbe413321c2600f615d7a86cad126b13f07878c0af4d554d7
GET /lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05112017/Finland1.png HTTP/1.1
Host: s3-eu-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 7TjvX2hkpYRI359/Iy1fRXXZPDO1sjNP25YswjBR8CDsv1kt/WaFSpdbqWA/4NCkc4sLA+2u+Ak=
x-amz-request-id: F1RBR0KRN6TE1EA6
Date: Tue, 20 Sep 2022 14:28:14 GMT
Last-Modified: Mon, 19 Apr 2021 09:38:32 GMT
ETag: "5e1cfce111a4d74a372c674d4cc37413"
Cache-Control: max-age=31536000
Expires: Wed, 05 Dec 2018 11:20:17 GMT
x-amz-version-id: OwXKXGP8WQZs7BHDS_f4YevL7kKbeDCt
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 3636
s3-eu-west-2.amazonaws.com/lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05113718/Italy1.png
52.95.150.8200 OK 3.8 kB URL HTTP/1.1 s3-eu-west-2.amazonaws.com/lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05113718/Italy1.png
IP 52.95.150.8:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 0f891a07f54e96ad26eab45eff4a4ac4
4216d39a4d5d857a5043a74344e38fae2d57cbb4
b8b8229f776ee43d90df36e703367c559bbb484b837e824b87cd0d0667f96f68
GET /lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05113718/Italy1.png HTTP/1.1
Host: s3-eu-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: RaWNs5YfwwW/Aj5SZPVMpfW3c1PZkh68/wzyX+Zt/7CUwPV8sL5ADF6xEEVEb84slzWl14uhR48=
x-amz-request-id: F1RFKVVYTX8RBGH1
Date: Tue, 20 Sep 2022 14:28:14 GMT
Last-Modified: Mon, 19 Apr 2021 09:38:36 GMT
ETag: "0f891a07f54e96ad26eab45eff4a4ac4"
Cache-Control: max-age=31536000
Expires: Wed, 05 Dec 2018 11:37:18 GMT
x-amz-version-id: GTF1L1A9A6.2B4uTj.N2PdO2SsTH.sh1
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 3807
s3-eu-west-2.amazonaws.com/lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05114724/Latvia1.png
52.95.150.8200 OK 3.8 kB URL HTTP/1.1 s3-eu-west-2.amazonaws.com/lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05114724/Latvia1.png
IP 52.95.150.8:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash b9c786d407210d6bc0c2a86265d9f7b0
beb959603fc7cb94368ac2b0db83d5157fc3ed59
88cbf9a06a0e429b27afe129c11e2668cf4dc3cf61918e25b717546ba5f74cc8
GET /lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05114724/Latvia1.png HTTP/1.1
Host: s3-eu-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: pgjwcRL7/q1igxx4QuULTYvzJyVxuCZQO88RKj1JE9YP9YUBSwU106KWlXhbdspRL8xkSTQ9boQ=
x-amz-request-id: F1R6TM34SSBW6Q24
Date: Tue, 20 Sep 2022 14:28:14 GMT
Last-Modified: Mon, 19 Apr 2021 09:38:36 GMT
ETag: "b9c786d407210d6bc0c2a86265d9f7b0"
Cache-Control: max-age=31536000
Expires: Wed, 05 Dec 2018 11:47:24 GMT
x-amz-version-id: hBXvw2q1TABuXXEllSZB6IP18vQ.9xX4
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 3774
s3-eu-west-2.amazonaws.com/lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05114956/Lithuania1.png
52.95.150.8200 OK 3.9 kB URL HTTP/1.1 s3-eu-west-2.amazonaws.com/lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05114956/Lithuania1.png
IP 52.95.150.8:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 2bcea2869112db9a45348df3a5635c24
05f022a59b8e0a0973309ebceeef184f76387a81
f6b0d4241d0d93d79acb7f9037b4a279c28286fb30835b826afa11d2f486fdc7
GET /lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05114956/Lithuania1.png HTTP/1.1
Host: s3-eu-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: nC5g0GdrIflncNJiMNcRcgnmn9aGP+AsEPnmKNHo8i7WAn63bnYhHtoztmd6FrMcvcfqirdZ5do=
x-amz-request-id: F1RAZ36Y2NJ8BM5W
Date: Tue, 20 Sep 2022 14:28:14 GMT
Last-Modified: Mon, 19 Apr 2021 09:38:36 GMT
ETag: "2bcea2869112db9a45348df3a5635c24"
Cache-Control: max-age=31536000
Expires: Wed, 05 Dec 2018 11:49:56 GMT
x-amz-version-id: QFPy2elHo6TU_9hmnKFhg_Ap__GibKsp
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 3864
s3-eu-west-2.amazonaws.com/lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05115017/Luxembourg1.png
52.95.150.8200 OK 3.9 kB URL HTTP/1.1 s3-eu-west-2.amazonaws.com/lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05115017/Luxembourg1.png
IP 52.95.150.8:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 3e651c805d98f379e5b0ad3576d5ee0b
a921beaf6a7a518db0d5a33b7367b77f0e1fa471
f0c25debbfdc38763304b11360d01fc4ac3c911e869f7af0c995842d611501ae
GET /lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05115017/Luxembourg1.png HTTP/1.1
Host: s3-eu-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 7tuidZ6auS6HaRTGQhZdFSXfIwcOzqx1kmUhynJtbBdEfWtt8ZzS7czp8LM7FkRkEU/lSpe7gXU=
x-amz-request-id: F1R7DYJK93CT27HW
Date: Tue, 20 Sep 2022 14:28:14 GMT
Last-Modified: Mon, 19 Apr 2021 09:38:36 GMT
ETag: "3e651c805d98f379e5b0ad3576d5ee0b"
Cache-Control: max-age=31536000
Expires: Wed, 05 Dec 2018 11:50:17 GMT
x-amz-version-id: 0cOqMsF0_Ak37NCNNGamM71CWdVZEacS
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 3869
s3-eu-west-2.amazonaws.com/lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05111007/Cyprus1.png
52.95.150.8200 OK 7.8 kB URL HTTP/1.1 s3-eu-west-2.amazonaws.com/lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05111007/Cyprus1.png
IP 52.95.150.8:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash a07ecb819e9041e7aaa1ba734b925e10
3d0a03e7fb4b990a576f3ebe8d07d1cd58ccf0a1
5a7be5dbead23ec1820ad5e47695ccac7082151c22b119af4aa025b7c235596d
GET /lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05111007/Cyprus1.png HTTP/1.1
Host: s3-eu-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: NDw2iNKlvoopdypVQPTeq0KF0g7VHjumG+u7wyyPG+8dknNsVNrjp7fbzqMohI/EbV0Z3ErXv3M=
x-amz-request-id: F1RDE3JW87VZ3S8T
Date: Tue, 20 Sep 2022 14:28:14 GMT
Last-Modified: Mon, 19 Apr 2021 09:38:32 GMT
ETag: "a07ecb819e9041e7aaa1ba734b925e10"
Cache-Control: max-age=31536000
Expires: Wed, 05 Dec 2018 11:10:07 GMT
x-amz-version-id: clCEU3GO5qQuk5QhAMDw0v0RnkhC3c6d
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 7763
consentcdn.cookiebot.com/sdk/bc-v4.min.html
104.110.3.72200 OK 392 B URL HTTP/2 consentcdn.cookiebot.com/sdk/bc-v4.min.html
IP 104.110.3.72:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (627), with no line terminators
Hash e7268eccad39bd651697fa793a52cc5c
47299cefa2397b0c1d0c5bf232390a5cf1bcc4d3
907e16c84d35556e4ed841a3511915e6d4bb4e9d68cfca178a740e90b4d80e35
GET /sdk/bc-v4.min.html HTTP/1.1
Host: consentcdn.cookiebot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: text/html
etag: "3d08665fa4c7bcf9fa2dcbbc7efe1d0f:1649057029.895163"
last-modified: Mon, 04 Apr 2022 07:23:49 GMT
server: AkamaiNetStorage
x-akamai-transformed: 9 - 0 pmb=mRUM,1
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31175407
expires: Sat, 16 Sep 2023 10:18:20 GMT
date: Tue, 20 Sep 2022 14:28:13 GMT
content-length: 392
server-timing: cdn-cache; desc=HIT, edge; dur=1
X-Firefox-Spdy: h2
s3-eu-west-2.amazonaws.com/lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05115743/Malta1.png
52.95.150.8200 OK 4.3 kB URL HTTP/1.1 s3-eu-west-2.amazonaws.com/lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05115743/Malta1.png
IP 52.95.150.8:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash a83ad8aa720acb4451c0d59cd08c628f
086e729447dbc761c4b2561973314882a4d8cf7c
dda9ab435b2059745ebf794a823a6f72b2ffa34a18b178c5bdd9673b962baf12
GET /lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05115743/Malta1.png HTTP/1.1
Host: s3-eu-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: bhFDvhyVx7A09SOJolKNqbJvLdTRBJeiyfw961P1AIlZvabUik66+78O3LzQcpsyl8xDwxPD+Og=
x-amz-request-id: F1R6QCC9HFX2BW2R
Date: Tue, 20 Sep 2022 14:28:14 GMT
Last-Modified: Mon, 19 Apr 2021 09:38:40 GMT
ETag: "a83ad8aa720acb4451c0d59cd08c628f"
Cache-Control: max-age=31536000
Expires: Wed, 05 Dec 2018 11:57:43 GMT
x-amz-version-id: rqG497F_yoU1eO77PnVOCv8uXhA_1r2V
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 4287
s3-eu-west-2.amazonaws.com/lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05134701/Netherlands1.png
52.95.150.8200 OK 3.8 kB URL HTTP/1.1 s3-eu-west-2.amazonaws.com/lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05134701/Netherlands1.png
IP 52.95.150.8:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash a19874c7d02744990237b827439132a4
d9a7a1eb5ee2e5a4dbbc75e43d7905b17ec0f6c0
e75bffa1dae0a23fa6d5cfa73835a321f5933810079f7c61d733a4a0f033d605
GET /lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05134701/Netherlands1.png HTTP/1.1
Host: s3-eu-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: J6bK0OWh3mGP1VdugYtphua9XHszmjt9LXL3Kwl1cw98NLQhVFIfO1ZH0PfrPvCrm2qpPUXCMlY=
x-amz-request-id: F1RD2QMBZD8GNXR1
Date: Tue, 20 Sep 2022 14:28:14 GMT
Last-Modified: Mon, 19 Apr 2021 09:38:41 GMT
ETag: "a19874c7d02744990237b827439132a4"
Cache-Control: max-age=31536000
Expires: Wed, 05 Dec 2018 13:47:01 GMT
x-amz-version-id: 28LeGCtB6pYn.FjZ8bQqfzeq4Hz2DMmS
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 3841
s3-eu-west-2.amazonaws.com/lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05135311/Norway1.png
52.95.150.8200 OK 3.1 kB URL HTTP/1.1 s3-eu-west-2.amazonaws.com/lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05135311/Norway1.png
IP 52.95.150.8:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 9021ba1b169c443fcf1ef4205c66746b
57b448f98b746fdd70b85c2c3db3a692c59ed4e9
29be706a53e4348fc185d63ce98c4747e517c1371e9806be940e13637eeed375
GET /lycamobileukwebsite/lycauk/dev/lycamobile-uk-cms/wp-content/uploads/2017/04/05135311/Norway1.png HTTP/1.1
Host: s3-eu-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: RqaIyumfnVWQ1GgQTvd03hlmkoYd/YmyWv7NkgxuCNKO1RZHOG9t2zQ/ij929jY93H+VIFEA4Ag=
x-amz-request-id: F1R7736EXC78DWRM
Date: Tue, 20 Sep 2022 14:28:14 GMT
Last-Modified: Wed, 14 Jul 2021 12:09:56 GMT
ETag: "9021ba1b169c443fcf1ef4205c66746b"
x-amz-version-id: U31NsyBZvHkqDUS_Ugic5SNoLOgwf_dQ
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 3056
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 81fa7001b4b94f54d2ab4f3237ecaabb
e21bb07f34d9bed91f5caac3f9a83e9600a5652c
0ecbe6e0c5198d792a0eeb4197c88ec1d3a9f8b215efae7a6bb87776f7673b6a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:28:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
consent.cookiebot.com/96a1d7e4-5650-4b38-a86a-76e9471fade7/cc.js?renew=false&referer=www.lyca-mobile.no&dnt=false&init=false
184.31.15.144200 OK 55 kB URL HTTP/2 consent.cookiebot.com/96a1d7e4-5650-4b38-a86a-76e9471fade7/cc.js?renew=false&referer=www.lyca-mobile.no&dnt=false&init=false
IP 184.31.15.144:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65499)
Hash 0d3f929a270fd7eb683b20d3f51839ad
125f28515002d42945baa928a23a9bddd282607c
ba3999cce32160ae50408cbf59fb4c80000d3657e9b07496712853979448f56f
GET /96a1d7e4-5650-4b38-a86a-76e9471fade7/cc.js?renew=false&referer=www.lyca-mobile.no&dnt=false&init=false HTTP/1.1
Host: consent.cookiebot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, max-age=1200
content-type: application/x-javascript; charset=utf-8
content-encoding: gzip
last-modified: Tue, 20 Sep 2022 14:28:13 GMT
vary: Accept-Encoding
request-context: appId=cid-v1:89f47f4b-bed0-4db8-956b-d6e6dfac3fef
access-control-expose-headers: Request-Context
content-length: 55313
date: Tue, 20 Sep 2022 14:28:13 GMT
X-Firefox-Spdy: h2
adservice.google.com/ddm/fls/i/src=11029147;type=invmedia;cat=nolyc0;ord=3313280538455;gtm=2wg9j0;auiddc=1622501922.1663684093;~oref=https%3A%2F%2Fwww.lyca-mobile.no%2Fnb%2Fbundle%2Flyca-smart-m%2F%3Futm_source%3DSelectivv%26utm_medium%3Dbanner%26utm_campaign%3DNOR22070001%26utm_term%3DP5%26user_id%3D%7Bclickid%7D%26cmpid%3D5828477%26rtkcid%3D%7Bclickid%7D%26rdk%3Drk1
142.250.74.162200 OK 471 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=11029147;type=invmedia;cat=nolyc0;ord=3313280538455;gtm=2wg9j0;auiddc=1622501922.1663684093;~oref=https%3A%2F%2Fwww.lyca-mobile.no%2Fnb%2Fbundle%2Flyca-smart-m%2F%3Futm_source%3DSelectivv%26utm_medium%3Dbanner%26utm_campaign%3DNOR22070001%26utm_term%3DP5%26user_id%3D%7Bclickid%7D%26cmpid%3D5828477%26rtkcid%3D%7Bclickid%7D%26rdk%3Drk1
IP 142.250.74.162:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (653), with no line terminators
Hash d7cd264a3db32d781a79413df1693575
acfafae908325d115c7f1827fe0ac07a7b20303c
9db48faf9437cedae137a6037b46de563382751e9cd5b371bed2baa00b53e0c7
GET /ddm/fls/i/src=11029147;type=invmedia;cat=nolyc0;ord=3313280538455;gtm=2wg9j0;auiddc=1622501922.1663684093;~oref=https%3A%2F%2Fwww.lyca-mobile.no%2Fnb%2Fbundle%2Flyca-smart-m%2F%3Futm_source%3DSelectivv%26utm_medium%3Dbanner%26utm_campaign%3DNOR22070001%26utm_term%3DP5%26user_id%3D%7Bclickid%7D%26cmpid%3D5828477%26rtkcid%3D%7Bclickid%7D%26rdk%3Drk1 HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11029147.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 20 Sep 2022 14:28:13 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 471
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 728 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash 7bd1feb29027b67ccbfbc6883be5bb1d
7a7c591c167fd674d2e4c299a036d6fb070e4994
8b54c6e449a40636c764635d48ba39d485c102830582d194695dfd8586a06cde
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 14:28:13 GMT
Content-Type: application/ocsp-response
Content-Length: 728
Connection: keep-alive
Last-Modified: Sat, 17 Sep 2022 03:46:26 GMT
Expires: Sat, 24 Sep 2022 03:46:25 GMT
Etag: "7a7c591c167fd674d2e4c299a036d6fb070e4994"
Cache-Control: max-age=306491,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74db3f0e9d99b50b-OSL
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 728 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash 7bd1feb29027b67ccbfbc6883be5bb1d
7a7c591c167fd674d2e4c299a036d6fb070e4994
8b54c6e449a40636c764635d48ba39d485c102830582d194695dfd8586a06cde
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 14:28:13 GMT
Content-Type: application/ocsp-response
Content-Length: 728
Connection: keep-alive
Last-Modified: Sat, 17 Sep 2022 03:46:26 GMT
Expires: Sat, 24 Sep 2022 03:46:25 GMT
Etag: "7a7c591c167fd674d2e4c299a036d6fb070e4994"
Cache-Control: max-age=306491,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74db3f0eab24b500-OSL
tracker.selectivv.com/uniclick.js?defaultcampaignid=620d05b69b851500013fe531&attribution=lastpaid®viewonce=false&cookiedomain=lyca-mobile.no&cookieduration=30
85.17.54.17200 OK 5.0 kB URL HTTP/1.1 tracker.selectivv.com/uniclick.js?defaultcampaignid=620d05b69b851500013fe531&attribution=lastpaid®viewonce=false&cookiedomain=lyca-mobile.no&cookieduration=30
IP 85.17.54.17:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash e7910221398fb0f44728667851e745b8
ccae17db0ac09ef4577a1d646def200c486000e9
eeb36f1cfec8bf102d377e6ee18385de5987160d2ce963e254eae3ddc0c80292
GET /uniclick.js?defaultcampaignid=620d05b69b851500013fe531&attribution=lastpaid®viewonce=false&cookiedomain=lyca-mobile.no&cookieduration=30 HTTP/1.1
Host: tracker.selectivv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Tue, 20 Sep 2022 14:28:13 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
tracker.selectivv.com/view?clickid={clickid}
85.17.54.17400 Bad Request 46 B URL HTTP/1.1 tracker.selectivv.com/view?clickid={clickid}
IP 85.17.54.17:0
ASN #60781 LeaseWeb Netherlands B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash 0e4a33c59b51dbdbf84b51054c586a9d
7cff1535efd061f8d1d5b8ac61f2c1517bc8569e
4fd44ea9678a34eca7c647ce4877e6faa94745ac95947a1eeffde864d9026204
GET /view?clickid={clickid} HTTP/1.1
Host: tracker.selectivv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lyca-mobile.no
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 400 Bad Request
Server: nginx/1.21.3
Date: Tue, 20 Sep 2022 14:28:13 GMT
Content-Type: application/json
Content-Length: 46
Connection: keep-alive
d3uayxmzbnco7f.cloudfront.net/wp-content/uploads/2017/04/Norway.png
143.204.42.190200 OK 3.1 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/uploads/2017/04/Norway.png
IP 143.204.42.190:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 9021ba1b169c443fcf1ef4205c66746b
57b448f98b746fdd70b85c2c3db3a692c59ed4e9
29be706a53e4348fc185d63ce98c4747e517c1371e9806be940e13637eeed375
GET /wp-content/uploads/2017/04/Norway.png HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 3056
Connection: keep-alive
Last-Modified: Tue, 27 Aug 2019 08:28:07 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Tue, 20 Sep 2022 05:11:39 GMT
Cache-Control: 2592000
ETag: "9021ba1b169c443fcf1ef4205c66746b"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: lvElCP0Xqsntb_j2p2_Rqu-m2qWFT2e4IqOTt8J1rR3kNR1e1-cYDg==
Age: 33395
d3uayxmzbnco7f.cloudfront.net/wp-content/uploads/2017/06/mobile_icons_svg_bundle.svg
143.204.42.190200 OK 422 B URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/uploads/2017/06/mobile_icons_svg_bundle.svg
IP 143.204.42.190:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- exported SGML document, ASCII text
Hash efc5d499203342c7943e44c68c22f670
6cd73fa1bfb854fa47ca2323986aca519e566936
adbb8b4b73d3eec20f434af5a3207f4076f2d47cc4e8f94b916a6b9a5a827454
GET /wp-content/uploads/2017/06/mobile_icons_svg_bundle.svg HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Content-Length: 422
Connection: keep-alive
Last-Modified: Tue, 15 Feb 2022 04:56:40 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Tue, 20 Sep 2022 07:15:00 GMT
ETag: "efc5d499203342c7943e44c68c22f670"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: hk_IAf76Ogvy2Xblba3gTm4eb8CyXtnvFhRVhF0NQUDFDUQl201JQQ==
Age: 25994
d3uayxmzbnco7f.cloudfront.net/wp-content/uploads/2017/06/phone-call.svg
143.204.42.190200 OK 604 B URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/uploads/2017/06/phone-call.svg
IP 143.204.42.190:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- exported SGML document, ASCII text, with very long lines (469)
Hash 2a3c2d102f0a6647ff4c989f9e5183dd
bfaf1194f81cb8b5300a3789624534c6786c8cb1
0c7b8c0063cebc49797c54a410e7e9b783047885c1a925c9bd4f1948353733c7
GET /wp-content/uploads/2017/06/phone-call.svg HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Content-Length: 604
Connection: keep-alive
Last-Modified: Tue, 15 Feb 2022 04:56:36 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Tue, 20 Sep 2022 06:30:21 GMT
ETag: "2a3c2d102f0a6647ff4c989f9e5183dd"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: oA2HMPKkQozX0ucPUFZYh5nMAu54qTCwcft5KcDC-6pTZ3_aW2fYZQ==
Age: 28673
d3uayxmzbnco7f.cloudfront.net/wp-content/uploads/2018/06/buy_sim_new-br-1.png
143.204.42.190200 OK 15 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/uploads/2018/06/buy_sim_new-br-1.png
IP 143.204.42.190:0
File type PNG image data, 522 x 235, 8-bit/color RGBA, non-interlaced\012- data
Hash 445a17c3cfa8b089268d00afb9cc2a12
9ab22aafb3bf1f21831e8fff3770306a4da50fcc
955ea640ad8413dcbd59590421eb5462a49c8224cdfa4638db9bcef8ff8d2d9b
GET /wp-content/uploads/2018/06/buy_sim_new-br-1.png HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 15283
Connection: keep-alive
Date: Tue, 20 Sep 2022 09:55:58 GMT
Last-Modified: Mon, 18 Oct 2021 05:20:16 GMT
ETag: "445a17c3cfa8b089268d00afb9cc2a12"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: q4gA_hE1dhAiQwLYaynZZFxkx2C6sGcVZ2C8x6LDoUBtGOdnN9NAiQ==
Age: 16336
d3uayxmzbnco7f.cloudfront.net/wp-content/uploads/2018/06/Refer_a_friend_br.png
143.204.42.190200 OK 63 kB URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/uploads/2018/06/Refer_a_friend_br.png
IP 143.204.42.190:0
File type PNG image data, 522 x 235, 8-bit/color RGBA, non-interlaced\012- data
Hash 4fe087bad3bb3390beeea312c1a14de8
cf28dafa12cf6e1892ad7c76f839eccb35a0f840
f6dacf9f4c9eeba6a1743731c3228cca08c0dfd61db94db66cd3c26a3958ccad
GET /wp-content/uploads/2018/06/Refer_a_friend_br.png HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 62719
Connection: keep-alive
Date: Tue, 20 Sep 2022 06:05:00 GMT
Last-Modified: Mon, 18 Oct 2021 05:20:24 GMT
ETag: "4fe087bad3bb3390beeea312c1a14de8"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: f4cCODrZ7LzxgtZVBxWZL10ATyjHVC3olBbDYVEqheTvf72Z34b-rg==
Age: 30194
d3uayxmzbnco7f.cloudfront.net/wp-content/uploads/2017/06/national-text.svg
143.204.42.190200 OK 379 B URL HTTP/1.1 d3uayxmzbnco7f.cloudfront.net/wp-content/uploads/2017/06/national-text.svg
IP 143.204.42.190:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (379), with no line terminators
Hash 873789b36bcca252488070dc6727c3b3
03147946a7c606a77334fc61848099d96a240a4b
6a8c3a01af957fe571fd86413bf84ac367df9b687f811efa6dc0814600d331cb
GET /wp-content/uploads/2017/06/national-text.svg HTTP/1.1
Host: d3uayxmzbnco7f.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Content-Length: 379
Connection: keep-alive
Last-Modified: Tue, 15 Feb 2022 04:56:38 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Mon, 19 Sep 2022 17:49:10 GMT
ETag: "873789b36bcca252488070dc6727c3b3"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 2sLiq0ICyj2-f4wI3JAKifpwOC_oAPUusK5afc6oKS0TEroyvy9T8Q==
Age: 74344
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash fa65e4428adb73fd14d3e23085784699
00f883ce942c6c1be5e8e39d8ebe126de77dbadf
8eb4b4b2d5dc9f17570f22fc0afdf63d1fc80cc0aa37ad77cc81d52dda2bc281
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:28:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/ddm/fls/i/src=11029147;type=invmedia;cat=nolyc0;ord=3313280538455;gtm=2wg9j0;auiddc=1622501922.1663684093;~oref=https%3A%2F%2Fwww.lyca-mobile.no%2Fnb%2Fbundle%2Flyca-smart-m%2F%3Futm_source%3DSelectivv%26utm_medium%3Dbanner%26utm_campaign%3DNOR22070001%26utm_term%3DP5%26user_id%3D%7Bclickid%7D%26cmpid%3D5828477%26rtkcid%3D%7Bclickid%7D%26rdk%3Drk1
142.250.74.162200 OK 177 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=11029147;type=invmedia;cat=nolyc0;ord=3313280538455;gtm=2wg9j0;auiddc=1622501922.1663684093;~oref=https%3A%2F%2Fwww.lyca-mobile.no%2Fnb%2Fbundle%2Flyca-smart-m%2F%3Futm_source%3DSelectivv%26utm_medium%3Dbanner%26utm_campaign%3DNOR22070001%26utm_term%3DP5%26user_id%3D%7Bclickid%7D%26cmpid%3D5828477%26rtkcid%3D%7Bclickid%7D%26rdk%3Drk1
IP 142.250.74.162:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 9393b28661a65a763699c108887882eb
c237ba6491e6fb9ca57da33dd9d048ca8e86cfda
2bdce28c6fb3cb210861d4aba734ab7aedfc979a8fa273512a61d8cf8afc78b0
GET /ddm/fls/i/src=11029147;type=invmedia;cat=nolyc0;ord=3313280538455;gtm=2wg9j0;auiddc=1622501922.1663684093;~oref=https%3A%2F%2Fwww.lyca-mobile.no%2Fnb%2Fbundle%2Flyca-smart-m%2F%3Futm_source%3DSelectivv%26utm_medium%3Dbanner%26utm_campaign%3DNOR22070001%26utm_term%3DP5%26user_id%3D%7Bclickid%7D%26cmpid%3D5828477%26rtkcid%3D%7Bclickid%7D%26rdk%3Drk1 HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 20 Sep 2022 14:28:13 GMT
expires: Tue, 20 Sep 2022 14:28:13 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 177
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a16da6a23b1dbb748cfe8380aa2dc387
5548a11aeb8799c7ec396b4f19eaf1e83d42e866
2a44b30143f3c6f1656f3674c3fa53127e25d309b8d0dc9f1a9f4ccb7f618b97
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3932
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:28:13 GMT
Last-Modified: Tue, 20 Sep 2022 13:22:41 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
bat.bing.com/bat.js
13.107.21.200200 OK 11 kB IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Hash 293ae3e0fc8b0d5c143fdf9d8490228d
3976c659b908e70818a3a1ac71860b497fe2d1a9
04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11367
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 28 Jul 2022 17:32:37 GMT
accept-ranges: bytes
etag: "80a8697a8a2d81:0"
vary: Accept-Encoding
set-cookie: MUID=3A5247E06DEF6572112455C56CB86465; domain=.bing.com; expires=Sun, 15-Oct-2023 14:28:13 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: B12DFD32E1D045AEA032E0CFDFF372ED Ref B: OSL30EDGE0406 Ref C: 2022-09-20T14:28:13Z
date: Tue, 20 Sep 2022 14:28:12 GMT
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Tue, 20 Sep 2022 12:41:12 GMT
expires: Tue, 20 Sep 2022 14:41:12 GMT
cache-control: public, max-age=7200
age: 6421
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.ads-twitter.com/uwt.js
151.101.84.157200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP 151.101.84.157:0
File type ASCII text, with very long lines (57443), with no line terminators
Hash 1e9c4d503a9e162d8b549dc3d9c040e2
1fa99d7d7e878cdd45567af4b0c3c65542036c1d
f936c0124c595fe5d0c7858277f3a5f3bd104de39d36ac92557501fa1dec8563
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 20:19:10 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "d4de8398858246712016031c834bb061+gzip+gzip"
accept-ranges: bytes
date: Tue, 20 Sep 2022 14:28:13 GMT
x-served-by: cache-iad-kiad7000051-IAD, cache-bma1653-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15317
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.200.14200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (64348)
Hash 9ecd89752214ef749272eef344b9089a
70a58a49c08934265ee34c74efb01d6b3124095d
f76c51487e348977288fcaf83984cd8fe4e73758cc352402774d9eb94680d528
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: kuZM0iHQ0RxIbcqRYi1rd1sHExw/kByTFNXHMLlwRNKfevBecEJvzLpdX7XlTiLQZowveDFK62iHLyRMXnfqqg==
priority: u=3,i
content-length: 26839
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 14:28:13 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash fa65e4428adb73fd14d3e23085784699
00f883ce942c6c1be5e8e39d8ebe126de77dbadf
8eb4b4b2d5dc9f17570f22fc0afdf63d1fc80cc0aa37ad77cc81d52dda2bc281
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:28:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tracker.selectivv.com/view?clickid={clickid}&referrer=
85.17.54.17400 Bad Request 46 B URL HTTP/1.1 tracker.selectivv.com/view?clickid={clickid}&referrer=
IP 85.17.54.17:0
ASN #60781 LeaseWeb Netherlands B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash 0e4a33c59b51dbdbf84b51054c586a9d
7cff1535efd061f8d1d5b8ac61f2c1517bc8569e
4fd44ea9678a34eca7c647ce4877e6faa94745ac95947a1eeffde864d9026204
GET /view?clickid={clickid}&referrer= HTTP/1.1
Host: tracker.selectivv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lyca-mobile.no
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 400 Bad Request
Server: nginx/1.21.3
Date: Tue, 20 Sep 2022 14:28:13 GMT
Content-Type: application/json
Content-Length: 46
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a16da6a23b1dbb748cfe8380aa2dc387
5548a11aeb8799c7ec396b4f19eaf1e83d42e866
2a44b30143f3c6f1656f3674c3fa53127e25d309b8d0dc9f1a9f4ccb7f618b97
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3932
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:28:13 GMT
Last-Modified: Tue, 20 Sep 2022 13:22:41 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c53364cae0510b97de38fb4b3396ff56
d6088b7fe775ebc077d116271fbe7fce898c06f0
2df909d86d97fbb9a27dd94ca9335ea29eae8f9325fccc8d0ef00a4f7cd7cdc6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:28:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/conversion_async.js
142.250.74.164200 OK 16 kB URL HTTP/2 www.google.com/pagead/conversion_async.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (1654)
Hash 890f716858b5f72587e47c5eca121cb5
91871a0acd9a0ab644d51036bb5ca0c3bdc5e687
7a3629e375468328b3fb25e1a6cc5749604f09099e8d2109f366e7e0226aee4a
GET /pagead/conversion_async.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Tue, 20 Sep 2022 14:28:13 GMT
expires: Tue, 20 Sep 2022 14:28:13 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 3080337328058561381
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 15693
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 53daf9d33df38f6369c01879b6505b54
495d1e01c2a2c36b3527c4c4b19ce37dd3c67293
30513aee77f877d02df1de6ff264f9c61295cc6d567b7456ccac5ea20315dc9c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 914
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:28:13 GMT
Last-Modified: Tue, 20 Sep 2022 14:12:59 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 313
inv-dmp.admixer.net/dmpcnt.js?cntoid=857dd00f-c12c-43ff-be0e-596c692063d1
146.0.227.110200 OK 1.2 kB URL HTTP/1.1 inv-dmp.admixer.net/dmpcnt.js?cntoid=857dd00f-c12c-43ff-be0e-596c692063d1
IP 146.0.227.110:0
ASN #20773 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash cf86b681b32f4b8119543427520c133c
47ee494f65c1b7f7599c024d2dd33a9d539c670c
ebee0112a7e4658ccb100b151f8c80e194d5d3739856e6325d5121898fd16cd1
GET /dmpcnt.js?cntoid=857dd00f-c12c-43ff-be0e-596c692063d1 HTTP/1.1
Host: inv-dmp.admixer.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Sep 2022 14:28:13 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store
Expires: Wed, 21 Oct 2015 07:28:00 GMT
Set-Cookie: am-uid=0cef1b997d564fa3a9dc2280dbe83a0b; expires=Mon, 19 Dec 2022 14:28:13 GMT;domain=.admixer.net;path=/;secure;SameSite=None
P3P: CP="NID DSP ALL COR"
Keep-Alive: timeout=25
t.co/i/adsct?bci=3&eci=2&event_id=a8894860-4419-47de-beaa-ac6cc1a9d0b4&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=9f121316-311c-406c-85fb-5b459533fe5e&tw_document_href=https%3A%2F%2Fwww.lyca-mobile.no%2Fnb%2Fbundle%2Flyca-smart-m%2F%3Futm_source%3DSelectivv%26utm_medium%3Dbanner%26utm_campaign%3DNOR22070001%26utm_term%3DP5%26user_id%3D%7Bclickid%7D%26cmpid%3D5828477%26rtkcid%3D%7Bclickid%7D%26rdk%3Drk1&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o13z4&type=javascript&version=2.3.27
104.244.42.69200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=a8894860-4419-47de-beaa-ac6cc1a9d0b4&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=9f121316-311c-406c-85fb-5b459533fe5e&tw_document_href=https%3A%2F%2Fwww.lyca-mobile.no%2Fnb%2Fbundle%2Flyca-smart-m%2F%3Futm_source%3DSelectivv%26utm_medium%3Dbanner%26utm_campaign%3DNOR22070001%26utm_term%3DP5%26user_id%3D%7Bclickid%7D%26cmpid%3D5828477%26rtkcid%3D%7Bclickid%7D%26rdk%3Drk1&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o13z4&type=javascript&version=2.3.27
IP 104.244.42.69:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=a8894860-4419-47de-beaa-ac6cc1a9d0b4&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=9f121316-311c-406c-85fb-5b459533fe5e&tw_document_href=https%3A%2F%2Fwww.lyca-mobile.no%2Fnb%2Fbundle%2Flyca-smart-m%2F%3Futm_source%3DSelectivv%26utm_medium%3Dbanner%26utm_campaign%3DNOR22070001%26utm_term%3DP5%26user_id%3D%7Bclickid%7D%26cmpid%3D5828477%26rtkcid%3D%7Bclickid%7D%26rdk%3Drk1&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o13z4&type=javascript&version=2.3.27 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Sep 2022 14:28:13 GMT
server: tsa_o
set-cookie: muc_ads=eb29efc8-7928-4d73-ae92-5916815da63a; Max-Age=63072000; Expires=Thu, 19 Sep 2024 14:28:13 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
strict-transport-security: max-age=0
x-response-time: 107
x-connection-hash: c8fd02230542852d445248503d3eedd24d77c3bf1d7edb7c2ec7ce416fe4b1ed
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 75925b52065e8c40d078aee85c947946
72219bfe4412de462135af38de924431a60cd5f5
e4931e694c717412c066464f1c206f1049ebe3fa70270dd550c84129e49b68bb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 14:28:14 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 19 Sep 2022 06:25:21 GMT
Expires: Mon, 26 Sep 2022 06:25:20 GMT
Etag: "72219bfe4412de462135af38de924431a60cd5f5"
Cache-Control: max-age=488825,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74db3f138875b505-OSL
my.rtmark.net/p.js?f=sync&lr=1&partner=473b8bc3bdca24c35606febcd8b32398d0535658845a248b665bbd0d9b9f9df4
139.45.195.8200 OK 697 B URL HTTP/2 my.rtmark.net/p.js?f=sync&lr=1&partner=473b8bc3bdca24c35606febcd8b32398d0535658845a248b665bbd0d9b9f9df4
IP 139.45.195.8:0
Hash 2b7b1b11c547b114ff62014920325ec3
dcfd06ea418764ac4c32c310000a0c4af864f283
ff0ba5752d3c1490c62a811381e6dabd467e5a8b9fd2101c719831c39097cd26
GET /p.js?f=sync&lr=1&partner=473b8bc3bdca24c35606febcd8b32398d0535658845a248b665bbd0d9b9f9df4 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 14:28:14 GMT
content-type: text/javascript
content-length: 697
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 231527a0bb05a12ae7caf5812b402113
7a166b0adc9f258d1e2c9fd4655ad8576a9a0d80
3ea5c9e3bf5067d7199342263d5a23477714a60322700995128049ac86cc9152
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 14:28:14 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 19 Sep 2022 11:44:15 GMT
Expires: Mon, 26 Sep 2022 11:44:14 GMT
Etag: "7a166b0adc9f258d1e2c9fd4655ad8576a9a0d80"
Cache-Control: max-age=507959,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74db3f138e0f0b41-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 231527a0bb05a12ae7caf5812b402113
7a166b0adc9f258d1e2c9fd4655ad8576a9a0d80
3ea5c9e3bf5067d7199342263d5a23477714a60322700995128049ac86cc9152
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 14:28:14 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 19 Sep 2022 11:44:15 GMT
Expires: Mon, 26 Sep 2022 11:44:14 GMT
Etag: "7a166b0adc9f258d1e2c9fd4655ad8576a9a0d80"
Cache-Control: max-age=507959,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74db3f138bf11bfa-OSL
bat.bing.com/action/0?ti=15267795&tm=gtm002&Ver=2&mid=13420254-ac4e-4256-95c4-f38254e2fe17&sid=75cce5e038f011ed8ab923337243901d&vid=75ccf6c038f011edac28ab2c39e885a3&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Lyca%20Smart%20M%20-%20Lycamobile&p=https%3A%2F%2Fwww.lyca-mobile.no%2Fnb%2Fbundle%2Flyca-smart-m%2F%3Futm_source%3DSelectivv%26utm_medium%3Dbanner%26utm_campaign%3DNOR22070001%26utm_term%3DP5%26user_id%3D%7Bclickid%7D%26cmpid%3D5828477%26rtkcid%3D%7Bclickid%7D%26rdk%3Drk1&r=<=3072&evt=pageLoad&sv=1&rn=784268
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=15267795&tm=gtm002&Ver=2&mid=13420254-ac4e-4256-95c4-f38254e2fe17&sid=75cce5e038f011ed8ab923337243901d&vid=75ccf6c038f011edac28ab2c39e885a3&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Lyca%20Smart%20M%20-%20Lycamobile&p=https%3A%2F%2Fwww.lyca-mobile.no%2Fnb%2Fbundle%2Flyca-smart-m%2F%3Futm_source%3DSelectivv%26utm_medium%3Dbanner%26utm_campaign%3DNOR22070001%26utm_term%3DP5%26user_id%3D%7Bclickid%7D%26cmpid%3D5828477%26rtkcid%3D%7Bclickid%7D%26rdk%3Drk1&r=<=3072&evt=pageLoad&sv=1&rn=784268
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=15267795&tm=gtm002&Ver=2&mid=13420254-ac4e-4256-95c4-f38254e2fe17&sid=75cce5e038f011ed8ab923337243901d&vid=75ccf6c038f011edac28ab2c39e885a3&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Lyca%20Smart%20M%20-%20Lycamobile&p=https%3A%2F%2Fwww.lyca-mobile.no%2Fnb%2Fbundle%2Flyca-smart-m%2F%3Futm_source%3DSelectivv%26utm_medium%3Dbanner%26utm_campaign%3DNOR22070001%26utm_term%3DP5%26user_id%3D%7Bclickid%7D%26cmpid%3D5828477%26rtkcid%3D%7Bclickid%7D%26rdk%3Drk1&r=<=3072&evt=pageLoad&sv=1&rn=784268 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=0BD5CFA273A46D8B0666DD8772F36C3B; domain=.bing.com; expires=Sun, 15-Oct-2023 14:28:14 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: A4DE71C58538426BA0D0E399E046A216 Ref B: OSL30EDGE0406 Ref C: 2022-09-20T14:28:14Z
date: Tue, 20 Sep 2022 14:28:13 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dda77a44a7f9eeb9bd828f659ccb7e22
9af43f88835600fd3206e4f18b0c1c2571a3959c
c8effed6366a20b26e104fc4f64d24213eb357d61e7683e28f812d0c21edd044
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:28:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 345a9fd92c344b3eaf1b74e46931dd66
13f5365448890da77bd7b3290f884bf7fabe327b
6338b6459e31086d52d4d6a4ca019f8de22db2c9f02e2f38475cfb1c184c35cd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2614
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:28:14 GMT
Last-Modified: Tue, 20 Sep 2022 13:44:40 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 314
cdn.admixer.net/analytics/tag-manager.js?m=data-from-dom
92.223.97.97200 OK 12 kB URL HTTP/2 cdn.admixer.net/analytics/tag-manager.js?m=data-from-dom
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type ASCII text, with very long lines (23760)
Hash cffc14016a9ffb7c47dc17715d465de9
540a866c36b036136ac29486adaa20976bf91372
9456d0d6934061c4b0dbf2b1e6e9e3bf159a33e596fc00f93c13e2d14d0e80a7
GET /analytics/tag-manager.js?m=data-from-dom HTTP/1.1
Host: cdn.admixer.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Cookie: am-uid=0cef1b997d564fa3a9dc2280dbe83a0b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 14:28:14 GMT
content-type: application/javascript
last-modified: Mon, 12 Apr 2021 13:21:02 GMT
vary: Accept-Encoding
etag: W/"6074493e-6e96"
expires: Sun, 16 Jul 2023 11:10:21 GMT
cache-control: max-age=31622400
access-control-expose-headers: content-range
cache: HIT
x-cached-since: 2022-07-15T11:10:21+00:00
x-id: sto5-up-gc11
content-encoding: gzip
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-22755827-1&cid=1919802450.1663684094&jid=260724892&gjid=1375178334&_gid=1761409460.1663684094&_u=YEBAAEAAAAAAAC~&z=282117416
142.251.1.155200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-22755827-1&cid=1919802450.1663684094&jid=260724892&gjid=1375178334&_gid=1761409460.1663684094&_u=YEBAAEAAAAAAAC~&z=282117416
IP 142.251.1.155:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-22755827-1&cid=1919802450.1663684094&jid=260724892&gjid=1375178334&_gid=1761409460.1663684094&_u=YEBAAEAAAAAAAC~&z=282117416 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.lyca-mobile.no
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.lyca-mobile.no
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 20 Sep 2022 14:28:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bat.bing.com/p/action/15267795.js
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/15267795.js
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/15267795.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=157224EFA36268C72ED636CAA23569FA; domain=.bing.com; expires=Sun, 15-Oct-2023 14:28:14 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 17B58B7C14CA411D944FC4B275B7E4BA Ref B: OSL30EDGE0406 Ref C: 2022-09-20T14:28:14Z
date: Tue, 20 Sep 2022 14:28:13 GMT
X-Firefox-Spdy: h2
inv-nets-eu.admixer.net/cntcm.aspx?pvOId=24c6517e-8353-4a9d-8b91-e703438a2276&ssp=E5485342-9239-467B-BD48-1C9876BA2A52&cntoid=857dd00f-c12c-43ff-be0e-596c692063d1&pv=1&referrer=&page=https%3A%2F%2Fwww.lyca-mobile.no%2Fnb%2Fbundle%2Flyca-smart-m%2F%3Futm_source%3DSelectivv%26utm_medium%3Dbanner%26utm_campaign%3DNOR22070001%26utm_term%3DP5%26user_id%3D%7Bclickid%7D%26cmpid%3D5828477%26rtkcid%3D%7Bclickid%7D%26rdk%3Drk1
146.0.227.110204 No Content 0 B URL HTTP/1.1 inv-nets-eu.admixer.net/cntcm.aspx?pvOId=24c6517e-8353-4a9d-8b91-e703438a2276&ssp=E5485342-9239-467B-BD48-1C9876BA2A52&cntoid=857dd00f-c12c-43ff-be0e-596c692063d1&pv=1&referrer=&page=https%3A%2F%2Fwww.lyca-mobile.no%2Fnb%2Fbundle%2Flyca-smart-m%2F%3Futm_source%3DSelectivv%26utm_medium%3Dbanner%26utm_campaign%3DNOR22070001%26utm_term%3DP5%26user_id%3D%7Bclickid%7D%26cmpid%3D5828477%26rtkcid%3D%7Bclickid%7D%26rdk%3Drk1
IP 146.0.227.110:0
ASN #20773 Host Europe GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cntcm.aspx?pvOId=24c6517e-8353-4a9d-8b91-e703438a2276&ssp=E5485342-9239-467B-BD48-1C9876BA2A52&cntoid=857dd00f-c12c-43ff-be0e-596c692063d1&pv=1&referrer=&page=https%3A%2F%2Fwww.lyca-mobile.no%2Fnb%2Fbundle%2Flyca-smart-m%2F%3Futm_source%3DSelectivv%26utm_medium%3Dbanner%26utm_campaign%3DNOR22070001%26utm_term%3DP5%26user_id%3D%7Bclickid%7D%26cmpid%3D5828477%26rtkcid%3D%7Bclickid%7D%26rdk%3Drk1 HTTP/1.1
Host: inv-nets-eu.admixer.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lyca-mobile.no
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Cookie: am-uid=0cef1b997d564fa3a9dc2280dbe83a0b
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 204 No Content
Server: nginx
Date: Tue, 20 Sep 2022 14:28:14 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.lyca-mobile.no
X-XSS-Protection: 0
Keep-Alive: timeout=25
inv-nets-eu.admixer.net/dmpapxl.aspx?cntoid=857dd00f-c12c-43ff-be0e-596c692063d1&referrer=&page=https%3A%2F%2Fwww.lyca-mobile.no%2Fnb%2Fbundle%2Flyca-smart-m%2F%3Futm_source%3DSelectivv%26utm_medium%3Dbanner%26utm_campaign%3DNOR22070001%26utm_term%3DP5%26user_id%3D%7Bclickid%7D%26cmpid%3D5828477%26rtkcid%3D%7Bclickid%7D%26rdk%3Drk1
146.0.227.110200 OK 43 B URL HTTP/1.1 inv-nets-eu.admixer.net/dmpapxl.aspx?cntoid=857dd00f-c12c-43ff-be0e-596c692063d1&referrer=&page=https%3A%2F%2Fwww.lyca-mobile.no%2Fnb%2Fbundle%2Flyca-smart-m%2F%3Futm_source%3DSelectivv%26utm_medium%3Dbanner%26utm_campaign%3DNOR22070001%26utm_term%3DP5%26user_id%3D%7Bclickid%7D%26cmpid%3D5828477%26rtkcid%3D%7Bclickid%7D%26rdk%3Drk1
IP 146.0.227.110:0
ASN #20773 Host Europe GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash d3e941fe204d0a9cc5b92782bbf882c8
682a77b3dd546b61ae894285128ffba13a33cf7d
281c5ae8bf152f644e12a943ec5d59681e1950c54fb6c0b3cc77539bf5e69340
POST /dmpapxl.aspx?cntoid=857dd00f-c12c-43ff-be0e-596c692063d1&referrer=&page=https%3A%2F%2Fwww.lyca-mobile.no%2Fnb%2Fbundle%2Flyca-smart-m%2F%3Futm_source%3DSelectivv%26utm_medium%3Dbanner%26utm_campaign%3DNOR22070001%26utm_term%3DP5%26user_id%3D%7Bclickid%7D%26cmpid%3D5828477%26rtkcid%3D%7Bclickid%7D%26rdk%3Drk1 HTTP/1.1
Host: inv-nets-eu.admixer.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lyca-mobile.no
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Cookie: am-uid=0cef1b997d564fa3a9dc2280dbe83a0b
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Sep 2022 14:28:14 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store
Expires: Wed, 21 Oct 2015 07:28:00 GMT
Set-Cookie: am-uid=0cef1b997d564fa3a9dc2280dbe83a0b; expires=Mon, 19 Dec 2022 14:28:14 GMT;domain=.admixer.net;path=/;secure;SameSite=None
P3P: CP="NID DSP ALL COR"
Keep-Alive: timeout=25
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-22755827-1&cid=1919802450.1663684094&jid=260724892&_u=YEBAAEAAAAAAAC~&z=1836801513
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-22755827-1&cid=1919802450.1663684094&jid=260724892&_u=YEBAAEAAAAAAAC~&z=1836801513
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-22755827-1&cid=1919802450.1663684094&jid=260724892&_u=YEBAAEAAAAAAAC~&z=1836801513 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 20 Sep 2022 14:28:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/10965854962/?random=1663684093785&cv=9&fst=1663682400000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=8&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9j0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.lyca-mobile.no%2Fnb%2Fbundle%2Flyca-smart-m%2F%3Futm_source%3DSelectivv%26utm_medium%3Dbanner%26utm_campaign%3DNOR22070001%26utm_term%3DP5%26user_id%3D%7Bclickid%7D%26cmpid%3D5828477%26rtkcid%3D%7Bclickid%7D%26rdk%3Drk1&tiba=Lyca%20Smart%20M%20-%20Lycamobile&async=1&fmt=3&is_vtc=1&random=278907275&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/10965854962/?random=1663684093785&cv=9&fst=1663682400000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=8&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9j0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.lyca-mobile.no%2Fnb%2Fbundle%2Flyca-smart-m%2F%3Futm_source%3DSelectivv%26utm_medium%3Dbanner%26utm_campaign%3DNOR22070001%26utm_term%3DP5%26user_id%3D%7Bclickid%7D%26cmpid%3D5828477%26rtkcid%3D%7Bclickid%7D%26rdk%3Drk1&tiba=Lyca%20Smart%20M%20-%20Lycamobile&async=1&fmt=3&is_vtc=1&random=278907275&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10965854962/?random=1663684093785&cv=9&fst=1663682400000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=8&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9j0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.lyca-mobile.no%2Fnb%2Fbundle%2Flyca-smart-m%2F%3Futm_source%3DSelectivv%26utm_medium%3Dbanner%26utm_campaign%3DNOR22070001%26utm_term%3DP5%26user_id%3D%7Bclickid%7D%26cmpid%3D5828477%26rtkcid%3D%7Bclickid%7D%26rdk%3Drk1&tiba=Lyca%20Smart%20M%20-%20Lycamobile&async=1&fmt=3&is_vtc=1&random=278907275&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 20 Sep 2022 14:28:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=538386406931299&ev=PageView&dl=https%3A%2F%2Fwww.lyca-mobile.no%2Fnb%2Fbundle%2Flyca-smart-m%2F%3Futm_source%3DSelectivv%26utm_medium%3Dbanner%26utm_campaign%3DNOR22070001%26utm_term%3DP5%26user_id%3D%7Bclickid%7D%26cmpid%3D5828477%26rtkcid%3D%7Bclickid%7D%26rdk%3Drk1&rl=&if=false&ts=1663684094370&sw=1280&sh=1024&v=2.9.83&r=stable&ec=0&o=30&fbp=fb.1.1663684094368.1885863608&it=1663684093737&coo=false&rqm=GET
157.240.200.35200 OK 44 B URL HTTP/2 www.facebook.com/tr/?id=538386406931299&ev=PageView&dl=https%3A%2F%2Fwww.lyca-mobile.no%2Fnb%2Fbundle%2Flyca-smart-m%2F%3Futm_source%3DSelectivv%26utm_medium%3Dbanner%26utm_campaign%3DNOR22070001%26utm_term%3DP5%26user_id%3D%7Bclickid%7D%26cmpid%3D5828477%26rtkcid%3D%7Bclickid%7D%26rdk%3Drk1&rl=&if=false&ts=1663684094370&sw=1280&sh=1024&v=2.9.83&r=stable&ec=0&o=30&fbp=fb.1.1663684094368.1885863608&it=1663684093737&coo=false&rqm=GET
IP 157.240.200.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b798f4ce7359fd815df4bdf76503b295
f8cc6addf1707ad236ad9970b0a48f9733d07da5
10d8d42d73a02ddb877101e72fbfa15a0ec820224d97cedee4cf92d571be5caa
GET /tr/?id=538386406931299&ev=PageView&dl=https%3A%2F%2Fwww.lyca-mobile.no%2Fnb%2Fbundle%2Flyca-smart-m%2F%3Futm_source%3DSelectivv%26utm_medium%3Dbanner%26utm_campaign%3DNOR22070001%26utm_term%3DP5%26user_id%3D%7Bclickid%7D%26cmpid%3D5828477%26rtkcid%3D%7Bclickid%7D%26rdk%3Drk1&rl=&if=false&ts=1663684094370&sw=1280&sh=1024&v=2.9.83&r=stable&ec=0&o=30&fbp=fb.1.1663684094368.1885863608&it=1663684093737&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
date: Tue, 20 Sep 2022 14:28:14 GMT
expires: Tue, 20 Sep 2022 14:28:14 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie:
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.admixer.net/analytics/tag-manager.runtime.js
92.223.97.97200 OK 767 B URL HTTP/2 cdn.admixer.net/analytics/tag-manager.runtime.js
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
Hash bf5229829a18386bdc3a989ea42678ea
103e40ddc0323a7995355fd2f78d23059497a019
6c7414aa2b7ca2889d47007899b5e7d2c866d38fcd70c81259066adcd151b2d4
GET /analytics/tag-manager.runtime.js HTTP/1.1
Host: cdn.admixer.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Cookie: am-uid=0cef1b997d564fa3a9dc2280dbe83a0b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 14:28:14 GMT
content-type: application/javascript
last-modified: Mon, 12 Apr 2021 13:21:02 GMT
vary: Accept-Encoding
etag: W/"6074493e-515"
expires: Sun, 16 Jul 2023 11:10:21 GMT
cache-control: max-age=31622400
access-control-expose-headers: content-range
cache: HIT
x-cached-since: 2022-07-15T11:10:21+00:00
x-id: sto5-up-gc11
content-encoding: gzip
X-Firefox-Spdy: h2
my.rtmark.net/img.gif?f=sync&partner=473b8bc3bdca24c35606febcd8b32398d0535658845a248b665bbd0d9b9f9df4&ttl=&rurl=https%3A%2F%2Fwww.lyca-mobile.no%2Fnb%2Fbundle%2Flyca-smart-m%2F%3Futm_source%3DSelectivv%26utm_medium%3Dbanner%26utm_campaign%3DNOR22070001%26utm_term%3DP5%26user_id%3D%7Bclickid%7D%26cmpid%3D5828477%26rtkcid%3D%7Bclickid%7D%26rdk%3Drk1
139.45.195.8200 OK 43 B URL HTTP/2 my.rtmark.net/img.gif?f=sync&partner=473b8bc3bdca24c35606febcd8b32398d0535658845a248b665bbd0d9b9f9df4&ttl=&rurl=https%3A%2F%2Fwww.lyca-mobile.no%2Fnb%2Fbundle%2Flyca-smart-m%2F%3Futm_source%3DSelectivv%26utm_medium%3Dbanner%26utm_campaign%3DNOR22070001%26utm_term%3DP5%26user_id%3D%7Bclickid%7D%26cmpid%3D5828477%26rtkcid%3D%7Bclickid%7D%26rdk%3Drk1
IP 139.45.195.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /img.gif?f=sync&partner=473b8bc3bdca24c35606febcd8b32398d0535658845a248b665bbd0d9b9f9df4&ttl=&rurl=https%3A%2F%2Fwww.lyca-mobile.no%2Fnb%2Fbundle%2Flyca-smart-m%2F%3Futm_source%3DSelectivv%26utm_medium%3Dbanner%26utm_campaign%3DNOR22070001%26utm_term%3DP5%26user_id%3D%7Bclickid%7D%26cmpid%3D5828477%26rtkcid%3D%7Bclickid%7D%26rdk%3Drk1 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lyca-mobile.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 14:28:14 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=b4e07e9c1fdc4a579561a58c2f9779e0; expires=Wed, 20 Sep 2023 14:28:14 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f55f7bf08663464750fa98c53c33761f
cf3d3533b618f73af617ecc0a17bc108a2bd63f2
a4ead3891db45bb821ad08fd4801a13aef82db9b0fc1ba50df4b95c3775b1ab8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4427
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:28:14 GMT
Last-Modified: Tue, 20 Sep 2022 13:14:28 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
tagstaticx.com/r.html?axcid=e7ddf874-40d2-43d7-b8fd-56541bff0853&axtsid=4356956&axcusid1={zoneid}&clid={ymid}&r=http%3A%2F%2Fsettrogens.com%2Flink%3Fz%3D4356956%26var%3D%7Bzoneid%7D%26ymid%3Dwl6r76p7paobk05j2g2kc286%26acb%3Dproxy-smart-link%26axcusid2%3DSmartlink%26axadvid%3D1053995%26axcamid%3D2890%26acb%3Dproxy-smart-link&axcusid2=Smartlink&axadvid=1053995&axcamid=2890
172.67.170.35200 OK 0 B URL HTTP/2 tagstaticx.com/r.html?axcid=e7ddf874-40d2-43d7-b8fd-56541bff0853&axtsid=4356956&axcusid1={zoneid}&clid={ymid}&r=http%3A%2F%2Fsettrogens.com%2Flink%3Fz%3D4356956%26var%3D%7Bzoneid%7D%26ymid%3Dwl6r76p7paobk05j2g2kc286%26acb%3Dproxy-smart-link%26axcusid2%3DSmartlink%26axadvid%3D1053995%26axcamid%3D2890%26acb%3Dproxy-smart-link&axcusid2=Smartlink&axadvid=1053995&axcamid=2890
IP 172.67.170.35:0
GET /r.html?axcid=e7ddf874-40d2-43d7-b8fd-56541bff0853&axtsid=4356956&axcusid1={zoneid}&clid={ymid}&r=http%3A%2F%2Fsettrogens.com%2Flink%3Fz%3D4356956%26var%3D%7Bzoneid%7D%26ymid%3Dwl6r76p7paobk05j2g2kc286%26acb%3Dproxy-smart-link%26axcusid2%3DSmartlink%26axadvid%3D1053995%26axcamid%3D2890%26acb%3Dproxy-smart-link&axcusid2=Smartlink&axadvid=1053995&axcamid=2890 HTTP/1.1
Host: tagstaticx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Tue, 20 Sep 2022 14:28:05 GMT
content-type: text/html
last-modified: Thu, 04 Aug 2022 15:17:25 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9%2Bf6HvCbuoC0%2BaYevFqG7nISzWa5ttTnZuyuJ2MxReJJpJyAxJQgPCKgPUxLTfRXg%2FSD5wG%2F0pswGyIvfWX5iAcqM4z%2BK6B3Wb%2BA%2FrPh7hh%2FDKbBXcS8iDsDeQdDIbRvwA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74db3ee0b9bb1c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
toapodazoay.com/?l=qCqekRDLtEBTXwP&s=596096871118938171&z=4356957&g=NO&svar=1663684087&ba=0&dm=0&ep=0&vi=0&vo=0&i18db=0&tr=default&svar=1663684087&ssk=45cc6e2b4c341be76940600e43a4a211&svarok=1&b=79056&oaid=6bf0c6f3f11c4fe6aef5d00bcdf6c1ae&rdk=rk3
139.45.197.153200 OK 0 B URL HTTP/2 toapodazoay.com/?l=qCqekRDLtEBTXwP&s=596096871118938171&z=4356957&g=NO&svar=1663684087&ba=0&dm=0&ep=0&vi=0&vo=0&i18db=0&tr=default&svar=1663684087&ssk=45cc6e2b4c341be76940600e43a4a211&svarok=1&b=79056&oaid=6bf0c6f3f11c4fe6aef5d00bcdf6c1ae&rdk=rk3
IP 139.45.197.153:0
GET /?l=qCqekRDLtEBTXwP&s=596096871118938171&z=4356957&g=NO&svar=1663684087&ba=0&dm=0&ep=0&vi=0&vo=0&i18db=0&tr=default&svar=1663684087&ssk=45cc6e2b4c341be76940600e43a4a211&svarok=1&b=79056&oaid=6bf0c6f3f11c4fe6aef5d00bcdf6c1ae&rdk=rk3 HTTP/1.1
Host: toapodazoay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 14:28:08 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.24
set-cookie: reverse=GpcTDFYLP0EVPq9RckkvYwmiCRgY_HngIAe90bVgvpY; expires=Tue, 20-Sep-2022 15:28:07 GMT; Max-Age=3600; path=/
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: gzip
X-Firefox-Spdy: h2