r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3d0727e32cd103ddd4b73f28c81758aa
197a7bf43d63723fc532c23c6dced68d5cc36652
d3f75d03561d6a47d19370292e821a86e58381466f0c69386a21175de55882ff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3F75D03561D6A47D19370292E821A86E58381466F0C69386A21175DE55882FF"
Last-Modified: Fri, 11 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3590
Expires: Fri, 11 Nov 2022 19:42:55 GMT
Date: Fri, 11 Nov 2022 18:43:05 GMT
Connection: keep-alive
scided-mington.com/7b15bd1f-4069-4780-a300-c2373b23e18b
18.195.174.160200 563 B URL HTTP/1.1 scided-mington.com/7b15bd1f-4069-4780-a300-c2373b23e18b
IP 18.195.174.160:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (563), with no line terminators
Hash 2df34a5c90c73f9dafcdb1dc8ee34102
335706f9cbfa4de368a6e12feae71079872e89a7
c41f68da8705b44b3e20131c8984a7b8683bc24bfdd246cc5d8b02a858dd5fb7
Analyzer Verdict Alert fortinet Phishing
GET /7b15bd1f-4069-4780-a300-c2373b23e18b HTTP/1.1
Host: scided-mington.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Server: nginx
Date: Fri, 11 Nov 2022 18:43:05 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 563
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Pragma: no-cache
Set-Cookie: 7b15bd1f-4069-4780-a300-c2373b23e18b-v4=nO5SPTSmdERpRlSpHkaeL1fehVqPqgcBNqDiC6mcGYg; Max-Age=86400; Expires=Sat, 12-Nov-2022 18:43:05 GMT; Domain=scided-mington.com; Path=/; HttpOnly
cc-v4=ytwGYhF79yjfNkhPwIS%2F9stIihXLW4Aaq2Mdx8gTyVl9z8wu1zGvo47fApP3jqhxmMklPyrK9GkYAnmPyc96yWpBS%2F806%2BWDzceHd8Rqvv%2BnOX0LHUcOzGGi8jIPF4fu9HSTVb3Vz2o2%2BzxHgUCZkg%3D%3D; Max-Age=31536000; Expires=Sat, 11-Nov-2023 18:43:05 GMT; Domain=scided-mington.com; Path=/; HttpOnly
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2b57492bf85f4ae6abbd1641b17dc9ab
008e71ec05d47bf025ca64e17da2ea1bd8e71111
17894427c471f7fa02ca274795dc55df1bfc99d7bd83f9ee36249394035110fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "17894427C471F7FA02CA274795DC55DF1BFC99D7BD83F9EE36249394035110FD"
Last-Modified: Wed, 09 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2379
Expires: Fri, 11 Nov 2022 19:22:45 GMT
Date: Fri, 11 Nov 2022 18:43:06 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4edf853c470fcec0ab277c78527f3c2d
de93530ce15337e671c488d9fe05e7091d4956f0
b9d7976b398b1243ff8a571ddd3975d3a1317d69101061bdb1a755b3b56620e6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6377
Cache-Control: max-age=149678
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 18:43:06 GMT
Etag: "636e247f-1d7"
Expires: Sun, 13 Nov 2022 12:17:44 GMT
Last-Modified: Fri, 11 Nov 2022 10:31:27 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: zuOL38/WMYdn4mr85nS0snhYxCw+yRdiiPVvIgRoaqIvHWdXMiGEKRsmJEhtKtBpBY3zep0a0dI=
x-amz-request-id: XFZJHA5ME3P1Y6YG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 11 Nov 2022 17:49:54 GMT
age: 3192
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4736bac84ca28f2b1e961159fb4ea098
1319612979f53896fcfeacd4215c2715d4951e4c
5e81213e111ddf68c7f884f72b4e06fc4dc95eb902c3cf0762236b2418840dba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Length, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 11 Nov 2022 17:44:03 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3543
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 11 Nov 2022 18:43:06 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
scided-mington.com/redirect?target=BASE64aHR0cHM6Ly9sbHRsLWdsby5taW5pZ2xvYmFsY2l0aXplbnMuY29tL3QvY2xrP2lkPTA4blZ0Z0E0dHJCWUdUMk8zMXVnJnMxPTdiMTViZDFmLTQwNjktNDc4MC1hMzAwLWMyMzczYjIzZTE4YiZzMj13cmZjY3B1NnJhMGs0YWRraW9yb24zYm8&ts=1668192185991&hash=jnb4HPGyrNIs8kuZgZM43FI5sZDQ1vlDkGkGGWu1bZ0&rm=D
18.195.174.160200 395 B URL HTTP/1.1 scided-mington.com/redirect?target=BASE64aHR0cHM6Ly9sbHRsLWdsby5taW5pZ2xvYmFsY2l0aXplbnMuY29tL3QvY2xrP2lkPTA4blZ0Z0E0dHJCWUdUMk8zMXVnJnMxPTdiMTViZDFmLTQwNjktNDc4MC1hMzAwLWMyMzczYjIzZTE4YiZzMj13cmZjY3B1NnJhMGs0YWRraW9yb24zYm8&ts=1668192185991&hash=jnb4HPGyrNIs8kuZgZM43FI5sZDQ1vlDkGkGGWu1bZ0&rm=D
IP 18.195.174.160:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (395), with no line terminators
Hash 80f7897619992b91fd86680ae5ea2d88
9132358b15aefd264ad3878fa1122554187fa7c9
09aa1f06b54b166f9a61b4c6f3c895d98d3feedc0670f930fad4db5afb5ab3c3
GET /redirect?target=BASE64aHR0cHM6Ly9sbHRsLWdsby5taW5pZ2xvYmFsY2l0aXplbnMuY29tL3QvY2xrP2lkPTA4blZ0Z0E0dHJCWUdUMk8zMXVnJnMxPTdiMTViZDFmLTQwNjktNDc4MC1hMzAwLWMyMzczYjIzZTE4YiZzMj13cmZjY3B1NnJhMGs0YWRraW9yb24zYm8&ts=1668192185991&hash=jnb4HPGyrNIs8kuZgZM43FI5sZDQ1vlDkGkGGWu1bZ0&rm=D HTTP/1.1
Host: scided-mington.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: 7b15bd1f-4069-4780-a300-c2373b23e18b-v4=nO5SPTSmdERpRlSpHkaeL1fehVqPqgcBNqDiC6mcGYg; cc-v4=ytwGYhF79yjfNkhPwIS%2F9stIihXLW4Aaq2Mdx8gTyVl9z8wu1zGvo47fApP3jqhxmMklPyrK9GkYAnmPyc96yWpBS%2F806%2BWDzceHd8Rqvv%2BnOX0LHUcOzGGi8jIPF4fu9HSTVb3Vz2o2%2BzxHgUCZkg%3D%3D
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Server: nginx
Date: Fri, 11 Nov 2022 18:43:06 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Pragma: no-cache
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash b25d2fb49ef3044cf2e7c2aa4874194a
8db08c42ba491abbd6b390f6c6ca658187043684
30625aac714398f5c69a769bdd50280ad105ce9b9f4060ea93f52440a8f4d534
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=148312
Date: Fri, 11 Nov 2022 18:43:06 GMT
Etag: "636e3812-1d7"
Expires: Sun, 13 Nov 2022 11:54:58 GMT
Last-Modified: Fri, 11 Nov 2022 11:54:58 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: -lp_veETPkdkqF144suhY9gRqEkyWllStvORduWDR09sgBBnpnKNUQ==
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Cache-Control, Retry-After, Content-Length, Expires, ETag, Pragma, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 11 Nov 2022 18:24:58 GMT
cache-control: public,max-age=3600
age: 1088
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
lltl-glo.miniglobalcitizens.com/t/clk?id=08nVtgA4trBYGT2O31ug&s1=7b15bd1f-4069-4780-a300-c2373b23e18b&s2=wrfccpu6ra0k4adkioron3bo
35.158.35.225302 Found 0 B URL HTTP/2 lltl-glo.miniglobalcitizens.com/t/clk?id=08nVtgA4trBYGT2O31ug&s1=7b15bd1f-4069-4780-a300-c2373b23e18b&s2=wrfccpu6ra0k4adkioron3bo
IP 35.158.35.225:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t/clk?id=08nVtgA4trBYGT2O31ug&s1=7b15bd1f-4069-4780-a300-c2373b23e18b&s2=wrfccpu6ra0k4adkioron3bo HTTP/1.1
Host: lltl-glo.miniglobalcitizens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 11 Nov 2022 18:43:06 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://norton.ow5a.net/c/312695/1078124/4405?subId1=938a3d47-4360-4e58-8fa1-df4722bde914&SharedId=15453_2517
server: nginx/1.12.2
cache-control: no-transform
x-frame-options: SAMEORIGIN
vary: Cookie, Origin
set-cookie: uip="[\"giobuJhh\"\054 {\"NrKGQ\": \"zD9rJXA\"}]:1otYza:klgmhelI9D6wLYynQQi5aA5o0Ys"; expires=Sun, 11 Dec 2022 18:43:06 GMT; Max-Age=2592000; Path=/
ydt_dae725d917dd452eabbbfbf3047471fd="[\"938a3d47-4360-4e58-8fa1-df4722bde914\"]:1otYza:Q0cXmxv6MJgszWbz0LQBZabAfpM"; expires=Sun, 11 Dec 2022 19:43:06 GMT; Max-Age=2595600; Path=/; SameSite=None; Secure
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f7ff606fbc8634c858bbc04b69f55cf6
2441de2cba649239efd0dae7a878d7ef2245c0b4
95154e0dbb7e827b8f893cc141f986c29634ead618256470d753429aa65a0548
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3110
Cache-Control: max-age=141336
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 18:43:06 GMT
Etag: "636e10ac-1d7"
Expires: Sun, 13 Nov 2022 09:58:42 GMT
Last-Modified: Fri, 11 Nov 2022 09:06:52 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 5b058cfa98ec503c96c11fda950768fa
8139c4bed1e0faf916e7ae4c6cebab18f6f0c59d
1a7824f222ee7c87cd2f9be5b3d0536a4353466c398108cd2763c3f4d7912c04
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=89327
Date: Fri, 11 Nov 2022 18:43:07 GMT
Etag: "636d48e2-1d7"
Expires: Sat, 12 Nov 2022 19:31:54 GMT
Last-Modified: Thu, 10 Nov 2022 18:54:26 GMT
Server: ECS (dcb/7F5E)
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: uAcQDSbckZDaj6YAg_N_cKneSoyy3dGOqID99MKQqLpVvWqRdOzKZg==
Age: 2248
norton.ow5a.net/c/312695/1078124/4405?subId1=938a3d47-4360-4e58-8fa1-df4722bde914&SharedId=15453_2517
54.195.94.56302 Found 232 B URL HTTP/2 norton.ow5a.net/c/312695/1078124/4405?subId1=938a3d47-4360-4e58-8fa1-df4722bde914&SharedId=15453_2517
IP 54.195.94.56:0
File type HTML document, ASCII text
Hash c4266bd96e56a22bcca4d3a5e3fe6853
8400e99a8a96b47624fe748499aeaf9fafdbe196
1fb3bcc021803f429a12610e85469337a008c2ad05936e76754f87a4cf1dfb8c
GET /c/312695/1078124/4405?subId1=938a3d47-4360-4e58-8fa1-df4722bde914&SharedId=15453_2517 HTTP/1.1
Host: norton.ow5a.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 11 Nov 2022 18:43:07 GMT
content-type: text/html; charset=utf-8
content-length: 232
location: https://www.ojrq.net/p/?return=https%3A%2F%2Fnorton.ow5a.net%2Fc%2F312695%2F1078124%2F4405%3FsubId1%3D938a3d47-4360-4e58-8fa1-df4722bde914%26SharedId%3D15453_2517%26level%3D1&cid=4405&tpsync=yes
set-cookie: AWSALB=uIIihNK18NX9qOVgvS6CzTFtlEgvshfiUhE+X1ehE6US5fQq0G6vwOEeKu0eK9COhix/tU4Y3qFp/iRpPYHOqTncQqJa+/lZ6Z2gU6cFD+IfJgpezyTbQ6fql8Pi; Expires=Fri, 18 Nov 2022 18:43:07 GMT; Path=/
AWSALBCORS=uIIihNK18NX9qOVgvS6CzTFtlEgvshfiUhE+X1ehE6US5fQq0G6vwOEeKu0eK9COhix/tU4Y3qFp/iRpPYHOqTncQqJa+/lZ6Z2gU6cFD+IfJgpezyTbQ6fql8Pi; Expires=Fri, 18 Nov 2022 18:43:07 GMT; Path=/; SameSite=None; Secure
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
expires: Fri, 11 Nov 2022 18:43:07 GMT
p3p: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT"
X-Firefox-Spdy: h2
push.services.mozilla.com/
44.240.207.158101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.240.207.158:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: PKifcwYRkyfy3Jbqh1XN8g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 4Y/c5MMss2ukq6KThZVxwXxl6KU=
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash b9f19aa67058781571b8fa5cec3d4dce
012ac7b08f03c40ae5c880a7fe1c87bbf27edebf
0fb12959de9b2f1a47f4e2cf79b17434c1037f8c64d2c7483dcc0a9df3a13269
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 18:43:07 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 08 Nov 2022 17:55:44 GMT
Expires: Tue, 15 Nov 2022 17:55:43 GMT
Etag: "012ac7b08f03c40ae5c880a7fe1c87bbf27edebf"
Cache-Control: max-age=342155,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76892bf1d812b4ed-OSL
www.ojrq.net/p/?return=https%3A%2F%2Fnorton.ow5a.net%2Fc%2F312695%2F1078124%2F4405%3FsubId1%3D938a3d47-4360-4e58-8fa1-df4722bde914%26SharedId%3D15453_2517%26level%3D1&cid=4405&tpsync=yes
34.95.127.121302 Found 0 B URL HTTP/2 www.ojrq.net/p/?return=https%3A%2F%2Fnorton.ow5a.net%2Fc%2F312695%2F1078124%2F4405%3FsubId1%3D938a3d47-4360-4e58-8fa1-df4722bde914%26SharedId%3D15453_2517%26level%3D1&cid=4405&tpsync=yes
IP 34.95.127.121:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/?return=https%3A%2F%2Fnorton.ow5a.net%2Fc%2F312695%2F1078124%2F4405%3FsubId1%3D938a3d47-4360-4e58-8fa1-df4722bde914%26SharedId%3D15453_2517%26level%3D1&cid=4405&tpsync=yes HTTP/1.1
Host: www.ojrq.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
expires: Fri, 11 Nov 2022 18:43:07 GMT
p3p: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT"
set-cookie: brwsr=af0d684a-61f0-11ed-9e59-e5f72746fd96; Domain=.ojrq.net; Path=/; Secure; Max-Age=62208000; Expires=Thu, 31 Oct 2024 18:43:07 GMT; HttpOnly; SameSite=None
location: https://norton.ow5a.net/c/312695/1078124/4405?subId1=938a3d47-4360-4e58-8fa1-df4722bde914&SharedId=15453_2517&level=1&brwsr=af0d684a-61f0-11ed-9e59-e5f72746fd96&brwsrsig=T1xxHbWGS3KMVcwVj-S2FTnEV1RTSN
content-length: 0
date: Fri, 11 Nov 2022 18:43:07 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
norton.ow5a.net/c/312695/1078124/4405?subId1=938a3d47-4360-4e58-8fa1-df4722bde914&SharedId=15453_2517&level=1&brwsr=af0d684a-61f0-11ed-9e59-e5f72746fd96&brwsrsig=T1xxHbWGS3KMVcwVj-S2FTnEV1RTSN
54.195.94.56301 Moved Permanently 0 B URL HTTP/2 norton.ow5a.net/c/312695/1078124/4405?subId1=938a3d47-4360-4e58-8fa1-df4722bde914&SharedId=15453_2517&level=1&brwsr=af0d684a-61f0-11ed-9e59-e5f72746fd96&brwsrsig=T1xxHbWGS3KMVcwVj-S2FTnEV1RTSN
IP 54.195.94.56:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/312695/1078124/4405?subId1=938a3d47-4360-4e58-8fa1-df4722bde914&SharedId=15453_2517&level=1&brwsr=af0d684a-61f0-11ed-9e59-e5f72746fd96&brwsrsig=T1xxHbWGS3KMVcwVj-S2FTnEV1RTSN HTTP/1.1
Host: norton.ow5a.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: AWSALB=uIIihNK18NX9qOVgvS6CzTFtlEgvshfiUhE+X1ehE6US5fQq0G6vwOEeKu0eK9COhix/tU4Y3qFp/iRpPYHOqTncQqJa+/lZ6Z2gU6cFD+IfJgpezyTbQ6fql8Pi; AWSALBCORS=uIIihNK18NX9qOVgvS6CzTFtlEgvshfiUhE+X1ehE6US5fQq0G6vwOEeKu0eK9COhix/tU4Y3qFp/iRpPYHOqTncQqJa+/lZ6Z2gU6cFD+IfJgpezyTbQ6fql8Pi
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Fri, 11 Nov 2022 18:43:07 GMT
content-length: 0
location: https://buy.norton.com/aff_nortonPS3up?irgwc=1&clickid=W4V3pW3ycxyNR5BXia2F3SfnUkDSmoTND1MORM0&adid=1078124&IRID=312695&source=ir
set-cookie: AWSALB=nK3H7oe3bXGkMPNSUwTUq1/wIVU2C17YlZyLVNfXDMV855eMi+JUDiF/rUpeTok7OXsW75+zYvXzPPGEnvCIS2B3bX/4/IJzhADnHu8hfLccEqUuBamAXWb3ojSz; Expires=Fri, 18 Nov 2022 18:43:07 GMT; Path=/
AWSALBCORS=nK3H7oe3bXGkMPNSUwTUq1/wIVU2C17YlZyLVNfXDMV855eMi+JUDiF/rUpeTok7OXsW75+zYvXzPPGEnvCIS2B3bX/4/IJzhADnHu8hfLccEqUuBamAXWb3ojSz; Expires=Fri, 18 Nov 2022 18:43:07 GMT; Path=/; SameSite=None; Secure
brwsr=af0d684a-61f0-11ed-9e59-e5f72746fd96; Domain=.ow5a.net; Path=/; Secure; Max-Age=62208000; Expires=Thu, 31 Oct 2024 18:43:07 GMT; HttpOnly; SameSite=None
irld=L2CZ3RnQJ2zuGUYQVxxWTsykZSO30iV1jjWu0SvXxqJWxqT9a; Path=/; Secure; Max-Age=15552000; Expires=Wed, 10 May 2023 18:43:07 GMT; HttpOnly; SameSite=None
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
expires: Fri, 11 Nov 2022 18:43:07 GMT
p3p: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash db967ed5e9ff5a028fd9831d90b31306
f78cb9e40d89770167cbf640b7e3fa5272f27da7
12bcc3674a56b2cd71199df1cecadb071e443b339f15da8b02c68b1cb8030903
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5146
Cache-Control: max-age=115326
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 18:43:07 GMT
Etag: "636da31f-1d7"
Expires: Sun, 13 Nov 2022 02:45:13 GMT
Last-Modified: Fri, 11 Nov 2022 01:19:27 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash b9f19aa67058781571b8fa5cec3d4dce
012ac7b08f03c40ae5c880a7fe1c87bbf27edebf
0fb12959de9b2f1a47f4e2cf79b17434c1037f8c64d2c7483dcc0a9df3a13269
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 18:43:07 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 08 Nov 2022 17:55:44 GMT
Expires: Tue, 15 Nov 2022 17:55:43 GMT
Etag: "012ac7b08f03c40ae5c880a7fe1c87bbf27edebf"
Cache-Control: max-age=342155,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76892bf45b92b4ed-OSL
buy.norton.com/aff_nortonPS3up?irgwc=1&clickid=W4V3pW3ycxyNR5BXia2F3SfnUkDSmoTND1MORM0&adid=1078124&IRID=312695&source=ir
23.32.109.171302 Found 0 B URL HTTP/2 buy.norton.com/aff_nortonPS3up?irgwc=1&clickid=W4V3pW3ycxyNR5BXia2F3SfnUkDSmoTND1MORM0&adid=1078124&IRID=312695&source=ir
IP 23.32.109.171:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /aff_nortonPS3up?irgwc=1&clickid=W4V3pW3ycxyNR5BXia2F3SfnUkDSmoTND1MORM0&adid=1078124&IRID=312695&source=ir HTTP/1.1
Host: buy.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-length: 0
x-oneagent-js-injection: true
server-timing: dtRpid;desc="-1524717225", dtSInfo;desc="0"
requestid: e714d81569d20000
x-frame-options: DENY
location: https://www.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=W4V3pW3ycxyNR5BXia2F3SfnUkDSmoTND1MORM0&adid=1078124&IRID=312695&source=ir
strict-transport-security: max-age=31536000; includeSubDomains
expires: Fri, 11 Nov 2022 18:43:07 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 11 Nov 2022 18:43:07 GMT
set-cookie: dtCookie=v_4_srv_3_sn_A39EF7341271D9342B6C1A74F7192B86_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; Path=/; Domain=.norton.com
JSESSIONID=FD74B37E7586049B8525C0455E9DAAC8; Path=/; HttpOnly
X-CSRF-TOKEN=gFDE9B_xBnhsmhWB4BS4Td4cB0U9ofD6tkGTcVV3rGo_; Domain=buy.norton.com; Path=/; Secure
cv=exist; Domain=.norton.com; Path=/; Secure
SSE=""; Domain=.norton.com; Expires=Sun, 11-Dec-2022 18:43:07 GMT; Path=/; Secure
es=4e56533d317c5353473d7c4643443d4e6f762d31312d323032322031303a34333a30377c4c43443d4e6f762d31312d323032322031303a34333a3037; Domain=.norton.com; Expires=Sun, 11-Dec-2022 18:43:07 GMT; Path=/; Secure
tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31312f31312f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; Domain=.norton.com; Expires=Sun, 11-Dec-2022 18:43:07 GMT; Path=/; Secure
COUNTRY=NO; Domain=.norton.com; Expires=Sun, 11-Dec-2022 18:43:07 GMT; Path=/; Secure
LANGUAGE=no; Domain=.norton.com; Expires=Sun, 11-Dec-2022 18:43:07 GMT; Path=/; Secure
pr=5043443d31312d31312d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; Secure; Path=/; Max-Age=5184000; Domain=.norton.com
PROGRAMID=312695; Domain=.norton.com; Expires=Tue, 10-Jan-2023 18:43:07 GMT; Path=/; Secure
PROGRAM_TYPE=ImpactRadius; Domain=.norton.com; Expires=Tue, 10-Jan-2023 18:43:07 GMT; Path=/; Secure
SHOPPERID=""; Domain=.norton.com; Expires=Tue, 10-Jan-2023 18:43:07 GMT; Path=/; Secure
LSTID=""; Domain=.norton.com; Expires=Tue, 10-Jan-2023 18:43:07 GMT; Path=/; Secure
TLID=FD74B37E7586049B8525C0455E9DAAC8; Domain=.norton.com; Expires=Sun, 11-Dec-2022 18:43:07 GMT; Path=/; Secure
ESID=027569f588-be01-42YX-buhCDPA1q-k8HpvOCpuJM4actMaCHguiH46b6MPaWihVUOpY24Bye1-11_4vvCjg; path=/; SameSite=None; Secure
X-Firefox-Spdy: h2
www.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=W4V3pW3ycxyNR5BXia2F3SfnUkDSmoTND1MORM0&adid=1078124&IRID=312695&source=ir
23.38.200.32301 Moved Permanently 0 B URL HTTP/1.1 www.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=W4V3pW3ycxyNR5BXia2F3SfnUkDSmoTND1MORM0&adid=1078124&IRID=312695&source=ir
IP 23.38.200.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=W4V3pW3ycxyNR5BXia2F3SfnUkDSmoTND1MORM0&adid=1078124&IRID=312695&source=ir HTTP/1.1
Host: www.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: dtCookie=v_4_srv_3_sn_A39EF7341271D9342B6C1A74F7192B86_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4e6f762d31312d323032322031303a34333a30377c4c43443d4e6f762d31312d323032322031303a34333a3037; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31312f31312f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31312d31312d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=FD74B37E7586049B8525C0455E9DAAC8
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://no.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=W4V3pW3ycxyNR5BXia2F3SfnUkDSmoTND1MORM0&adid=1078124&IRID=312695&source=ir
Expires: Fri, 11 Nov 2022 18:43:07 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Fri, 11 Nov 2022 18:43:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fb29db48daab83bcaed56b72093619cc
e0e0a09d729ffb1c41411419768896f1e1eb3346
08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6316
Expires: Fri, 11 Nov 2022 20:28:24 GMT
Date: Fri, 11 Nov 2022 18:43:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fb29db48daab83bcaed56b72093619cc
e0e0a09d729ffb1c41411419768896f1e1eb3346
08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6316
Expires: Fri, 11 Nov 2022 20:28:24 GMT
Date: Fri, 11 Nov 2022 18:43:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fb29db48daab83bcaed56b72093619cc
e0e0a09d729ffb1c41411419768896f1e1eb3346
08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6316
Expires: Fri, 11 Nov 2022 20:28:24 GMT
Date: Fri, 11 Nov 2022 18:43:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fb29db48daab83bcaed56b72093619cc
e0e0a09d729ffb1c41411419768896f1e1eb3346
08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6316
Expires: Fri, 11 Nov 2022 20:28:24 GMT
Date: Fri, 11 Nov 2022 18:43:08 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6f7d2f5-4807-4bbd-a3db-7a239962aca5.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6f7d2f5-4807-4bbd-a3db-7a239962aca5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 85c6f450b38f41a2fb924d6d9a9cbff8
691f59b65ca9fde4f59bbf96b37071e07351f190
c8f877488a2cf65f0d9829384fd4113847722a1b4df94b6b1d5788699689722c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6f7d2f5-4807-4bbd-a3db-7a239962aca5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5583
x-amzn-requestid: e844f42a-e87e-4e61-8c97-137c07c5ae28
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bNeQ9Ho7IAMF5_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63687739-62c44d2f7d23632e74895bd8;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 03:10:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: uHlIN1IVGCFUVl5lx5pFSux0YncseT2HQjiwFDL9eaEaBa9CdnCl8g==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 07:47:38 GMT
age: 39330
etag: "691f59b65ca9fde4f59bbf96b37071e07351f190"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50b47142-be82-4ddc-85e8-45dc7102abe9.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50b47142-be82-4ddc-85e8-45dc7102abe9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 90a78b0f806c0c5ef5e7128cc37b2edf
7339ad7b4f37cc37cb712207a7b3a5ac9355d9dc
770a2247a0f8d6b44c61cecc8a11e9882e4dd39269e181eef52cf6816407022b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50b47142-be82-4ddc-85e8-45dc7102abe9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6696
x-amzn-requestid: 19f91da1-beeb-400a-b4c0-059851ca839f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bNeQ_F3doAMFr6A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63687739-2ef73e121ff2c3cf0e95b450;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 03:10:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: skH-uMPMGVOwM2RoMjuNh3YaYVIYhfytSdJ5-YFcH4GhUXyOKehfFA==
via: 1.1 27f6faf9790b5a2877fb528fa31f7922.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 04:30:07 GMT
age: 51181
etag: "7339ad7b4f37cc37cb712207a7b3a5ac9355d9dc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad1abae5-6437-44bf-8428-756b825e5be6.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad1abae5-6437-44bf-8428-756b825e5be6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 88c9931a009690991e73c5b37a1aa085
815a4a1eb8c8e2a138fb3d65ba777b0c18fa15d0
74e70391889e4b46742033b1d5daccfec415ba2ee999e429d1013fd4a1ebc61a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad1abae5-6437-44bf-8428-756b825e5be6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8294
x-amzn-requestid: 233f9724-1c36-426d-8299-1f6577a6e5e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bZ4lmE60IAMF1Lw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636d6e23-4b2763b42d8a57044dfa8144;Sampled=0
x-amzn-remapped-date: Thu, 10 Nov 2022 21:33:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QaMTrn0ZUptFLGY0x7bytPsJZHnLvdpMnU0XGCBU2pkmiA4MO8DIUw==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 ddaf46a95abcfc80e8eae76235e2127c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 10 Nov 2022 21:46:56 GMT
etag: "815a4a1eb8c8e2a138fb3d65ba777b0c18fa15d0"
content-type: image/jpeg
age: 75372
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e7dc40a-e47f-44b5-b3b4-87b10cd8669d.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e7dc40a-e47f-44b5-b3b4-87b10cd8669d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e72f32944d6f03e005f7b6f3e87d8c72
5fe340bf33ac219f6a3d44810f31d0a8796c83a9
bcdcba30210d276996d0fe749bbfc69d666ae11ddfbfdb57307e4bb4d6e43d1f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e7dc40a-e47f-44b5-b3b4-87b10cd8669d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10671
x-amzn-requestid: 1b6053eb-64ac-4c24-a750-c1b8cd69157f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bJEh8GxPoAMFhPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6366b472-56c6a3bc07ec89ab56d4f3bd;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 19:07:30 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qJeWGvC4DM_d3k66OHN2V19elou-xoSNkep1BNalBO0NtKyQtAFzNQ==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 04:30:53 GMT
age: 51135
etag: "5fe340bf33ac219f6a3d44810f31d0a8796c83a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c9847f2-3b5e-4950-9792-a512af36da58.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c9847f2-3b5e-4950-9792-a512af36da58.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f29164fb4dd64d9ce60566fbebd40f0a
96de8f2627e1103c5e6beb5d64cdbc09f97fce82
8eba6095edfed1ee1402c050727f81b8a9942625fd1c9cbb3bac4e51ee178577
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c9847f2-3b5e-4950-9792-a512af36da58.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6517
x-amzn-requestid: 78eb1490-4afb-497e-9dbd-afd6ddf9cc48
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bG23pFPLoAMFxcg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6365d1ca-4c9caca164576bfe07c9c05c;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 03:00:26 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: zllrXRZmtjHqA98lS_q0Wtx5TeEh2cEy3tr_eGkozM_jWxTIA5d60g==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Thu, 10 Nov 2022 21:48:34 GMT
age: 75274
etag: "96de8f2627e1103c5e6beb5d64cdbc09f97fce82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4094512-9a5a-47aa-9796-9f630fb1c13f.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4094512-9a5a-47aa-9796-9f630fb1c13f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 13f7b6eea163326da8c58ae5c09efccd
e0d1ebb35a16c686eae3d31eb85ac72278459b05
13f2f428acb7806808d957a8167ab2c139a5d0f59798671465717f2b39b914a9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4094512-9a5a-47aa-9796-9f630fb1c13f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8581
x-amzn-requestid: 385174fe-153f-448f-be5e-9ea3b5757ff9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bZ4u1EYOIAMFncA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636d6e5e-6084a34f58df22037275e676;Sampled=0
x-amzn-remapped-date: Thu, 10 Nov 2022 21:34:22 GMT
x-amz-cf-pop: YVR50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xSnHWpFlXeyf08gYjPn02H88Hta9fhiDjDOukoKtt6PPVBl_gNTfgw==
via: 1.1 dfc972676b24a6d23251d4f298dfa08c.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Thu, 10 Nov 2022 21:46:56 GMT
age: 75372
etag: "e0d1ebb35a16c686eae3d31eb85ac72278459b05"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
no.norton.com/etc/designs/global/libs-global/head/styles/fonts/roboto-v20-latin/roboto-v20-latin-regular.woff2
23.38.200.126200 OK 16 kB URL HTTP/2 no.norton.com/etc/designs/global/libs-global/head/styles/fonts/roboto-v20-latin/roboto-v20-latin-regular.woff2
IP 23.38.200.126:0
File type Web Open Font Format (Version 2), TrueType, length 15736, version 1.0\012- data
Hash 2b21d2b7cfa81790c8f9f12661ec392f
859de30778ae7689c0c27c1e1edd179305556108
dcf4da8125576c3d4212e4de7ab86cb78f636bd868b75d4ac23ca44782cda33f
GET /etc/designs/global/libs-global/head/styles/fonts/roboto-v20-latin/roboto-v20-latin-regular.woff2 HTTP/1.1
Host: no.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=W4V3pW3ycxyNR5BXia2F3SfnUkDSmoTND1MORM0&adid=1078124&IRID=312695&source=ir
Cookie: dtCookie=v_4_srv_3_sn_A39EF7341271D9342B6C1A74F7192B86_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4e6f762d31312d323032322031303a34333a30377c4c43443d4e6f762d31312d323032322031303a34333a3037; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31312f31312f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31312d31312d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=FD74B37E7586049B8525C0455E9DAAC8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
server: Apache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Tue, 12 Jan 2021 19:22:24 GMT
etag: "3d78-5b8b8f145356b"
accept-ranges: bytes
access-control-allow-origin: https://no.norton.com
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31467009
expires: Fri, 10 Nov 2023 23:33:18 GMT
date: Fri, 11 Nov 2022 18:43:09 GMT
content-length: 15759
X-Firefox-Spdy: h2
assets.adobedtm.com/launch-EN1cc7556280444b10a3c687a73ed01baa.min.js
23.38.200.237200 OK 62 kB URL HTTP/2 assets.adobedtm.com/launch-EN1cc7556280444b10a3c687a73ed01baa.min.js
IP 23.38.200.237:0
File type ASCII text, with very long lines (32765)
Hash 9a5b05d7551bf3192366e3e3869e2275
ad63425bd3da223b9920e9d40d17b84bfb2f49b3
a8e02f954327504be7f9cfc4962d342253c84cb1ce3393e51c81c1f7820f01b0
GET /launch-EN1cc7556280444b10a3c687a73ed01baa.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "566136ac57c055d61cfbd7bcf8702891:1663879804.20201"
last-modified: Thu, 22 Sep 2022 20:50:04 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 61753
cache-control: max-age=3600
expires: Fri, 11 Nov 2022 19:43:09 GMT
date: Fri, 11 Nov 2022 18:43:09 GMT
access-control-allow-origin: https://no.norton.com
timing-allow-origin: *
X-Firefox-Spdy: h2
no.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=W4V3pW3ycxyNR5BXia2F3SfnUkDSmoTND1MORM0&adid=1078124&IRID=312695&source=ir
23.38.200.126200 OK 24 kB URL HTTP/2 no.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=W4V3pW3ycxyNR5BXia2F3SfnUkDSmoTND1MORM0&adid=1078124&IRID=312695&source=ir
IP 23.38.200.126:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8675)
Hash a9366ef449a63ab2b3a2d1256314aa52
36c1044f880cf146988a53f601cdbf94f937ea61
6f286d2203b5fad592a84180458fddfc9a0646b1b02739891be921ecf326dfcc
GET /ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=W4V3pW3ycxyNR5BXia2F3SfnUkDSmoTND1MORM0&adid=1078124&IRID=312695&source=ir HTTP/1.1
Host: no.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: dtCookie=v_4_srv_3_sn_A39EF7341271D9342B6C1A74F7192B86_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4e6f762d31312d323032322031303a34333a30377c4c43443d4e6f762d31312d323032322031303a34333a3037; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31312f31312f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31312d31312d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=FD74B37E7586049B8525C0455E9DAAC8
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 24410
server: Apache
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff, nosniff
x-powered-by: Jetty(9.2.9.v20150224)
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
date: Fri, 11 Nov 2022 18:43:09 GMT
X-Firefox-Spdy: h2
now.symassets.com/etc/designs/norton/libs-rebranding/head.min.nEZ1z3eBa3Q75QGpoetESg==.css
23.38.200.126200 OK 61 kB URL HTTP/2 now.symassets.com/etc/designs/norton/libs-rebranding/head.min.nEZ1z3eBa3Q75QGpoetESg==.css
IP 23.38.200.126:0
File type ASCII text, with very long lines (562)
Hash 191ac8a9dfe09d444e1062192190ba87
8266a7bf7decb362a2cbb39cd07ee1f0c6283855
34ea7a279831ea5cc2d4bbf5fbd7f227eb259c862e2bf07a0d407318c5a524c8
GET /etc/designs/norton/libs-rebranding/head.min.nEZ1z3eBa3Q75QGpoetESg==.css HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 61161
server: Apache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Mon, 24 Oct 2022 17:56:57 GMT
etag: "65b76-5ebcb8484234f-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: *
cache-control: max-age=900724
expires: Tue, 22 Nov 2022 04:55:13 GMT
date: Fri, 11 Nov 2022 18:43:09 GMT
X-Firefox-Spdy: h2
now.symassets.com/etc/designs/norton/libs-rebranding/footer.min.t9Udk3ATD2XPOdVSt8LdfQ==.js
23.38.200.126200 OK 98 kB URL HTTP/2 now.symassets.com/etc/designs/norton/libs-rebranding/footer.min.t9Udk3ATD2XPOdVSt8LdfQ==.js
IP 23.38.200.126:0
File type ASCII text, with very long lines (1403)
Hash 17f8c8e0165366a0a00a917806927bc6
66b185483bbb4cb1eb8cb2b33a0bbae24a07638f
8bb710f392125c5e8d557c90297fd88bebc73c1aa9b7d35d9cb9f977e78d6553
GET /etc/designs/norton/libs-rebranding/footer.min.t9Udk3ATD2XPOdVSt8LdfQ==.js HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: Apache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Mon, 24 Oct 2022 17:56:58 GMT
etag: "57ac9-5ebcb84978b57-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 98474
access-control-allow-origin: *
cache-control: max-age=897904
expires: Tue, 22 Nov 2022 04:08:13 GMT
date: Fri, 11 Nov 2022 18:43:09 GMT
X-Firefox-Spdy: h2
no.norton.com/etc/designs/global/libs-global/head/styles/fonts/source-sans-variable/SSV-Latin.woff2
23.38.200.126200 OK 62 kB URL HTTP/2 no.norton.com/etc/designs/global/libs-global/head/styles/fonts/source-sans-variable/SSV-Latin.woff2
IP 23.38.200.126:0
Hash aff132aa78f366c21457c6da8dc8a7f7
ac4a13aaa47b4714fc95493d2f66110e181fb9ef
15295a95bf5f7e8e561f8c7972c46bb7dd9d3082239c29cfc85d4317cde66400
GET /etc/designs/global/libs-global/head/styles/fonts/source-sans-variable/SSV-Latin.woff2 HTTP/1.1
Host: no.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=W4V3pW3ycxyNR5BXia2F3SfnUkDSmoTND1MORM0&adid=1078124&IRID=312695&source=ir
Cookie: dtCookie=v_4_srv_3_sn_A39EF7341271D9342B6C1A74F7192B86_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4e6f762d31312d323032322031303a34333a30377c4c43443d4e6f762d31312d323032322031303a34333a3037; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31312f31312f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31312d31312d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=FD74B37E7586049B8525C0455E9DAAC8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
server: Apache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Thu, 07 Oct 2021 04:48:28 GMT
etag: "f2c0-5cdbbf9507afd"
accept-ranges: bytes
access-control-allow-origin: https://no.norton.com
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31467063
expires: Fri, 10 Nov 2023 23:34:12 GMT
date: Fri, 11 Nov 2022 18:43:09 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/icon_worldwide_users_32.svg
23.38.200.126200 OK 2.3 kB URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/icon_worldwide_users_32.svg
IP 23.38.200.126:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3780)
Hash 3fa36d5ab93fae7061f865f18cdba552
9b01de461e7c24b49bc19b532ad384d8451c7f96
66b3736ea2801778833919760fc08764bf4df7198533a5ad14d46fab4c222d65
GET /content/dam/norton/global/images/non-product/icons/icon_worldwide_users_32.svg HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: Apache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Wed, 10 Nov 2021 21:21:06 GMT
etag: "1a83-5d075cdd21c7c"
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=27259193
expires: Sat, 23 Sep 2023 06:43:02 GMT
date: Fri, 11 Nov 2022 18:43:09 GMT
content-length: 2290
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/logos/logo_norton_LL_91x37_white.png
23.38.200.126200 OK 1.3 kB URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/logos/logo_norton_LL_91x37_white.png
IP 23.38.200.126:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash f19124b9a455829448ae501e8e3f9f92
32d43e4c3aaf2bb1c1a28b2934d43d322f64d5ce
27040657301595ce583e52c3a2ba1389af208499e405c90cefd4a643857bf0fa
GET /content/dam/norton/global/images/non-product/logos/logo_norton_LL_91x37_white.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"66c-5d06d91929c55"
last-modified: Wed, 10 Nov 2021 11:31:36 GMT
server: Akamai Image Manager
content-type: image/webp
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: private, max-age=27685138
expires: Thu, 28 Sep 2023 05:02:07 GMT
date: Fri, 11 Nov 2022 18:43:09 GMT
content-length: 1287
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_online_threat_32x29.png
23.38.200.126200 OK 314 B URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_online_threat_32x29.png
IP 23.38.200.126:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 697a688a7dd6f197ab7163eacbdab9a6
747015ca7cbbc5903a2936c224f3ac4f8b10aece
cc4029789a2edc492083a4bac3368187c99d9e8dd330668d19431784c7ce74dd
GET /content/dam/norton/global/images/non-product/icons/light/icon_online_threat_32x29.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "22f-5cfca6223ef26"
last-modified: Thu, 03 Feb 2022 08:11:30 GMT
server: Akamai Image Manager
content-length: 314
content-type: image/webp
access-control-allow-origin: *
cache-control: private, no-transform, max-age=28694504
expires: Mon, 09 Oct 2023 21:24:53 GMT
date: Fri, 11 Nov 2022 18:43:09 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_secure_vpn_28x32.png
23.38.200.126200 OK 292 B URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_secure_vpn_28x32.png
IP 23.38.200.126:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 32d65de9be8ab02316681a58a4dd735a
de341dec2484527c0875fb4e0ec5d94a4eea4a1e
c5230f7556d57e40fb7c67ef65fc9426d5136c9f46858028bfeb2e1d0e6e4724
GET /content/dam/norton/global/images/non-product/icons/light/icon_secure_vpn_28x32.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "1c7-5cfbbd0ea567a"
last-modified: Mon, 07 Feb 2022 12:10:55 GMT
server: Akamai Image Manager
unused62: 8096267
content-length: 292
content-type: image/webp
access-control-allow-origin: *
cache-control: private, no-transform, max-age=27226377
expires: Fri, 22 Sep 2023 21:36:06 GMT
date: Fri, 11 Nov 2022 18:43:09 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_vpp_32x29.png
23.38.200.126200 OK 428 B URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_vpp_32x29.png
IP 23.38.200.126:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 00ae429025103ed148f1a0795e2d9d77
caf06472f47c849951a2fafba847e5af117cfbb1
f09a7f83f20248cba15d3f8a330835cd5b0d78187111c5a1a90d4abc6a46073f
GET /content/dam/norton/global/images/non-product/icons/light/icon_vpp_32x29.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "22f-5cfbbd0fe42bd"
last-modified: Thu, 03 Feb 2022 08:10:19 GMT
server: Akamai Image Manager
unused62: 8096267
content-length: 428
content-type: image/webp
access-control-allow-origin: *
cache-control: private, no-transform, max-age=28694474
expires: Mon, 09 Oct 2023 21:24:23 GMT
date: Fri, 11 Nov 2022 18:43:09 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_password_mgr_32x32.png
23.38.200.126200 OK 678 B URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_password_mgr_32x32.png
IP 23.38.200.126:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 7922cb1b44ee50aae0299016f5313ada
ba7b3d3ce4010d9a0b6e82300875e24a09cf8427
9daaf44d1daf71701f012d0bce0381437d2425a1fbebaa53e6f337ea7e14d071
GET /content/dam/norton/global/images/non-product/icons/light/icon_password_mgr_32x32.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "3c9-5d0756fca4fef"
last-modified: Thu, 03 Feb 2022 08:09:29 GMT
server: Akamai Image Manager
content-length: 678
content-type: image/webp
access-control-allow-origin: *
cache-control: private, no-transform, max-age=27334494
expires: Sun, 24 Sep 2023 03:38:03 GMT
date: Fri, 11 Nov 2022 18:43:09 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/icon_threat_monitor_30.svg
23.38.200.126200 OK 3.1 kB URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/icon_threat_monitor_30.svg
IP 23.38.200.126:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (6180)
Hash 9c7202f2fc496400a827a4971a742aac
d0915d836dd01530efcf6b7c9d11121ef7762a5d
2e76b5d6fe0358967d2e8c30b41ef73f52d55751da9e634dd2ef88b3347f9527
GET /content/dam/norton/global/images/non-product/icons/icon_threat_monitor_30.svg HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: Apache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Wed, 10 Nov 2021 19:56:30 GMT
etag: "20ae-5d0749f417025"
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=27259184
expires: Sat, 23 Sep 2023 06:42:53 GMT
date: Fri, 11 Nov 2022 18:43:09 GMT
content-length: 3116
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_cloud_bu_32x22.png
23.38.200.126200 OK 320 B URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_cloud_bu_32x22.png
IP 23.38.200.126:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash bdfa0542dbb64e17ad56370c9dec410d
2741ca1093834d3ff33a829ab919dc77786d0447
92d90bc227ea9f092a8e06b6ecd713f374d0f8fa58cdf91ae20a8d8f4073660f
GET /content/dam/norton/global/images/non-product/icons/light/icon_cloud_bu_32x22.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "1af-5d3a978e6209d"
last-modified: Thu, 03 Feb 2022 08:10:32 GMT
server: Akamai Image Manager
unused62: 8096267
x-serial: 579
x-check-cacheable: YES
content-length: 320
content-type: image/webp
access-control-allow-origin: *
cache-control: private, no-transform, max-age=28694543
expires: Mon, 09 Oct 2023 21:25:32 GMT
date: Fri, 11 Nov 2022 18:43:09 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_firewall_25x32.png
23.38.200.126200 OK 278 B URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_firewall_25x32.png
IP 23.38.200.126:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash d373536d5ab58027025ee2099a7b6f2c
c2719c6b150afb2eb71f05618567e489c62dbdb6
ae1b440dbaba4c5563a6f49092e3db84056aac7e6b9906f4064db058d7ddff58
GET /content/dam/norton/global/images/non-product/icons/light/icon_firewall_25x32.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "1dc-5d30c7fb9f99f"
last-modified: Thu, 03 Feb 2022 08:09:12 GMT
server: Akamai Image Manager
unused62: 8096267
content-length: 278
content-type: image/webp
access-control-allow-origin: *
cache-control: private, no-transform, max-age=28694351
expires: Mon, 09 Oct 2023 21:22:20 GMT
date: Fri, 11 Nov 2022 18:43:09 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/product-family/norton-360/awards/light/award-PCMag-horizontal-48-light_330X54.png
23.38.200.126200 OK 4.2 kB URL HTTP/2 now.symassets.com/content/dam/norton/global/images/product-family/norton-360/awards/light/award-PCMag-horizontal-48-light_330X54.png
IP 23.38.200.126:0
File type PNG image data, 331 x 55, 8-bit colormap, non-interlaced\012- data
Hash 03dc75960288b35ca8eca39ecdc51382
845438a3dddf2cb36ae7dd35f1f0b7de5fa1d14d
e3aa7d5ae64992fe5a8d930ad945d87885465045442d81e5249a1861784d2e84
GET /content/dam/norton/global/images/product-family/norton-360/awards/light/award-PCMag-horizontal-48-light_330X54.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: W/"24cf-5db6c1a48c048"
last-modified: Wed, 30 Mar 2022 09:23:47 GMT
server: Akamai Image Manager
content-type: image/png
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: private, no-transform, max-age=28561355
expires: Sun, 08 Oct 2023 08:25:44 GMT
date: Fri, 11 Nov 2022 18:43:09 GMT
content-length: 4231
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/no/images/non-product/misc/img_darkweb_notofication_223x449.png
23.38.200.126200 OK 8.9 kB URL HTTP/2 now.symassets.com/content/dam/norton/no/images/non-product/misc/img_darkweb_notofication_223x449.png
IP 23.38.200.126:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash f882847df083ce264e7349d09ecc199b
66594c0d0a82a02aea5cf094491cb1ad00b3435b
e263478b5daf956074b6ddea4f7510eb097f81537372c09a26e2b1e1f5ebfcb8
GET /content/dam/norton/no/images/non-product/misc/img_darkweb_notofication_223x449.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "cbaf-5c5342ef53168"
last-modified: Sun, 26 Dec 2021 23:28:11 GMT
server: Akamai Image Manager
unused62: 8096267
content-type: image/webp
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: private, no-transform, max-age=28151300
expires: Tue, 03 Oct 2023 14:31:29 GMT
date: Fri, 11 Nov 2022 18:43:09 GMT
content-length: 8943
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_parental_controls_32x26.png
23.38.200.126200 OK 400 B URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/light/icon_parental_controls_32x26.png
IP 23.38.200.126:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash f2c8f4c53c80d7cd0e95f05c3aa17889
25adb1ad2d18065c7df0a6858dd3b5fdac81bde4
b14736abfcfd4dffba24367d371894c202b8389fe8cfb53f3bb5b9420840f00a
GET /content/dam/norton/global/images/non-product/icons/light/icon_parental_controls_32x26.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "1fa-5d063ef4bc6a5"
last-modified: Thu, 03 Feb 2022 08:14:38 GMT
server: Akamai Image Manager
content-length: 400
content-type: image/webp
access-control-allow-origin: *
cache-control: private, no-transform, max-age=28694709
expires: Mon, 09 Oct 2023 21:28:18 GMT
date: Fri, 11 Nov 2022 18:43:09 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/no/images/non-product/icons/light/icon_vpp_seal_yellow.svg
23.38.200.126200 OK 5.9 kB URL HTTP/2 now.symassets.com/content/dam/norton/no/images/non-product/icons/light/icon_vpp_seal_yellow.svg
IP 23.38.200.126:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (17242), with no line terminators
Hash edd45b5633d53d322545c4776f986436
86e2951cd2470a65a32da5c7c9bb3037d603f0ce
bbf568980e72812f3045a5ea8a735dfd751784c164c3f5d7b29f36fc1f763257
GET /content/dam/norton/no/images/non-product/icons/light/icon_vpp_seal_yellow.svg HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: Apache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Tue, 12 Jan 2021 19:28:09 GMT
etag: "435a-5b8b905cad4fb"
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=27261729
expires: Sat, 23 Sep 2023 07:25:18 GMT
date: Fri, 11 Nov 2022 18:43:09 GMT
content-length: 5877
X-Firefox-Spdy: h2
no.norton.com/service/norton/head?ct=NO&lg=no&ref=&irgwc=1&clickid=W4V3pW3ycxyNR5BXia2F3SfnUkDSmoTND1MORM0&adid=1078124&IRID=312695&source=ir
23.38.200.126200 OK 0 B URL HTTP/2 no.norton.com/service/norton/head?ct=NO&lg=no&ref=&irgwc=1&clickid=W4V3pW3ycxyNR5BXia2F3SfnUkDSmoTND1MORM0&adid=1078124&IRID=312695&source=ir
IP 23.38.200.126:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /service/norton/head?ct=NO&lg=no&ref=&irgwc=1&clickid=W4V3pW3ycxyNR5BXia2F3SfnUkDSmoTND1MORM0&adid=1078124&IRID=312695&source=ir HTTP/1.1
Host: no.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=W4V3pW3ycxyNR5BXia2F3SfnUkDSmoTND1MORM0&adid=1078124&IRID=312695&source=ir
Cookie: dtCookie=v_4_srv_3_sn_A39EF7341271D9342B6C1A74F7192B86_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4e6f762d31312d323032322031303a34333a30377c4c43443d4e6f762d31312d323032322031303a34333a3037; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31312f31312f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31312d31312d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=FD74B37E7586049B8525C0455E9DAAC8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/plain
content-length: 0
server: Apache
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff, nosniff
expires: Thu, 01 Jan 1970 00:00:00 GMT
x-powered-by: Jetty(9.2.9.v20150224)
strict-transport-security: max-age=31536000; includeSubDomains
date: Fri, 11 Nov 2022 18:43:10 GMT
set-cookie: es=4e56533d317c5353473d7c4643443d4e6f762d31312d323032322031303a34333a30377c4c43443d4e6f762d31312d323032322031303a34333a3037;Expires=Sat, 11-Nov-2023 18:43:10 GMT
tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31312f31312f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d;Expires=Sat, 11-Nov-2023 18:43:10 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/cb/icons/icon_chevron_right_blue_6x9.png
23.38.200.126200 OK 144 B URL HTTP/2 now.symassets.com/content/dam/cb/icons/icon_chevron_right_blue_6x9.png
IP 23.38.200.126:0
File type PNG image data, 6 x 9, 8-bit/color RGBA, non-interlaced\012- data
Hash 733dc676038509b9f68f14421a641a30
27b6fc87185f3fa48e51d1046119b9259a4a0dff
3ce408c1d2cfc12b73d4d290a0c79c8283014143bcfbf251ad82cd543948be2c
GET /content/dam/cb/icons/icon_chevron_right_blue_6x9.png HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://now.symassets.com/etc/designs/norton/libs-rebranding/head.min.nEZ1z3eBa3Q75QGpoetESg==.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "90-5c3403115e93b"
last-modified: Wed, 13 Apr 2022 04:55:48 GMT
server: Akamai Image Manager
x-serial: 459
x-check-cacheable: YES
content-length: 144
content-type: image/png
access-control-allow-origin: *
cache-control: private, no-transform, max-age=28740261
expires: Tue, 10 Oct 2023 10:07:31 GMT
date: Fri, 11 Nov 2022 18:43:10 GMT
X-Firefox-Spdy: h2
now.symassets.com/content/dam/norton/global/images/non-product/csp_test/banners/bnr_laptop_hands_1800x450.jpg
23.38.200.126200 OK 11 kB URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/csp_test/banners/bnr_laptop_hands_1800x450.jpg
IP 23.38.200.126:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1800x450, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ffa99b7c897814d67b23c0f8bd2cc0ac
38cb989101748eda3d1ef4ee683f017ea9fedce1
e06b4f4205c09e908a85c6f1e265eca2f2a43b32850bee7d225f7eb870633f38
GET /content/dam/norton/global/images/non-product/csp_test/banners/bnr_laptop_hands_1800x450.jpg HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "12fb8-5d112b698547e"
last-modified: Thu, 03 Feb 2022 08:10:22 GMT
server: Akamai Image Manager
unused62: 8096267
x-serial: 1664
x-check-cacheable: YES
content-type: image/webp
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: private, no-transform, max-age=28694490
expires: Mon, 09 Oct 2023 21:24:40 GMT
date: Fri, 11 Nov 2022 18:43:10 GMT
content-length: 10932
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 05bb9af901ca5b651e88fcbe236711f5
18412da7fc2d868fc74bc3e7c44b4add4bbbdef9
9b87e90e4f5356da47fd562f7d06c8fbdef90d011e8c20e5687afbeaf6e7d29b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 18:43:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.nortonlifelock.com/content/dam/norton-adobe-analytics/prod/s_code_norton_min.js
23.38.200.126200 OK 25 kB URL HTTP/2 www.nortonlifelock.com/content/dam/norton-adobe-analytics/prod/s_code_norton_min.js
IP 23.38.200.126:0
File type Unicode text, UTF-8 text, with very long lines (32058)
Hash 272a4786720f033e46550ada392492fd
4eb325bc0f8043718112006618295fc5f830da81
f8a2a4670bc5fe98448356ddb46755a3599c7138b84b12106de56666137134f9
GET /content/dam/norton-adobe-analytics/prod/s_code_norton_min.js HTTP/1.1
Host: www.nortonlifelock.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 24639
server: Apache
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-disposition: attachment
x-content-type-options: nosniff, nosniff
last-modified: Wed, 26 Oct 2022 16:13:53 GMT
etag: "129a2-5ebf24f8ff240-gzip"
accept-ranges: bytes
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31035
expires: Sat, 12 Nov 2022 03:20:25 GMT
date: Fri, 11 Nov 2022 18:43:10 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 05bb9af901ca5b651e88fcbe236711f5
18412da7fc2d868fc74bc3e7c44b4add4bbbdef9
9b87e90e4f5356da47fd562f7d06c8fbdef90d011e8c20e5687afbeaf6e7d29b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 18:43:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
no.norton.com/libs/granite/csrf/token.json
23.38.200.126200 OK 2 B URL HTTP/2 no.norton.com/libs/granite/csrf/token.json
IP 23.38.200.126:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /libs/granite/csrf/token.json HTTP/1.1
Host: no.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/ps/3up_norton360_ns_nd_np_Reading_tw_nb.html?irgwc=1&clickid=W4V3pW3ycxyNR5BXia2F3SfnUkDSmoTND1MORM0&adid=1078124&IRID=312695&source=ir
Cookie: dtCookie=v_4_srv_3_sn_A39EF7341271D9342B6C1A74F7192B86_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4e6f762d31312d323032322031303a34333a30377c4c43443d4e6f762d31312d323032322031303a34333a3037; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31312f31312f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31312d31312d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=FD74B37E7586049B8525C0455E9DAAC8; qs=69726777633d3126636c69636b69643d57345633705733796378794e52354258696132463353666e556b44536d6f544e44314d4f524d3026616469643d3130373831323426495249443d33313236393526736f757263653d6972; ttControl=5443473d33; AMCV_67C716D751E567F70A490D4C%40AdobeOrg=-1124106680%7CMCIDTS%7C19308%7CvVersion%7C5.2.0; at_check=true; mbox=session#879203e6183542838d0fd77952904afa#1668194050
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=ISO-8859-1
content-length: 2
server: Apache
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff, nosniff
x-powered-by: Jetty(9.2.9.v20150224)
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache
date: Fri, 11 Nov 2022 18:43:10 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 685a1b94f46a6282c2a21f8ffa8c49f9
ce18c382a55d95999e58bdb578a35c96039d9d2b
2f5be30148db996be2ddf455d036b5a2f1d5e5794596158a26d386e0b793f6b2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5868
Cache-Control: max-age=133295
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 18:43:10 GMT
Etag: "636de681-1d7"
Expires: Sun, 13 Nov 2022 07:44:45 GMT
Last-Modified: Fri, 11 Nov 2022 06:06:57 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
dpm.demdex.net/id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=67C716D751E567F70A490D4C%40AdobeOrg&d_nsid=0&ts=1668192189900
3.251.102.237200 OK 309 B URL HTTP/1.1 dpm.demdex.net/id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=67C716D751E567F70A490D4C%40AdobeOrg&d_nsid=0&ts=1668192189900
IP 3.251.102.237:0
File type JSON data\012- , ASCII text, with very long lines (367), with no line terminators
Hash 91f4d5a47e52fe3645748344e9e50ecf
94768a8a2249b5d1b1798406a596669a5236e9ad
48fc7a955ebcaa23858a258d96c9de50838521b980dd2de7d1091af8394744c5
GET /id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=67C716D751E567F70A490D4C%40AdobeOrg&d_nsid=0&ts=1668192189900 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://no.norton.com
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://no.norton.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-1-v045-0be46a66e.edge-irl1.demdex.com 2 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=73982726258618707394282290167292041189; Max-Age=15552000; Expires=Wed, 10 May 2023 18:43:10 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: 83RkLlPVQJw=
Content-Length: 309
Connection: keep-alive
now.symassets.com/content/dam/norton/global/images/non-product/icons/nlok.ico
23.38.200.126200 OK 4.2 kB URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/icons/nlok.ico
IP 23.38.200.126:0
File type PNG image data, 144 x 144, 8-bit/color RGBA, non-interlaced\012- data
Hash d2145e109e45900f4e7e387ba44b90ba
feeb2cd5803c167430e179eb4d5b34201ec9e65d
0382f490de756fafe0167fd9ca170478deb80e59cb652cccee47c3ccbd86aa71
GET /content/dam/norton/global/images/non-product/icons/nlok.ico HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/x-icon
server: Apache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Wed, 10 Nov 2021 11:31:36 GMT
etag: "1039-5d06d91a0e126"
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=27258301
expires: Sat, 23 Sep 2023 06:28:11 GMT
date: Fri, 11 Nov 2022 18:43:10 GMT
content-length: 4176
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 50b7ad7d0cb47a73140b0c340b5b72b4
5b7fd8d7d4a5fb963c33d52675ef3be152f4e7e3
494e1c3410c113871960bd9b35b3d89c0d404ecb836c03669a8522d159391cd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 18:43:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
now.symassets.com/content/dam/norton/global/images/non-product/banners/bnr_familyselfie_1405x645.jpg
23.38.200.126200 OK 60 kB URL HTTP/2 now.symassets.com/content/dam/norton/global/images/non-product/banners/bnr_familyselfie_1405x645.jpg
IP 23.38.200.126:0
Hash cae1743ebc827e4b414ceb936e3894e2
649258724c3e0d7a9df4641f673d50d16e0c0dc0
5baf478f8520269f4c60a6a18016d77c18a66c7b6c5092b3fcbc7772a40ab7e3
GET /content/dam/norton/global/images/non-product/banners/bnr_familyselfie_1405x645.jpg HTTP/1.1
Host: now.symassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "1563e-5d3079cb478ee"
last-modified: Thu, 03 Feb 2022 08:21:27 GMT
server: Akamai Image Manager
content-type: image/webp
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: private, no-transform, max-age=28203120
expires: Wed, 04 Oct 2023 04:55:10 GMT
date: Fri, 11 Nov 2022 18:43:10 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 50b7ad7d0cb47a73140b0c340b5b72b4
5b7fd8d7d4a5fb963c33d52675ef3be152f4e7e3
494e1c3410c113871960bd9b35b3d89c0d404ecb836c03669a8522d159391cd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 18:43:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Nov 2022 21:46:16 GMT
expires: Fri, 10 Nov 2023 21:46:16 GMT
cache-control: public, max-age=31536000
age: 75414
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 50b7ad7d0cb47a73140b0c340b5b72b4
5b7fd8d7d4a5fb963c33d52675ef3be152f4e7e3
494e1c3410c113871960bd9b35b3d89c0d404ecb836c03669a8522d159391cd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 18:43:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e528392ade19747902e2789f4fe7daa7
fc4b5881477d3c46c7e20e7264a4e0f8bcab5ae5
0a7d72d34a4607bd55324b3e4ba00f9d03c14cd972f8ead94691fed28a3c69d2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1464
Cache-Control: max-age=170303
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 18:43:10 GMT
Etag: "636e8845-1d7"
Expires: Sun, 13 Nov 2022 18:01:33 GMT
Last-Modified: Fri, 11 Nov 2022 17:37:09 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8afc7aff00688cc4df8d8bcf35c93e5c
2b1134635d195d2cba0a29f5c46a7ecac9327033
dcc8c1c1e203a69f1b5626af3991bedbd51526e5820ca92513247f7f16a1761f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1115
Cache-Control: max-age=100798
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 18:43:10 GMT
Etag: "636d7a21-1d7"
Expires: Sat, 12 Nov 2022 22:43:08 GMT
Last-Modified: Thu, 10 Nov 2022 22:24:33 GMT
Server: ECS (amb/6BBB)
X-Cache: HIT
Content-Length: 471
oms.norton.com/b/ss/symanteccom/1/JS-2.22.0/s263605310198?AQB=1&ndh=1&pf=1&t=11%2F10%2F2022%2018%3A43%3A10%205%200&sdid=616AB7F197FC2DD3-4537514E0A5B5611&mid=74131807704026829144262333055826565972&aamlh=6&ce=UTF-8&pageName=norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&g=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html%3Firgwc%3D1%26clickid%3DW4V3pW3ycxyNR5BXia2F3SfnUkDSmoTND1MORM0%26adid%3D1078124%26IRID%3D312695%26source%3Dir&server=norton&v0=hho_aff_312695&events=event79%3D25%2Cevent69&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c2=no&c3=no&v5=none&c14=D%3Dv16&v16=norton%3Aaffiliate&v18=D%3DpageName&v21=D%3Dc21&c22=hho_aff_312695&v27=D%3Dc2&v28=D%3Dc3&c35=%3E%20hho_aff_312695%20norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&v35=hho_aff_312695&c41=norton.com&v41=D%3Dc41&c46=html&c47=page&v47=s_code_norton&c48=3up_norton360_ns_nd_np_reading_tw_nb&v48=D%3Dc49&c49=paidsearch&v49=D%3Dc48&v57=74131807704026829144262333055826565972&c59=norton.com%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&v59=D%3Dc59&v66=ImpactRadius&v72=norton.com&c75=D%3Dv57&v90=existing_customer%3A%20No&v96=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=67C716D751E567F70A490D4C%40AdobeOrg&AQE=1
15.236.176.210200 OK 43 B URL HTTP/2 oms.norton.com/b/ss/symanteccom/1/JS-2.22.0/s263605310198?AQB=1&ndh=1&pf=1&t=11%2F10%2F2022%2018%3A43%3A10%205%200&sdid=616AB7F197FC2DD3-4537514E0A5B5611&mid=74131807704026829144262333055826565972&aamlh=6&ce=UTF-8&pageName=norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&g=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html%3Firgwc%3D1%26clickid%3DW4V3pW3ycxyNR5BXia2F3SfnUkDSmoTND1MORM0%26adid%3D1078124%26IRID%3D312695%26source%3Dir&server=norton&v0=hho_aff_312695&events=event79%3D25%2Cevent69&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c2=no&c3=no&v5=none&c14=D%3Dv16&v16=norton%3Aaffiliate&v18=D%3DpageName&v21=D%3Dc21&c22=hho_aff_312695&v27=D%3Dc2&v28=D%3Dc3&c35=%3E%20hho_aff_312695%20norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&v35=hho_aff_312695&c41=norton.com&v41=D%3Dc41&c46=html&c47=page&v47=s_code_norton&c48=3up_norton360_ns_nd_np_reading_tw_nb&v48=D%3Dc49&c49=paidsearch&v49=D%3Dc48&v57=74131807704026829144262333055826565972&c59=norton.com%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&v59=D%3Dc59&v66=ImpactRadius&v72=norton.com&c75=D%3Dv57&v90=existing_customer%3A%20No&v96=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=67C716D751E567F70A490D4C%40AdobeOrg&AQE=1
IP 15.236.176.210:0
File type GIF image data, version 89a, 2 x 2\012- data
Hash ad480fd0732d0f6f1a8b06359e3a42bb
a544538683a2dfe574eeb2e358ac8fcc78289d50
a1ecbaed793a1f564c49c671f2dd0ce36f858534ef6d26b55783a06b884cc506
GET /b/ss/symanteccom/1/JS-2.22.0/s263605310198?AQB=1&ndh=1&pf=1&t=11%2F10%2F2022%2018%3A43%3A10%205%200&sdid=616AB7F197FC2DD3-4537514E0A5B5611&mid=74131807704026829144262333055826565972&aamlh=6&ce=UTF-8&pageName=norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&g=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html%3Firgwc%3D1%26clickid%3DW4V3pW3ycxyNR5BXia2F3SfnUkDSmoTND1MORM0%26adid%3D1078124%26IRID%3D312695%26source%3Dir&server=norton&v0=hho_aff_312695&events=event79%3D25%2Cevent69&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c2=no&c3=no&v5=none&c14=D%3Dv16&v16=norton%3Aaffiliate&v18=D%3DpageName&v21=D%3Dc21&c22=hho_aff_312695&v27=D%3Dc2&v28=D%3Dc3&c35=%3E%20hho_aff_312695%20norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&v35=hho_aff_312695&c41=norton.com&v41=D%3Dc41&c46=html&c47=page&v47=s_code_norton&c48=3up_norton360_ns_nd_np_reading_tw_nb&v48=D%3Dc49&c49=paidsearch&v49=D%3Dc48&v57=74131807704026829144262333055826565972&c59=norton.com%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb&v59=D%3Dc59&v66=ImpactRadius&v72=norton.com&c75=D%3Dv57&v90=existing_customer%3A%20No&v96=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=67C716D751E567F70A490D4C%40AdobeOrg&AQE=1 HTTP/1.1
Host: oms.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Cookie: dtCookie=v_4_srv_3_sn_A39EF7341271D9342B6C1A74F7192B86_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4e6f762d31312d323032322031303a34333a30377c4c43443d4e6f762d31312d323032322031303a34333a3037; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31312f31312f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31312d31312d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=FD74B37E7586049B8525C0455E9DAAC8; ttControl=5443473d33; AMCV_67C716D751E567F70A490D4C%40AdobeOrg=-1124106680%7CMCIDTS%7C19308%7CMCMID%7C74131807704026829144262333055826565972%7CMCAAMLH-1668796990%7C6%7CMCAAMB-1668796990%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1668199390s%7CNONE%7CvVersion%7C5.2.0; at_check=true; mbox=session#879203e6183542838d0fd77952904afa#1668194050; promocode=DEFAULTWEB; AMCVS_67C716D751E567F70A490D4C%40AdobeOrg=1; s_prop22=hho_aff_312695; s_nr=1668192190321-New; event69=event69; channelStack=s_eVar72~norton.com; s_gpv=norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_gpv_custom=norton.com%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_cc=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
access-control-allow-origin: *
date: Fri, 11 Nov 2022 18:43:10 GMT
expires: Thu, 10 Nov 2022 18:43:10 GMT
last-modified: Sat, 12 Nov 2022 18:43:10 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
etag: 3582415450042990592-4619802968554818904
vary: *
content-type: image/gif;charset=utf-8
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
symantec.tt.omtrdc.net/m2/symantec/mbox/json?mbox=sym_global_mbox&mboxSession=879203e6183542838d0fd77952904afa&mboxPC=&mboxPage=80db3f8fd99d4b0387002b2db5a2bbf9&mboxRid=509f8de54ed849c2802039c6aad906f0&mboxVersion=1.8.2&mboxCount=1&mboxTime=1668192189910&mboxHost=no.norton.com&mboxURL=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html%3Firgwc%3D1%26clickid%3DW4V3pW3ycxyNR5BXia2F3SfnUkDSmoTND1MORM0%26adid%3D1078124%26IRID%3D312695%26source%3Dir&mboxReferrer=&mboxXDomain=enabled&browserHeight=939&browserWidth=1268&browserTimeOffset=0&screenHeight=1024&screenWidth=1280&colorDepth=24&devicePixelRatio=1&screenOrientation=landscape&profile.TCG=3&vendor_type=none&program_type=ImpactRadius&site_country=no&site_section=norton.com&content_title=3up_norton360_ns_nd_np_reading_tw_nb&site_language=no&traffic_source=affiliates&ExistingCustomer=existing_customer%3A%20No&site_sub_section=paidsearch¤t_subchannel=&site_content_title=3up_norton360_ns_nd_np_reading_tw_nb&original_subchannel=&profile.vendor_type=none&profile.program_type=ImpactRadius&profile.site_country=no&site_sub_sub_section=missing&%20profile.site_section=norton.com&profile.site_language=no&profile.%20traffic_source=affiliates&profile.ExistingCustomer=existing_customer%3A%20No&profile.%20site_sub_section=paidsearch&profile.current_subchannel=&profile.site_content_title=3up_norton360_ns_nd_np_reading_tw_nb&profile.original_subchannel=&mboxMCSDID=616AB7F197FC2DD3-4537514E0A5B5611&mboxMCGVID=74131807704026829144262333055826565972&mboxAAMB=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&mboxMCGLH=6
15.188.95.229200 OK 1.1 kB URL HTTP/2 symantec.tt.omtrdc.net/m2/symantec/mbox/json?mbox=sym_global_mbox&mboxSession=879203e6183542838d0fd77952904afa&mboxPC=&mboxPage=80db3f8fd99d4b0387002b2db5a2bbf9&mboxRid=509f8de54ed849c2802039c6aad906f0&mboxVersion=1.8.2&mboxCount=1&mboxTime=1668192189910&mboxHost=no.norton.com&mboxURL=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html%3Firgwc%3D1%26clickid%3DW4V3pW3ycxyNR5BXia2F3SfnUkDSmoTND1MORM0%26adid%3D1078124%26IRID%3D312695%26source%3Dir&mboxReferrer=&mboxXDomain=enabled&browserHeight=939&browserWidth=1268&browserTimeOffset=0&screenHeight=1024&screenWidth=1280&colorDepth=24&devicePixelRatio=1&screenOrientation=landscape&profile.TCG=3&vendor_type=none&program_type=ImpactRadius&site_country=no&site_section=norton.com&content_title=3up_norton360_ns_nd_np_reading_tw_nb&site_language=no&traffic_source=affiliates&ExistingCustomer=existing_customer%3A%20No&site_sub_section=paidsearch¤t_subchannel=&site_content_title=3up_norton360_ns_nd_np_reading_tw_nb&original_subchannel=&profile.vendor_type=none&profile.program_type=ImpactRadius&profile.site_country=no&site_sub_sub_section=missing&%20profile.site_section=norton.com&profile.site_language=no&profile.%20traffic_source=affiliates&profile.ExistingCustomer=existing_customer%3A%20No&profile.%20site_sub_section=paidsearch&profile.current_subchannel=&profile.site_content_title=3up_norton360_ns_nd_np_reading_tw_nb&profile.original_subchannel=&mboxMCSDID=616AB7F197FC2DD3-4537514E0A5B5611&mboxMCGVID=74131807704026829144262333055826565972&mboxAAMB=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&mboxMCGLH=6
IP 15.188.95.229:0
Hash ce8de15c966128cbeec0a2c85b0e05e5
0be05ea86d041948d50ea6423da5cd974552a56e
81a6d48184cb57ac28aed435b7a26d478e386d0895fbb7a7e6015db408064bd5
GET /m2/symantec/mbox/json?mbox=sym_global_mbox&mboxSession=879203e6183542838d0fd77952904afa&mboxPC=&mboxPage=80db3f8fd99d4b0387002b2db5a2bbf9&mboxRid=509f8de54ed849c2802039c6aad906f0&mboxVersion=1.8.2&mboxCount=1&mboxTime=1668192189910&mboxHost=no.norton.com&mboxURL=https%3A%2F%2Fno.norton.com%2Fps%2F3up_norton360_ns_nd_np_Reading_tw_nb.html%3Firgwc%3D1%26clickid%3DW4V3pW3ycxyNR5BXia2F3SfnUkDSmoTND1MORM0%26adid%3D1078124%26IRID%3D312695%26source%3Dir&mboxReferrer=&mboxXDomain=enabled&browserHeight=939&browserWidth=1268&browserTimeOffset=0&screenHeight=1024&screenWidth=1280&colorDepth=24&devicePixelRatio=1&screenOrientation=landscape&profile.TCG=3&vendor_type=none&program_type=ImpactRadius&site_country=no&site_section=norton.com&content_title=3up_norton360_ns_nd_np_reading_tw_nb&site_language=no&traffic_source=affiliates&ExistingCustomer=existing_customer%3A%20No&site_sub_section=paidsearch¤t_subchannel=&site_content_title=3up_norton360_ns_nd_np_reading_tw_nb&original_subchannel=&profile.vendor_type=none&profile.program_type=ImpactRadius&profile.site_country=no&site_sub_sub_section=missing&%20profile.site_section=norton.com&profile.site_language=no&profile.%20traffic_source=affiliates&profile.ExistingCustomer=existing_customer%3A%20No&profile.%20site_sub_section=paidsearch&profile.current_subchannel=&profile.site_content_title=3up_norton360_ns_nd_np_reading_tw_nb&profile.original_subchannel=&mboxMCSDID=616AB7F197FC2DD3-4537514E0A5B5611&mboxMCGVID=74131807704026829144262333055826565972&mboxAAMB=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&mboxMCGLH=6 HTTP/1.1
Host: symantec.tt.omtrdc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://no.norton.com
Connection: keep-alive
Referer: https://no.norton.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 11 Nov 2022 18:43:10 GMT
content-type: application/json;charset=UTF-8
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
access-control-allow-origin: https://no.norton.com
access-control-allow-credentials: true
x-request-id: 509f8de54ed849c2802039c6aad906f0
p3p: CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
set-cookie: symantec!mboxSession=879203e6183542838d0fd77952904afa; Max-Age=1860; Expires=Fri, 11-Nov-2022 19:14:10 GMT; Domain=symantec.tt.omtrdc.net; Path=/; Secure; HttpOnly; SameSite=None
symantec!mboxPC=879203e6183542838d0fd77952904afa.37_0; Max-Age=63244800; Expires=Tue, 12-Nov-2024 18:43:10 GMT; Domain=symantec.tt.omtrdc.net; Path=/; Secure; HttpOnly; SameSite=None
pragma: no-cache
timing-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
server: jag
X-Firefox-Spdy: h2
static.doubleclick.net/instream/ad_status.js
142.250.74.166200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.166:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 11 Nov 2022 18:29:05 GMT
expires: Fri, 11 Nov 2022 18:44:05 GMT
cache-control: public, max-age=900
age: 846
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash cc6bc0328a0b47b32c004162363f93e7
ea2e2e8dc44f9f53d1329b44683455b8cb95113b
0d8a3c793b15d06d3ad4d4d1b4a637711cda1aaf113443fa9137077ba5edf1b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 18:43:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/id
216.58.211.2302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 216.58.211.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Fri, 11 Nov 2022 18:43:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash b5c02423b4932343467a4395820d995b
385483671c21d4a37ee28e7c26e8cc198342c7bc
6bd8edc328d729a185f6d4e8fdc03e00bba73c92f941c232ffaeeb5a180c9c16
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 18:43:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/id?slf_rd=1
216.58.211.2200 OK 120 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id?slf_rd=1
IP 216.58.211.2:0
Hash 8df3ece3cb182cc254c11c2beed01897
9c3584fa57387c34e2cf675c9221a208a288fcfe
328a4595a0310ef6453f633e1f0916612c49ef9ce54d2d6cd7a61c26afe070e0
GET /pagead/id?slf_rd=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Referer: https://www.youtube.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
content-type: application/json; charset=UTF-8
date: Fri, 11 Nov 2022 18:43:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 120
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 06d7d61a20669050493c3fd5d2b9798e
5d2d51f23582ef785072cdd0ca9ccf859b563b2d
653662665ea3298734fa313f693216a3932a64ac2903986d7415f60f97bcf27f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 18:43:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 06d7d61a20669050493c3fd5d2b9798e
5d2d51f23582ef785072cdd0ca9ccf859b563b2d
653662665ea3298734fa313f693216a3932a64ac2903986d7415f60f97bcf27f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 18:43:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash cc6bc0328a0b47b32c004162363f93e7
ea2e2e8dc44f9f53d1329b44683455b8cb95113b
0d8a3c793b15d06d3ad4d4d1b4a637711cda1aaf113443fa9137077ba5edf1b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 18:43:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash a7d7a5379a732fc5eadab78de886cc31
6df8c63644e97bf57262415f24e270c718e1758b
c355159cc937a19485f62cc446530f319749237e147adbb2c5784d1d2c20ed64
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 18:43:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.138200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 11 Nov 2022 18:43:11 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/js/th/G-wi0KRrIjmTWIDOn44AFVMvZ_aKLO1c96DfwAE3d4M.js
142.250.74.164200 OK 14 kB URL HTTP/2 www.google.com/js/th/G-wi0KRrIjmTWIDOn44AFVMvZ_aKLO1c96DfwAE3d4M.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (36143)
Hash a08dfd96c563f96f7d11b4858aecfa13
d9abee2c38b89d3dea85e76bb741bb8f4f993d49
fedde263fa3b4116029d93d0250f5eab845964d5fcf24e40ffbcd9bf292a0db4
GET /js/th/G-wi0KRrIjmTWIDOn44AFVMvZ_aKLO1c96DfwAE3d4M.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14211
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 09 Nov 2022 06:09:06 GMT
expires: Thu, 09 Nov 2023 06:09:06 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 03 Nov 2022 10:00:00 GMT
content-type: text/javascript
age: 218045
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.138200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.138:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 6790e8d3b44909b698eb114962092403
341b1d5d8270aabb548f9befcc16b27ae533be9a
721d68ca8c7c5e9ad65d591cf8bcb0adaf43ed8e94117d43aa808aed8c846a92
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 11 Nov 2022 18:43:11 GMT
server: ESF
cache-control: private
content-length: 30976
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 06d7d61a20669050493c3fd5d2b9798e
5d2d51f23582ef785072cdd0ca9ccf859b563b2d
653662665ea3298734fa313f693216a3932a64ac2903986d7415f60f97bcf27f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 18:43:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 7171d02d216ac649ab6e73f5337dfde4
e04e06ab17746f29d9135b7de044f18f0010058e
2ac7b22ebfeec974205fae0f553476fa49e4cbfb812212918490e937faf71250
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 18:43:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi/HbbecvDLoSM/maxresdefault.jpg?sqp=-oaymwEmCIAKENAF8quKqQMa8AEB-AHUBoAC4AOKAgwIABABGEYgWihyMA8=&rs=AOn4CLCqG4JMjzf4DLuZVfufmU8w-EmIkw
216.58.211.22200 OK 42 kB URL HTTP/2 i.ytimg.com/vi/HbbecvDLoSM/maxresdefault.jpg?sqp=-oaymwEmCIAKENAF8quKqQMa8AEB-AHUBoAC4AOKAgwIABABGEYgWihyMA8=&rs=AOn4CLCqG4JMjzf4DLuZVfufmU8w-EmIkw
IP 216.58.211.22:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3\012- data
Hash 971ea9ca0f180b1ab0bd79617e5a2971
d8475c49d2f01ae620b953fd287491db8a467ea5
6e84185a647a1d7b03aac16f232a33e1d1c1553b7b01ced695378caa5381d607
GET /vi/HbbecvDLoSM/maxresdefault.jpg?sqp=-oaymwEmCIAKENAF8quKqQMa8AEB-AHUBoAC4AOKAgwIABABGEYgWihyMA8=&rs=AOn4CLCqG4JMjzf4DLuZVfufmU8w-EmIkw HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 41927
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 11 Nov 2022 18:34:00 GMT
expires: Fri, 11 Nov 2022 20:34:00 GMT
cache-control: public, max-age=7200
age: 551
etag: "1623336704"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 7171d02d216ac649ab6e73f5337dfde4
e04e06ab17746f29d9135b7de044f18f0010058e
2ac7b22ebfeec974205fae0f553476fa49e4cbfb812212918490e937faf71250
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 18:43:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 2b484dd308df8e6db63c8a4756196a74
67e9033dc689e7e2d85a42a8e2be90d61603e5d5
d577a50be0e13828691959a8704e414cef6fb8aa8636a1aaccf95e9165f9e788
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 18:43:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/4Yl2QFmkHUq0kr-Lw0_9lJd4YN9EYUjfbGutMYWk2haviJr4FrOjEQ01Yma0xZkZAwMuUyW2RA=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 2.0 kB URL HTTP/2 yt3.ggpht.com/4Yl2QFmkHUq0kr-Lw0_9lJd4YN9EYUjfbGutMYWk2haviJr4FrOjEQ01Yma0xZkZAwMuUyW2RA=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data
Hash 5bb232e1cdf3d294276741580edcee1d
1bd4fbfed31e0cf42b90fd65e6ac4379df98825c
637f4c9af77d922cebe55ddcf2d14e3781481174b5a631434ed7be568b71e398
GET /4Yl2QFmkHUq0kr-Lw0_9lJd4YN9EYUjfbGutMYWk2haviJr4FrOjEQ01Yma0xZkZAwMuUyW2RA=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1969
x-xss-protection: 0
date: Fri, 11 Nov 2022 17:35:23 GMT
expires: Wed, 15 Jun 2022 07:18:30 GMT
cache-control: public, max-age=86400, no-transform
age: 4068
etag: "v1"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 2b484dd308df8e6db63c8a4756196a74
67e9033dc689e7e2d85a42a8e2be90d61603e5d5
d577a50be0e13828691959a8704e414cef6fb8aa8636a1aaccf95e9165f9e788
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 18:43:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ensighten.norton.com/symantec/aemprod/Bootstrap.js
34.242.179.188200 OK 103 kB URL HTTP/2 ensighten.norton.com/symantec/aemprod/Bootstrap.js
IP 34.242.179.188:0
File type C source, ASCII text, with very long lines (1780)
Size 103 kB (103005 bytes)
Hash ed48f69ec7d23b6fe2f07a771285eeb0
331107757e5df2df5fc6be993eac7c5d0a8050bf
606cc2f021f01e848636dc11b3208d93cc18f4ebfb31b6433aef206aae2ceca4
GET /symantec/aemprod/Bootstrap.js HTTP/1.1
Host: ensighten.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Cookie: dtCookie=v_4_srv_3_sn_A39EF7341271D9342B6C1A74F7192B86_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4e6f762d31312d323032322031303a34333a30377c4c43443d4e6f762d31312d323032322031303a34333a3037; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31312f31312f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31312d31312d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=FD74B37E7586049B8525C0455E9DAAC8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Fri, 11 Nov 2022 18:43:09 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: PENDING
last-modified: Wed, 09 Nov 2022 23:37:07 GMT
etag: W/"59d2c15b39de10c0aac0d182e092658a"
x-amz-server-side-encryption: AES256
cache-control: max-age=300
x-amz-version-id: qWaf96xPyhdcVrkGitVaZgnPFyIUKcrJ
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 7285dbd4c05f1133ea7048c8307b03ee.cloudfront.net (CloudFront)
x-amz-cf-pop: DUB56-P1
x-amz-cf-id: js76FSbGDjO38jSZVGESzUJMqAg6GgnUI6pyc6HlBWy6Pc-tpMcL_A==
age: 155142
X-Firefox-Spdy: h2
ensighten.norton.com/privacy/v1/c/r.rnc?n=0&c=21&i=75q9hr&p=aemprod&s=428&d=8BV7InZlcnNpb24iOiIxLjAuMCIsImdhdGV3YXkiOiIyLjMuNjAUAOJjbGllbnRJZCI6MjEsIg4A8B5OYW1lIjoic3ltYW50ZWMiLCJwdWJsaXNoUGF0aCI6ImFlbXByb2QiLCJtb2QqAPAwd2hpdGVsaXN0IiwiY29va2llcyI6eyJTWU1BTlRFQ19FTlNJR0hURU5fUFJJVkFDWV9CQU5ORVJfTE9BREVEowDxDyJ9LCJkdCI6MTY2ODE5MjE5MTA1Miwic2V0dGluZ08A8Sdtb2RhbCI6ImVudGVycHJpc2UiLCJlbnZpcm9ubWVudCI6Ik5PIE5vcnRvbiIsImRlZmF1bHQ7APEfU29jaWFsIE1lZGlhIjowLCJQZXJmb3JtYW5jZSBhbmQgRnVuY3Rpb25hbGl0eSIAskFkdmVydGlzaW5nEADwBG5hbHl0aWNzIjowfX0sImV2ZW5dACJbewsAIyI6-wBgQ2hhbmdlHgEP0AAABfgAwEFERUQiOiIxIn1dfQ
34.242.179.188204 No Content 0 B URL HTTP/2 ensighten.norton.com/privacy/v1/c/r.rnc?n=0&c=21&i=75q9hr&p=aemprod&s=428&d=8BV7InZlcnNpb24iOiIxLjAuMCIsImdhdGV3YXkiOiIyLjMuNjAUAOJjbGllbnRJZCI6MjEsIg4A8B5OYW1lIjoic3ltYW50ZWMiLCJwdWJsaXNoUGF0aCI6ImFlbXByb2QiLCJtb2QqAPAwd2hpdGVsaXN0IiwiY29va2llcyI6eyJTWU1BTlRFQ19FTlNJR0hURU5fUFJJVkFDWV9CQU5ORVJfTE9BREVEowDxDyJ9LCJkdCI6MTY2ODE5MjE5MTA1Miwic2V0dGluZ08A8Sdtb2RhbCI6ImVudGVycHJpc2UiLCJlbnZpcm9ubWVudCI6Ik5PIE5vcnRvbiIsImRlZmF1bHQ7APEfU29jaWFsIE1lZGlhIjowLCJQZXJmb3JtYW5jZSBhbmQgRnVuY3Rpb25hbGl0eSIAskFkdmVydGlzaW5nEADwBG5hbHl0aWNzIjowfX0sImV2ZW5dACJbewsAIyI6-wBgQ2hhbmdlHgEP0AAABfgAwEFERUQiOiIxIn1dfQ
IP 34.242.179.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /privacy/v1/c/r.rnc?n=0&c=21&i=75q9hr&p=aemprod&s=428&d=8BV7InZlcnNpb24iOiIxLjAuMCIsImdhdGV3YXkiOiIyLjMuNjAUAOJjbGllbnRJZCI6MjEsIg4A8B5OYW1lIjoic3ltYW50ZWMiLCJwdWJsaXNoUGF0aCI6ImFlbXByb2QiLCJtb2QqAPAwd2hpdGVsaXN0IiwiY29va2llcyI6eyJTWU1BTlRFQ19FTlNJR0hURU5fUFJJVkFDWV9CQU5ORVJfTE9BREVEowDxDyJ9LCJkdCI6MTY2ODE5MjE5MTA1Miwic2V0dGluZ08A8Sdtb2RhbCI6ImVudGVycHJpc2UiLCJlbnZpcm9ubWVudCI6Ik5PIE5vcnRvbiIsImRlZmF1bHQ7APEfU29jaWFsIE1lZGlhIjowLCJQZXJmb3JtYW5jZSBhbmQgRnVuY3Rpb25hbGl0eSIAskFkdmVydGlzaW5nEADwBG5hbHl0aWNzIjowfX0sImV2ZW5dACJbewsAIyI6-wBgQ2hhbmdlHgEP0AAABfgAwEFERUQiOiIxIn1dfQ HTTP/1.1
Host: ensighten.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Cookie: dtCookie=v_4_srv_3_sn_A39EF7341271D9342B6C1A74F7192B86_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4e6f762d31312d323032322031303a34333a30377c4c43443d4e6f762d31312d323032322031303a34333a3037; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31312f31312f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31312d31312d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=FD74B37E7586049B8525C0455E9DAAC8; ttControl=5443473d33; AMCV_67C716D751E567F70A490D4C%40AdobeOrg=-1124106680%7CMCIDTS%7C19308%7CMCMID%7C74131807704026829144262333055826565972%7CMCAAMLH-1668796990%7C6%7CMCAAMB-1668796990%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1668199390s%7CNONE%7CvVersion%7C5.2.0; at_check=true; mbox=session#879203e6183542838d0fd77952904afa#1668194051|PC#879203e6183542838d0fd77952904afa.37_0#1731436991; promocode=DEFAULTWEB; AMCVS_67C716D751E567F70A490D4C%40AdobeOrg=1; s_prop22=hho_aff_312695; s_nr=1668192190321-New; event69=event69; channelStack=s_eVar72~norton.com; s_gpv=norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_gpv_custom=norton.com%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_cc=true; SYMANTEC_ENSIGHTEN_PRIVACY_BANNER_LOADED=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Fri, 11 Nov 2022 18:43:11 GMT
expires: Fri, 11 Nov 2022 18:43:10 GMT
cache-control: no-cache, no-store
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.138200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 11 Nov 2022 18:43:11 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.138200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.138:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 9ca9a23a48a3a14cc21f6a23846246d3
f23d420b582d9c78dea1b8ea227b486e3b8d5efc
962582f997d4eb1d6591b3b4052f5336755f940ae8f92925e71613a06d3c1b36
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 936
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 11 Nov 2022 18:43:11 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
buy.norton.com/redirector/seo?callback=jQuery31101082505711738615_1668192189984&ptype=cartpopover&COUNTRY=NO&LANGUAGE=no&_=1668192189985
23.32.109.171200 OK 64 B URL HTTP/2 buy.norton.com/redirector/seo?callback=jQuery31101082505711738615_1668192189984&ptype=cartpopover&COUNTRY=NO&LANGUAGE=no&_=1668192189985
IP 23.32.109.171:0
Hash a79459e33aa8ff7f44df661a8e0addd5
fc3952ec0aca6a89debe8ef07de85abd6d677e4d
a9ae3d8b09253c9e44ac8eafbddef6c4e1472ebd3ba3c60db2d6759643afdcb2
GET /redirector/seo?callback=jQuery31101082505711738615_1668192189984&ptype=cartpopover&COUNTRY=NO&LANGUAGE=no&_=1668192189985 HTTP/1.1
Host: buy.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Cookie: dtCookie=v_4_srv_3_sn_A39EF7341271D9342B6C1A74F7192B86_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; JSESSIONID=FD74B37E7586049B8525C0455E9DAAC8; X-CSRF-TOKEN=gFDE9B_xBnhsmhWB4BS4Td4cB0U9ofD6tkGTcVV3rGo_; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4e6f762d31312d323032322031303a34333a30377c4c43443d4e6f762d31312d323032322031303a34333a3037; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31312f31312f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31312d31312d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=FD74B37E7586049B8525C0455E9DAAC8; ESID=027569f588-be01-42YX-buhCDPA1q-k8HpvOCpuJM4actMaCHguiH46b6MPaWihVUOpY24Bye1-11_4vvCjg; ttControl=5443473d33; AMCV_67C716D751E567F70A490D4C%40AdobeOrg=-1124106680%7CMCIDTS%7C19308%7CMCMID%7C74131807704026829144262333055826565972%7CMCAAMLH-1668796990%7C6%7CMCAAMB-1668796990%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1668199390s%7CNONE%7CvVersion%7C5.2.0; at_check=true; mbox=session#879203e6183542838d0fd77952904afa#1668194051|PC#879203e6183542838d0fd77952904afa.37_0#1731436991; promocode=DEFAULTWEB; AMCVS_67C716D751E567F70A490D4C%40AdobeOrg=1; s_prop22=hho_aff_312695; s_nr=1668192190321-New; event69=event69; channelStack=s_eVar72~norton.com; s_gpv=norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_gpv_custom=norton.com%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_cc=true; SYMANTEC_ENSIGHTEN_PRIVACY_BANNER_LOADED=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript;charset=utf-8
content-length: 64
x-oneagent-js-injection: true
server-timing: dtRpid;desc="-1569117339", dtSInfo;desc="0"
requestid: e714d85019d20000
strict-transport-security: max-age=31536000; includeSubDomains
expires: Fri, 11 Nov 2022 18:43:11 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 11 Nov 2022 18:43:11 GMT
X-Firefox-Spdy: h2
ensighten.norton.com/privacy/v1/b/r.rnc?n=1&c=21&i=5wnrpw&p=aemprod&s=8522&d=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-IAUR8y4gBmHzbiAAfxGXN5bWFudGVjLmRlbWRleC5uZXQvZGVzdDUuaHRtbD9kX25zaWQ9MCP0AZklM0ElMkYlMkb6ATMiLCLdAVBpZnJhbWQCC-ABWzkwMzA3_gBIOTAzMeABAjwA4V9ET01BdHRyTW9kaWZp2AEyc3Rh6wFRYmxvY2sTAAbrAWEiV2hpdGXcAQ_2AQnjIkFuYWx5dGljcyJdLCIBAq84MjczMTE0OTU3HwEH4WNtLmV2ZXJlc3R0ZWNoHgH3JGNtL2RkP2RfdXVpZD03Mzk4MjcyNjI1ODYxODcwNzM5NDI4MjI5MDE2NzI5MjA0MTE4OSIBIm1nvgII_wIACwEfNh8BABc3_wI_aW1nHAFGqGR2ZXJ0aXNpbmceAY82ODQ3NzQ2MR4BCDhvbXMCBFRiL3NzL1ECABME8GwxL0pTLTIuMjIuMC9zMjYzNjA1MzEwMTk4P0FRQj0xJm5kaD0xJnBmPTEmdD0xMSUyRjEwJTJGMjAyMiUyMDE4JTNBNDMlM0ExMCUyMDUlMjAwJnNkaWQ9NjE2QUI3RjE5N0ZDMkREMy00NTM3NTE0RTBBNUI1NjExJm2cAfUyNDEzMTgwNzcwNDAyNjgyOTE0NDI2MjMzMzA1NTgyNjU2NTk3MiZhYW1saD02JmNlPVVURi04JnBhZ2VOYW1lPW7dBPIKJTNBbm8lM0FwYWlkc2VhcmNoJTNBM3VwXwAF_w4zNjBfbnNfbmRfbnBfUmVhZGluZ190d19uYiZnPToDCI8lMkZwcyUyRkoAEQGQA_E2JTNGaXJnd2MlM0QxJTI2Y2xpY2tpZCUzRFc0VjNwVzN5Y3h5TlI1QlhpYTJGM1NmblVrRFNtb1RORDFNT1JNMCUyNmFkMQDyCzEwNzgxMjQlMjZJUklEJTNEMzEyNjk1JTI2cgXDJTNEaXImc2VydmVyCQHCJnYwPWhob19hZmZfLgCBJmV2ZW50cz0HAKE3OSUzRDI1JTJDDwAgNjlaAfAwYj02RzF5blljTFB1aVF4WVpyc3pfcGtxZkxHOXlNWEJwYjJ6WDVkdkpkWVFKelBYSW1kajB5JmMyPW5vJmMzBgDAdjU9bm9uZSZjMTQ9qQBzdjE2JnYxNpUA8QElM0FhZmZpbGlhdGUmdjE4IwAEwgFBJnYyMREAfGMyMSZjMjK_ADN2MjcfADImdjI7ANpjMyZjMzU9JTNFJTIw7gAyJTIw7wEA7wYPEgInPHYzNYgAM2M0Mc8AAFsAMyZ2NLYAcDQxJmM0Nj2KBVAmYzQ3PdgAsyZ2NDc9c19jb2RlfgJfJmM0OD1DAgQZco0CI3Y05QB2NDkmYzQ5Pc8CQiZ2NDkLAY80OCZ2NTc9Nz0DEzdjNTm6AA8iAyIjdjV6APAHNTkmdjY2PUltcGFjdFJhZGl1cyZ2NwoCQXJ0b24aATFjNzWmANB2NTcmdjkwPWV4aXN0bQOBY3VzdG9tZXKiBmAwTm8mdjk4ATF0cHMSAA20Bg96Ax7xEyZzPTEyODB4MTAyNCZjPTI0Jmo9MS42JnY9TiZrPVkmYncgANAmYmg9OTM5Jm1jb3JnqgT_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-rCgJRBnJwcm9ncmFtEgAJdgRgc2l0ZV9j8gEgcnmDBgEQADBzZWMADQfvBO8mY29udGVudF90aXRsZYMFEwFLAFBsYW5ndbYCUG5vJnRywAYiY1_HAxA9DQABzQYzcyZF3QQTQ9wED-4ECAFWAERzdWJfpQAH2gVAY3VycqUAwXN1YmNoYW5uZWw9JjAAD74AIJhvcmlnaW5hbF9NAARnAQ9hAQEBgAEPaQEHBDsAA5AAOHVudHEBANAAAAQAA3kBMG1pc6QKSSYlMjA4AAT0AAadBwX6AQFYAAhuAQQ5AD8lMjB5AQcEJQAPgQEYBDMAMSUyMHQAD4wBBAQnAA-UAQEEHAABQAAPnAEgBEAAD6QBAgDFA29NQ1NESUQ9CxGfYm94TUNHVklEBwgVAF8AT0FBTULuCSMAPgB2TUNHTEg9NgcHDykQAl45MDMzMCoNABQAAkADHyIpEEFAMzAyMgIHDwoNCA__Bv_______3EXMSkUDygXPw__BhAPCRT______2AdOQINKDU5SxsxbXV0CxEiT2LAFxJBcxoCRhs_bG9hLh0hBQQUHzMEFAc4YnV5Dxr3JHJlZGlyZWN0b3Ivc2VvP2NhbGxiYWNrPWpRdWVyeTMxMTAxMDgyNTA1NzExNzM4NjE1X1UTQTg0JnCsEfAQY2FydHBvcG92ZXImQ09VTlRSWT1OTyZMQU5HVUFHRaARGF-OEyY4NUUOYnNjcmlwdP8ACXIbPTEwNkgORzEyNThJB6BhcHBlbmRDaGlsMAEFhhwPQAEljzk5Mzg3MzA1RBUID0ABmiw3NYYCC0ABDIYCIkNMiAEPhwIrwDk5Mzg3MzA2NX1dfQ
34.242.179.188204 No Content 0 B URL HTTP/2 ensighten.norton.com/privacy/v1/b/r.rnc?n=1&c=21&i=5wnrpw&p=aemprod&s=8522&d=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-IAUR8y4gBmHzbiAAfxGXN5bWFudGVjLmRlbWRleC5uZXQvZGVzdDUuaHRtbD9kX25zaWQ9MCP0AZklM0ElMkYlMkb6ATMiLCLdAVBpZnJhbWQCC-ABWzkwMzA3_gBIOTAzMeABAjwA4V9ET01BdHRyTW9kaWZp2AEyc3Rh6wFRYmxvY2sTAAbrAWEiV2hpdGXcAQ_2AQnjIkFuYWx5dGljcyJdLCIBAq84MjczMTE0OTU3HwEH4WNtLmV2ZXJlc3R0ZWNoHgH3JGNtL2RkP2RfdXVpZD03Mzk4MjcyNjI1ODYxODcwNzM5NDI4MjI5MDE2NzI5MjA0MTE4OSIBIm1nvgII_wIACwEfNh8BABc3_wI_aW1nHAFGqGR2ZXJ0aXNpbmceAY82ODQ3NzQ2MR4BCDhvbXMCBFRiL3NzL1ECABME8GwxL0pTLTIuMjIuMC9zMjYzNjA1MzEwMTk4P0FRQj0xJm5kaD0xJnBmPTEmdD0xMSUyRjEwJTJGMjAyMiUyMDE4JTNBNDMlM0ExMCUyMDUlMjAwJnNkaWQ9NjE2QUI3RjE5N0ZDMkREMy00NTM3NTE0RTBBNUI1NjExJm2cAfUyNDEzMTgwNzcwNDAyNjgyOTE0NDI2MjMzMzA1NTgyNjU2NTk3MiZhYW1saD02JmNlPVVURi04JnBhZ2VOYW1lPW7dBPIKJTNBbm8lM0FwYWlkc2VhcmNoJTNBM3VwXwAF_w4zNjBfbnNfbmRfbnBfUmVhZGluZ190d19uYiZnPToDCI8lMkZwcyUyRkoAEQGQA_E2JTNGaXJnd2MlM0QxJTI2Y2xpY2tpZCUzRFc0VjNwVzN5Y3h5TlI1QlhpYTJGM1NmblVrRFNtb1RORDFNT1JNMCUyNmFkMQDyCzEwNzgxMjQlMjZJUklEJTNEMzEyNjk1JTI2cgXDJTNEaXImc2VydmVyCQHCJnYwPWhob19hZmZfLgCBJmV2ZW50cz0HAKE3OSUzRDI1JTJDDwAgNjlaAfAwYj02RzF5blljTFB1aVF4WVpyc3pfcGtxZkxHOXlNWEJwYjJ6WDVkdkpkWVFKelBYSW1kajB5JmMyPW5vJmMzBgDAdjU9bm9uZSZjMTQ9qQBzdjE2JnYxNpUA8QElM0FhZmZpbGlhdGUmdjE4IwAEwgFBJnYyMREAfGMyMSZjMjK_ADN2MjcfADImdjI7ANpjMyZjMzU9JTNFJTIw7gAyJTIw7wEA7wYPEgInPHYzNYgAM2M0Mc8AAFsAMyZ2NLYAcDQxJmM0Nj2KBVAmYzQ3PdgAsyZ2NDc9c19jb2RlfgJfJmM0OD1DAgQZco0CI3Y05QB2NDkmYzQ5Pc8CQiZ2NDkLAY80OCZ2NTc9Nz0DEzdjNTm6AA8iAyIjdjV6APAHNTkmdjY2PUltcGFjdFJhZGl1cyZ2NwoCQXJ0b24aATFjNzWmANB2NTcmdjkwPWV4aXN0bQOBY3VzdG9tZXKiBmAwTm8mdjk4ATF0cHMSAA20Bg96Ax7xEyZzPTEyODB4MTAyNCZjPTI0Jmo9MS42JnY9TiZrPVkmYncgANAmYmg9OTM5Jm1jb3JnqgT_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-rCgJRBnJwcm9ncmFtEgAJdgRgc2l0ZV9j8gEgcnmDBgEQADBzZWMADQfvBO8mY29udGVudF90aXRsZYMFEwFLAFBsYW5ndbYCUG5vJnRywAYiY1_HAxA9DQABzQYzcyZF3QQTQ9wED-4ECAFWAERzdWJfpQAH2gVAY3VycqUAwXN1YmNoYW5uZWw9JjAAD74AIJhvcmlnaW5hbF9NAARnAQ9hAQEBgAEPaQEHBDsAA5AAOHVudHEBANAAAAQAA3kBMG1pc6QKSSYlMjA4AAT0AAadBwX6AQFYAAhuAQQ5AD8lMjB5AQcEJQAPgQEYBDMAMSUyMHQAD4wBBAQnAA-UAQEEHAABQAAPnAEgBEAAD6QBAgDFA29NQ1NESUQ9CxGfYm94TUNHVklEBwgVAF8AT0FBTULuCSMAPgB2TUNHTEg9NgcHDykQAl45MDMzMCoNABQAAkADHyIpEEFAMzAyMgIHDwoNCA__Bv_______3EXMSkUDygXPw__BhAPCRT______2AdOQINKDU5SxsxbXV0CxEiT2LAFxJBcxoCRhs_bG9hLh0hBQQUHzMEFAc4YnV5Dxr3JHJlZGlyZWN0b3Ivc2VvP2NhbGxiYWNrPWpRdWVyeTMxMTAxMDgyNTA1NzExNzM4NjE1X1UTQTg0JnCsEfAQY2FydHBvcG92ZXImQ09VTlRSWT1OTyZMQU5HVUFHRaARGF-OEyY4NUUOYnNjcmlwdP8ACXIbPTEwNkgORzEyNThJB6BhcHBlbmRDaGlsMAEFhhwPQAEljzk5Mzg3MzA1RBUID0ABmiw3NYYCC0ABDIYCIkNMiAEPhwIrwDk5Mzg3MzA2NX1dfQ
IP 34.242.179.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /privacy/v1/b/r.rnc?n=1&c=21&i=5wnrpw&p=aemprod&s=8522&d=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-IAUR8y4gBmHzbiAAfxGXN5bWFudGVjLmRlbWRleC5uZXQvZGVzdDUuaHRtbD9kX25zaWQ9MCP0AZklM0ElMkYlMkb6ATMiLCLdAVBpZnJhbWQCC-ABWzkwMzA3_gBIOTAzMeABAjwA4V9ET01BdHRyTW9kaWZp2AEyc3Rh6wFRYmxvY2sTAAbrAWEiV2hpdGXcAQ_2AQnjIkFuYWx5dGljcyJdLCIBAq84MjczMTE0OTU3HwEH4WNtLmV2ZXJlc3R0ZWNoHgH3JGNtL2RkP2RfdXVpZD03Mzk4MjcyNjI1ODYxODcwNzM5NDI4MjI5MDE2NzI5MjA0MTE4OSIBIm1nvgII_wIACwEfNh8BABc3_wI_aW1nHAFGqGR2ZXJ0aXNpbmceAY82ODQ3NzQ2MR4BCDhvbXMCBFRiL3NzL1ECABME8GwxL0pTLTIuMjIuMC9zMjYzNjA1MzEwMTk4P0FRQj0xJm5kaD0xJnBmPTEmdD0xMSUyRjEwJTJGMjAyMiUyMDE4JTNBNDMlM0ExMCUyMDUlMjAwJnNkaWQ9NjE2QUI3RjE5N0ZDMkREMy00NTM3NTE0RTBBNUI1NjExJm2cAfUyNDEzMTgwNzcwNDAyNjgyOTE0NDI2MjMzMzA1NTgyNjU2NTk3MiZhYW1saD02JmNlPVVURi04JnBhZ2VOYW1lPW7dBPIKJTNBbm8lM0FwYWlkc2VhcmNoJTNBM3VwXwAF_w4zNjBfbnNfbmRfbnBfUmVhZGluZ190d19uYiZnPToDCI8lMkZwcyUyRkoAEQGQA_E2JTNGaXJnd2MlM0QxJTI2Y2xpY2tpZCUzRFc0VjNwVzN5Y3h5TlI1QlhpYTJGM1NmblVrRFNtb1RORDFNT1JNMCUyNmFkMQDyCzEwNzgxMjQlMjZJUklEJTNEMzEyNjk1JTI2cgXDJTNEaXImc2VydmVyCQHCJnYwPWhob19hZmZfLgCBJmV2ZW50cz0HAKE3OSUzRDI1JTJDDwAgNjlaAfAwYj02RzF5blljTFB1aVF4WVpyc3pfcGtxZkxHOXlNWEJwYjJ6WDVkdkpkWVFKelBYSW1kajB5JmMyPW5vJmMzBgDAdjU9bm9uZSZjMTQ9qQBzdjE2JnYxNpUA8QElM0FhZmZpbGlhdGUmdjE4IwAEwgFBJnYyMREAfGMyMSZjMjK_ADN2MjcfADImdjI7ANpjMyZjMzU9JTNFJTIw7gAyJTIw7wEA7wYPEgInPHYzNYgAM2M0Mc8AAFsAMyZ2NLYAcDQxJmM0Nj2KBVAmYzQ3PdgAsyZ2NDc9c19jb2RlfgJfJmM0OD1DAgQZco0CI3Y05QB2NDkmYzQ5Pc8CQiZ2NDkLAY80OCZ2NTc9Nz0DEzdjNTm6AA8iAyIjdjV6APAHNTkmdjY2PUltcGFjdFJhZGl1cyZ2NwoCQXJ0b24aATFjNzWmANB2NTcmdjkwPWV4aXN0bQOBY3VzdG9tZXKiBmAwTm8mdjk4ATF0cHMSAA20Bg96Ax7xEyZzPTEyODB4MTAyNCZjPTI0Jmo9MS42JnY9TiZrPVkmYncgANAmYmg9OTM5Jm1jb3JnqgT_GTdDNzE2RDc1MUU1NjdGNzBBNDkwRDRDJTQwQWRvYmVPcmcmQVFFPTEjBg8fMiMGAAAUAAKwAz8iOiIjBgwfYSoJJq84MTc1Mjk1OTMwKQcHBPcFoS50dC5vbXRyZGMtByVtMhEGYC9tYm94Lw4KED8KAMA9c3ltX2dsb2JhbF8QABAmBQAwU2VzGgvxEj04NzkyMDNlNjE4MzU0MjgzOGQwZmQ3Nzk1MjkwNGFmYS0AMlBDPQgA8RVhZ2U9ODBkYjNmOGZkOTlkNGIwMzg3MDAyYjJkYjVhMmJiZjkqAPEVUmlkPTUwOWY4ZGU1NGVkODQ5YzI4MDIwMzljNmFhZDkwNmYwKQASVqILYT0xLjguMhIAcUNvdW50PTEMAFdUaW1lPagKEjE1AFlIb3N0PRoJAS4AP1VSTAQGqgCYAYJSZWZlcnJlcnEB8Q5YRG9tYWluPWVuYWJsZWQmYnJvd3NlckhlaWdodP8CAxIApFdpZHRoPTEyNjgkAAA7AfMAT2Zmc2V0PTAmc2NyZWVuNwABWQMCEgAENwDQODAmY29sb3JEZXB0aHMD8wNkZXZpY2VQaXhlbFJhdGlvPTFEACBPciwNABMA8BJuPWxhbmRzY2FwZSZwcm9maWxlLlRDRz0zJnZlbmRvcl-rCgJRBnJwcm9ncmFtEgAJdgRgc2l0ZV9j8gEgcnmDBgEQADBzZWMADQfvBO8mY29udGVudF90aXRsZYMFEwFLAFBsYW5ndbYCUG5vJnRywAYiY1_HAxA9DQABzQYzcyZF3QQTQ9wED-4ECAFWAERzdWJfpQAH2gVAY3VycqUAwXN1YmNoYW5uZWw9JjAAD74AIJhvcmlnaW5hbF9NAARnAQ9hAQEBgAEPaQEHBDsAA5AAOHVudHEBANAAAAQAA3kBMG1pc6QKSSYlMjA4AAT0AAadBwX6AQFYAAhuAQQ5AD8lMjB5AQcEJQAPgQEYBDMAMSUyMHQAD4wBBAQnAA-UAQEEHAABQAAPnAEgBEAAD6QBAgDFA29NQ1NESUQ9CxGfYm94TUNHVklEBwgVAF8AT0FBTULuCSMAPgB2TUNHTEg9NgcHDykQAl45MDMzMCoNABQAAkADHyIpEEFAMzAyMgIHDwoNCA__Bv_______3EXMSkUDygXPw__BhAPCRT______2AdOQINKDU5SxsxbXV0CxEiT2LAFxJBcxoCRhs_bG9hLh0hBQQUHzMEFAc4YnV5Dxr3JHJlZGlyZWN0b3Ivc2VvP2NhbGxiYWNrPWpRdWVyeTMxMTAxMDgyNTA1NzExNzM4NjE1X1UTQTg0JnCsEfAQY2FydHBvcG92ZXImQ09VTlRSWT1OTyZMQU5HVUFHRaARGF-OEyY4NUUOYnNjcmlwdP8ACXIbPTEwNkgORzEyNThJB6BhcHBlbmRDaGlsMAEFhhwPQAEljzk5Mzg3MzA1RBUID0ABmiw3NYYCC0ABDIYCIkNMiAEPhwIrwDk5Mzg3MzA2NX1dfQ HTTP/1.1
Host: ensighten.norton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Cookie: dtCookie=v_4_srv_3_sn_A39EF7341271D9342B6C1A74F7192B86_perc_100000_ol_0_mul_1_app-3A8eab1c7fef283cee_0; cv=exist; SSE=""; es=4e56533d317c5353473d7c4643443d4e6f762d31312d323032322031303a34333a30377c4c43443d4e6f762d31312d323032322031303a34333a3037; tp=4f53433d4f6e6c696e652028317374297c4353433d4f6e6c696e652028317374297c4950533d7c4459523d307c4445583d31312f31312f323032327c4950433d7c4950463d7c4950563d7c4955433d7c4950443d53796d616e7465637c49504c3d6e6f7c4944503d7c5043493d7c534b543d7c454e503d7c4954443d7c5452533d616666696c696174657c50534e3d7c4447463d7c4c49433d7c4d49443d7c52554c3d7c4653563d; COUNTRY=NO; LANGUAGE=no; pr=5043443d31312d31312d323032327c5049443d3331323639357c5349443d7c5054593d496d70616374526164697573; PROGRAMID=312695; PROGRAM_TYPE=ImpactRadius; SHOPPERID=""; LSTID=""; TLID=FD74B37E7586049B8525C0455E9DAAC8; ttControl=5443473d33; AMCV_67C716D751E567F70A490D4C%40AdobeOrg=-1124106680%7CMCIDTS%7C19308%7CMCMID%7C74131807704026829144262333055826565972%7CMCAAMLH-1668796990%7C6%7CMCAAMB-1668796990%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1668199390s%7CNONE%7CvVersion%7C5.2.0; at_check=true; mbox=session#879203e6183542838d0fd77952904afa#1668194051|PC#879203e6183542838d0fd77952904afa.37_0#1731436991; promocode=DEFAULTWEB; AMCVS_67C716D751E567F70A490D4C%40AdobeOrg=1; s_prop22=hho_aff_312695; s_nr=1668192190321-New; event69=event69; channelStack=s_eVar72~norton.com; s_gpv=norton.com%3Ano%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_gpv_custom=norton.com%3Apaidsearch%3A3up_norton360_ns_nd_np_Reading_tw_nb; s_cc=true; SYMANTEC_ENSIGHTEN_PRIVACY_BANNER_LOADED=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Fri, 11 Nov 2022 18:43:12 GMT
expires: Fri, 11 Nov 2022 18:43:11 GMT
cache-control: no-cache, no-store
X-Firefox-Spdy: h2
www.youtube.com/embed/HbbecvDLoSM?rel=0%20
142.250.74.110200 OK 0 B URL HTTP/2 www.youtube.com/embed/HbbecvDLoSM?rel=0%20
IP 142.250.74.110:0
GET /embed/HbbecvDLoSM?rel=0%20 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no.norton.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 11 Nov 2022 18:43:10 GMT
strict-transport-security: max-age=31536000
content-security-policy-report-only: base-uri 'self';default-src 'self' https: blob:;font-src https: data:;img-src https: data: android-webview-video-poster:;media-src blob: https:;object-src 'none';script-src 'nonce-It4vHhwtesDRmulQCemJ0g' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';style-src https: 'unsafe-inline';report-uri /cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=k_WdNAEYz6Q; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=2E4RwLw6rHY; Domain=.youtube.com; Expires=Wed, 10-May-2023 18:43:10 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+786; expires=Sun, 10-Nov-2024 18:43:10 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2