r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cdbad2434b7d127a4fc769807a9dc3e7
fa98cd9fc2309ab4423f33f683d17bdb17d76713
560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6097
Expires: Tue, 29 Nov 2022 01:18:18 GMT
Date: Mon, 28 Nov 2022 23:36:41 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9408cc0694fcbea57966c3a3ba906092
fddcee1fdcf3209298e41a4b1b5560357fa165f0
6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5645
Cache-Control: max-age=131325
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 23:36:41 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 12:05:26 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3b56944f0e5716fd4fad2ec18994d4be
61cafa4de31ba960d1145ec37272f6f6b6944e0c
4fd46b0b6a2ea24f5ce175985a3933c04b4c01bd3e32bee2e50a61a65eef7af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4FD46B0B6A2EA24F5CE175985A3933C04B4C01BD3E32BEE2E50A61A65EEF7AF4"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6783
Expires: Tue, 29 Nov 2022 01:29:44 GMT
Date: Mon, 28 Nov 2022 23:36:41 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 28 Nov 2022 23:19:33 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1028
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: O6Ewuu70NHCxUTWrJBJwEAqJBfCuuTcBXLV8SAWUl3Q08iTOp9GJJm9cQblJLsYoV/1RgspW/sM=
x-amz-request-id: MAGMRM4MH5MX9N3J
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 28 Nov 2022 22:42:15 GMT
age: 3266
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 23:36:41 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 28 Nov 2022 23:11:12 GMT
cache-control: public,max-age=3600
age: 1529
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7ab2ef968cb6a3078f4b9cb2dda813d4
e669116047ca058a2c1b2999ff0ea8682719162c
6ddecf0b21c44f3851da8efeb6ecdc6c8e9b83d7681153c31952b4ec8c23c940
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3975
Cache-Control: max-age=124588
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 23:36:42 GMT
Etag: "63847a2f-1d7"
Expires: Wed, 30 Nov 2022 10:13:10 GMT
Last-Modified: Mon, 28 Nov 2022 09:06:55 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.43.228.5101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.228.5:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: hBDyE5wf2Thgv3pQL3K2ng==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: z8lvhzKrnjUy4lKryvXFDvMsE98=
ww1.cals-web.net/?sub1=2d4aff9e-6f72-11ed-be1f-d81601bd39f3
64.190.63.136200 OK 1.4 kB URL HTTP/1.1 ww1.cals-web.net/?sub1=2d4aff9e-6f72-11ed-be1f-d81601bd39f3
IP 64.190.63.136:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (762)
Hash be88f21e48c38c4574751d23278a9c84
d6a992b7cfe4c53348ece746a5dfc548f9b46f2f
102de767bff179ac8d03117401697656ff08548802e744435daf1c49b51da99e
GET /?sub1=2d4aff9e-6f72-11ed-be1f-d81601bd39f3 HTTP/1.1
Host: ww1.cals-web.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
date: Mon, 28 Nov 2022 23:36:42 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
vary: Accept-Encoding
x-powered-by: PHP/8.1.9
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_0mysOQtY7TdDwb+8vmVffgRHxKtyS3k/cKp6Pdz8Ctwde3s4+JsKmE+TGF+ObfmRPLSerkq2mz6k2jLKF/ZYZA==
last-modified: Mon, 28 Nov 2022 23:36:41 GMT
x-cache-miss-from: parking-d7dbd8c4d-xpwcs
server: NginX
content-encoding: gzip
ww1.cals-web.net/search/tsc.php?200=NDExNDE5NDUx&21=OTEuOTAuNDIuMTU0&681=MTY2OTY3ODYwMjUyZDJiYmY0Yjg2MzZlN2YxMGNjYjAwNzIwNDY1ZWE1&crc=9df697285266e34ab49e062fed39a0f263cfc827&cv=1
64.190.63.136200 OK 0 B URL HTTP/1.1 ww1.cals-web.net/search/tsc.php?200=NDExNDE5NDUx&21=OTEuOTAuNDIuMTU0&681=MTY2OTY3ODYwMjUyZDJiYmY0Yjg2MzZlN2YxMGNjYjAwNzIwNDY1ZWE1&crc=9df697285266e34ab49e062fed39a0f263cfc827&cv=1
IP 64.190.63.136:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /search/tsc.php?200=NDExNDE5NDUx&21=OTEuOTAuNDIuMTU0&681=MTY2OTY3ODYwMjUyZDJiYmY0Yjg2MzZlN2YxMGNjYjAwNzIwNDY1ZWE1&crc=9df697285266e34ab49e062fed39a0f263cfc827&cv=1 HTTP/1.1
Host: ww1.cals-web.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww1.cals-web.net/?sub1=2d4aff9e-6f72-11ed-be1f-d81601bd39f3
HTTP/1.1 200 OK
date: Mon, 28 Nov 2022 23:36:42 GMT
content-type: text/html; charset=UTF-8
content-length: 0
x-powered-by: PHP/8.1.9
x-cache-miss-from: parking-d7dbd8c4d-cp8v7
server: NginX
img.sedoparking.com/images/js_preloader.gif
205.234.175.175200 OK 4.3 kB URL HTTP/1.1 img.sedoparking.com/images/js_preloader.gif
IP 205.234.175.175:0
File type GIF image data, version 89a, 16 x 16\012- data
Hash 90c93102a88c2ab94bff1575b7a6e86e
56d71bf13de464534643db9d127629a0a3bf677a
5f6ad7031600056b578a6e8c6b34bc718d13125cc8256aa4a9050e549576f81a
GET /images/js_preloader.gif HTTP/1.1
Host: img.sedoparking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww1.cals-web.net/
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 23:36:42 GMT
Content-Type: image/gif
Content-Length: 4254
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=604800
Expires: Mon, 05 Dec 2022 23:36:42 GMT
X-CFHash: "90c93102a88c2ab94bff1575b7a6e86e"
X-CFF: B
Last-Modified: Fri, 15 Mar 2019 12:24:07 GMT
X-CF3: H
CF4Age: 156700
x-cf-tsc: 1648179742
CF4ttl: 31536000.000
X-CF2: H
Server: CFS 0215
X-CF-ReqID: 675dfed32e74b02491a4ff7b3831e617
X-CF1: 11696:fA.arn1:cf:cacheN.arn1-01:H
Accept-Ranges: bytes
ww1.cals-web.net/search/redirect.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DPlZER5QfFB8_0&v=YmY2ZDNjZjc3MGIxY2RkNDVjOTczOGYyY2U5Nzg1NDkJMQl3dzEuY2Fscy13ZWIubmV0NjM4NTQ2MDk1OGNjMDkuODc4MTc5NDcJd3cxLmNhbHMtd2ViLm5ldDYzODU0NjA5NThjZWM5LjA4ODA1MDI5CTE2Njk2Nzg2MDIJYWRfNjNfMA==&l=OAlmNjQ3MjVmZmEzOWVmNWVlZmEwMTVlNjlmMzNkZDc0ZgkwCTM1CTAJMDU3ZDdjZjlmMTQyNTkzMjc4ZjA1OGRiNTQ3MDY4MjcJNDExNDE5NDUxCWNhbHMtd2ViCTAJNjMJNgkyCTE2Njk2Nzg2MDIJMC4wMDA0MDgJTgkwCTAJMAkxMjA1CTM5MjcyOTA3MQk5MS45MC40Mi4xNTQJMA%3D%3D
64.190.63.136302 Found 0 B URL HTTP/1.1 ww1.cals-web.net/search/redirect.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DPlZER5QfFB8_0&v=YmY2ZDNjZjc3MGIxY2RkNDVjOTczOGYyY2U5Nzg1NDkJMQl3dzEuY2Fscy13ZWIubmV0NjM4NTQ2MDk1OGNjMDkuODc4MTc5NDcJd3cxLmNhbHMtd2ViLm5ldDYzODU0NjA5NThjZWM5LjA4ODA1MDI5CTE2Njk2Nzg2MDIJYWRfNjNfMA==&l=OAlmNjQ3MjVmZmEzOWVmNWVlZmEwMTVlNjlmMzNkZDc0ZgkwCTM1CTAJMDU3ZDdjZjlmMTQyNTkzMjc4ZjA1OGRiNTQ3MDY4MjcJNDExNDE5NDUxCWNhbHMtd2ViCTAJNjMJNgkyCTE2Njk2Nzg2MDIJMC4wMDA0MDgJTgkwCTAJMAkxMjA1CTM5MjcyOTA3MQk5MS45MC40Mi4xNTQJMA%3D%3D
IP 64.190.63.136:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /search/redirect.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DPlZER5QfFB8_0&v=YmY2ZDNjZjc3MGIxY2RkNDVjOTczOGYyY2U5Nzg1NDkJMQl3dzEuY2Fscy13ZWIubmV0NjM4NTQ2MDk1OGNjMDkuODc4MTc5NDcJd3cxLmNhbHMtd2ViLm5ldDYzODU0NjA5NThjZWM5LjA4ODA1MDI5CTE2Njk2Nzg2MDIJYWRfNjNfMA==&l=OAlmNjQ3MjVmZmEzOWVmNWVlZmEwMTVlNjlmMzNkZDc0ZgkwCTM1CTAJMDU3ZDdjZjlmMTQyNTkzMjc4ZjA1OGRiNTQ3MDY4MjcJNDExNDE5NDUxCWNhbHMtd2ViCTAJNjMJNgkyCTE2Njk2Nzg2MDIJMC4wMDA0MDgJTgkwCTAJMAkxMjA1CTM5MjcyOTA3MQk5MS45MC40Mi4xNTQJMA%3D%3D HTTP/1.1
Host: ww1.cals-web.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww1.cals-web.net/?sub1=2d4aff9e-6f72-11ed-be1f-d81601bd39f3
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
date: Mon, 28 Nov 2022 23:36:43 GMT
content-type: text/html; charset=UTF-8
content-length: 0
x-powered-by: PHP/8.1.9
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
last-modified: Mon, 28 Nov 2022 23:36:43 GMT
location: /search/tcerider.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DPlZER5QfFB8_0&v=YmY2ZDNjZjc3MGIxY2RkNDVjOTczOGYyY2U5Nzg1NDkJMQl3dzEuY2Fscy13ZWIubmV0NjM4NTQ2MDk1OGNjMDkuODc4MTc5NDcJd3cxLmNhbHMtd2ViLm5ldDYzODU0NjA5NThjZWM5LjA4ODA1MDI5CTE2Njk2Nzg2MDIJYWRfNjNfMA==&l=OAlmNjQ3MjVmZmEzOWVmNWVlZmEwMTVlNjlmMzNkZDc0ZgkwCTM1CTAJMDU3ZDdjZjlmMTQyNTkzMjc4ZjA1OGRiNTQ3MDY4MjcJNDExNDE5NDUxCWNhbHMtd2ViCTAJNjMJNgkyCTE2Njk2Nzg2MDIJMC4wMDA0MDgJTgkwCTAJMAkxMjA1CTM5MjcyOTA3MQk5MS45MC40Mi4xNTQJMA%3D%3D
x-cache-miss-from: parking-d7dbd8c4d-z9cx6
server: NginX
ww1.cals-web.net/search/tcerider.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DPlZER5QfFB8_0&v=YmY2ZDNjZjc3MGIxY2RkNDVjOTczOGYyY2U5Nzg1NDkJMQl3dzEuY2Fscy13ZWIubmV0NjM4NTQ2MDk1OGNjMDkuODc4MTc5NDcJd3cxLmNhbHMtd2ViLm5ldDYzODU0NjA5NThjZWM5LjA4ODA1MDI5CTE2Njk2Nzg2MDIJYWRfNjNfMA==&l=OAlmNjQ3MjVmZmEzOWVmNWVlZmEwMTVlNjlmMzNkZDc0ZgkwCTM1CTAJMDU3ZDdjZjlmMTQyNTkzMjc4ZjA1OGRiNTQ3MDY4MjcJNDExNDE5NDUxCWNhbHMtd2ViCTAJNjMJNgkyCTE2Njk2Nzg2MDIJMC4wMDA0MDgJTgkwCTAJMAkxMjA1CTM5MjcyOTA3MQk5MS45MC40Mi4xNTQJMA%3D%3D
64.190.63.136302 Found 311 B URL HTTP/1.1 ww1.cals-web.net/search/tcerider.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DPlZER5QfFB8_0&v=YmY2ZDNjZjc3MGIxY2RkNDVjOTczOGYyY2U5Nzg1NDkJMQl3dzEuY2Fscy13ZWIubmV0NjM4NTQ2MDk1OGNjMDkuODc4MTc5NDcJd3cxLmNhbHMtd2ViLm5ldDYzODU0NjA5NThjZWM5LjA4ODA1MDI5CTE2Njk2Nzg2MDIJYWRfNjNfMA==&l=OAlmNjQ3MjVmZmEzOWVmNWVlZmEwMTVlNjlmMzNkZDc0ZgkwCTM1CTAJMDU3ZDdjZjlmMTQyNTkzMjc4ZjA1OGRiNTQ3MDY4MjcJNDExNDE5NDUxCWNhbHMtd2ViCTAJNjMJNgkyCTE2Njk2Nzg2MDIJMC4wMDA0MDgJTgkwCTAJMAkxMjA1CTM5MjcyOTA3MQk5MS45MC40Mi4xNTQJMA%3D%3D
IP 64.190.63.136:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e1ca9f553cb8683326b9125faf9623e1
0904cc239c8bda2f78aa378cabd0320422e307dc
6d5e38f92868e8d4bc5f92d3eeabe8f1bd78a89a8bab4498ee1638f029988eca
GET /search/tcerider.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DPlZER5QfFB8_0&v=YmY2ZDNjZjc3MGIxY2RkNDVjOTczOGYyY2U5Nzg1NDkJMQl3dzEuY2Fscy13ZWIubmV0NjM4NTQ2MDk1OGNjMDkuODc4MTc5NDcJd3cxLmNhbHMtd2ViLm5ldDYzODU0NjA5NThjZWM5LjA4ODA1MDI5CTE2Njk2Nzg2MDIJYWRfNjNfMA==&l=OAlmNjQ3MjVmZmEzOWVmNWVlZmEwMTVlNjlmMzNkZDc0ZgkwCTM1CTAJMDU3ZDdjZjlmMTQyNTkzMjc4ZjA1OGRiNTQ3MDY4MjcJNDExNDE5NDUxCWNhbHMtd2ViCTAJNjMJNgkyCTE2Njk2Nzg2MDIJMC4wMDA0MDgJTgkwCTAJMAkxMjA1CTM5MjcyOTA3MQk5MS45MC40Mi4xNTQJMA%3D%3D HTTP/1.1
Host: ww1.cals-web.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ww1.cals-web.net/?sub1=2d4aff9e-6f72-11ed-be1f-d81601bd39f3
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
date: Mon, 28 Nov 2022 23:36:43 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
x-powered-by: PHP/8.1.9
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
last-modified: Mon, 28 Nov 2022 23:36:43 GMT
location: http://xml.sedodna.com/click?i=PlZER5QfFB8_0
x-cache-miss-from: parking-d7dbd8c4d-xpwcs
server: NginX
xml.sedodna.com/click?i=PlZER5QfFB8_0
173.239.53.32302 Found 0 B URL HTTP/1.1 xml.sedodna.com/click?i=PlZER5QfFB8_0
IP 173.239.53.32:0
ASN #27257 WEBAIR-INTERNET
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?i=PlZER5QfFB8_0 HTTP/1.1
Host: xml.sedodna.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ww1.cals-web.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Cache-Control: no-store
Content-Length: 0
Age: 0
Connection: keep-alive
Location: http://dipaka-ead.com/zcvisitor/82d5a650-6f75-11ed-bad3-120c4068aef7/9232f590-d991-493f-b95d-d38c0c6cdd28?campaignid=fe5ef520-6592-11ed-9380-0a918cbcbb97
Pragma: no-cache
dipaka-ead.com/zcvisitor/82d5a650-6f75-11ed-bad3-120c4068aef7/9232f590-d991-493f-b95d-d38c0c6cdd28?campaignid=fe5ef520-6592-11ed-9380-0a918cbcbb97
3.212.50.125200 1.1 kB URL HTTP/1.1 dipaka-ead.com/zcvisitor/82d5a650-6f75-11ed-bad3-120c4068aef7/9232f590-d991-493f-b95d-d38c0c6cdd28?campaignid=fe5ef520-6592-11ed-9380-0a918cbcbb97
IP 3.212.50.125:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 79d7480020c8e68aebfc52d67faf285d
8258ffc312a661b156f05bff584a9f8c6e661c8c
a50aee8eae0efd6940b1a5e3a15343540f66db8a980f1b00f49e988a68bdc05a
GET /zcvisitor/82d5a650-6f75-11ed-bad3-120c4068aef7/9232f590-d991-493f-b95d-d38c0c6cdd28?campaignid=fe5ef520-6592-11ed-9380-0a918cbcbb97 HTTP/1.1
Host: dipaka-ead.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ww1.cals-web.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Date: Mon, 28 Nov 2022 23:36:43 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Server: XRNdyEtu
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6125
Expires: Tue, 29 Nov 2022 01:18:48 GMT
Date: Mon, 28 Nov 2022 23:36:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6125
Expires: Tue, 29 Nov 2022 01:18:48 GMT
Date: Mon, 28 Nov 2022 23:36:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6125
Expires: Tue, 29 Nov 2022 01:18:48 GMT
Date: Mon, 28 Nov 2022 23:36:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6125
Expires: Tue, 29 Nov 2022 01:18:48 GMT
Date: Mon, 28 Nov 2022 23:36:43 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f728a04-45b0-4726-b646-628601e2ebbc.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f728a04-45b0-4726-b646-628601e2ebbc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4b7d3821d0bd11c196724846a7b9fe22
5b1700fa9cd4f1aaafda28ac28a0e2086fa8499c
b4f820555c4daf6e112c1a395bc57e22f0ef8e2e4299a0ffbb54e0bf18c87f47
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f728a04-45b0-4726-b646-628601e2ebbc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8578
x-amzn-requestid: 4f948bb9-74db-4a5d-927d-a6b893735531
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFxnWHq-IAMF4LQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637efc95-2f9e98ca2dad65a80e2195c2;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 05:09:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vSvGc0JIh4JOWTlagt4uDD_CDPiWOSfYYEI4lUBPsQb4qJMOEbBcmw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 04:09:24 GMT
age: 70039
etag: "5b1700fa9cd4f1aaafda28ac28a0e2086fa8499c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51b530e0-9ee5-45ee-95e9-a687ac33f22c.jpeg
34.120.237.76200 OK 3.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51b530e0-9ee5-45ee-95e9-a687ac33f22c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 22e7d3e11e78242383e452adb9299016
035a1b4a2a7889787532ec2637d5c21e06daf672
990f18423bafc9cc3daaa1bd1290313b6cb3d3a391f642d01fd6797ad4fc9ca8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51b530e0-9ee5-45ee-95e9-a687ac33f22c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3004
x-amzn-requestid: 1e6e228a-fb73-4ed3-881b-6b0e5c8297c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYcrFRXoAMFUJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d450-45059338501b45d943d7e08c;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:06:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: iSUNjVxAMdZYo5z7KyOT7WN5VWxPElRWiVO3u2E3AonLWkr8bT9Img==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 02:07:31 GMT
age: 77352
etag: "035a1b4a2a7889787532ec2637d5c21e06daf672"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5b0dcfcd-38d5-4614-ad4e-405d8ad4ee91.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5b0dcfcd-38d5-4614-ad4e-405d8ad4ee91.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b5e2bc1651b37b8e0467c2a6cb860fb3
3348f081a3357490a704592d105d02e81886df89
751c601e075c9338335c05b0f430ba8065b4e97440e6630993afd943f302b253
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5b0dcfcd-38d5-4614-ad4e-405d8ad4ee91.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6037
x-amzn-requestid: eb17903e-1fd3-4a41-a6d1-8b671d890400
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPAJjFa3oAMFcLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382ad70-3db95fcd1aeb9c411c55d173;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 00:21:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mFiEmh1axlMNuIBb1YSzcciCdHzHGG7q0f3lQOuHJmjugWgdZKKiSg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 11:27:11 GMT
age: 43772
etag: "3348f081a3357490a704592d105d02e81886df89"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb99c22d6-3187-4d40-8281-7980c7988464.webp
34.120.237.76200 OK 3.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb99c22d6-3187-4d40-8281-7980c7988464.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 06723cdab42df9b5334f540a8c7ebc60
3bbc44cb84a37ce6a067db4301dd81647a77c29f
9f6f064b16044c510650635690c61003fb2f6439021a2e681431136f5e7a08b3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb99c22d6-3187-4d40-8281-7980c7988464.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3905
x-amzn-requestid: bf50db76-dd95-44fc-abbe-1a26a5559ae3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMFcYHE6IAMFmpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638182b5-50b6d010058c6cb75c05c6de;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 03:06:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 73Fr-7-mRcw9_OVt8Wdi4pjFBHkqi_vBa-zgLtbHKEx1ay9s8wDSgQ==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 06:26:11 GMT
age: 61832
etag: "3bbc44cb84a37ce6a067db4301dd81647a77c29f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe059c7ce-454d-453b-aead-18fae338f84c.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe059c7ce-454d-453b-aead-18fae338f84c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a4058fd62595d15c58b3d3266de9865a
d0dff35eb78f129b5da407043037bcf9c27e55c0
ab996c23d58871a2ad53f0c34688c87f0d7c0eac5d0c1d8265b86951248449fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe059c7ce-454d-453b-aead-18fae338f84c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4871
x-amzn-requestid: e2dfa7b8-ded7-4104-a913-1b84746a3c6f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLDUUEy_oAMFgSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638118e8-0b229e0f60ff019d26800dd9;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 19:35:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9BUuT9WFwAQMnl8JiTDKo-zHgDL0AdjAAAIh0Mx405zbGwhvRouebQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 12:30:42 GMT
age: 39961
etag: "d0dff35eb78f129b5da407043037bcf9c27e55c0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3527eb28-888e-447d-90fd-1226d5b94433.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3527eb28-888e-447d-90fd-1226d5b94433.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 823e92f62ff7b3c2093828817d7f2866
c501de9eaa581a10b0b5fce40b54bb10f57f7c29
7d89669e23682f167b2fe1eff9edc5939112ec66b6b4e6389ef8aec78ccbdfe5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3527eb28-888e-447d-90fd-1226d5b94433.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8921
x-amzn-requestid: 98baf100-c007-4c44-89aa-b9cf55fa3f94
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNnwFYToAMFoWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852964-1227b5a9100c206e0c64f4b2;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: awi49MMMlK51wHPbyBrBkL4N4g9lX3ea40LxyrYbYxe_FsfqelTcTQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:57:05 GMT
etag: "c501de9eaa581a10b0b5fce40b54bb10f57f7c29"
content-type: image/jpeg
age: 5978
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
dipaka-ead.com/zcredirect?visitid=82d5a650-6f75-11ed-bad3-120c4068aef7&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
3.212.50.125200 848 B URL HTTP/1.1 dipaka-ead.com/zcredirect?visitid=82d5a650-6f75-11ed-bad3-120c4068aef7&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
IP 3.212.50.125:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (381)
Hash 6992ab3b4106b7b23df3a2b4413b6b6e
a6ed7d74a18183931508558b0ed7fe188d990f05
03c79077a31450b5b7aa6b7e9ac841109e14f77e5a0e9cc1261808848a807ef5
GET /zcredirect?visitid=82d5a650-6f75-11ed-bad3-120c4068aef7&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false HTTP/1.1
Host: dipaka-ead.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dipaka-ead.com/zcvisitor/82d5a650-6f75-11ed-bad3-120c4068aef7/9232f590-d991-493f-b95d-d38c0c6cdd28?campaignid=fe5ef520-6592-11ed-9380-0a918cbcbb97
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Date: Mon, 28 Nov 2022 23:36:43 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
redirected: JS
Server: pwwyppeO
cartining-specute.com/zp-redirect?target=https%3A%2F%2F1.no04trckingmic.com%2Fclick%3Fpid%3D631%26offer_id%3D314%26sub1%3Dwcuuiui9lu9237qki86jk172%26sub2%3D%26sub3%3D%26l%3D1661789823wcuuiui9lu9237qki86jk172&caid=7dbc9d3a-61fa-4e19-a1a1-64bb0bcd0601&zpid=82d5a650-6f75-11ed-bad3-120c4068aef7&cid=wcuuiui9lu9237qki86jk172&rt=R
18.197.36.77302 Found 0 B URL HTTP/2 cartining-specute.com/zp-redirect?target=https%3A%2F%2F1.no04trckingmic.com%2Fclick%3Fpid%3D631%26offer_id%3D314%26sub1%3Dwcuuiui9lu9237qki86jk172%26sub2%3D%26sub3%3D%26l%3D1661789823wcuuiui9lu9237qki86jk172&caid=7dbc9d3a-61fa-4e19-a1a1-64bb0bcd0601&zpid=82d5a650-6f75-11ed-bad3-120c4068aef7&cid=wcuuiui9lu9237qki86jk172&rt=R
IP 18.197.36.77:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /zp-redirect?target=https%3A%2F%2F1.no04trckingmic.com%2Fclick%3Fpid%3D631%26offer_id%3D314%26sub1%3Dwcuuiui9lu9237qki86jk172%26sub2%3D%26sub3%3D%26l%3D1661789823wcuuiui9lu9237qki86jk172&caid=7dbc9d3a-61fa-4e19-a1a1-64bb0bcd0601&zpid=82d5a650-6f75-11ed-bad3-120c4068aef7&cid=wcuuiui9lu9237qki86jk172&rt=R HTTP/1.1
Host: cartining-specute.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dipaka-ead.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Mon, 28 Nov 2022 23:36:44 GMT
content-length: 0
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://1.no04trckingmic.com/click?pid=631&offer_id=314&sub1=wcuuiui9lu9237qki86jk172&sub2=&sub3=&l=1661789823wcuuiui9lu9237qki86jk172
pragma: no-cache
set-cookie: cc-v4=rKAbVIQYV1PGBIw22fMX5i0ivHZv9hAcSL2ikvbmbrZOnbESCl5FZWddQ%2BNcrg6L7r1EhMshK7pcpqtp8EKfgcoqYt7IqRh34ooEn7Kp1aDmnSnmVtY%2BqvfYNQ752wj1bxpLuZkaK9y1SdqRMy%2BvTQ%3D%3D; Max-Age=31536000; Expires=Tue, 28-Nov-2023 23:36:43 GMT; Domain=cartining-specute.com; Path=/; Secure; HttpOnly;SameSite=None
X-Firefox-Spdy: h2
dipaka-ead.com/favicon.ico
3.212.50.125404 653 B URL HTTP/1.1 dipaka-ead.com/favicon.ico
IP 3.212.50.125:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (649), with no line terminators
Hash ba2732b1b2fa2626ffaa15f62f9e7d66
203d4e7fbb1d80449d6e4e1f3ae7a9bf8625debe
879861cb72fe9fbb476dab246021c4c83b4066327de2529e05ec54d3afb0a1c8
GET /favicon.ico HTTP/1.1
Host: dipaka-ead.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dipaka-ead.com/zcredirect?visitid=82d5a650-6f75-11ed-bad3-120c4068aef7&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
HTTP/1.1 404
Date: Mon, 28 Nov 2022 23:36:44 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 653
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Content-Language: en
Server: gxIdrMOf
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 61666cd8d2c50e96e74ea209b45fcf1e
9722fedb44405f3b251b8b955180d734eb656d86
b85b9a12b271e14810ae52297faedbb6f79c54e7b2489f055fc3d04a7f15c0d5
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 23:36:44 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 27 Nov 2022 01:31:04 GMT
Expires: Sun, 04 Dec 2022 01:31:03 GMT
Etag: "9722fedb44405f3b251b8b955180d734eb656d86"
Cache-Control: max-age=438258,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7716ed6c0ef31c0e-OSL
1.no04trckingmic.com/click?pid=631&offer_id=314&sub1=wcuuiui9lu9237qki86jk172&sub2=&sub3=&l=1661789823wcuuiui9lu9237qki86jk172
34.141.137.168302 Found 0 B URL HTTP/2 1.no04trckingmic.com/click?pid=631&offer_id=314&sub1=wcuuiui9lu9237qki86jk172&sub2=&sub3=&l=1661789823wcuuiui9lu9237qki86jk172
IP 34.141.137.168:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?pid=631&offer_id=314&sub1=wcuuiui9lu9237qki86jk172&sub2=&sub3=&l=1661789823wcuuiui9lu9237qki86jk172 HTTP/1.1
Host: 1.no04trckingmic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://dipaka-ead.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Mon, 28 Nov 2022 23:36:44 GMT
content-length: 0
location: https://www.motenorskejenter.com/landers/9794790840AA597AD55227C7E49165FDF252718EB970B763689A80A816895291?p=363067&prid=1767487&nas=6385460c5c0b770001097e6e&pi=314_631__
x-adjust-use-original-forwarded-for: 1
set-cookie: afclick=6385460c5c0b770001097e6e; expires=Tue, 28 Nov 2023 23:36:44 GMT; secure; SameSite=None
afoffers={"314":1669678604}; expires=Tue, 28 Nov 2023 23:36:44 GMT; secure; SameSite=None
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.motenorskejenter.com/landers/9794790840AA597AD55227C7E49165FDF252718EB970B763689A80A816895291?p=363067&prid=1767487&nas=6385460c5c0b770001097e6e&pi=314_631__
185.222.108.79200 OK 12 kB URL HTTP/2 www.motenorskejenter.com/landers/9794790840AA597AD55227C7E49165FDF252718EB970B763689A80A816895291?p=363067&prid=1767487&nas=6385460c5c0b770001097e6e&pi=314_631__
IP 185.222.108.79:0
ASN #205316 Supporta Interactiva B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6411), with CRLF line terminators
Hash 503ce8b467b4aa946ffe2a5d2da1c38b
f8a183885e74686d4087f7d3e24a89491789e8a4
355ffbcc4b33379da70641fd5211194d0f8db8e32ccc7e8c922724ed774a58da
GET /landers/9794790840AA597AD55227C7E49165FDF252718EB970B763689A80A816895291?p=363067&prid=1767487&nas=6385460c5c0b770001097e6e&pi=314_631__ HTTP/1.1
Host: www.motenorskejenter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://dipaka-ead.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private
content-type: text/html; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
server: httpd
set-cookie: ma=tHuYN02aF8TfiJU3WrWzZsxo0uu_g4mI7Xep1Osy8CY6L7zf4xiBy3Im9zMBnBa2qlUkaUaEd764K1zpdjHOaW4y7pGT-t5ffDnjUpfJP2zJ8PZ8yccM8BbZIZ3kNbb8wHCqaDmuAugTsDbf2JkBeLbvhpOtgC0Owavv0FKTZFcSlu9eiDvK4_Q4ATrF7DwPHNtz_2qCsLBurxMb73bjQLkjHB_InxHyd4ilmn3ZRMc1; domain=.motenorskejenter.com; expires=Sun, 15-Jan-2023 23:36:46 GMT; path=/
ma=tHuYN02aF8TfiJU3WrWzZsxo0uu_g4mI7Xep1Osy8CY6L7zf4xiBy3Im9zMBnBa2qlUkaUaEd764K1zpdjHOaW4y7pGT-t5ffDnjUpfJP2zJ8PZ8yccM8BbZIZ3kNbb8wHCqaDmuAugTsDbf2JkBeLbvhpOtgC0Owavv0FKTZFcSlu9eiDvK4_Q4ATrF7DwPHNtz_2qCsLBurxMb73bjQLkjHB_InxHyd4ilmn3ZRMc1; domain=.motenorskejenter.com; expires=Sun, 15-Jan-2023 23:36:46 GMT; path=/
MCC=Bfgw5OGO4mssRM7pbAQEEwM2fzWLlEuiEvplVeLCdMTCRpd-HcOSfEJ1uiWv-AIV3MmgqcDMyKbDLs14bicK6xfFa3UyuStO1x8h1hkTUlXT9r4Ov-r3kJaoHzqSti8pqcOkYsJyXt__1RgVnxNTAoRBxG2QyQerEdFWzdSBaCa44p4kBoxt4olHqFWUnP4oKWNHCKwzBOOEJ8KtZGWkcj5nzc6r2LxPjuKDQUz8pQhxqmz3S8DEpJGgpY7krDsYIAjja1z45sFZz2a-p-OGnpIdGB-FpIXKgibPQhHnLXpyFJILg-BD8dM81rpAYPzZ5ueNgHlkE1Sgd6ONdJ8RmBGiP0st4mERHvJryK9sptw5oDLmwhBF04SQdC8SpToufHdU15HTy37caaahBZ0Pkxs7BODGJ69Ruir5sPOJzLODSfMG2trLySv2qAlg8l4K0; expires=Wed, 30-Nov-2022 23:36:46 GMT; path=/
__RequestVerificationToken=mfRZzJX4NH7vRLlbAgXHjlf6yH938KcG9dc0XvNr_ME-sh43aE_oxRxyyb44mfZpdulVIUW3YAz_vKn2XT0PW3LAL2cAbqOyEPa7jwcnXRk1; path=/; HttpOnly
ARRAffinity=b0b3dac57c8ca42dd1c66b4a06a96a18db223a20f71917816dd3f531f1958c46;Path=/;Domain=www.motenorskejenter.com
x-aspnetmvc-version: 3.0
x-aspnet-version:
x-powered-by:
date: Mon, 28 Nov 2022 23:36:45 GMT
content-length: 11516
X-Firefox-Spdy: h2
www.motenorskejenter.com/Content/Landers/fontawesome/fontawesome-all.min.css?v=ab83a0ee54b137007150bfdbc730aaba0b096452
185.222.108.79200 OK 20 kB URL HTTP/2 www.motenorskejenter.com/Content/Landers/fontawesome/fontawesome-all.min.css?v=ab83a0ee54b137007150bfdbc730aaba0b096452
IP 185.222.108.79:0
ASN #205316 Supporta Interactiva B.V.
File type ASCII text, with very long lines (65394)
Hash 69dafb2461f11ad0643eed49ef88d95c
3c834bcfd66c37046fd00580bc4298ef27c54bd0
2b4c59e4fe79433cb2158192434a377e5995e352a95db5567eeaca2b13b6f634
GET /Content/Landers/fontawesome/fontawesome-all.min.css?v=ab83a0ee54b137007150bfdbc730aaba0b096452 HTTP/1.1
Host: www.motenorskejenter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.motenorskejenter.com/landers/9794790840AA597AD55227C7E49165FDF252718EB970B763689A80A816895291?p=363067&prid=1767487&nas=6385460c5c0b770001097e6e&pi=314_631__
Cookie: ma=tHuYN02aF8TfiJU3WrWzZsxo0uu_g4mI7Xep1Osy8CY6L7zf4xiBy3Im9zMBnBa2qlUkaUaEd764K1zpdjHOaW4y7pGT-t5ffDnjUpfJP2zJ8PZ8yccM8BbZIZ3kNbb8wHCqaDmuAugTsDbf2JkBeLbvhpOtgC0Owavv0FKTZFcSlu9eiDvK4_Q4ATrF7DwPHNtz_2qCsLBurxMb73bjQLkjHB_InxHyd4ilmn3ZRMc1; MCC=Bfgw5OGO4mssRM7pbAQEEwM2fzWLlEuiEvplVeLCdMTCRpd-HcOSfEJ1uiWv-AIV3MmgqcDMyKbDLs14bicK6xfFa3UyuStO1x8h1hkTUlXT9r4Ov-r3kJaoHzqSti8pqcOkYsJyXt__1RgVnxNTAoRBxG2QyQerEdFWzdSBaCa44p4kBoxt4olHqFWUnP4oKWNHCKwzBOOEJ8KtZGWkcj5nzc6r2LxPjuKDQUz8pQhxqmz3S8DEpJGgpY7krDsYIAjja1z45sFZz2a-p-OGnpIdGB-FpIXKgibPQhHnLXpyFJILg-BD8dM81rpAYPzZ5ueNgHlkE1Sgd6ONdJ8RmBGiP0st4mERHvJryK9sptw5oDLmwhBF04SQdC8SpToufHdU15HTy37caaahBZ0Pkxs7BODGJ69Ruir5sPOJzLODSfMG2trLySv2qAlg8l4K0; __RequestVerificationToken=mfRZzJX4NH7vRLlbAgXHjlf6yH938KcG9dc0XvNr_ME-sh43aE_oxRxyyb44mfZpdulVIUW3YAz_vKn2XT0PW3LAL2cAbqOyEPa7jwcnXRk1; ARRAffinity=b0b3dac57c8ca42dd1c66b4a06a96a18db223a20f71917816dd3f531f1958c46
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: text/css
content-encoding: gzip
last-modified: Fri, 29 Jul 2022 13:26:54 GMT
accept-ranges: bytes
etag: "d48eb0de4ea3d81:0"
vary: Accept-Encoding
server: httpd
x-powered-by:
x-aspnet-version:
date: Mon, 28 Nov 2022 23:36:45 GMT
content-length: 20233
X-Firefox-Spdy: h2
www.motenorskejenter.com/Content/Landers/jquery-ui-1.12.1/jquery-ui.min.css?v=ab83a0ee54b137007150bfdbc730aaba0b096452
185.222.108.79200 OK 9.8 kB URL HTTP/2 www.motenorskejenter.com/Content/Landers/jquery-ui-1.12.1/jquery-ui.min.css?v=ab83a0ee54b137007150bfdbc730aaba0b096452
IP 185.222.108.79:0
ASN #205316 Supporta Interactiva B.V.
File type ASCII text, with very long lines (29137)
Hash fe6c34b1df591cda0c96574c7f257443
0a62aad248c0dbbb8830db6e90641cf75a78b2b1
2374d5ef0b79f492cff9a936457a5deb9853cd9f74f01bf7e0c653e7c0e3ce7c
GET /Content/Landers/jquery-ui-1.12.1/jquery-ui.min.css?v=ab83a0ee54b137007150bfdbc730aaba0b096452 HTTP/1.1
Host: www.motenorskejenter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.motenorskejenter.com/landers/9794790840AA597AD55227C7E49165FDF252718EB970B763689A80A816895291?p=363067&prid=1767487&nas=6385460c5c0b770001097e6e&pi=314_631__
Cookie: ma=tHuYN02aF8TfiJU3WrWzZsxo0uu_g4mI7Xep1Osy8CY6L7zf4xiBy3Im9zMBnBa2qlUkaUaEd764K1zpdjHOaW4y7pGT-t5ffDnjUpfJP2zJ8PZ8yccM8BbZIZ3kNbb8wHCqaDmuAugTsDbf2JkBeLbvhpOtgC0Owavv0FKTZFcSlu9eiDvK4_Q4ATrF7DwPHNtz_2qCsLBurxMb73bjQLkjHB_InxHyd4ilmn3ZRMc1; MCC=Bfgw5OGO4mssRM7pbAQEEwM2fzWLlEuiEvplVeLCdMTCRpd-HcOSfEJ1uiWv-AIV3MmgqcDMyKbDLs14bicK6xfFa3UyuStO1x8h1hkTUlXT9r4Ov-r3kJaoHzqSti8pqcOkYsJyXt__1RgVnxNTAoRBxG2QyQerEdFWzdSBaCa44p4kBoxt4olHqFWUnP4oKWNHCKwzBOOEJ8KtZGWkcj5nzc6r2LxPjuKDQUz8pQhxqmz3S8DEpJGgpY7krDsYIAjja1z45sFZz2a-p-OGnpIdGB-FpIXKgibPQhHnLXpyFJILg-BD8dM81rpAYPzZ5ueNgHlkE1Sgd6ONdJ8RmBGiP0st4mERHvJryK9sptw5oDLmwhBF04SQdC8SpToufHdU15HTy37caaahBZ0Pkxs7BODGJ69Ruir5sPOJzLODSfMG2trLySv2qAlg8l4K0; __RequestVerificationToken=mfRZzJX4NH7vRLlbAgXHjlf6yH938KcG9dc0XvNr_ME-sh43aE_oxRxyyb44mfZpdulVIUW3YAz_vKn2XT0PW3LAL2cAbqOyEPa7jwcnXRk1; ARRAffinity=b0b3dac57c8ca42dd1c66b4a06a96a18db223a20f71917816dd3f531f1958c46
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: text/css
content-encoding: gzip
last-modified: Fri, 29 Jul 2022 13:26:54 GMT
accept-ranges: bytes
etag: "d0d2aade4ea3d81:0"
vary: Accept-Encoding
server: httpd
x-powered-by:
x-aspnet-version:
date: Mon, 28 Nov 2022 23:36:45 GMT
content-length: 9844
X-Firefox-Spdy: h2
www.motenorskejenter.com/Content/Landers/landers-default.css?v=ab83a0ee54b137007150bfdbc730aaba0b096452
185.222.108.79200 OK 1.3 kB URL HTTP/2 www.motenorskejenter.com/Content/Landers/landers-default.css?v=ab83a0ee54b137007150bfdbc730aaba0b096452
IP 185.222.108.79:0
ASN #205316 Supporta Interactiva B.V.
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 5038c461ab70a489c48ec28f138dd098
e8ab1ed9659a57f83d95bc1e6da0c5bbb213f144
389f94f065064881738443dc4b4b81547446683b2a6a75007fcbf5b31d02233b
GET /Content/Landers/landers-default.css?v=ab83a0ee54b137007150bfdbc730aaba0b096452 HTTP/1.1
Host: www.motenorskejenter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.motenorskejenter.com/landers/9794790840AA597AD55227C7E49165FDF252718EB970B763689A80A816895291?p=363067&prid=1767487&nas=6385460c5c0b770001097e6e&pi=314_631__
Cookie: ma=tHuYN02aF8TfiJU3WrWzZsxo0uu_g4mI7Xep1Osy8CY6L7zf4xiBy3Im9zMBnBa2qlUkaUaEd764K1zpdjHOaW4y7pGT-t5ffDnjUpfJP2zJ8PZ8yccM8BbZIZ3kNbb8wHCqaDmuAugTsDbf2JkBeLbvhpOtgC0Owavv0FKTZFcSlu9eiDvK4_Q4ATrF7DwPHNtz_2qCsLBurxMb73bjQLkjHB_InxHyd4ilmn3ZRMc1; MCC=Bfgw5OGO4mssRM7pbAQEEwM2fzWLlEuiEvplVeLCdMTCRpd-HcOSfEJ1uiWv-AIV3MmgqcDMyKbDLs14bicK6xfFa3UyuStO1x8h1hkTUlXT9r4Ov-r3kJaoHzqSti8pqcOkYsJyXt__1RgVnxNTAoRBxG2QyQerEdFWzdSBaCa44p4kBoxt4olHqFWUnP4oKWNHCKwzBOOEJ8KtZGWkcj5nzc6r2LxPjuKDQUz8pQhxqmz3S8DEpJGgpY7krDsYIAjja1z45sFZz2a-p-OGnpIdGB-FpIXKgibPQhHnLXpyFJILg-BD8dM81rpAYPzZ5ueNgHlkE1Sgd6ONdJ8RmBGiP0st4mERHvJryK9sptw5oDLmwhBF04SQdC8SpToufHdU15HTy37caaahBZ0Pkxs7BODGJ69Ruir5sPOJzLODSfMG2trLySv2qAlg8l4K0; __RequestVerificationToken=mfRZzJX4NH7vRLlbAgXHjlf6yH938KcG9dc0XvNr_ME-sh43aE_oxRxyyb44mfZpdulVIUW3YAz_vKn2XT0PW3LAL2cAbqOyEPa7jwcnXRk1; ARRAffinity=b0b3dac57c8ca42dd1c66b4a06a96a18db223a20f71917816dd3f531f1958c46
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: text/css
content-encoding: gzip
last-modified: Thu, 17 Nov 2022 15:15:48 GMT
accept-ranges: bytes
etag: "f7914a7997fad81:0"
vary: Accept-Encoding
server: httpd
x-powered-by:
x-aspnet-version:
date: Mon, 28 Nov 2022 23:36:45 GMT
content-length: 1287
X-Firefox-Spdy: h2
www.motenorskejenter.com/Content/Landers/modal-popup.css?v=ab83a0ee54b137007150bfdbc730aaba0b096452
185.222.108.79200 OK 642 B URL HTTP/2 www.motenorskejenter.com/Content/Landers/modal-popup.css?v=ab83a0ee54b137007150bfdbc730aaba0b096452
IP 185.222.108.79:0
ASN #205316 Supporta Interactiva B.V.
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 2a3cf91ce193937fffd15431626b17a5
2599e4dd9b131811959e312048392590b2feae36
643efce94839100318eb69a589733922075c8b6f9e89d283afa9a0beba76bcee
GET /Content/Landers/modal-popup.css?v=ab83a0ee54b137007150bfdbc730aaba0b096452 HTTP/1.1
Host: www.motenorskejenter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.motenorskejenter.com/landers/9794790840AA597AD55227C7E49165FDF252718EB970B763689A80A816895291?p=363067&prid=1767487&nas=6385460c5c0b770001097e6e&pi=314_631__
Cookie: ma=tHuYN02aF8TfiJU3WrWzZsxo0uu_g4mI7Xep1Osy8CY6L7zf4xiBy3Im9zMBnBa2qlUkaUaEd764K1zpdjHOaW4y7pGT-t5ffDnjUpfJP2zJ8PZ8yccM8BbZIZ3kNbb8wHCqaDmuAugTsDbf2JkBeLbvhpOtgC0Owavv0FKTZFcSlu9eiDvK4_Q4ATrF7DwPHNtz_2qCsLBurxMb73bjQLkjHB_InxHyd4ilmn3ZRMc1; MCC=Bfgw5OGO4mssRM7pbAQEEwM2fzWLlEuiEvplVeLCdMTCRpd-HcOSfEJ1uiWv-AIV3MmgqcDMyKbDLs14bicK6xfFa3UyuStO1x8h1hkTUlXT9r4Ov-r3kJaoHzqSti8pqcOkYsJyXt__1RgVnxNTAoRBxG2QyQerEdFWzdSBaCa44p4kBoxt4olHqFWUnP4oKWNHCKwzBOOEJ8KtZGWkcj5nzc6r2LxPjuKDQUz8pQhxqmz3S8DEpJGgpY7krDsYIAjja1z45sFZz2a-p-OGnpIdGB-FpIXKgibPQhHnLXpyFJILg-BD8dM81rpAYPzZ5ueNgHlkE1Sgd6ONdJ8RmBGiP0st4mERHvJryK9sptw5oDLmwhBF04SQdC8SpToufHdU15HTy37caaahBZ0Pkxs7BODGJ69Ruir5sPOJzLODSfMG2trLySv2qAlg8l4K0; __RequestVerificationToken=mfRZzJX4NH7vRLlbAgXHjlf6yH938KcG9dc0XvNr_ME-sh43aE_oxRxyyb44mfZpdulVIUW3YAz_vKn2XT0PW3LAL2cAbqOyEPa7jwcnXRk1; ARRAffinity=b0b3dac57c8ca42dd1c66b4a06a96a18db223a20f71917816dd3f531f1958c46
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: text/css
content-encoding: gzip
last-modified: Fri, 29 Jul 2022 13:26:54 GMT
accept-ranges: bytes
etag: "d0d2aade4ea3d81:0"
vary: Accept-Encoding
server: httpd
x-powered-by:
x-aspnet-version:
date: Mon, 28 Nov 2022 23:36:45 GMT
content-length: 642
X-Firefox-Spdy: h2
www.motenorskejenter.com/Landers/DisplayImage/2019_1325_160_footerlogo.png?c=6221bdd1-da8b-43b2-a48e-00e31f1fbc71
185.222.108.79200 OK 552 B URL HTTP/2 www.motenorskejenter.com/Landers/DisplayImage/2019_1325_160_footerlogo.png?c=6221bdd1-da8b-43b2-a48e-00e31f1fbc71
IP 185.222.108.79:0
ASN #205316 Supporta Interactiva B.V.
File type PNG image data, 29 x 10, 8-bit colormap, non-interlaced\012- data
Hash e2d18104fb00ce266f0ef2e76f735219
e396ab6b693de90ab0b37c00adaf60e4e95f99fc
de240d711f7f63a63f704cdc6c70d1e89e206d4a0c62889caf7500e50f157d12
GET /Landers/DisplayImage/2019_1325_160_footerlogo.png?c=6221bdd1-da8b-43b2-a48e-00e31f1fbc71 HTTP/1.1
Host: www.motenorskejenter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.motenorskejenter.com/landers/9794790840AA597AD55227C7E49165FDF252718EB970B763689A80A816895291?p=363067&prid=1767487&nas=6385460c5c0b770001097e6e&pi=314_631__
Cookie: ma=tHuYN02aF8TfiJU3WrWzZsxo0uu_g4mI7Xep1Osy8CY6L7zf4xiBy3Im9zMBnBa2qlUkaUaEd764K1zpdjHOaW4y7pGT-t5ffDnjUpfJP2zJ8PZ8yccM8BbZIZ3kNbb8wHCqaDmuAugTsDbf2JkBeLbvhpOtgC0Owavv0FKTZFcSlu9eiDvK4_Q4ATrF7DwPHNtz_2qCsLBurxMb73bjQLkjHB_InxHyd4ilmn3ZRMc1; MCC=Bfgw5OGO4mssRM7pbAQEEwM2fzWLlEuiEvplVeLCdMTCRpd-HcOSfEJ1uiWv-AIV3MmgqcDMyKbDLs14bicK6xfFa3UyuStO1x8h1hkTUlXT9r4Ov-r3kJaoHzqSti8pqcOkYsJyXt__1RgVnxNTAoRBxG2QyQerEdFWzdSBaCa44p4kBoxt4olHqFWUnP4oKWNHCKwzBOOEJ8KtZGWkcj5nzc6r2LxPjuKDQUz8pQhxqmz3S8DEpJGgpY7krDsYIAjja1z45sFZz2a-p-OGnpIdGB-FpIXKgibPQhHnLXpyFJILg-BD8dM81rpAYPzZ5ueNgHlkE1Sgd6ONdJ8RmBGiP0st4mERHvJryK9sptw5oDLmwhBF04SQdC8SpToufHdU15HTy37caaahBZ0Pkxs7BODGJ69Ruir5sPOJzLODSfMG2trLySv2qAlg8l4K0; __RequestVerificationToken=mfRZzJX4NH7vRLlbAgXHjlf6yH938KcG9dc0XvNr_ME-sh43aE_oxRxyyb44mfZpdulVIUW3YAz_vKn2XT0PW3LAL2cAbqOyEPa7jwcnXRk1; ARRAffinity=b0b3dac57c8ca42dd1c66b4a06a96a18db223a20f71917816dd3f531f1958c46
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, no-transform, max-age=31536000
content-type: image/png
expires: Mon, 27 Nov 2023 09:44:30 GMT
last-modified: Mon, 07 Oct 2019 13:56:01 GMT
vary: Accept-Encoding
server: httpd
x-aspnet-version:
x-powered-by:
date: Mon, 28 Nov 2022 23:36:45 GMT
content-length: 552
X-Firefox-Spdy: h2
www.motenorskejenter.com/Content/Landers/jquery-ui-1.12.1/jquery-ui.min.js?v=ab83a0ee54b137007150bfdbc730aaba0b096452
185.222.108.79200 OK 91 kB URL HTTP/2 www.motenorskejenter.com/Content/Landers/jquery-ui-1.12.1/jquery-ui.min.js?v=ab83a0ee54b137007150bfdbc730aaba0b096452
IP 185.222.108.79:0
ASN #205316 Supporta Interactiva B.V.
File type ASCII text, with very long lines (32074)
Hash d42c336053327b851f6b0f46647223f6
cfa3258c251e1c5d93bff2c2789a947e35f48cc7
0c400c92206c20de505b7f327ad5d8de77b66806492565cca629eda7118f4add
GET /Content/Landers/jquery-ui-1.12.1/jquery-ui.min.js?v=ab83a0ee54b137007150bfdbc730aaba0b096452 HTTP/1.1
Host: www.motenorskejenter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.motenorskejenter.com/landers/9794790840AA597AD55227C7E49165FDF252718EB970B763689A80A816895291?p=363067&prid=1767487&nas=6385460c5c0b770001097e6e&pi=314_631__
Cookie: ma=tHuYN02aF8TfiJU3WrWzZsxo0uu_g4mI7Xep1Osy8CY6L7zf4xiBy3Im9zMBnBa2qlUkaUaEd764K1zpdjHOaW4y7pGT-t5ffDnjUpfJP2zJ8PZ8yccM8BbZIZ3kNbb8wHCqaDmuAugTsDbf2JkBeLbvhpOtgC0Owavv0FKTZFcSlu9eiDvK4_Q4ATrF7DwPHNtz_2qCsLBurxMb73bjQLkjHB_InxHyd4ilmn3ZRMc1; MCC=Bfgw5OGO4mssRM7pbAQEEwM2fzWLlEuiEvplVeLCdMTCRpd-HcOSfEJ1uiWv-AIV3MmgqcDMyKbDLs14bicK6xfFa3UyuStO1x8h1hkTUlXT9r4Ov-r3kJaoHzqSti8pqcOkYsJyXt__1RgVnxNTAoRBxG2QyQerEdFWzdSBaCa44p4kBoxt4olHqFWUnP4oKWNHCKwzBOOEJ8KtZGWkcj5nzc6r2LxPjuKDQUz8pQhxqmz3S8DEpJGgpY7krDsYIAjja1z45sFZz2a-p-OGnpIdGB-FpIXKgibPQhHnLXpyFJILg-BD8dM81rpAYPzZ5ueNgHlkE1Sgd6ONdJ8RmBGiP0st4mERHvJryK9sptw5oDLmwhBF04SQdC8SpToufHdU15HTy37caaahBZ0Pkxs7BODGJ69Ruir5sPOJzLODSfMG2trLySv2qAlg8l4K0; __RequestVerificationToken=mfRZzJX4NH7vRLlbAgXHjlf6yH938KcG9dc0XvNr_ME-sh43aE_oxRxyyb44mfZpdulVIUW3YAz_vKn2XT0PW3LAL2cAbqOyEPa7jwcnXRk1; ARRAffinity=b0b3dac57c8ca42dd1c66b4a06a96a18db223a20f71917816dd3f531f1958c46
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: application/javascript
content-encoding: gzip
last-modified: Fri, 29 Jul 2022 13:26:54 GMT
accept-ranges: bytes
etag: "5999b6de4ea3d81:0"
vary: Accept-Encoding
server: httpd
x-powered-by:
x-aspnet-version:
date: Mon, 28 Nov 2022 23:36:45 GMT
content-length: 91268
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash a0fe20d41a043db700a84924cd9793f3
c0da481fef6cd00558f6e68b074acb34bef8292f
03caeb65ab9e22f6d6fe0d344d327950d20ee9ed144e2da0e5e062943a03fc56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 23:36:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash dfc6d93c89faf83ac654cd676c02764d
ce10d3ff46b50f22f7f79a7df65b0b7a6ddb741d
83947c7c69062338e3712fe76a493a2798aa2d1f63709eac14ba908d71080dd0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 23:36:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.motenorskejenter.com/Scripts/APIScripts/APILandersSignup.min.js?v=ab83a0ee54b137007150bfdbc730aaba0b096452
185.222.108.79200 OK 12 kB URL HTTP/2 www.motenorskejenter.com/Scripts/APIScripts/APILandersSignup.min.js?v=ab83a0ee54b137007150bfdbc730aaba0b096452
IP 185.222.108.79:0
ASN #205316 Supporta Interactiva B.V.
File type ASCII text, with very long lines (36867), with no line terminators
Hash 54a1da9c8142bf4eefae2e38c137795c
71a45053fe7e7233f27ef6bc2c64eb3b89a57616
ddfd1baa38329a39a9037ff4fe39b498a39db763c8a52d1a06aa6dd000e71639
GET /Scripts/APIScripts/APILandersSignup.min.js?v=ab83a0ee54b137007150bfdbc730aaba0b096452 HTTP/1.1
Host: www.motenorskejenter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.motenorskejenter.com/landers/9794790840AA597AD55227C7E49165FDF252718EB970B763689A80A816895291?p=363067&prid=1767487&nas=6385460c5c0b770001097e6e&pi=314_631__
Cookie: ma=tHuYN02aF8TfiJU3WrWzZsxo0uu_g4mI7Xep1Osy8CY6L7zf4xiBy3Im9zMBnBa2qlUkaUaEd764K1zpdjHOaW4y7pGT-t5ffDnjUpfJP2zJ8PZ8yccM8BbZIZ3kNbb8wHCqaDmuAugTsDbf2JkBeLbvhpOtgC0Owavv0FKTZFcSlu9eiDvK4_Q4ATrF7DwPHNtz_2qCsLBurxMb73bjQLkjHB_InxHyd4ilmn3ZRMc1; MCC=Bfgw5OGO4mssRM7pbAQEEwM2fzWLlEuiEvplVeLCdMTCRpd-HcOSfEJ1uiWv-AIV3MmgqcDMyKbDLs14bicK6xfFa3UyuStO1x8h1hkTUlXT9r4Ov-r3kJaoHzqSti8pqcOkYsJyXt__1RgVnxNTAoRBxG2QyQerEdFWzdSBaCa44p4kBoxt4olHqFWUnP4oKWNHCKwzBOOEJ8KtZGWkcj5nzc6r2LxPjuKDQUz8pQhxqmz3S8DEpJGgpY7krDsYIAjja1z45sFZz2a-p-OGnpIdGB-FpIXKgibPQhHnLXpyFJILg-BD8dM81rpAYPzZ5ueNgHlkE1Sgd6ONdJ8RmBGiP0st4mERHvJryK9sptw5oDLmwhBF04SQdC8SpToufHdU15HTy37caaahBZ0Pkxs7BODGJ69Ruir5sPOJzLODSfMG2trLySv2qAlg8l4K0; __RequestVerificationToken=mfRZzJX4NH7vRLlbAgXHjlf6yH938KcG9dc0XvNr_ME-sh43aE_oxRxyyb44mfZpdulVIUW3YAz_vKn2XT0PW3LAL2cAbqOyEPa7jwcnXRk1; ARRAffinity=b0b3dac57c8ca42dd1c66b4a06a96a18db223a20f71917816dd3f531f1958c46
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 17 Oct 2022 11:22:09 GMT
accept-ranges: bytes
etag: "25e740b21ae2d81:0"
vary: Accept-Encoding
server: httpd
x-powered-by:
x-aspnet-version:
date: Mon, 28 Nov 2022 23:36:45 GMT
content-length: 12124
X-Firefox-Spdy: h2
www.motenorskejenter.com/Scripts/APIScripts/APICookieFunctions.min.js?v=ab83a0ee54b137007150bfdbc730aaba0b096452
185.222.108.79200 OK 515 B URL HTTP/2 www.motenorskejenter.com/Scripts/APIScripts/APICookieFunctions.min.js?v=ab83a0ee54b137007150bfdbc730aaba0b096452
IP 185.222.108.79:0
ASN #205316 Supporta Interactiva B.V.
File type ASCII text, with very long lines (602), with no line terminators
Hash aa89779ff46171a494219e66429d2736
324e2364ca8f4f2de73a26676bd2b3fb7af83b97
824e5e6151075e795344346f116467aa22e01709179943bd1d6cea2fbcea4824
GET /Scripts/APIScripts/APICookieFunctions.min.js?v=ab83a0ee54b137007150bfdbc730aaba0b096452 HTTP/1.1
Host: www.motenorskejenter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.motenorskejenter.com/landers/9794790840AA597AD55227C7E49165FDF252718EB970B763689A80A816895291?p=363067&prid=1767487&nas=6385460c5c0b770001097e6e&pi=314_631__
Cookie: ma=tHuYN02aF8TfiJU3WrWzZsxo0uu_g4mI7Xep1Osy8CY6L7zf4xiBy3Im9zMBnBa2qlUkaUaEd764K1zpdjHOaW4y7pGT-t5ffDnjUpfJP2zJ8PZ8yccM8BbZIZ3kNbb8wHCqaDmuAugTsDbf2JkBeLbvhpOtgC0Owavv0FKTZFcSlu9eiDvK4_Q4ATrF7DwPHNtz_2qCsLBurxMb73bjQLkjHB_InxHyd4ilmn3ZRMc1; MCC=Bfgw5OGO4mssRM7pbAQEEwM2fzWLlEuiEvplVeLCdMTCRpd-HcOSfEJ1uiWv-AIV3MmgqcDMyKbDLs14bicK6xfFa3UyuStO1x8h1hkTUlXT9r4Ov-r3kJaoHzqSti8pqcOkYsJyXt__1RgVnxNTAoRBxG2QyQerEdFWzdSBaCa44p4kBoxt4olHqFWUnP4oKWNHCKwzBOOEJ8KtZGWkcj5nzc6r2LxPjuKDQUz8pQhxqmz3S8DEpJGgpY7krDsYIAjja1z45sFZz2a-p-OGnpIdGB-FpIXKgibPQhHnLXpyFJILg-BD8dM81rpAYPzZ5ueNgHlkE1Sgd6ONdJ8RmBGiP0st4mERHvJryK9sptw5oDLmwhBF04SQdC8SpToufHdU15HTy37caaahBZ0Pkxs7BODGJ69Ruir5sPOJzLODSfMG2trLySv2qAlg8l4K0; __RequestVerificationToken=mfRZzJX4NH7vRLlbAgXHjlf6yH938KcG9dc0XvNr_ME-sh43aE_oxRxyyb44mfZpdulVIUW3YAz_vKn2XT0PW3LAL2cAbqOyEPa7jwcnXRk1; ARRAffinity=b0b3dac57c8ca42dd1c66b4a06a96a18db223a20f71917816dd3f531f1958c46
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: application/javascript
content-encoding: gzip
last-modified: Fri, 29 Jul 2022 13:26:56 GMT
accept-ranges: bytes
etag: "8d9a13e04ea3d81:0"
vary: Accept-Encoding
server: httpd
x-powered-by:
x-aspnet-version:
date: Mon, 28 Nov 2022 23:36:45 GMT
content-length: 515
X-Firefox-Spdy: h2
www.motenorskejenter.com/Landers/GetJavascript/1325?countryId=160&c=d3d11de7-e90d-45cc-a651-e37d54e4f3e4
185.222.108.79200 OK 716 B URL HTTP/2 www.motenorskejenter.com/Landers/GetJavascript/1325?countryId=160&c=d3d11de7-e90d-45cc-a651-e37d54e4f3e4
IP 185.222.108.79:0
ASN #205316 Supporta Interactiva B.V.
File type ASCII text, with CRLF line terminators
Hash af9e146a5236ee89a3ca7335033bc2c6
ed66ea42374c5427ef228abff24495380fbf0c9d
7beebfb0406f5f2dbafd4d46d9ad53ae25b5c6004fa12c24f77b3cddc00b40a7
GET /Landers/GetJavascript/1325?countryId=160&c=d3d11de7-e90d-45cc-a651-e37d54e4f3e4 HTTP/1.1
Host: www.motenorskejenter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.motenorskejenter.com/landers/9794790840AA597AD55227C7E49165FDF252718EB970B763689A80A816895291?p=363067&prid=1767487&nas=6385460c5c0b770001097e6e&pi=314_631__
Cookie: ma=tHuYN02aF8TfiJU3WrWzZsxo0uu_g4mI7Xep1Osy8CY6L7zf4xiBy3Im9zMBnBa2qlUkaUaEd764K1zpdjHOaW4y7pGT-t5ffDnjUpfJP2zJ8PZ8yccM8BbZIZ3kNbb8wHCqaDmuAugTsDbf2JkBeLbvhpOtgC0Owavv0FKTZFcSlu9eiDvK4_Q4ATrF7DwPHNtz_2qCsLBurxMb73bjQLkjHB_InxHyd4ilmn3ZRMc1; MCC=Bfgw5OGO4mssRM7pbAQEEwM2fzWLlEuiEvplVeLCdMTCRpd-HcOSfEJ1uiWv-AIV3MmgqcDMyKbDLs14bicK6xfFa3UyuStO1x8h1hkTUlXT9r4Ov-r3kJaoHzqSti8pqcOkYsJyXt__1RgVnxNTAoRBxG2QyQerEdFWzdSBaCa44p4kBoxt4olHqFWUnP4oKWNHCKwzBOOEJ8KtZGWkcj5nzc6r2LxPjuKDQUz8pQhxqmz3S8DEpJGgpY7krDsYIAjja1z45sFZz2a-p-OGnpIdGB-FpIXKgibPQhHnLXpyFJILg-BD8dM81rpAYPzZ5ueNgHlkE1Sgd6ONdJ8RmBGiP0st4mERHvJryK9sptw5oDLmwhBF04SQdC8SpToufHdU15HTy37caaahBZ0Pkxs7BODGJ69Ruir5sPOJzLODSfMG2trLySv2qAlg8l4K0; __RequestVerificationToken=mfRZzJX4NH7vRLlbAgXHjlf6yH938KcG9dc0XvNr_ME-sh43aE_oxRxyyb44mfZpdulVIUW3YAz_vKn2XT0PW3LAL2cAbqOyEPa7jwcnXRk1; ARRAffinity=b0b3dac57c8ca42dd1c66b4a06a96a18db223a20f71917816dd3f531f1958c46
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, no-transform, max-age=31536000
content-type: text/javascript; charset=utf-8
content-encoding: gzip
expires: Mon, 27 Nov 2023 09:44:30 GMT
last-modified: Sat, 26 Nov 2022 19:21:48 GMT
vary: Accept-Encoding
server: httpd
x-aspnet-version:
x-powered-by:
date: Mon, 28 Nov 2022 23:36:45 GMT
content-length: 716
X-Firefox-Spdy: h2
www.motenorskejenter.com/Scripts/ExternalScoringService/ExternalScoringService.min.js?v=ab83a0ee54b137007150bfdbc730aaba0b096452
185.222.108.79200 OK 484 B URL HTTP/2 www.motenorskejenter.com/Scripts/ExternalScoringService/ExternalScoringService.min.js?v=ab83a0ee54b137007150bfdbc730aaba0b096452
IP 185.222.108.79:0
ASN #205316 Supporta Interactiva B.V.
File type ASCII text, with very long lines (500)
Hash 6b53b65cce940f1d71a3d21a06d88aef
9e903f441d3b6a7a1c6adb9a0ce1d79a7cefb9f5
9e67aa64d97d39c52cdfdff6f2a79af415f1a39f4871099d0728727a31c5f62e
GET /Scripts/ExternalScoringService/ExternalScoringService.min.js?v=ab83a0ee54b137007150bfdbc730aaba0b096452 HTTP/1.1
Host: www.motenorskejenter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.motenorskejenter.com/landers/9794790840AA597AD55227C7E49165FDF252718EB970B763689A80A816895291?p=363067&prid=1767487&nas=6385460c5c0b770001097e6e&pi=314_631__
Cookie: ma=tHuYN02aF8TfiJU3WrWzZsxo0uu_g4mI7Xep1Osy8CY6L7zf4xiBy3Im9zMBnBa2qlUkaUaEd764K1zpdjHOaW4y7pGT-t5ffDnjUpfJP2zJ8PZ8yccM8BbZIZ3kNbb8wHCqaDmuAugTsDbf2JkBeLbvhpOtgC0Owavv0FKTZFcSlu9eiDvK4_Q4ATrF7DwPHNtz_2qCsLBurxMb73bjQLkjHB_InxHyd4ilmn3ZRMc1; MCC=Bfgw5OGO4mssRM7pbAQEEwM2fzWLlEuiEvplVeLCdMTCRpd-HcOSfEJ1uiWv-AIV3MmgqcDMyKbDLs14bicK6xfFa3UyuStO1x8h1hkTUlXT9r4Ov-r3kJaoHzqSti8pqcOkYsJyXt__1RgVnxNTAoRBxG2QyQerEdFWzdSBaCa44p4kBoxt4olHqFWUnP4oKWNHCKwzBOOEJ8KtZGWkcj5nzc6r2LxPjuKDQUz8pQhxqmz3S8DEpJGgpY7krDsYIAjja1z45sFZz2a-p-OGnpIdGB-FpIXKgibPQhHnLXpyFJILg-BD8dM81rpAYPzZ5ueNgHlkE1Sgd6ONdJ8RmBGiP0st4mERHvJryK9sptw5oDLmwhBF04SQdC8SpToufHdU15HTy37caaahBZ0Pkxs7BODGJ69Ruir5sPOJzLODSfMG2trLySv2qAlg8l4K0; __RequestVerificationToken=mfRZzJX4NH7vRLlbAgXHjlf6yH938KcG9dc0XvNr_ME-sh43aE_oxRxyyb44mfZpdulVIUW3YAz_vKn2XT0PW3LAL2cAbqOyEPa7jwcnXRk1; ARRAffinity=b0b3dac57c8ca42dd1c66b4a06a96a18db223a20f71917816dd3f531f1958c46
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=7776000
content-type: application/javascript
content-encoding: gzip
last-modified: Fri, 29 Jul 2022 13:26:57 GMT
accept-ranges: bytes
etag: "66494fe04ea3d81:0"
vary: Accept-Encoding
server: httpd
x-powered-by:
x-aspnet-version:
date: Mon, 28 Nov 2022 23:36:45 GMT
content-length: 484
X-Firefox-Spdy: h2
www.motenorskejenter.com/Scripts/ExternalScoringService/EHawkTalon.js?v=ab83a0ee54b137007150bfdbc730aaba0b096452
185.222.108.79200 OK 17 kB URL HTTP/2 www.motenorskejenter.com/Scripts/ExternalScoringService/EHawkTalon.js?v=ab83a0ee54b137007150bfdbc730aaba0b096452
IP 185.222.108.79:0
ASN #205316 Supporta Interactiva B.V.
File type Unicode text, UTF-8 (with BOM) text, with very long lines (22228), with CRLF line terminators
Hash 0e64756cd3ae508f4bbb1d3e983d6ec9
8d5a6f62cfa307827db2f53b582c552db0e7ff57
efefe1d4bc68844f7f4686d8ee5f4da92f99506bb769dc565aee8412a9c0653d
GET /Scripts/ExternalScoringService/EHawkTalon.js?v=ab83a0ee54b137007150bfdbc730aaba0b096452 HTTP/1.1
Host: www.motenorskejenter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.motenorskejenter.com/landers/9794790840AA597AD55227C7E49165FDF252718EB970B763689A80A816895291?p=363067&prid=1767487&nas=6385460c5c0b770001097e6e&pi=314_631__
Cookie: ma=tHuYN02aF8TfiJU3WrWzZsxo0uu_g4mI7Xep1Osy8CY6L7zf4xiBy3Im9zMBnBa2qlUkaUaEd764K1zpdjHOaW4y7pGT-t5ffDnjUpfJP2zJ8PZ8yccM8BbZIZ3kNbb8wHCqaDmuAugTsDbf2JkBeLbvhpOtgC0Owavv0FKTZFcSlu9eiDvK4_Q4ATrF7DwPHNtz_2qCsLBurxMb73bjQLkjHB_InxHyd4ilmn3ZRMc1; MCC=Bfgw5OGO4mssRM7pbAQEEwM2fzWLlEuiEvplVeLCdMTCRpd-HcOSfEJ1uiWv-AIV3MmgqcDMyKbDLs14bicK6xfFa3UyuStO1x8h1hkTUlXT9r4Ov-r3kJaoHzqSti8pqcOkYsJyXt__1RgVnxNTAoRBxG2QyQerEdFWzdSBaCa44p4kBoxt4olHqFWUnP4oKWNHCKwzBOOEJ8KtZGWkcj5nzc6r2LxPjuKDQUz8pQhxqmz3S8DEpJGgpY7krDsYIAjja1z45sFZz2a-p-OGnpIdGB-FpIXKgibPQhHnLXpyFJILg-BD8dM81rpAYPzZ5ueNgHlkE1Sgd6ONdJ8RmBGiP0st4mERHvJryK9sptw5oDLmwhBF04SQdC8SpToufHdU15HTy37caaahBZ0Pkxs7BODGJ69Ruir5sPOJzLODSfMG2trLySv2qAlg8l4K0; __RequestVerificationToken=mfRZzJX4NH7vRLlbAgXHjlf6yH938KcG9dc0XvNr_ME-sh43aE_oxRxyyb44mfZpdulVIUW3YAz_vKn2XT0PW3LAL2cAbqOyEPa7jwcnXRk1; ARRAffinity=b0b3dac57c8ca42dd1c66b4a06a96a18db223a20f71917816dd3f531f1958c46
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=7776000
content-type: application/javascript
content-encoding: gzip
last-modified: Fri, 29 Jul 2022 13:26:57 GMT
accept-ranges: bytes
etag: "20864ee04ea3d81:0"
vary: Accept-Encoding
server: httpd
x-powered-by:
x-aspnet-version:
date: Mon, 28 Nov 2022 23:36:45 GMT
content-length: 17439
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?onload=GCOnLoadCallBack
142.250.74.164200 OK 578 B URL HTTP/2 www.google.com/recaptcha/api.js?onload=GCOnLoadCallBack
IP 142.250.74.164:0
File type ASCII text, with very long lines (909), with no line terminators
Hash bcf24f0dad66b5d5917f5e7445be1d90
776e5e391cb239b99ab4ecb1c5af65552559d336
5bf5a4bab8fa450d9833e719d5fd2355fe7ab576a159ab013de9e29bccd5059f
GET /recaptcha/api.js?onload=GCOnLoadCallBack HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.motenorskejenter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Mon, 28 Nov 2022 23:36:46 GMT
date: Mon, 28 Nov 2022 23:36:46 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 578
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash c81653e99cfdfb43236c8d50248b2e51
a33bc0cb7d3bb714b7ef23b059bb304cf23d464f
e75fa0ce568755990d6949ef93e3e5c29213a5a11887f697af901f41b14e0274
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 23:36:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-P3PN8TQ
142.250.74.168200 OK 66 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-P3PN8TQ
IP 142.250.74.168:0
File type ASCII text, with very long lines (6140)
Hash 0b2e251ebc8e60b8fe48398f94b33355
5f2b1b1c441e8568e70cc42d67abcbd3de8ecbe8
7d4618d1733a017444a3bfd220f7d3af186eb6dc18c85da9c2bd40c1ee47af5c
GET /gtm.js?id=GTM-P3PN8TQ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.motenorskejenter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 28 Nov 2022 23:36:46 GMT
expires: Mon, 28 Nov 2022 23:36:46 GMT
cache-control: private, max-age=900
last-modified: Mon, 28 Nov 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 65541
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-TBF4SKT&l=newDataLayer
142.250.74.168200 OK 38 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-TBF4SKT&l=newDataLayer
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 5b8c43de3bbe77f8292cc0715067f9f6
827fe7d1847473cae4e3cb2990dbcd689d910a0f
f1d4e71b8289ade7f3f3be2e99c83330a31ec965143caf85c79da3185a73fe4c
GET /gtm.js?id=GTM-TBF4SKT&l=newDataLayer HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.motenorskejenter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 28 Nov 2022 23:36:46 GMT
expires: Mon, 28 Nov 2022 23:36:46 GMT
cache-control: private, max-age=900
last-modified: Mon, 28 Nov 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 37726
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.motenorskejenter.com/Scripts/jquery-3.1.1.min.js?v=ab83a0ee54b137007150bfdbc730aaba0b096452
185.222.108.79200 OK 40 kB URL HTTP/2 www.motenorskejenter.com/Scripts/jquery-3.1.1.min.js?v=ab83a0ee54b137007150bfdbc730aaba0b096452
IP 185.222.108.79:0
ASN #205316 Supporta Interactiva B.V.
File type Unicode text, UTF-8 text, with very long lines (65266)
Hash a41c4155df999613d1ffc5cbc8beab8d
cbca27587222173118ee6245c870d6cd9668b3b7
c2068251a72fc8259ceb1f6a1eb20c6860c81761e14a13e1e131a07fe4985bce
GET /Scripts/jquery-3.1.1.min.js?v=ab83a0ee54b137007150bfdbc730aaba0b096452 HTTP/1.1
Host: www.motenorskejenter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.motenorskejenter.com/landers/9794790840AA597AD55227C7E49165FDF252718EB970B763689A80A816895291?p=363067&prid=1767487&nas=6385460c5c0b770001097e6e&pi=314_631__
Cookie: ma=tHuYN02aF8TfiJU3WrWzZsxo0uu_g4mI7Xep1Osy8CY6L7zf4xiBy3Im9zMBnBa2qlUkaUaEd764K1zpdjHOaW4y7pGT-t5ffDnjUpfJP2zJ8PZ8yccM8BbZIZ3kNbb8wHCqaDmuAugTsDbf2JkBeLbvhpOtgC0Owavv0FKTZFcSlu9eiDvK4_Q4ATrF7DwPHNtz_2qCsLBurxMb73bjQLkjHB_InxHyd4ilmn3ZRMc1; MCC=Bfgw5OGO4mssRM7pbAQEEwM2fzWLlEuiEvplVeLCdMTCRpd-HcOSfEJ1uiWv-AIV3MmgqcDMyKbDLs14bicK6xfFa3UyuStO1x8h1hkTUlXT9r4Ov-r3kJaoHzqSti8pqcOkYsJyXt__1RgVnxNTAoRBxG2QyQerEdFWzdSBaCa44p4kBoxt4olHqFWUnP4oKWNHCKwzBOOEJ8KtZGWkcj5nzc6r2LxPjuKDQUz8pQhxqmz3S8DEpJGgpY7krDsYIAjja1z45sFZz2a-p-OGnpIdGB-FpIXKgibPQhHnLXpyFJILg-BD8dM81rpAYPzZ5ueNgHlkE1Sgd6ONdJ8RmBGiP0st4mERHvJryK9sptw5oDLmwhBF04SQdC8SpToufHdU15HTy37caaahBZ0Pkxs7BODGJ69Ruir5sPOJzLODSfMG2trLySv2qAlg8l4K0; __RequestVerificationToken=mfRZzJX4NH7vRLlbAgXHjlf6yH938KcG9dc0XvNr_ME-sh43aE_oxRxyyb44mfZpdulVIUW3YAz_vKn2XT0PW3LAL2cAbqOyEPa7jwcnXRk1; ARRAffinity=b0b3dac57c8ca42dd1c66b4a06a96a18db223a20f71917816dd3f531f1958c46
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=7776000
content-type: application/javascript
content-encoding: gzip
last-modified: Fri, 29 Jul 2022 13:26:56 GMT
accept-ranges: bytes
etag: "d88effdf4ea3d81:0"
vary: Accept-Encoding
server: httpd
x-powered-by:
x-aspnet-version:
date: Mon, 28 Nov 2022 23:36:46 GMT
content-length: 39515
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 23:36:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 7207a5076b63fb5f39b9436ced9fb18f
cdd84ecfe85882601e81f11783d9f63b30084de3
6d4543402df8135d5860ecd47dd52d96d66d2e1ac6feec11accb5f43f2da7d0d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 23:36:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash cd0a5be4865b85e858cfcaafa90f8dca
122569d314b0900b1f5e5f58cdad0d9fc16b7e1b
624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 23:36:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.motenorskejenter.com/Landers/DisplayImage/2020_1325_160_sprite-icons.png?c=8858dd8b-f1fa-40b9-b955-a840010ca6cf
185.222.108.79200 OK 13 kB URL HTTP/2 www.motenorskejenter.com/Landers/DisplayImage/2020_1325_160_sprite-icons.png?c=8858dd8b-f1fa-40b9-b955-a840010ca6cf
IP 185.222.108.79:0
ASN #205316 Supporta Interactiva B.V.
File type PNG image data, 241 x 217, 8-bit/color RGBA, non-interlaced\012- data
Hash 9b71759f08141db8fdbe17cf10554ffd
5d9cc4cd25a359dfaacc3fc32e57ee6e303f0051
c134236c058b0fc67e1b0c9ff2677bba26d61403e77627f4c897f21183562ecb
GET /Landers/DisplayImage/2020_1325_160_sprite-icons.png?c=8858dd8b-f1fa-40b9-b955-a840010ca6cf HTTP/1.1
Host: www.motenorskejenter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.motenorskejenter.com/landers/getcss/1325?countryId=160&c=2e3f1b5a-eed3-4347-8d8e-6be91cea9ed2
Cookie: ma=tHuYN02aF8TfiJU3WrWzZsxo0uu_g4mI7Xep1Osy8CY6L7zf4xiBy3Im9zMBnBa2qlUkaUaEd764K1zpdjHOaW4y7pGT-t5ffDnjUpfJP2zJ8PZ8yccM8BbZIZ3kNbb8wHCqaDmuAugTsDbf2JkBeLbvhpOtgC0Owavv0FKTZFcSlu9eiDvK4_Q4ATrF7DwPHNtz_2qCsLBurxMb73bjQLkjHB_InxHyd4ilmn3ZRMc1; MCC=Bfgw5OGO4mssRM7pbAQEEwM2fzWLlEuiEvplVeLCdMTCRpd-HcOSfEJ1uiWv-AIV3MmgqcDMyKbDLs14bicK6xfFa3UyuStO1x8h1hkTUlXT9r4Ov-r3kJaoHzqSti8pqcOkYsJyXt__1RgVnxNTAoRBxG2QyQerEdFWzdSBaCa44p4kBoxt4olHqFWUnP4oKWNHCKwzBOOEJ8KtZGWkcj5nzc6r2LxPjuKDQUz8pQhxqmz3S8DEpJGgpY7krDsYIAjja1z45sFZz2a-p-OGnpIdGB-FpIXKgibPQhHnLXpyFJILg-BD8dM81rpAYPzZ5ueNgHlkE1Sgd6ONdJ8RmBGiP0st4mERHvJryK9sptw5oDLmwhBF04SQdC8SpToufHdU15HTy37caaahBZ0Pkxs7BODGJ69Ruir5sPOJzLODSfMG2trLySv2qAlg8l4K0; __RequestVerificationToken=mfRZzJX4NH7vRLlbAgXHjlf6yH938KcG9dc0XvNr_ME-sh43aE_oxRxyyb44mfZpdulVIUW3YAz_vKn2XT0PW3LAL2cAbqOyEPa7jwcnXRk1; ARRAffinity=b0b3dac57c8ca42dd1c66b4a06a96a18db223a20f71917816dd3f531f1958c46
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, no-transform, max-age=31536000
content-type: image/png
expires: Mon, 27 Nov 2023 09:44:31 GMT
last-modified: Mon, 23 Nov 2020 15:34:43 GMT
vary: Accept-Encoding
server: httpd
x-aspnet-version:
x-powered-by:
date: Mon, 28 Nov 2022 23:36:46 GMT
content-length: 13297
X-Firefox-Spdy: h2
www.motenorskejenter.com/Landers/DisplayImage/2020_1325_160_spritethumbs.jpg?c=91e46f4d-1aa4-4aaa-87fb-db9fa5f5aa57
185.222.108.79200 OK 22 kB URL HTTP/2 www.motenorskejenter.com/Landers/DisplayImage/2020_1325_160_spritethumbs.jpg?c=91e46f4d-1aa4-4aaa-87fb-db9fa5f5aa57
IP 185.222.108.79:0
ASN #205316 Supporta Interactiva B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x1250, components 3\012- data
Hash 42ff332b55cd131984c597327ed43dea
7fb54e1d6cd6f75a5202bf58cc5db9bf882df832
cd06ea0c96a20ff45504ae1c57d50416e5de0aa2f4ac2c8124d2146b75da77b8
GET /Landers/DisplayImage/2020_1325_160_spritethumbs.jpg?c=91e46f4d-1aa4-4aaa-87fb-db9fa5f5aa57 HTTP/1.1
Host: www.motenorskejenter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.motenorskejenter.com/landers/getcss/1325?countryId=160&c=2e3f1b5a-eed3-4347-8d8e-6be91cea9ed2
Cookie: ma=tHuYN02aF8TfiJU3WrWzZsxo0uu_g4mI7Xep1Osy8CY6L7zf4xiBy3Im9zMBnBa2qlUkaUaEd764K1zpdjHOaW4y7pGT-t5ffDnjUpfJP2zJ8PZ8yccM8BbZIZ3kNbb8wHCqaDmuAugTsDbf2JkBeLbvhpOtgC0Owavv0FKTZFcSlu9eiDvK4_Q4ATrF7DwPHNtz_2qCsLBurxMb73bjQLkjHB_InxHyd4ilmn3ZRMc1; MCC=Bfgw5OGO4mssRM7pbAQEEwM2fzWLlEuiEvplVeLCdMTCRpd-HcOSfEJ1uiWv-AIV3MmgqcDMyKbDLs14bicK6xfFa3UyuStO1x8h1hkTUlXT9r4Ov-r3kJaoHzqSti8pqcOkYsJyXt__1RgVnxNTAoRBxG2QyQerEdFWzdSBaCa44p4kBoxt4olHqFWUnP4oKWNHCKwzBOOEJ8KtZGWkcj5nzc6r2LxPjuKDQUz8pQhxqmz3S8DEpJGgpY7krDsYIAjja1z45sFZz2a-p-OGnpIdGB-FpIXKgibPQhHnLXpyFJILg-BD8dM81rpAYPzZ5ueNgHlkE1Sgd6ONdJ8RmBGiP0st4mERHvJryK9sptw5oDLmwhBF04SQdC8SpToufHdU15HTy37caaahBZ0Pkxs7BODGJ69Ruir5sPOJzLODSfMG2trLySv2qAlg8l4K0; __RequestVerificationToken=mfRZzJX4NH7vRLlbAgXHjlf6yH938KcG9dc0XvNr_ME-sh43aE_oxRxyyb44mfZpdulVIUW3YAz_vKn2XT0PW3LAL2cAbqOyEPa7jwcnXRk1; ARRAffinity=b0b3dac57c8ca42dd1c66b4a06a96a18db223a20f71917816dd3f531f1958c46
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, no-transform, max-age=31536000
content-type: image/jpeg
expires: Mon, 27 Nov 2023 09:44:31 GMT
last-modified: Mon, 23 Nov 2020 15:34:49 GMT
vary: Accept-Encoding
server: httpd
x-aspnet-version:
x-powered-by:
date: Mon, 28 Nov 2022 23:36:46 GMT
content-length: 22262
X-Firefox-Spdy: h2
www.motenorskejenter.com/Landers/DisplayImage/2020_1325_160_imageslide01.jpg?c=51adcfdb-6b8d-48d1-85f8-4ad601e09fc8
185.222.108.79200 OK 37 kB URL HTTP/2 www.motenorskejenter.com/Landers/DisplayImage/2020_1325_160_imageslide01.jpg?c=51adcfdb-6b8d-48d1-85f8-4ad601e09fc8
IP 185.222.108.79:0
ASN #205316 Supporta Interactiva B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x604, components 3\012- data
Hash 17b23ee00b30b0d9dc2ed950d8417f7e
017617fef4a0e7cb2785975b0ef917d448b25407
2e21c332f1c02b7e494e57705bb294ca8ff159a88e00e911e8dde292e67ae814
GET /Landers/DisplayImage/2020_1325_160_imageslide01.jpg?c=51adcfdb-6b8d-48d1-85f8-4ad601e09fc8 HTTP/1.1
Host: www.motenorskejenter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.motenorskejenter.com/landers/getcss/1325?countryId=160&c=2e3f1b5a-eed3-4347-8d8e-6be91cea9ed2
Cookie: ma=tHuYN02aF8TfiJU3WrWzZsxo0uu_g4mI7Xep1Osy8CY6L7zf4xiBy3Im9zMBnBa2qlUkaUaEd764K1zpdjHOaW4y7pGT-t5ffDnjUpfJP2zJ8PZ8yccM8BbZIZ3kNbb8wHCqaDmuAugTsDbf2JkBeLbvhpOtgC0Owavv0FKTZFcSlu9eiDvK4_Q4ATrF7DwPHNtz_2qCsLBurxMb73bjQLkjHB_InxHyd4ilmn3ZRMc1; MCC=Bfgw5OGO4mssRM7pbAQEEwM2fzWLlEuiEvplVeLCdMTCRpd-HcOSfEJ1uiWv-AIV3MmgqcDMyKbDLs14bicK6xfFa3UyuStO1x8h1hkTUlXT9r4Ov-r3kJaoHzqSti8pqcOkYsJyXt__1RgVnxNTAoRBxG2QyQerEdFWzdSBaCa44p4kBoxt4olHqFWUnP4oKWNHCKwzBOOEJ8KtZGWkcj5nzc6r2LxPjuKDQUz8pQhxqmz3S8DEpJGgpY7krDsYIAjja1z45sFZz2a-p-OGnpIdGB-FpIXKgibPQhHnLXpyFJILg-BD8dM81rpAYPzZ5ueNgHlkE1Sgd6ONdJ8RmBGiP0st4mERHvJryK9sptw5oDLmwhBF04SQdC8SpToufHdU15HTy37caaahBZ0Pkxs7BODGJ69Ruir5sPOJzLODSfMG2trLySv2qAlg8l4K0; __RequestVerificationToken=mfRZzJX4NH7vRLlbAgXHjlf6yH938KcG9dc0XvNr_ME-sh43aE_oxRxyyb44mfZpdulVIUW3YAz_vKn2XT0PW3LAL2cAbqOyEPa7jwcnXRk1; ARRAffinity=b0b3dac57c8ca42dd1c66b4a06a96a18db223a20f71917816dd3f531f1958c46
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, no-transform, max-age=31536000
content-type: image/jpeg
expires: Mon, 27 Nov 2023 09:44:31 GMT
last-modified: Mon, 23 Nov 2020 15:34:07 GMT
vary: Accept-Encoding
server: httpd
x-aspnet-version:
x-powered-by:
date: Mon, 28 Nov 2022 23:36:46 GMT
content-length: 36686
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash c81653e99cfdfb43236c8d50248b2e51
a33bc0cb7d3bb714b7ef23b059bb304cf23d464f
e75fa0ce568755990d6949ef93e3e5c29213a5a11887f697af901f41b14e0274
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 23:36:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.motenorskejenter.com/Landers/DisplayImage/2020_1325_160_imageslide03.jpg?c=dc692280-edb5-4a0e-a356-260cf8b01cf0
185.222.108.79200 OK 37 kB URL HTTP/2 www.motenorskejenter.com/Landers/DisplayImage/2020_1325_160_imageslide03.jpg?c=dc692280-edb5-4a0e-a356-260cf8b01cf0
IP 185.222.108.79:0
ASN #205316 Supporta Interactiva B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x604, components 3\012- data
Hash e15aed53b2e37eb06758351ca0827ae1
7d38e0c356827fdd6e17f61c4dc7430d49ac35af
78b30456af5d324e7f47781001acd8bd748828782570c716de37f99c7556fe4c
GET /Landers/DisplayImage/2020_1325_160_imageslide03.jpg?c=dc692280-edb5-4a0e-a356-260cf8b01cf0 HTTP/1.1
Host: www.motenorskejenter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.motenorskejenter.com/landers/getcss/1325?countryId=160&c=2e3f1b5a-eed3-4347-8d8e-6be91cea9ed2
Cookie: ma=tHuYN02aF8TfiJU3WrWzZsxo0uu_g4mI7Xep1Osy8CY6L7zf4xiBy3Im9zMBnBa2qlUkaUaEd764K1zpdjHOaW4y7pGT-t5ffDnjUpfJP2zJ8PZ8yccM8BbZIZ3kNbb8wHCqaDmuAugTsDbf2JkBeLbvhpOtgC0Owavv0FKTZFcSlu9eiDvK4_Q4ATrF7DwPHNtz_2qCsLBurxMb73bjQLkjHB_InxHyd4ilmn3ZRMc1; MCC=Bfgw5OGO4mssRM7pbAQEEwM2fzWLlEuiEvplVeLCdMTCRpd-HcOSfEJ1uiWv-AIV3MmgqcDMyKbDLs14bicK6xfFa3UyuStO1x8h1hkTUlXT9r4Ov-r3kJaoHzqSti8pqcOkYsJyXt__1RgVnxNTAoRBxG2QyQerEdFWzdSBaCa44p4kBoxt4olHqFWUnP4oKWNHCKwzBOOEJ8KtZGWkcj5nzc6r2LxPjuKDQUz8pQhxqmz3S8DEpJGgpY7krDsYIAjja1z45sFZz2a-p-OGnpIdGB-FpIXKgibPQhHnLXpyFJILg-BD8dM81rpAYPzZ5ueNgHlkE1Sgd6ONdJ8RmBGiP0st4mERHvJryK9sptw5oDLmwhBF04SQdC8SpToufHdU15HTy37caaahBZ0Pkxs7BODGJ69Ruir5sPOJzLODSfMG2trLySv2qAlg8l4K0; __RequestVerificationToken=mfRZzJX4NH7vRLlbAgXHjlf6yH938KcG9dc0XvNr_ME-sh43aE_oxRxyyb44mfZpdulVIUW3YAz_vKn2XT0PW3LAL2cAbqOyEPa7jwcnXRk1; ARRAffinity=b0b3dac57c8ca42dd1c66b4a06a96a18db223a20f71917816dd3f531f1958c46
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, no-transform, max-age=31536000
content-type: image/jpeg
expires: Mon, 27 Nov 2023 09:44:31 GMT
last-modified: Mon, 23 Nov 2020 15:34:16 GMT
vary: Accept-Encoding
server: httpd
x-aspnet-version:
x-powered-by:
date: Mon, 28 Nov 2022 23:36:46 GMT
content-length: 36739
X-Firefox-Spdy: h2
www.motenorskejenter.com/Landers/DisplayImage/2020_1325_160_imageslide02.jpg?c=eb28dad9-e8c4-4a09-b74f-980819c070f3
185.222.108.79200 OK 26 kB URL HTTP/2 www.motenorskejenter.com/Landers/DisplayImage/2020_1325_160_imageslide02.jpg?c=eb28dad9-e8c4-4a09-b74f-980819c070f3
IP 185.222.108.79:0
ASN #205316 Supporta Interactiva B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x604, components 3\012- data
Hash 2516f50dc3ef7805aab58c61bdb56795
e0e191429642aabc0f9cd14c2dd41ab4f77faa19
4a4e1e3da45aacaf275a732805c2295778b1270c492493b28b56eb4b26963777
GET /Landers/DisplayImage/2020_1325_160_imageslide02.jpg?c=eb28dad9-e8c4-4a09-b74f-980819c070f3 HTTP/1.1
Host: www.motenorskejenter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.motenorskejenter.com/landers/getcss/1325?countryId=160&c=2e3f1b5a-eed3-4347-8d8e-6be91cea9ed2
Cookie: ma=tHuYN02aF8TfiJU3WrWzZsxo0uu_g4mI7Xep1Osy8CY6L7zf4xiBy3Im9zMBnBa2qlUkaUaEd764K1zpdjHOaW4y7pGT-t5ffDnjUpfJP2zJ8PZ8yccM8BbZIZ3kNbb8wHCqaDmuAugTsDbf2JkBeLbvhpOtgC0Owavv0FKTZFcSlu9eiDvK4_Q4ATrF7DwPHNtz_2qCsLBurxMb73bjQLkjHB_InxHyd4ilmn3ZRMc1; MCC=Bfgw5OGO4mssRM7pbAQEEwM2fzWLlEuiEvplVeLCdMTCRpd-HcOSfEJ1uiWv-AIV3MmgqcDMyKbDLs14bicK6xfFa3UyuStO1x8h1hkTUlXT9r4Ov-r3kJaoHzqSti8pqcOkYsJyXt__1RgVnxNTAoRBxG2QyQerEdFWzdSBaCa44p4kBoxt4olHqFWUnP4oKWNHCKwzBOOEJ8KtZGWkcj5nzc6r2LxPjuKDQUz8pQhxqmz3S8DEpJGgpY7krDsYIAjja1z45sFZz2a-p-OGnpIdGB-FpIXKgibPQhHnLXpyFJILg-BD8dM81rpAYPzZ5ueNgHlkE1Sgd6ONdJ8RmBGiP0st4mERHvJryK9sptw5oDLmwhBF04SQdC8SpToufHdU15HTy37caaahBZ0Pkxs7BODGJ69Ruir5sPOJzLODSfMG2trLySv2qAlg8l4K0; __RequestVerificationToken=mfRZzJX4NH7vRLlbAgXHjlf6yH938KcG9dc0XvNr_ME-sh43aE_oxRxyyb44mfZpdulVIUW3YAz_vKn2XT0PW3LAL2cAbqOyEPa7jwcnXRk1; ARRAffinity=b0b3dac57c8ca42dd1c66b4a06a96a18db223a20f71917816dd3f531f1958c46
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, no-transform, max-age=31536000
content-type: image/jpeg
expires: Mon, 27 Nov 2023 09:44:31 GMT
last-modified: Mon, 23 Nov 2020 15:34:11 GMT
vary: Accept-Encoding
server: httpd
x-aspnet-version:
x-powered-by:
date: Mon, 28 Nov 2022 23:36:46 GMT
content-length: 25722
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Poppins:400,700&display=swap
142.250.74.10200 OK 28 kB URL HTTP/2 fonts.googleapis.com/css?family=Poppins:400,700&display=swap
IP 142.250.74.10:0
Hash 744be1db9ef7f9b6b85269f91b9a406c
6765d64904ba07fda259e7783ee1095f63863b2e
e1686fa2cf685638384ef2c8201acda7b9af2f678b3ba2fb2c85030d87629b0b
GET /css?family=Poppins:400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.motenorskejenter.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 28 Nov 2022 23:36:46 GMT
date: Mon, 28 Nov 2022 23:36:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.motenorskejenter.com/Content/Landers/webfonts/fa-solid-900.woff2
185.222.108.79200 OK 118 kB URL HTTP/2 www.motenorskejenter.com/Content/Landers/webfonts/fa-solid-900.woff2
IP 185.222.108.79:0
ASN #205316 Supporta Interactiva B.V.
File type Web Open Font Format (Version 2), TrueType, length 117536, version 329.-17761\012- data
Size 118 kB (117536 bytes)
Hash e57324a466c24a207fd9ad0f5f5e3c9c
2f9b04644e684a6bb1033e297cc474c57aa267f2
5538a328926c9517ffb8670fccce94f6137d58c21ff4b10ecd772abfa16a012b
GET /Content/Landers/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.motenorskejenter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.motenorskejenter.com/Content/Landers/fontawesome/fontawesome-all.min.css?v=ab83a0ee54b137007150bfdbc730aaba0b096452
Cookie: ma=tHuYN02aF8TfiJU3WrWzZsxo0uu_g4mI7Xep1Osy8CY6L7zf4xiBy3Im9zMBnBa2qlUkaUaEd764K1zpdjHOaW4y7pGT-t5ffDnjUpfJP2zJ8PZ8yccM8BbZIZ3kNbb8wHCqaDmuAugTsDbf2JkBeLbvhpOtgC0Owavv0FKTZFcSlu9eiDvK4_Q4ATrF7DwPHNtz_2qCsLBurxMb73bjQLkjHB_InxHyd4ilmn3ZRMc1; MCC=Bfgw5OGO4mssRM7pbAQEEwM2fzWLlEuiEvplVeLCdMTCRpd-HcOSfEJ1uiWv-AIV3MmgqcDMyKbDLs14bicK6xfFa3UyuStO1x8h1hkTUlXT9r4Ov-r3kJaoHzqSti8pqcOkYsJyXt__1RgVnxNTAoRBxG2QyQerEdFWzdSBaCa44p4kBoxt4olHqFWUnP4oKWNHCKwzBOOEJ8KtZGWkcj5nzc6r2LxPjuKDQUz8pQhxqmz3S8DEpJGgpY7krDsYIAjja1z45sFZz2a-p-OGnpIdGB-FpIXKgibPQhHnLXpyFJILg-BD8dM81rpAYPzZ5ueNgHlkE1Sgd6ONdJ8RmBGiP0st4mERHvJryK9sptw5oDLmwhBF04SQdC8SpToufHdU15HTy37caaahBZ0Pkxs7BODGJ69Ruir5sPOJzLODSfMG2trLySv2qAlg8l4K0; __RequestVerificationToken=mfRZzJX4NH7vRLlbAgXHjlf6yH938KcG9dc0XvNr_ME-sh43aE_oxRxyyb44mfZpdulVIUW3YAz_vKn2XT0PW3LAL2cAbqOyEPa7jwcnXRk1; ARRAffinity=b0b3dac57c8ca42dd1c66b4a06a96a18db223a20f71917816dd3f531f1958c46
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: application/font-woff2
last-modified: Fri, 29 Jul 2022 13:26:55 GMT
accept-ranges: bytes
etag: "771516df4ea3d81:0"
vary: Accept-Encoding
server: httpd
x-powered-by:
x-aspnet-version:
date: Mon, 28 Nov 2022 23:36:46 GMT
content-length: 117536
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
216.58.207.195200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.motenorskejenter.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 21:48:50 GMT
expires: Thu, 23 Nov 2023 21:48:50 GMT
cache-control: public, max-age=31536000
age: 438476
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
216.58.207.195200 OK 7.8 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Hash 25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.motenorskejenter.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:30:59 GMT
expires: Thu, 23 Nov 2023 19:30:59 GMT
cache-control: public, max-age=31536000
age: 446747
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash cd0a5be4865b85e858cfcaafa90f8dca
122569d314b0900b1f5e5f58cdad0d9fc16b7e1b
624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 23:36:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.motenorskejenter.com/Scripts/APIScripts/APIcaller.min.js?v=ab83a0ee54b137007150bfdbc730aaba0b096452
185.222.108.79200 OK 2.2 kB URL HTTP/2 www.motenorskejenter.com/Scripts/APIScripts/APIcaller.min.js?v=ab83a0ee54b137007150bfdbc730aaba0b096452
IP 185.222.108.79:0
ASN #205316 Supporta Interactiva B.V.
File type ASCII text, with very long lines (5619), with no line terminators
Hash 824c0c3b3bbb5602f317dde984081fea
f64e2e1cd5876d9987f884681d5095fd52e90f06
39df17b35c11c7d809597f61e9bff11b84997e2456536e62ac76fd1df6a0c3e7
GET /Scripts/APIScripts/APIcaller.min.js?v=ab83a0ee54b137007150bfdbc730aaba0b096452 HTTP/1.1
Host: www.motenorskejenter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.motenorskejenter.com/landers/9794790840AA597AD55227C7E49165FDF252718EB970B763689A80A816895291?p=363067&prid=1767487&nas=6385460c5c0b770001097e6e&pi=314_631__
Cookie: ma=tHuYN02aF8TfiJU3WrWzZsxo0uu_g4mI7Xep1Osy8CY6L7zf4xiBy3Im9zMBnBa2qlUkaUaEd764K1zpdjHOaW4y7pGT-t5ffDnjUpfJP2zJ8PZ8yccM8BbZIZ3kNbb8wHCqaDmuAugTsDbf2JkBeLbvhpOtgC0Owavv0FKTZFcSlu9eiDvK4_Q4ATrF7DwPHNtz_2qCsLBurxMb73bjQLkjHB_InxHyd4ilmn3ZRMc1; MCC=Bfgw5OGO4mssRM7pbAQEEwM2fzWLlEuiEvplVeLCdMTCRpd-HcOSfEJ1uiWv-AIV3MmgqcDMyKbDLs14bicK6xfFa3UyuStO1x8h1hkTUlXT9r4Ov-r3kJaoHzqSti8pqcOkYsJyXt__1RgVnxNTAoRBxG2QyQerEdFWzdSBaCa44p4kBoxt4olHqFWUnP4oKWNHCKwzBOOEJ8KtZGWkcj5nzc6r2LxPjuKDQUz8pQhxqmz3S8DEpJGgpY7krDsYIAjja1z45sFZz2a-p-OGnpIdGB-FpIXKgibPQhHnLXpyFJILg-BD8dM81rpAYPzZ5ueNgHlkE1Sgd6ONdJ8RmBGiP0st4mERHvJryK9sptw5oDLmwhBF04SQdC8SpToufHdU15HTy37caaahBZ0Pkxs7BODGJ69Ruir5sPOJzLODSfMG2trLySv2qAlg8l4K0; __RequestVerificationToken=mfRZzJX4NH7vRLlbAgXHjlf6yH938KcG9dc0XvNr_ME-sh43aE_oxRxyyb44mfZpdulVIUW3YAz_vKn2XT0PW3LAL2cAbqOyEPa7jwcnXRk1; ARRAffinity=b0b3dac57c8ca42dd1c66b4a06a96a18db223a20f71917816dd3f531f1958c46
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=31536000
content-type: application/javascript
content-encoding: gzip
last-modified: Fri, 29 Jul 2022 13:26:56 GMT
accept-ranges: bytes
etag: "196212e04ea3d81:0"
vary: Accept-Encoding
server: httpd
x-powered-by:
x-aspnet-version:
date: Mon, 28 Nov 2022 23:36:46 GMT
content-length: 2215
X-Firefox-Spdy: h2
www.motenorskejenter.com/views/_customs/_bpb/ml/mle9/main/images/favicon.ico?v=ab83a0ee54b137007150bfdbc730aaba0b096452
185.222.108.79200 OK 1.2 kB URL HTTP/2 www.motenorskejenter.com/views/_customs/_bpb/ml/mle9/main/images/favicon.ico?v=ab83a0ee54b137007150bfdbc730aaba0b096452
IP 185.222.108.79:0
ASN #205316 Supporta Interactiva B.V.
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 667f44f56e8a33771a7972f4d34c826e
2aea5fada9366377348fea3da3c4e1a30bd3c8a6
35007e3b9b76d719e791ca2316c7ad245430b9f2ad2be20ecb3e816246d50551
GET /views/_customs/_bpb/ml/mle9/main/images/favicon.ico?v=ab83a0ee54b137007150bfdbc730aaba0b096452 HTTP/1.1
Host: www.motenorskejenter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.motenorskejenter.com/landers/9794790840AA597AD55227C7E49165FDF252718EB970B763689A80A816895291?p=363067&prid=1767487&nas=6385460c5c0b770001097e6e&pi=314_631__
Cookie: ma=tHuYN02aF8TfiJU3WrWzZsxo0uu_g4mI7Xep1Osy8CY6L7zf4xiBy3Im9zMBnBa2qlUkaUaEd764K1zpdjHOaW4y7pGT-t5ffDnjUpfJP2zJ8PZ8yccM8BbZIZ3kNbb8wHCqaDmuAugTsDbf2JkBeLbvhpOtgC0Owavv0FKTZFcSlu9eiDvK4_Q4ATrF7DwPHNtz_2qCsLBurxMb73bjQLkjHB_InxHyd4ilmn3ZRMc1; MCC=Bfgw5OGO4mssRM7pbAQEEwM2fzWLlEuiEvplVeLCdMTCRpd-HcOSfEJ1uiWv-AIV3MmgqcDMyKbDLs14bicK6xfFa3UyuStO1x8h1hkTUlXT9r4Ov-r3kJaoHzqSti8pqcOkYsJyXt__1RgVnxNTAoRBxG2QyQerEdFWzdSBaCa44p4kBoxt4olHqFWUnP4oKWNHCKwzBOOEJ8KtZGWkcj5nzc6r2LxPjuKDQUz8pQhxqmz3S8DEpJGgpY7krDsYIAjja1z45sFZz2a-p-OGnpIdGB-FpIXKgibPQhHnLXpyFJILg-BD8dM81rpAYPzZ5ueNgHlkE1Sgd6ONdJ8RmBGiP0st4mERHvJryK9sptw5oDLmwhBF04SQdC8SpToufHdU15HTy37caaahBZ0Pkxs7BODGJ69Ruir5sPOJzLODSfMG2trLySv2qAlg8l4K0; __RequestVerificationToken=mfRZzJX4NH7vRLlbAgXHjlf6yH938KcG9dc0XvNr_ME-sh43aE_oxRxyyb44mfZpdulVIUW3YAz_vKn2XT0PW3LAL2cAbqOyEPa7jwcnXRk1; ARRAffinity=b0b3dac57c8ca42dd1c66b4a06a96a18db223a20f71917816dd3f531f1958c46
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=7776000
content-type: image/x-icon
last-modified: Fri, 29 Jul 2022 13:27:10 GMT
accept-ranges: bytes
etag: "9fe70e84ea3d81:0"
vary: Accept-Encoding
server: httpd
x-powered-by:
x-aspnet-version:
date: Mon, 28 Nov 2022 23:36:46 GMT
content-length: 1150
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
142.250.74.163200 OK 163 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (730)
Size 163 kB (162976 bytes)
Hash 79d18cf4265108d7cecca1bf4ada6109
e51d0285a545381d4c39e9e0292a650ffeeecbb9
59ce7253f371df0833c3f72d4748ef812002b90a49413c56d0ca7c40bb5a0ab6
GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.motenorskejenter.com
Connection: keep-alive
Referer: https://www.motenorskejenter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Nov 2022 21:26:04 GMT
expires: Sun, 26 Nov 2023 21:26:04 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
content-type: text/javascript
age: 180642
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.motenorskejenter.com/Landers/GetEmailProviders?countryId=160
185.222.108.79200 OK 2.6 kB URL HTTP/2 www.motenorskejenter.com/Landers/GetEmailProviders?countryId=160
IP 185.222.108.79:0
ASN #205316 Supporta Interactiva B.V.
File type JSON data\012- , ASCII text, with very long lines (2584), with no line terminators
Hash 2c307d337e2268c62f138b71595b0964
836736e096e8a8e4c4e8ceaa5bace5c61b3533ec
723a876f3c193e870165ab4e1659656d5bbc6dcb7d832054f843e42129f458a0
GET /Landers/GetEmailProviders?countryId=160 HTTP/1.1
Host: www.motenorskejenter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.motenorskejenter.com/landers/9794790840AA597AD55227C7E49165FDF252718EB970B763689A80A816895291?p=363067&prid=1767487&nas=6385460c5c0b770001097e6e&pi=314_631__
Cookie: ma=tHuYN02aF8TfiJU3WrWzZsxo0uu_g4mI7Xep1Osy8CY6L7zf4xiBy3Im9zMBnBa2qlUkaUaEd764K1zpdjHOaW4y7pGT-t5ffDnjUpfJP2zJ8PZ8yccM8BbZIZ3kNbb8wHCqaDmuAugTsDbf2JkBeLbvhpOtgC0Owavv0FKTZFcSlu9eiDvK4_Q4ATrF7DwPHNtz_2qCsLBurxMb73bjQLkjHB_InxHyd4ilmn3ZRMc1; MCC=Bfgw5OGO4mssRM7pbAQEEwM2fzWLlEuiEvplVeLCdMTCRpd-HcOSfEJ1uiWv-AIV3MmgqcDMyKbDLs14bicK6xfFa3UyuStO1x8h1hkTUlXT9r4Ov-r3kJaoHzqSti8pqcOkYsJyXt__1RgVnxNTAoRBxG2QyQerEdFWzdSBaCa44p4kBoxt4olHqFWUnP4oKWNHCKwzBOOEJ8KtZGWkcj5nzc6r2LxPjuKDQUz8pQhxqmz3S8DEpJGgpY7krDsYIAjja1z45sFZz2a-p-OGnpIdGB-FpIXKgibPQhHnLXpyFJILg-BD8dM81rpAYPzZ5ueNgHlkE1Sgd6ONdJ8RmBGiP0st4mERHvJryK9sptw5oDLmwhBF04SQdC8SpToufHdU15HTy37caaahBZ0Pkxs7BODGJ69Ruir5sPOJzLODSfMG2trLySv2qAlg8l4K0; __RequestVerificationToken=mfRZzJX4NH7vRLlbAgXHjlf6yH938KcG9dc0XvNr_ME-sh43aE_oxRxyyb44mfZpdulVIUW3YAz_vKn2XT0PW3LAL2cAbqOyEPa7jwcnXRk1; ARRAffinity=b0b3dac57c8ca42dd1c66b4a06a96a18db223a20f71917816dd3f531f1958c46; _gcl_au=1.1.1918003107.1669678606
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, no-transform, max-age=31536000
content-type: application/json; charset=utf-8
expires: Mon, 27 Nov 2023 08:01:49 GMT
last-modified: Thu, 24 Nov 2022 23:11:59 GMT
vary: Accept-Encoding
server: httpd
x-aspnet-version:
x-powered-by:
date: Mon, 28 Nov 2022 23:36:46 GMT
content-length: 2584
X-Firefox-Spdy: h2
www.motenorskejenter.com/Landers/DisplayImage/2020_1325_160_bgbtnmale.png?c=a0112eee-72f1-435d-8b69-316fab07ad70
185.222.108.79200 OK 1.9 kB URL HTTP/2 www.motenorskejenter.com/Landers/DisplayImage/2020_1325_160_bgbtnmale.png?c=a0112eee-72f1-435d-8b69-316fab07ad70
IP 185.222.108.79:0
ASN #205316 Supporta Interactiva B.V.
File type PNG image data, 80 x 81, 8-bit/color RGBA, non-interlaced\012- data
Hash 26c0a0d619be855ef507fe2682d92d03
de0a3621d65a3c9f5d4006542643bf1941095634
986e8143ddc49d4587ab23ce2c8f9b9fe0ec54052ddd70dd86b43c58f5bf3dd8
GET /Landers/DisplayImage/2020_1325_160_bgbtnmale.png?c=a0112eee-72f1-435d-8b69-316fab07ad70 HTTP/1.1
Host: www.motenorskejenter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.motenorskejenter.com/landers/getcss/1325?countryId=160&c=2e3f1b5a-eed3-4347-8d8e-6be91cea9ed2
Cookie: ma=tHuYN02aF8TfiJU3WrWzZsxo0uu_g4mI7Xep1Osy8CY6L7zf4xiBy3Im9zMBnBa2qlUkaUaEd764K1zpdjHOaW4y7pGT-t5ffDnjUpfJP2zJ8PZ8yccM8BbZIZ3kNbb8wHCqaDmuAugTsDbf2JkBeLbvhpOtgC0Owavv0FKTZFcSlu9eiDvK4_Q4ATrF7DwPHNtz_2qCsLBurxMb73bjQLkjHB_InxHyd4ilmn3ZRMc1; MCC=Bfgw5OGO4mssRM7pbAQEEwM2fzWLlEuiEvplVeLCdMTCRpd-HcOSfEJ1uiWv-AIV3MmgqcDMyKbDLs14bicK6xfFa3UyuStO1x8h1hkTUlXT9r4Ov-r3kJaoHzqSti8pqcOkYsJyXt__1RgVnxNTAoRBxG2QyQerEdFWzdSBaCa44p4kBoxt4olHqFWUnP4oKWNHCKwzBOOEJ8KtZGWkcj5nzc6r2LxPjuKDQUz8pQhxqmz3S8DEpJGgpY7krDsYIAjja1z45sFZz2a-p-OGnpIdGB-FpIXKgibPQhHnLXpyFJILg-BD8dM81rpAYPzZ5ueNgHlkE1Sgd6ONdJ8RmBGiP0st4mERHvJryK9sptw5oDLmwhBF04SQdC8SpToufHdU15HTy37caaahBZ0Pkxs7BODGJ69Ruir5sPOJzLODSfMG2trLySv2qAlg8l4K0; __RequestVerificationToken=mfRZzJX4NH7vRLlbAgXHjlf6yH938KcG9dc0XvNr_ME-sh43aE_oxRxyyb44mfZpdulVIUW3YAz_vKn2XT0PW3LAL2cAbqOyEPa7jwcnXRk1; ARRAffinity=b0b3dac57c8ca42dd1c66b4a06a96a18db223a20f71917816dd3f531f1958c46; _gcl_au=1.1.1918003107.1669678606; _ga=GA1.2.2081022908.1669678606; _gid=GA1.2.2022630003.1669678606
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, no-transform, max-age=31536000
content-type: image/png
expires: Tue, 28 Nov 2023 23:36:47 GMT
last-modified: Mon, 23 Nov 2020 15:34:34 GMT
vary: Accept-Encoding
server: httpd
x-aspnet-version:
x-powered-by:
date: Mon, 28 Nov 2022 23:36:46 GMT
content-length: 1921
X-Firefox-Spdy: h2
www.motenorskejenter.com/Landers/DisplayImage/2020_1325_160_bgbtnfemale.png?c=0b9166df-ff27-42e5-8775-8a5e655e4707
185.222.108.79200 OK 2.0 kB URL HTTP/2 www.motenorskejenter.com/Landers/DisplayImage/2020_1325_160_bgbtnfemale.png?c=0b9166df-ff27-42e5-8775-8a5e655e4707
IP 185.222.108.79:0
ASN #205316 Supporta Interactiva B.V.
File type PNG image data, 80 x 81, 8-bit/color RGBA, non-interlaced\012- data
Hash 4a66304dbc6330dea9bce47045e8cd47
3a20238c81257043a91a84e950d63cd7e6918408
a68f73561fe094b562c154813d9a7938790f09f3366eac11bae2e1bc01de0ada
GET /Landers/DisplayImage/2020_1325_160_bgbtnfemale.png?c=0b9166df-ff27-42e5-8775-8a5e655e4707 HTTP/1.1
Host: www.motenorskejenter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.motenorskejenter.com/landers/getcss/1325?countryId=160&c=2e3f1b5a-eed3-4347-8d8e-6be91cea9ed2
Cookie: ma=tHuYN02aF8TfiJU3WrWzZsxo0uu_g4mI7Xep1Osy8CY6L7zf4xiBy3Im9zMBnBa2qlUkaUaEd764K1zpdjHOaW4y7pGT-t5ffDnjUpfJP2zJ8PZ8yccM8BbZIZ3kNbb8wHCqaDmuAugTsDbf2JkBeLbvhpOtgC0Owavv0FKTZFcSlu9eiDvK4_Q4ATrF7DwPHNtz_2qCsLBurxMb73bjQLkjHB_InxHyd4ilmn3ZRMc1; MCC=Bfgw5OGO4mssRM7pbAQEEwM2fzWLlEuiEvplVeLCdMTCRpd-HcOSfEJ1uiWv-AIV3MmgqcDMyKbDLs14bicK6xfFa3UyuStO1x8h1hkTUlXT9r4Ov-r3kJaoHzqSti8pqcOkYsJyXt__1RgVnxNTAoRBxG2QyQerEdFWzdSBaCa44p4kBoxt4olHqFWUnP4oKWNHCKwzBOOEJ8KtZGWkcj5nzc6r2LxPjuKDQUz8pQhxqmz3S8DEpJGgpY7krDsYIAjja1z45sFZz2a-p-OGnpIdGB-FpIXKgibPQhHnLXpyFJILg-BD8dM81rpAYPzZ5ueNgHlkE1Sgd6ONdJ8RmBGiP0st4mERHvJryK9sptw5oDLmwhBF04SQdC8SpToufHdU15HTy37caaahBZ0Pkxs7BODGJ69Ruir5sPOJzLODSfMG2trLySv2qAlg8l4K0; __RequestVerificationToken=mfRZzJX4NH7vRLlbAgXHjlf6yH938KcG9dc0XvNr_ME-sh43aE_oxRxyyb44mfZpdulVIUW3YAz_vKn2XT0PW3LAL2cAbqOyEPa7jwcnXRk1; ARRAffinity=b0b3dac57c8ca42dd1c66b4a06a96a18db223a20f71917816dd3f531f1958c46; _gcl_au=1.1.1918003107.1669678606; _ga=GA1.2.2081022908.1669678606; _gid=GA1.2.2022630003.1669678606
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, no-transform, max-age=31536000
content-type: image/png
expires: Tue, 28 Nov 2023 23:36:47 GMT
last-modified: Mon, 23 Nov 2020 15:34:25 GMT
vary: Accept-Encoding
server: httpd
x-aspnet-version:
x-powered-by:
date: Mon, 28 Nov 2022 23:36:46 GMT
content-length: 2003
X-Firefox-Spdy: h2
ads.exoclick.com/tag_gen.js
205.185.216.10200 OK 515 B URL HTTP/1.1 ads.exoclick.com/tag_gen.js
IP 205.185.216.10:0
File type ASCII text, with very long lines (1030), with no line terminators
Hash 628e0302068ade64b5f411f39d5ce7e5
ff1a609269f34bad5ae67ed1678df3f7b905d018
c583ceaeae2e9a05e25c27b61520710f16b8b98ca7f9087a75ae90a040b8bc3f
GET /tag_gen.js HTTP/1.1
Host: ads.exoclick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.motenorskejenter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 23:36:47 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 515
Content-Type: application/javascript
Accept-Ranges: bytes
Cache-Control: max-age=10800
Server: nginx
etag: W/"a56c0470b9aa925085e51a6271a"
X-HW: 1669678607.dop213.sk1.t,1669678607.cds013.sk1.shn,1669678607.dop213.sk1.t,1669678607.cds251.sk1.c
Access-Control-Allow-Origin: *, *
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash fb9963af5b3c525d68d5c87f0da8025b
c8d1f50313dddb0cea04745d762dac01718a026f
231ef2bc126d4f0cf0910147608f65ec32ee15f3cfdb6981f5fae66f33cfc519
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 23:36:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-69440332-16&cid=2081022908.1669678606&jid=1261049229&gjid=929167193&_gid=2022630003.1669678606&_u=YEBAAAAAAAAAAC~&z=369219458
142.250.150.157200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-69440332-16&cid=2081022908.1669678606&jid=1261049229&gjid=929167193&_gid=2022630003.1669678606&_u=YEBAAAAAAAAAAC~&z=369219458
IP 142.250.150.157:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-69440332-16&cid=2081022908.1669678606&jid=1261049229&gjid=929167193&_gid=2022630003.1669678606&_u=YEBAAAAAAAAAAC~&z=369219458 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.motenorskejenter.com
Connection: keep-alive
Referer: https://www.motenorskejenter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.motenorskejenter.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 28 Nov 2022 23:36:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash fb9963af5b3c525d68d5c87f0da8025b
c8d1f50313dddb0cea04745d762dac01718a026f
231ef2bc126d4f0cf0910147608f65ec32ee15f3cfdb6981f5fae66f33cfc519
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 23:36:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 798c6088f000b3a2464e23a92271c24d
2a53b3d3bd4a9104c79595f664276db5b32b9bad
dcccfc9bb4da634286d08301fcf23be3ae26bb429b35349fb72dde530fdb3ae4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 23:36:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-69440332-16&cid=2081022908.1669678606&jid=1261049229&_u=YEBAAAAAAAAAAC~&z=1922858726
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-69440332-16&cid=2081022908.1669678606&jid=1261049229&_u=YEBAAAAAAAAAAC~&z=1922858726
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-69440332-16&cid=2081022908.1669678606&jid=1261049229&_u=YEBAAAAAAAAAAC~&z=1922858726 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.motenorskejenter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 28 Nov 2022 23:36:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 879cba431d8b6f2717a750acd5ca7156
1d4eb23583d48dd6801a104aa20046b34acd0efe
31223aada310e8d8e3fa41e22ee23019a07b362b3b062ccdc10600c22071bd78
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 23:36:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.motenorskejenter.com/landers/getcss/1325?countryId=160&c=2e3f1b5a-eed3-4347-8d8e-6be91cea9ed2
185.222.108.79200 OK 0 B URL HTTP/2 www.motenorskejenter.com/landers/getcss/1325?countryId=160&c=2e3f1b5a-eed3-4347-8d8e-6be91cea9ed2
IP 185.222.108.79:0
ASN #205316 Supporta Interactiva B.V.
GET /landers/getcss/1325?countryId=160&c=2e3f1b5a-eed3-4347-8d8e-6be91cea9ed2 HTTP/1.1
Host: www.motenorskejenter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.motenorskejenter.com/landers/9794790840AA597AD55227C7E49165FDF252718EB970B763689A80A816895291?p=363067&prid=1767487&nas=6385460c5c0b770001097e6e&pi=314_631__
Cookie: ma=tHuYN02aF8TfiJU3WrWzZsxo0uu_g4mI7Xep1Osy8CY6L7zf4xiBy3Im9zMBnBa2qlUkaUaEd764K1zpdjHOaW4y7pGT-t5ffDnjUpfJP2zJ8PZ8yccM8BbZIZ3kNbb8wHCqaDmuAugTsDbf2JkBeLbvhpOtgC0Owavv0FKTZFcSlu9eiDvK4_Q4ATrF7DwPHNtz_2qCsLBurxMb73bjQLkjHB_InxHyd4ilmn3ZRMc1; MCC=Bfgw5OGO4mssRM7pbAQEEwM2fzWLlEuiEvplVeLCdMTCRpd-HcOSfEJ1uiWv-AIV3MmgqcDMyKbDLs14bicK6xfFa3UyuStO1x8h1hkTUlXT9r4Ov-r3kJaoHzqSti8pqcOkYsJyXt__1RgVnxNTAoRBxG2QyQerEdFWzdSBaCa44p4kBoxt4olHqFWUnP4oKWNHCKwzBOOEJ8KtZGWkcj5nzc6r2LxPjuKDQUz8pQhxqmz3S8DEpJGgpY7krDsYIAjja1z45sFZz2a-p-OGnpIdGB-FpIXKgibPQhHnLXpyFJILg-BD8dM81rpAYPzZ5ueNgHlkE1Sgd6ONdJ8RmBGiP0st4mERHvJryK9sptw5oDLmwhBF04SQdC8SpToufHdU15HTy37caaahBZ0Pkxs7BODGJ69Ruir5sPOJzLODSfMG2trLySv2qAlg8l4K0; __RequestVerificationToken=mfRZzJX4NH7vRLlbAgXHjlf6yH938KcG9dc0XvNr_ME-sh43aE_oxRxyyb44mfZpdulVIUW3YAz_vKn2XT0PW3LAL2cAbqOyEPa7jwcnXRk1; ARRAffinity=b0b3dac57c8ca42dd1c66b4a06a96a18db223a20f71917816dd3f531f1958c46
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, no-transform, max-age=31536000
content-type: text/css; charset=utf-8
content-encoding: gzip
expires: Tue, 28 Nov 2023 23:36:46 GMT
last-modified: Sun, 27 Nov 2022 21:57:08 GMT
vary: Accept-Encoding
server: httpd
x-aspnet-version:
x-powered-by:
date: Mon, 28 Nov 2022 23:36:45 GMT
content-length: 9694
X-Firefox-Spdy: h2