urlquery - report: rouonixon.com/4/4981334/

Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
rouonixon.com (3)	0	2020-11-06 08:20:50 UTC	2022-10-20 04:30:50 UTC	139.45.197.238	Unknown ranking
consent.cookiebot.com (2)	4972	2014-02-26 14:48:42 UTC	2022-10-20 04:40:05 UTC	23.72.139.51
zerossl.ocsp.sectigo.com (2)	4049	2020-05-09 19:05:29 UTC	2022-10-20 05:04:08 UTC	172.64.155.188
tracker.selectivv.com (3)	0	2020-06-03 14:52:39 UTC	2022-10-20 07:30:38 UTC	85.17.54.17	Unknown ranking
static.ads-twitter.com (1)	614	2017-01-30 05:00:15 UTC	2022-10-20 04:31:46 UTC	151.101.84.157
connect.facebook.net (1)	139	2012-05-22 02:51:28 UTC	2022-10-20 04:29:31 UTC	31.13.72.12
www.google.com (1)	7	2016-08-04 12:36:31 UTC	2022-10-20 14:37:28 UTC	142.250.74.164
go.deliverymodo.com (2)	672700	2016-07-21 09:52:46 UTC	2022-10-20 12:34:28 UTC	139.45.197.236
img-getpocket.cdn.mozilla.net (6)	1631	2017-09-01 03:40:57 UTC	2022-10-20 12:16:20 UTC	34.120.237.76
stats.g.doubleclick.net (1)	96	2013-06-02 22:47:44 UTC	2022-10-20 05:30:40 UTC	173.194.73.155
analytics.twitter.com (1)	526	2013-04-10 19:53:18 UTC	2022-10-20 04:31:46 UTC	104.244.42.195
cdn.admixer.net (2)	35810	2012-12-19 18:42:40 UTC	2022-10-20 08:43:14 UTC	92.223.84.84
content-signature-2.cdn.mozilla.net (1)	1152	2020-11-03 12:26:46 UTC	2022-10-20 04:38:49 UTC	34.160.144.191
ocsp.sectigo.com (5)	487	2018-12-17 11:31:55 UTC	2022-10-20 11:07:23 UTC	172.64.155.188
unphionetor.com (4)	54035	2022-02-11 12:53:49 UTC	2022-10-20 09:01:18 UTC	139.45.197.236
www.lyca-mobile.no (38)	0	2013-11-29 08:10:10 UTC	2022-10-20 07:30:35 UTC	3.120.194.163	Unknown ranking
ocsp.pki.goog (15)	175	2017-06-14 07:23:31 UTC	2022-10-20 04:32:52 UTC	142.250.74.3
www.googletagmanager.com (1)	75	2012-12-25 14:52:06 UTC	2022-10-20 05:30:36 UTC	142.250.74.168
11029147.fls.doubleclick.net (1)	0	2021-09-17 08:41:17 UTC	2022-10-20 07:30:38 UTC	142.250.74.70	Domain (doubleclick.net) ranked at: 2267
www.facebook.com (1)	99	2017-01-30 05:00:00 UTC	2022-10-20 04:29:32 UTC	31.13.72.36
contile.services.mozilla.com (1)	1114	2021-05-27 18:32:35 UTC	2022-10-20 04:32:40 UTC	34.117.237.239
toapodazoay.com (4)	624090	2017-11-17 09:59:00 UTC	2022-10-20 16:13:06 UTC	139.45.197.155
ocsp.netsolssl.com (1)	8381	2012-05-20 21:51:49 UTC	2022-10-20 06:14:09 UTC	104.18.32.68
inv-dmp.admixer.net (1)	246841	2019-02-21 12:20:30 UTC	2022-10-20 07:30:38 UTC	146.0.227.110
ocsp.digicert.com (8)	86	2012-05-21 07:02:23 UTC	2022-10-20 11:26:59 UTC	93.184.220.29
cdnjs.cloudflare.com (1)	235	2020-10-20 10:17:36 UTC	2022-10-20 05:55:03 UTC	104.17.25.14
s3-eu-central-1.amazonaws.com (9)	0	2014-12-06 15:23:14 UTC	2022-10-20 07:30:36 UTC	52.219.171.133	Unknown ranking
adservice.google.com (1)	76	2021-02-20 16:10:48 UTC	2022-10-20 14:50:12 UTC	216.58.211.2
adservice.google.no (1)	96969	2017-09-26 14:23:08 UTC	2022-10-20 04:29:40 UTC	142.250.74.2
bat.bing.com (3)	387	2014-04-08 09:23:16 UTC	2022-10-20 04:58:21 UTC	13.107.21.200
asia.adform.net (4)	40274	2015-03-12 00:50:54 UTC	2022-10-20 09:25:08 UTC	185.84.60.29
go.ad2upapp.com (1)	566190	2016-06-11 11:42:08 UTC	2022-10-20 12:34:27 UTC	139.45.197.237
s3-eu-west-2.amazonaws.com (15)	0	2017-02-01 08:51:02 UTC	2022-10-20 07:30:37 UTC	52.95.149.136	Unknown ranking
t.co (1)	569	2012-07-25 19:09:44 UTC	2022-10-20 05:21:10 UTC	104.244.42.69
googleads.g.doubleclick.net (1)	42	2021-02-20 15:43:32 UTC	2022-10-20 13:06:00 UTC	142.250.74.34
r3.o.lencr.org (10)	344	2020-12-02 08:52:13 UTC	2022-10-20 04:31:22 UTC	23.36.77.32
firefox.settings.services.mozilla.com (2)	867	2020-05-27 20:08:30 UTC	2022-10-20 12:00:37 UTC	143.204.55.115
push.services.mozilla.com (1)	2140	2015-09-03 10:29:36 UTC	2022-10-20 04:52:55 UTC	54.191.222.112
d3uayxmzbnco7f.cloudfront.net (54)	0	2021-05-21 21:25:44 UTC	2022-10-20 07:30:36 UTC	143.204.42.74	Unknown ranking
ocsp.sca1b.amazontrust.com (6)	1015	2017-03-03 15:20:51 UTC	2019-03-27 04:05:54 UTC	143.204.42.165
consentcdn.cookiebot.com (1)	5676	2018-05-23 05:13:43 UTC	2022-10-20 04:40:05 UTC	104.110.3.72
www.google-analytics.com (1)	40	2012-10-03 01:04:21 UTC	2022-10-20 14:27:53 UTC	142.250.74.174
www.google.no (1)	25607	2016-04-05 19:50:59 UTC	2022-10-20 05:30:40 UTC	142.250.74.3
s2.adform.net (1)	4693	2013-04-18 11:49:52 UTC	2022-10-20 04:56:09 UTC	37.157.5.71
my.rtmark.net (4)	9054	2017-08-22 14:11:49 UTC	2022-10-20 06:42:02 UTC	139.45.195.8
ptauxofi.net (1)	35628	2021-03-31 05:35:12 UTC	2022-10-20 11:50:10 UTC	139.45.197.250

Scan Date	Severity	Indicator	Comment
2022-10-20	2	unphionetor.com	Sinkholed
2022-10-20	2	unphionetor.com	Sinkholed
2022-10-20	2	unphionetor.com	Sinkholed
2022-10-20	2	unphionetor.com	Sinkholed

Date	UQ / IDS / BL	URL	IP
2023-03-25 22:09:38 +0000	0 - 1 - 1	rouonixon.com/4/5817948/	139.45.197.238
2023-03-25 22:03:38 +0000	0 - 1 - 1	rouonixon.com/4/5586457/	139.45.197.238
2023-03-25 21:07:08 +0000	0 - 1 - 1	rouonixon.com/4/4309814/	139.45.197.238
2023-03-25 21:02:50 +0000	0 - 1 - 1	rouonixon.com/4/3661067/	139.45.197.238
2023-03-25 20:51:51 +0000	0 - 0 - 1	omzoroarkan.com/4/5134669/	139.45.197.238

Date	UQ / IDS / BL	URL	IP
2023-03-25 22:14:51 +0000	0 - 0 - 2	s.kithoasou.com/	139.45.197.156
2023-03-25 22:12:41 +0000	5 - 0 - 0	applabzzeydoo.com/?l=Ik3Z1hRmgbrHuHy&b=145568 (...)	139.45.197.151
2023-03-25 22:09:38 +0000	0 - 1 - 1	rouonixon.com/4/5817948/	139.45.197.238
2023-03-25 22:07:58 +0000	0 - 0 - 1	139.45.197.253/	139.45.197.253
2023-03-25 22:07:47 +0000	0 - 0 - 2	l.yourbestlandever.com/	139.45.197.151

Date	UQ / IDS / BL	URL	IP
2023-03-25 22:09:38 +0000	0 - 1 - 1	rouonixon.com/4/5817948/	139.45.197.238
2023-03-25 22:03:38 +0000	0 - 1 - 1	rouonixon.com/4/5586457/	139.45.197.238
2023-03-25 21:07:08 +0000	0 - 1 - 1	rouonixon.com/4/4309814/	139.45.197.238
2023-03-25 21:02:50 +0000	0 - 1 - 1	rouonixon.com/4/3661067/	139.45.197.238
2023-03-25 20:19:57 +0000	0 - 1 - 0	rouonixon.com/4/5811790/	139.45.197.238

Date	UQ / IDS / BL	URL	IP
2023-02-24 01:38:39 +0000	0 - 3 - 0	ausoafab.net/4/5117867	139.45.197.239
2023-02-22 13:09:11 +0000	0 - 4 - 6	onetouch17.info/pop-go/44528	172.64.198.22
2023-02-21 10:15:58 +0000	0 - 3 - 0	chooxaur.com/4/4357524	139.45.197.237
2023-02-20 20:06:41 +0000	0 - 4 - 2	inoradde.com/4/4326573/	139.45.197.238
2023-02-20 04:32:52 +0000	0 - 3 - 0	ibuhaughuss.com/4/5202628/	104.21.31.31

Request	Response
GET /4/4981334/ HTTP/1.1 Host: rouonixon.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: rouonixon.com/4/4981334/ FQDN: rouonixon.com IP: 139.45.197.238 HASH: bc7f0aad8c80eac9695e5c1a98f780a13f8fba31c1c5a08e279d42b791cab67a 139.45.197.238 HTTP/1.1 200 OK Content-Type: text/html; charset=utf8 Server: nginx Date: Thu, 20 Oct 2022 17:08:39 GMT Transfer-Encoding: chunked Connection: keep-alive X-Trace-Id: 4256def1fc0140ce693343fea23baed0 Link: <https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://my.rtmark.net>; rel="preconnect dns-prefetch" Access-Control-Allow-Credentials: true Access-Control-Max-Age: 86400 Timing-Allow-Origin: * Set-Cookie: OAID=13ce3c27554a4fd0a06bdd5822f223e4; expires=Fri, 20 Oct 2023 17:08:39 GMT; path=/ oaidts=1666285719; expires=Fri, 20 Oct 2023 17:08:39 GMT; path=/ syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT Pragma: no-cache, no-cache Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0 Expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT Access-Control-Allow-Origin: , Access-Control-Allow-Methods: GET, POST, OPTIONS, POST, GET, OPTIONS, PUT, DELETE Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, Accept, Content-Type, Content-Length, Accept-Encoding Content-Encoding: gzip --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5406) Size: 2933 Md5: 0ba397ac972064edb48fd416d54e7971 Sha1: e2f75a399e82319f6d99abd741abf5187fdfce1c Sha256: bc7f0aad8c80eac9695e5c1a98f780a13f8fba31c1c5a08e279d42b791cab67a
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 01f6721f2674f54662fff590fdf7247cc8c58a3f84906cae75527fb7b6dd2436 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "01F6721F2674F54662FFF590FDF7247CC8C58A3F84906CAE75527FB7B6DD2436" Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4644 Expires: Thu, 20 Oct 2022 18:26:03 GMT Date: Thu, 20 Oct 2022 17:08:39 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 24a97183f836954e0f05c4dc794ff4d1 Sha1: 52778bbe39b9f736c16b5798575d1d96607ce9d0 Sha256: 01f6721f2674f54662fff590fdf7247cc8c58a3f84906cae75527fb7b6dd2436
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/ FQDN: firefox.settings.services.mozilla.com IP: 143.204.55.115 HASH: c923ed2539f4ce9f4d43743c402fbb2060a52a4cbedbf14c5f5742ab718073d6 143.204.55.115 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 939 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Content-Type, Alert, Content-Length, Retry-After, Backoff Cache-Control: max-age=3600 Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Date: Thu, 20 Oct 2022 16:51:50 GMT Expires: Thu, 20 Oct 2022 17:24:51 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff X-Cache: Hit from cloudfront Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: Bqzc5TNKME3YqMMp3w08PN1q7uf96cyrWanA2RWipEV3vk29Y09Qjw== Age: 1009 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: bdb8b66c705a7b996496d780f50c00b5 Sha1: 403ae92039fcc933870f51f913f78ccaf9652256 Sha256: c923ed2539f4ce9f4d43743c402fbb2060a52a4cbedbf14c5f5742ab718073d6
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 22dfbec34834914ffd13a3bee717dbf695450c05a44949bb691e39d254e39665 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "22DFBEC34834914FFD13A3BEE717DBF695450C05A44949BB691E39D254E39665" Last-Modified: Wed, 19 Oct 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6346 Expires: Thu, 20 Oct 2022 18:54:25 GMT Date: Thu, 20 Oct 2022 17:08:39 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: e41c85816a32bf30e54a8993fcd0406f Sha1: 35013fb83966783145f1439eb7e949beefae4cf8 Sha256: 22dfbec34834914ffd13a3bee717dbf695450c05a44949bb691e39d254e39665
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: content-signature-2.cdn.mozilla.net/chains/remote-setti (...) FQDN: content-signature-2.cdn.mozilla.net IP: 34.160.144.191 HASH: 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78 34.160.144.191 HTTP/2 200 OK content-type: binary/octet-stream x-amz-id-2: HVRNQHA8TnnqjSEdchqGqoF1MXnkGoI9uf1qV+dn5bVBE92pWAgO51ECBDaRomFP189OT521xXk= x-amz-request-id: ACVP7E72279ZJ2AQ content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Thu, 20 Oct 2022 16:36:49 GMT age: 1910 last-modified: Fri, 30 Sep 2022 18:50:55 GMT etag: "67d5a988edcda47bc3b3b3f65d32b4b6" cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 67d5a988edcda47bc3b3b3f65d32b4b6 Sha1: d4f0e0da8b3690cc7da925026d3414b68c7d954f Sha256: 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: contile.services.mozilla.com/v1/tiles FQDN: contile.services.mozilla.com IP: 34.117.237.239 HASH: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 34.117.237.239 HTTP/2 200 OK content-type: application/json server: nginx date: Thu, 20 Oct 2022 17:08:39 GMT content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /favicon.ico HTTP/1.1 Host: rouonixon.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://rouonixon.com/4/4981334/ Cookie: OAID=13ce3c27554a4fd0a06bdd5822f223e4; oaidts=1666285719	URL: rouonixon.com/favicon.ico FQDN: rouonixon.com IP: 139.45.197.238 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 139.45.197.238 HTTP/1.1 204 No Content Server: nginx Date: Thu, 20 Oct 2022 17:08:39 GMT Connection: keep-alive Expires: Thu, 31 Dec 2037 23:55:55 GMT Pragma: public Cache-Control: max-age=315360000, public, must-revalidate, proxy-revalidate --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.sectigo.com/ FQDN: ocsp.sectigo.com IP: 172.64.155.188 HASH: 5f0d328ff3c1a099fc8a405c0ef33168dbdb6fdec93d0db8ea9c0b7795ad7e34 172.64.155.188 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 20 Oct 2022 17:08:39 GMT Content-Length: 471 Connection: keep-alive Last-Modified: Mon, 17 Oct 2022 06:25:19 GMT Expires: Mon, 24 Oct 2022 06:25:18 GMT Etag: "ee071d908b0d2e32f05c1f82ccf7c620dc4e8015" Cache-Control: max-age=306398,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb3 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 75d35b530bb2b518-OSL --- Additional Info --- Magic: data Size: 471 Md5: 82571dc3b59726a8e88def1043dd5dc2 Sha1: ee071d908b0d2e32f05c1f82ccf7c620dc4e8015 Sha256: 5f0d328ff3c1a099fc8a405c0ef33168dbdb6fdec93d0db8ea9c0b7795ad7e34
GET /img.gif?f=merge&userId=13ce3c27554a4fd0a06bdd5822f223e4 HTTP/1.1 Host: my.rtmark.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://rouonixon.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: my.rtmark.net/img.gif?f=merge&userId=13ce3c27554a4fd0a0 (...) FQDN: my.rtmark.net IP: 139.45.195.8 HASH: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49 139.45.195.8 HTTP/2 200 OK content-type: image/gif server: nginx date: Thu, 20 Oct 2022 17:08:39 GMT content-length: 43 access-control-allow-origin: * access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token access-control-expose-headers: Authorization access-control-allow-credentials: true set-cookie: ID=13ce3c27554a4fd0a06bdd5822f223e4; expires=Fri, 20 Oct 2023 17:08:39 GMT; secure; SameSite=None strict-transport-security: max-age=1 x-content-type-options: nosniff timing-allow-origin: , X-Firefox-Spdy: h2 --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 43 Md5: b4491705564909da7f9eaf749dbbfbb1 Sha1: 279315d507855c6a4351e1e2c2f39dd9cd2fccd8 Sha256: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
POST /?z=4981334&syncedCookie=true&rhd=false HTTP/1.1 Host: rouonixon.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/x-www-form-urlencoded Content-Length: 427 Origin: http://rouonixon.com Connection: keep-alive Referer: http://rouonixon.com/afu.php?zoneid=4981334&var=4981334&rid=ksX-wKK1z8yLZCaWKyzJyw%3D%3D&rhd=false Cookie: OAID=13ce3c27554a4fd0a06bdd5822f223e4; oaidts=1666285719 Upgrade-Insecure-Requests: 1	URL: rouonixon.com/?z=4981334&syncedCookie=true&rhd=false FQDN: rouonixon.com IP: 139.45.197.238 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 139.45.197.238 HTTP/1.1 302 Found Server: nginx Date: Thu, 20 Oct 2022 17:08:39 GMT Content-Length: 0 Connection: keep-alive X-Trace-Id: 0896003dbe17aee81340240af6e22582 Link: <https://toapodazoay.com>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch" Referrer-Policy: no-referrer Location: https://toapodazoay.com/?l=qCqekRDLtEBTXwP&s=607008904517522140&z=4981334&g=NO&svar=1666285719&ba=0&dm=0&ep=0&vi=0&vo=0&i18db=0&tr=default&svar=1666285719&ssk=2306c96bceed8427e386aebc792b3c47&svarok=1&b=79056&oaid=13ce3c27554a4fd0a06bdd5822f223e4&rdk=rk3 Access-Control-Allow-Origin: http://rouonixon.com Access-Control-Allow-Credentials: true Access-Control-Allow-Methods: GET, POST, OPTIONS Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding Access-Control-Max-Age: 86400 Pragma: no-cache Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0 Expires: Tue, 11 Jan 1994 10:00:00 GMT Set-Cookie: OAID=13ce3c27554a4fd0a06bdd5822f223e4; expires=Fri, 20 Oct 2023 17:08:39 GMT; path=/ oaidts=1666285719; expires=Fri, 20 Oct 2023 17:08:39 GMT; path=/ syncedCookie=true; expires=Thu, 27 Oct 2022 17:08:39 GMT; path=/ Strict-Transport-Security: max-age=1 X-Content-Type-Options: nosniff Timing-Allow-Origin: , --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: dc01475d4dc21a1cae229be2208a845c23bf05462f559f8a70dd41197043e389 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "DC01475D4DC21A1CAE229BE2208A845C23BF05462F559F8A70DD41197043E389" Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10480 Expires: Thu, 20 Oct 2022 20:03:19 GMT Date: Thu, 20 Oct 2022 17:08:39 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 7d93d691015f929a758d5fc73fb40be7 Sha1: 05cc32b2d1a176c16f8f95b45925f6923277dda4 Sha256: dc01475d4dc21a1cae229be2208a845c23bf05462f559f8a70dd41197043e389
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/buckets/main/c (...) FQDN: firefox.settings.services.mozilla.com IP: 143.204.55.115 HASH: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 143.204.55.115 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 329 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff Cache-Control: max-age=3600 Date: Thu, 20 Oct 2022 16:43:40 GMT Expires: Thu, 20 Oct 2022 17:24:35 GMT ETag: "1648230346554" X-Cache: Hit from cloudfront Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: 9fyMDaXHA6Phld40mPFDBSkDVzSm8Ixy-e7ERNQUe0aneVuo5y3Tzw== Age: 1500 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 75ad68ed1b06fc9f09c28e134098714184eba8cfc125e77b6d885684a5a8756d 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "75AD68ED1B06FC9F09C28E134098714184EBA8CFC125E77B6D885684A5A8756D" Last-Modified: Wed, 19 Oct 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6380 Expires: Thu, 20 Oct 2022 18:55:00 GMT Date: Thu, 20 Oct 2022 17:08:40 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 0d330f518497c846d786486092f3d324 Sha1: 862c837e14f192cd373af5b7bb46bf6767123fda Sha256: 75ad68ed1b06fc9f09c28e134098714184eba8cfc125e77b6d885684a5a8756d
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 23d4ec3aeab3c9e3c833c285ec80fd3a8e9a9b644b47d79f550626511be04ee2 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "23D4EC3AEAB3C9E3C833C285EC80FD3A8E9A9B644B47D79F550626511BE04EE2" Last-Modified: Wed, 19 Oct 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=20355 Expires: Thu, 20 Oct 2022 22:47:55 GMT Date: Thu, 20 Oct 2022 17:08:40 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 12fbe9239c0ee5c4fb3a183db05a5ecc Sha1: 5f6847180e25dfe5e7cf7ddde9834f9cbde135ef Sha256: 23d4ec3aeab3c9e3c833c285ec80fd3a8e9a9b644b47d79f550626511be04ee2
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 1edffa6a320210fccbd0e5fa6dbdaa45561678a75a66639985f02791c8283b40 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 4669 Cache-Control: max-age=144955 Date: Thu, 20 Oct 2022 17:08:40 GMT Etag: "63510196-1d7" Expires: Sat, 22 Oct 2022 09:24:35 GMT Last-Modified: Thu, 20 Oct 2022 08:06:46 GMT Server: ECS (ska/F70F) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: a5dd4f71f4ddd5be9201466ed7a6c423 Sha1: 1d0832fb6e227d42137d319f728c8bc1414c816f Sha256: 1edffa6a320210fccbd0e5fa6dbdaa45561678a75a66639985f02791c8283b40
GET /vctx?t=56193 HTTP/1.1 Host: unphionetor.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://toapodazoay.com Connection: keep-alive Referer: https://toapodazoay.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: unphionetor.com/vctx?t=56193 FQDN: unphionetor.com IP: 139.45.197.236 HASH: d90f986a0a4f15333822af516a6b17c801ae508d1eead9c4da39b0497117f0db 139.45.197.236 HTTP/2 200 OK content-type: text/plain; charset=utf-8 server: nginx date: Thu, 20 Oct 2022 17:08:40 GMT content-length: 72 access-control-allow-origin: https://toapodazoay.com access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token access-control-expose-headers: Authorization access-control-allow-credentials: true pragma: no-cache cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0 expires: Tue, 11 Jan 1994 10:00:00 GMT x-trace-id: 7de936cc23c89dc9a922a0ac22971e19 set-cookie: PRIT[56193]=; expires=Tue, 10 Nov 2009 23:00:00 GMT strict-transport-security: max-age=1 x-content-type-options: nosniff timing-allow-origin: , X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text Size: 72 Md5: 5fad1bb26840b88b000b65aae19ef02c Sha1: 6720f58b1849dd117a411b2d85d9bb3de6eaa931 Sha256: d90f986a0a4f15333822af516a6b17c801ae508d1eead9c4da39b0497117f0db Alerts: Blocklists: - quad9: Sinkholed
GET /favicon.ico HTTP/1.1 Host: toapodazoay.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://toapodazoay.com/?rzi=4981334&rsz=4981334&rid= Cookie: reverse=1yRVuqgN7wIp8Wq2M097hlr0Ysnm9y7ztDonxynFnKs Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: toapodazoay.com/favicon.ico FQDN: toapodazoay.com IP: 139.45.197.155 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 139.45.197.155 HTTP/2 204 No Content server: nginx date: Thu, 20 Oct 2022 17:08:40 GMT strict-transport-security: max-age=60 x-content-type-options: nosniff X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /vbl?t=56193&bid=79056&aid=607008904517522140 HTTP/1.1 Host: unphionetor.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://toapodazoay.com Connection: keep-alive Referer: https://toapodazoay.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0 TE: trailers	URL: unphionetor.com/vbl?t=56193&bid=79056&aid=607008904517522140 FQDN: unphionetor.com IP: 139.45.197.236 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 139.45.197.236 HTTP/2 204 No Content server: nginx date: Thu, 20 Oct 2022 17:08:40 GMT access-control-allow-origin: https://toapodazoay.com access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token access-control-expose-headers: Authorization access-control-allow-credentials: true pragma: no-cache cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0 expires: Tue, 11 Jan 1994 10:00:00 GMT x-trace-id: e0ac882bd09fae7df9b26ef6b20e2cbd strict-transport-security: max-age=1 x-content-type-options: nosniff timing-allow-origin: , X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Alerts: Blocklists: - quad9: Sinkholed
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: Z3DWXZEu3vrM+qQq+5kLFA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	URL: push.services.mozilla.com/ FQDN: push.services.mozilla.com IP: 54.191.222.112 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 54.191.222.112 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: EHGlI8JE+TT3SIId/fFbLx9Ty0A= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /afu.php?id=792658&rt=1 HTTP/1.1 Host: go.ad2upapp.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: go.ad2upapp.com/afu.php?id=792658&rt=1 FQDN: go.ad2upapp.com IP: 139.45.197.237 HASH: 753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0 139.45.197.237 HTTP/1.1 302 Moved Temporarily Content-Type: text/html Server: nginx Date: Thu, 20 Oct 2022 17:08:41 GMT Content-Length: 138 Connection: keep-alive Location: http://go.deliverymodo.com/afu.php?id=792658&rt=1 Strict-Transport-Security: max-age=1 X-Content-Type-Options: nosniff Timing-Allow-Origin: * --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size: 138 Md5: aff950cab4c0265e21d401db15f1026d Sha1: f03e18461817f7a6546c8bf8fa8d686d7e30aca0 Sha256: 753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0
GET /afu.php?id=792658&rt=1 HTTP/1.1 Host: go.deliverymodo.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: go.deliverymodo.com/afu.php?id=792658&rt=1 FQDN: go.deliverymodo.com IP: 139.45.197.236 HASH: 75e7db7c5ba29c4617c9f9f5d50352a67a5ba703f4efc22aface3f8df93cbfcd 139.45.197.236 HTTP/1.1 200 OK Content-Type: text/html; charset=utf8 Server: nginx Date: Thu, 20 Oct 2022 17:08:41 GMT Transfer-Encoding: chunked Connection: keep-alive X-Trace-Id: 5f74dfcf3b21b28cfe773889c6f0ef06 Link: <https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://my.rtmark.net>; rel="preconnect dns-prefetch", <https://www.lyca-mobile.no>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch" Access-Control-Allow-Origin: * Access-Control-Allow-Credentials: true Access-Control-Allow-Methods: GET, POST, OPTIONS Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding Access-Control-Max-Age: 86400 Pragma: no-cache Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0 Expires: Tue, 11 Jan 1994 10:00:00 GMT Set-Cookie: OAID=37a7e3f8a03942b6bb589c34cadb152f; expires=Fri, 20 Oct 2023 17:08:41 GMT; path=/ oaidts=1666285721; expires=Fri, 20 Oct 2023 17:08:41 GMT; path=/ syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT Strict-Transport-Security: max-age=1 X-Content-Type-Options: nosniff Timing-Allow-Origin: , Content-Encoding: gzip --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size: 737 Md5: aed6a8a42cbaad11d240a0289f290082 Sha1: e150cf9f69fb80e3a2d25d0b009a5d8e38275839 Sha256: 75e7db7c5ba29c4617c9f9f5d50352a67a5ba703f4efc22aface3f8df93cbfcd
POST /vb?t=56193&bid=79056&aid=607008904517522140&tp=2016 HTTP/1.1 Host: unphionetor.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://toapodazoay.com Connection: keep-alive Referer: https://toapodazoay.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0 TE: trailers	URL: unphionetor.com/vb?t=56193&bid=79056&aid=60700890451752 (...) FQDN: unphionetor.com IP: 139.45.197.236 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 139.45.197.236 HTTP/2 204 No Content server: nginx date: Thu, 20 Oct 2022 17:08:41 GMT access-control-allow-origin: https://toapodazoay.com access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token access-control-expose-headers: Authorization access-control-allow-credentials: true pragma: no-cache cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0 expires: Tue, 11 Jan 1994 10:00:00 GMT x-trace-id: ab3ad679ca4cb4706c2d01f2ac5c4b3d strict-transport-security: max-age=1 x-content-type-options: nosniff timing-allow-origin: , X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Alerts: Blocklists: - quad9: Sinkholed
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1" Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3217 Expires: Thu, 20 Oct 2022 18:02:18 GMT Date: Thu, 20 Oct 2022 17:08:41 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: dcbf142b7958e83961fc03b9676d1fc6 Sha1: 930f67e486f95de63450b6d73d1957aac204fb43 Sha256: 9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1" Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3217 Expires: Thu, 20 Oct 2022 18:02:18 GMT Date: Thu, 20 Oct 2022 17:08:41 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: dcbf142b7958e83961fc03b9676d1fc6 Sha1: 930f67e486f95de63450b6d73d1957aac204fb43 Sha256: 9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1" Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3217 Expires: Thu, 20 Oct 2022 18:02:18 GMT Date: Thu, 20 Oct 2022 17:08:41 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: dcbf142b7958e83961fc03b9676d1fc6 Sha1: 930f67e486f95de63450b6d73d1957aac204fb43 Sha256: 9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1" Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3217 Expires: Thu, 20 Oct 2022 18:02:18 GMT Date: Thu, 20 Oct 2022 17:08:41 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: dcbf142b7958e83961fc03b9676d1fc6 Sha1: 930f67e486f95de63450b6d73d1957aac204fb43 Sha256: 9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1" Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3217 Expires: Thu, 20 Oct 2022 18:02:18 GMT Date: Thu, 20 Oct 2022 17:08:41 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: dcbf142b7958e83961fc03b9676d1fc6 Sha1: 930f67e486f95de63450b6d73d1957aac204fb43 Sha256: 9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6da0eaa5-24ec-42bb-8269-d235104e844f.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 1309e9dcb36858de70ef82900ec1ad429fbb795ddb9823fd1c290b18f4e2c1a3 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 9623 x-amzn-requestid: b3d5bd8d-111b-4d50-9720-71f72c62f860 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Z7Q8oFLRIAMFrEw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6347951d-613e5e810f420e4c0ba3e6f6;Sampled=0 x-amzn-remapped-date: Thu, 13 Oct 2022 04:33:33 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: OA9iHADyiam26eo88jYDECifkqeBaTjsuoeHD2YOy0aZJZEGhG-xow== via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google date: Thu, 20 Oct 2022 13:19:23 GMT age: 13758 etag: "ce0f78803a81b1c6b3067c78b75bc6f1d5a7f7c1" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 9623 Md5: 440811a19987ddee099df289d9b61e79 Sha1: ce0f78803a81b1c6b3067c78b75bc6f1d5a7f7c1 Sha256: 1309e9dcb36858de70ef82900ec1ad429fbb795ddb9823fd1c290b18f4e2c1a3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F927829d0-802f-4d0d-b566-d5875b574c9a.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 34966351275d61a81528a5b5eedef55878d9f7b9c0af311ead9471dda8a02e41 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 7098 x-amzn-requestid: 2f4f7eac-181e-4fe2-b3de-5b22e9e9b9ef x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: aRYSPGRMIAMFZAg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63506da7-42ed935836382b62301fc3e5;Sampled=0 x-amzn-remapped-date: Wed, 19 Oct 2022 21:35:35 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: JJm8noqjbY7Y8effNKjyVb5D_zbRTxuCTLFif9a5lZLcTPard05YZA== via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google date: Wed, 19 Oct 2022 21:53:58 GMT age: 69283 etag: "e94567c4fe3adade32f19c8c3053a486fe8c3ac9" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7098 Md5: 5fd91971508ef6f5985a0017dfcdd73e Sha1: e94567c4fe3adade32f19c8c3053a486fe8c3ac9 Sha256: 34966351275d61a81528a5b5eedef55878d9f7b9c0af311ead9471dda8a02e41
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F638eac9f-fba9-43ad-a54e-d70a9233253b.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 4cff326ed72c61a05f1150ac1a5423b006915bbb25dfaa11dadab2c24e71de1a 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 5566 x-amzn-requestid: 0eb4a0a4-9659-4c49-81d4-cd605eceed66 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: aRZKGEwzIAMFVbA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63506f0d-0bc0a25f4f5b1e893f448ae2;Sampled=0 x-amzn-remapped-date: Wed, 19 Oct 2022 21:41:33 GMT x-amz-cf-pop: SFO5-P2, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: HJ79GtM4BktNGSt8djSSWbAKtnICVZBOrIzKUg1mrJpV1j_xQqAMxQ== via: 1.1 c07670802688417c8b871124c547eb0a.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google date: Wed, 19 Oct 2022 21:54:06 GMT age: 69275 etag: "14207b4845fc4c2c72a18a77cbcbe5f50aa9056e" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 5566 Md5: 4b38fcf82dcb60f48ee2b0df158d2eb6 Sha1: 14207b4845fc4c2c72a18a77cbcbe5f50aa9056e Sha256: 4cff326ed72c61a05f1150ac1a5423b006915bbb25dfaa11dadab2c24e71de1a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1a95f4f-d066-4cb4-bb6a-392f3ed5c229.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: ab1d3690731963f85ede6cf6bedfb8b62ae1f93fafecc2cf343ea07bd4f2afce 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 13101 x-amzn-requestid: e10df8ba-d8f2-44c8-ad0f-bbda32020e0f x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: aRYBYF6noAMFthg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63506d3b-56538b97541830784f01f61f;Sampled=0 x-amzn-remapped-date: Wed, 19 Oct 2022 21:33:47 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: 9R7vli3BwVLfleTf2jeZc5YNDMDxM024T7nyXcIpE2-o8Ddff57Jmg== via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google date: Wed, 19 Oct 2022 21:44:56 GMT age: 69825 etag: "e008a1663c29616e83dccba105d7f6e2dbbb37dc" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 13101 Md5: e76755a16cf0bdb76d5e832c7b14af85 Sha1: e008a1663c29616e83dccba105d7f6e2dbbb37dc Sha256: ab1d3690731963f85ede6cf6bedfb8b62ae1f93fafecc2cf343ea07bd4f2afce
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1c50c7d-8321-4dac-aa20-04a81680db07.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 2499b2c4414108ed742986b90ca2a1b60c3fd65a82a78322031263650e935c7e 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 10554 x-amzn-requestid: 343fc462-3654-48cb-bb4f-0d0d54c07b58 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: aRX9REoMoAMF21g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63506d21-152a7b145b9fcb0e0a97db57;Sampled=0 x-amzn-remapped-date: Wed, 19 Oct 2022 21:33:21 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: 4b3RT-THlt6W7NHL9Tu35gWrOeJ1aNALztrgXSkSwdT-14ccmz7gtg== via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google date: Wed, 19 Oct 2022 21:49:35 GMT age: 69546 etag: "a8ba1a075a9c5501d043b9b14c45ed6bcd684e68" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 10554 Md5: 8ee7bd4412c0b0eb678b9d53b07bdd9a Sha1: a8ba1a075a9c5501d043b9b14c45ed6bcd684e68 Sha256: 2499b2c4414108ed742986b90ca2a1b60c3fd65a82a78322031263650e935c7e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab5d17f5-6084-45a5-9677-8ae8646d6ee1.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 7294e93d890b4c8eeb8383a67aac0be8b88cac5e0882865c9f38ade713157799 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 9607 x-amzn-requestid: 590b20a6-039c-4c25-a61a-5f579c5b31f2 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: aRZj6HZ7oAMFsSQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63506fb2-04b740c442ae735347b4e2c3;Sampled=0 x-amzn-remapped-date: Wed, 19 Oct 2022 21:44:18 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: bL5fVog2SuW8ZNt9a0ECc8jwcAELUBVo63LXPovdnIRxCRnsMWVvvQ== via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google date: Wed, 19 Oct 2022 21:46:27 GMT age: 69734 etag: "6b15c7d7abb9ff1cc040853401ad5a39f81c19a4" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 9607 Md5: 81216ad70664e969888ae7b13871fda0 Sha1: 6b15c7d7abb9ff1cc040853401ad5a39f81c19a4 Sha256: 7294e93d890b4c8eeb8383a67aac0be8b88cac5e0882865c9f38ade713157799
POST / HTTP/1.1 Host: ocsp.netsolssl.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.netsolssl.com/ FQDN: ocsp.netsolssl.com IP: 104.18.32.68 HASH: 9e0ffd9bb1dcb2e6ebdad78d4f4fff5cd172c21851e0453c01ac74b45955b197 104.18.32.68 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 20 Oct 2022 17:08:41 GMT Content-Length: 472 Connection: keep-alive Last-Modified: Thu, 20 Oct 2022 13:06:08 GMT Expires: Thu, 27 Oct 2022 13:06:07 GMT Etag: "9b5503f23b4bdd6ef58a00ba2395339ac4792272" Cache-Control: max-age=589645,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb2 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 75d35b61ac1db51b-OSL --- Additional Info --- Magic: data Size: 472 Md5: b864c384811bb4dd90a34e0c81cf9f35 Sha1: 9b5503f23b4bdd6ef58a00ba2395339ac4792272 Sha256: 9e0ffd9bb1dcb2e6ebdad78d4f4fff5cd172c21851e0453c01ac74b45955b197
GET /favicon.ico HTTP/1.1 Host: go.deliverymodo.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Cookie: OAID=37a7e3f8a03942b6bb589c34cadb152f; oaidts=1666285721	URL: go.deliverymodo.com/favicon.ico FQDN: go.deliverymodo.com IP: 139.45.197.236 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 139.45.197.236 HTTP/1.1 204 No Content Server: nginx Date: Thu, 20 Oct 2022 17:08:41 GMT Connection: keep-alive Expires: Thu, 31 Dec 2037 23:55:55 GMT Pragma: public Cache-Control: max-age=315360000, public, must-revalidate, proxy-revalidate --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.sectigo.com/ FQDN: ocsp.sectigo.com IP: 172.64.155.188 HASH: 5f0d328ff3c1a099fc8a405c0ef33168dbdb6fdec93d0db8ea9c0b7795ad7e34 172.64.155.188 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 20 Oct 2022 17:08:41 GMT Content-Length: 471 Connection: keep-alive Last-Modified: Mon, 17 Oct 2022 06:25:19 GMT Expires: Mon, 24 Oct 2022 06:25:18 GMT Etag: "ee071d908b0d2e32f05c1f82ccf7c620dc4e8015" Cache-Control: max-age=306396,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb2 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 75d35b61f94fb518-OSL --- Additional Info --- Magic: data Size: 471 Md5: 82571dc3b59726a8e88def1043dd5dc2 Sha1: ee071d908b0d2e32f05c1f82ccf7c620dc4e8015 Sha256: 5f0d328ff3c1a099fc8a405c0ef33168dbdb6fdec93d0db8ea9c0b7795ad7e34
POST /img.gif?f=merge&userId=37a7e3f8a03942b6bb589c34cadb152f HTTP/1.1 Host: my.rtmark.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0	URL: my.rtmark.net/img.gif?f=merge&userId=37a7e3f8a03942b6bb (...) FQDN: my.rtmark.net IP: 139.45.195.8 HASH: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49 139.45.195.8 HTTP/2 200 OK content-type: image/gif server: nginx date: Thu, 20 Oct 2022 17:08:41 GMT content-length: 43 access-control-allow-origin: null access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token access-control-expose-headers: Authorization access-control-allow-credentials: true set-cookie: ID=37a7e3f8a03942b6bb589c34cadb152f; expires=Fri, 20 Oct 2023 17:08:41 GMT; secure; SameSite=None strict-transport-security: max-age=1 x-content-type-options: nosniff timing-allow-origin: , X-Firefox-Spdy: h2 --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 43 Md5: b4491705564909da7f9eaf749dbbfbb1 Sha1: 279315d507855c6a4351e1e2c2f39dd9cd2fccd8 Sha256: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site	URL: www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=S (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 6d00eaf2c965c3d8abd0cd735c433605046fa0a0d6b2c4addd9a1e51d9a4f11c 3.120.194.163 HTTP/1.1 200 OK Content-Type: text/html; charset=UTF-8 Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:41 GMT Link: <https://www.lyca-mobile.no/nb/?p=170723>; rel=shortlink Server: Apache Set-Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; path=/; domain=.lyca-mobile.no; secure; HttpOnly;HttpOnly; Secure; SameSite=None;HttpOnly; Secure; SameSite=None;SameSite=None;Secure newsim_tab=0; expires=Thu, 20-Oct-2022 17:18:42 GMT; Max-Age=600; path=/;HttpOnly; Secure; SameSite=None;HttpOnly; Secure; SameSite=None;SameSite=None;Secure Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 32047 Connection: keep-alive --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1696), with CRLF, LF line terminators Size: 32047 Md5: 7ca95e5b3badc4c8d69d750438dbf8f2 Sha1: 7db55240d9b8639538606417adcb75a1699b218f Sha256: 6d00eaf2c965c3d8abd0cd735c433605046fa0a0d6b2c4addd9a1e51d9a4f11c
GET /wp-content/plugins/simple-sitemap/lib/assets/css/simple-sitemap.css HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/simple-sitemap/li (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: a67e5b0779241cd4c4d99b2b47e4ead0f0ce2cb2ab2a1fb5464d62f5a543dd3f 3.120.194.163 HTTP/1.1 200 OK Content-Type: text/css Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 1763 Connection: keep-alive --- Additional Info --- Magic: ASCII text Size: 1763 Md5: 999af40135d16a152caaee08d90f72d8 Sha1: 7462b3f3d77148eb3601c302b182ba74265def75 Sha256: a67e5b0779241cd4c4d99b2b47e4ead0f0ce2cb2ab2a1fb5464d62f5a543dd3f
GET /wp-content/plugins/custom-search-plugin/css/style.css HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/custom-search-plu (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 2a50c1b8ad7b97eea3b52d13f8623eeffe389262e3eccfb676eaacd15619345b 3.120.194.163 HTTP/1.1 200 OK Content-Type: text/css Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 251 Connection: keep-alive --- Additional Info --- Magic: ASCII text Size: 251 Md5: 90fe42aaed8e5c04b824b1ca3cf3ea34 Sha1: 737cfe50f07686fb94ca84b3e836ac7d85d425d9 Sha256: 2a50c1b8ad7b97eea3b52d13f8623eeffe389262e3eccfb676eaacd15619345b
GET /wp-content/themes/Divi-child/vendor/flat-icon/flaticon.css HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 653364905a7234231046bf7134bfb1d2f8f957e10463e74d636e4465bf1b8139 143.204.42.74 HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Tue, 27 Aug 2019 08:27:43 GMT Server: AmazonS3 Content-Encoding: gzip Date: Thu, 20 Oct 2022 00:26:23 GMT Cache-Control: 2592000 ETag: W/"944296da525e8552632efd1dc0fd0480" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: nOjlhei9FKhicUtArjN9z_4fybZdmIWlRL3gHyfnE4OSzIK6Vl0ltw== Age: 60141 --- Additional Info --- Magic: ASCII text, with very long lines (1000), with no line terminators Size: 417 Md5: 5e5c8838d3f45e076213445010a63eb8 Sha1: 6aedac1cb54fd087ea16c8bae11c0687bef29ce8 Sha256: 653364905a7234231046bf7134bfb1d2f8f957e10463e74d636e4465bf1b8139
GET /wp-content/themes/Divi-child/vendor/linear-icons/style.css HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 266f0f47e47b7112dd2e4eb5ace546dfb6ba3f33102ca84644ba73b916a84e8e 143.204.42.74 HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Tue, 27 Aug 2019 08:27:44 GMT Server: AmazonS3 Content-Encoding: gzip Date: Thu, 20 Oct 2022 00:26:23 GMT Cache-Control: 2592000 ETag: W/"e93b8e4cf5dc750d2d02a5b9d19f9706" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: myf2qD-DSmMuG6NyRG3NGEnjHPLhbHf6UkuwaBF5T6SkKuWbDlgxgA== Age: 60141 --- Additional Info --- Magic: ASCII text, with very long lines (7000), with no line terminators Size: 1594 Md5: 2c3db994977a8259ce017be02d597a5f Sha1: 628f1530806dc499872a67907a3b6c81215fcea8 Sha256: 266f0f47e47b7112dd2e4eb5ace546dfb6ba3f33102ca84644ba73b916a84e8e
GET /wp-includes/css/dist/block-library/style.css HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-includes/css/dist/bloc (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 061f638892d79ba288c543bfb22417de474fd538898931c0f126aad20a997964 143.204.42.74 HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:23 GMT Last-Modified: Thu, 06 Aug 2020 03:32:13 GMT ETag: W/"ff1e4526d778743bf4370b47ff17e7c7" Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: t3_qjoJVAus-UfsildlihgtQXol4SIVkgqgSj8cU-eY7sWn48CMvtQ== Age: 60141 --- Additional Info --- Magic: ASCII text Size: 9361 Md5: 2be7bee7ec368ffca87466bc157e2b3b Sha1: 6782fade3d3b2a2c417544a8635e032b43aee8c9 Sha256: 061f638892d79ba288c543bfb22417de474fd538898931c0f126aad20a997964
GET /wp-content/plugins/wpml-cms-nav/res/css/cms-navigation.css HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/wpml-cms-nav/res/ (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 9fb5a2a2bea5341dd17ec72403d66f0903278030092ae829fe6bb4e23e6af725 3.120.194.163 HTTP/1.1 200 OK Content-Type: text/css Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 645 Connection: keep-alive --- Additional Info --- Magic: ASCII text Size: 645 Md5: c98f02f1afd562a7288aa2dc828e6186 Sha1: d0f42b73794b0d3ffb9e3eb2d79218d14c40dc88 Sha256: 9fb5a2a2bea5341dd17ec72403d66f0903278030092ae829fe6bb4e23e6af725
GET /wp-content/themes/Divi-child/css/student-style.css HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 370ce3c5280f78beb793f8773f3f74b225a2e54f35449df02aa8e181a4842255 143.204.42.74 HTTP/1.1 200 OK Content-Type: text/css Content-Length: 966 Connection: keep-alive Last-Modified: Thu, 18 Nov 2021 11:11:57 GMT Accept-Ranges: bytes Server: AmazonS3 Date: Thu, 20 Oct 2022 08:14:48 GMT ETag: "64eaec02b035ad1628a7890becee905c" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: AoUaRSMmRsYQqu3kqGZP2_rWvq-x0j14GOWm2W6M03A5KJsfzZdcjg== Age: 32036 --- Additional Info --- Magic: ASCII text, with CR line terminators Size: 966 Md5: 64eaec02b035ad1628a7890becee905c Sha1: d9a7cd1dd7d3400c09e341e4bba580b80b0a41d9 Sha256: 370ce3c5280f78beb793f8773f3f74b225a2e54f35449df02aa8e181a4842255
GET /wp-content/themes/Divi-child/vendor/bootstrap/css/bootstrap.min.css HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 049efc7abd7c5e6b918167070e331016adce061c6ceb583dc40776b4317e9dbd 143.204.42.74 HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Tue, 27 Aug 2019 08:27:42 GMT Server: AmazonS3 Content-Encoding: gzip Date: Thu, 20 Oct 2022 00:26:23 GMT Cache-Control: 2592000 ETag: W/"ac9de5b47373547a27390517f13fe21a" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: 8M00B61F6Dj0Aa5iExMbiYRQ0qOpNcbeAXAVqzk6YkHff4mfVa8IUA== Age: 60141 --- Additional Info --- Magic: ASCII text, with very long lines (65371) Size: 19654 Md5: d8c8df5848a3ea1cfdd2ccb47289b476 Sha1: 1e50e49dc562803949b11b1ae4d4890ebd359549 Sha256: 049efc7abd7c5e6b918167070e331016adce061c6ceb583dc40776b4317e9dbd
GET /wp-content/themes/Divi-child/vendor/font-awesome/css/font-awesome.min.css HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 389946cb872b2df43495a8d161246b53d3153c5131039c68562256e39dce4cb2 143.204.42.74 HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 09:13:00 GMT Last-Modified: Tue, 27 Aug 2019 08:27:43 GMT ETag: W/"4f0c935c3631f777ea790a05a44c1744" Cache-Control: 2592000 Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: 8Ahnn-2Mp-kDwSPCrFxA-Z_6FM-a9HIi5pIRB5QkVK0Zf0q9jUqYGA== Age: 28544 --- Additional Info --- Magic: ASCII text, with very long lines (28877), with no line terminators Size: 6549 Md5: b1de1df73ae7be1caa0d5bcd05a51174 Sha1: dc031d576fe6505f0c8410156dc69bc8a6174bc6 Sha256: 389946cb872b2df43495a8d161246b53d3153c5131039c68562256e39dce4cb2
GET /wp-content/themes/Divi-child/my-account.css HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 242a4532fe2f0579adea21357e6302a5b62d50b32e1f8a6ef9f11fa7722174dc 143.204.42.74 HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Thu, 18 Nov 2021 11:11:57 GMT Server: AmazonS3 Content-Encoding: gzip Date: Thu, 20 Oct 2022 00:26:23 GMT ETag: W/"5e2d79452ec87ed86924ea2519c341ef" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: woEP2YnYxUsxRwNA8eN5jZkJGpWO16n9uY7HPqL_xxPWmEMQ56kSrg== Age: 60141 --- Additional Info --- Magic: ASCII text, with very long lines (12687) Size: 2728 Md5: d3ff672944c1aeaee7b472e5d9f40edc Sha1: 31a10749d5afe70dc04b53d5c35d8464c38bfda8 Sha256: 242a4532fe2f0579adea21357e6302a5b62d50b32e1f8a6ef9f11fa7722174dc
GET /wp-content/themes/Divi-child/vendor/line-awesome/css/line-awesome.min.css HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: c54c83365431d5b6d0983c165687586bbd597893156605ccb9100bb9b1533187 143.204.42.74 HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:23 GMT Last-Modified: Tue, 27 Aug 2019 08:27:44 GMT ETag: W/"4334c8c70998d81bde3e6765828811a6" Cache-Control: 2592000 Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: vQmUF99jc3PiRzCRGHpGPfY_aoDRhgHuKQtuyXTNSZ6iMJyx9OYL9g== Age: 60141 --- Additional Info --- Magic: ASCII text, with very long lines (27557) Size: 6036 Md5: c7bc010a6881e686dbb7f4ae2a373f2a Sha1: 1ce8da2a8a5f8ec1b74220d265cd4e216f8f8e6d Sha256: c54c83365431d5b6d0983c165687586bbd597893156605ccb9100bb9b1533187
GET /wp-content/themes/Divi-child/css/countries.css HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: bac09b87c13bdaafef307751aacfb1317808e6c32cd1e399d5d62a5cf6879873 143.204.42.74 HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Tue, 27 Aug 2019 08:27:32 GMT Server: AmazonS3 Content-Encoding: gzip Date: Thu, 20 Oct 2022 00:26:23 GMT Cache-Control: 2592000 ETag: W/"31ec7a36deac6eda43f22dd60a421a40" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: foVkp5W6hdcPh2vLO68SjZx0WBK7i5jf4PPVMbR2Ydt6Q9XwyRutrw== Age: 60141 --- Additional Info --- Magic: ASCII text, with very long lines (15687), with no line terminators Size: 1589 Md5: 004cec651aeec3fcf5a4fbbe9537c9cc Sha1: e963c396d4c87e92a793e62f377af8ab236ecad2 Sha256: bac09b87c13bdaafef307751aacfb1317808e6c32cd1e399d5d62a5cf6879873
GET /wp-content/themes/Divi/epanel/shortcodes/css/shortcodes.css HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi/ep (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: ddb710b587fafffec1e1fabe04ec3df3d119316925a8ff51703c5f3131759fbd 143.204.42.74 HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:23 GMT Last-Modified: Tue, 27 Aug 2019 08:27:49 GMT ETag: W/"ea1a16f72cd2c8d66fdf5e8924f78eee" Cache-Control: 2592000 Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: mbzmCP8CmCXDItmS8GbzSFJ6987XF3klK_R5Z1QckIVZzeHo95sX5Q== Age: 60141 --- Additional Info --- Magic: ASCII text, with very long lines (859) Size: 5814 Md5: 0b1eb8863b3746cc79bb9d83fdb7e161 Sha1: 2c150a9951c8b4e51744c6336f39a2bad61af34f Sha256: ddb710b587fafffec1e1fabe04ec3df3d119316925a8ff51703c5f3131759fbd
GET /wp-content/themes/Divi/epanel/shortcodes/css/shortcodes_responsive.css HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi/ep (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: dbceeae75dc6e2b92d179b238ef4ffbc2286bd84ea0309d6abd3f087309015aa 143.204.42.74 HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:23 GMT Last-Modified: Tue, 27 Aug 2019 08:27:49 GMT ETag: W/"58f7be607923d9296d5628a2d7469422" Cache-Control: 2592000 Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: LmvY_igCg8niB00ZNEYxRM-cyMhK1k_LQ3Lvwf-94Z-JDWMmHijnXA== Age: 60141 --- Additional Info --- Magic: ASCII text Size: 821 Md5: 39586c05ed4972bad19bfa5961faa77a Sha1: 492df4e0c5eba2050c7a2b1d1d95f713540ec22e Sha256: dbceeae75dc6e2b92d179b238ef4ffbc2286bd84ea0309d6abd3f087309015aa
GET /wp-content/themes/Divi/includes/builder/styles/magnific_popup.css HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi/in (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 1ea67cc171afff0f3d30c4b0befd142cf70724663962525ab509118cbf276c39 143.204.42.74 HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 07:46:48 GMT Last-Modified: Tue, 27 Aug 2019 08:27:54 GMT ETag: W/"6e30bbc36a055e4e39e3b1fe966ba0b2" Cache-Control: 2592000 Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: ueDHXcjRNI5V9QlPP5K8H_PzPXXIOh74wGuRJ8NotzohlMxQRkNesw== Age: 33716 --- Additional Info --- Magic: ASCII text, with very long lines (311) Size: 2053 Md5: 9e4a35dae8eae91a02a7fa5db27df3c6 Sha1: af4f210b764ac03ea41af15cae8eafb7923553bb Sha256: 1ea67cc171afff0f3d30c4b0befd142cf70724663962525ab509118cbf276c39
GET /wp-includes/js/jquery/jquery.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-includes/js/jquery/jqu (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: f47e452f043434a83263e9880ffb1be8d477e07fbb82cf9e743a37422bcf621c 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Thu, 06 Aug 2020 03:32:44 GMT Server: AmazonS3 Content-Encoding: gzip Date: Thu, 20 Oct 2022 00:24:08 GMT ETag: W/"49edccea2e7ba985cadc9ba0531cbed1" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: 5QST7hyuyXccv2vjG3anKCm-g1tMPpvqMfvZ91NQZoS7DhkZ96hB0w== Age: 60276 --- Additional Info --- Magic: ASCII text, with very long lines (31997) Size: 33723 Md5: e924b25fa783d6eafffed613d73c4f35 Sha1: f06062a28e08507a2b124898c72733a044ec7565 Sha256: f47e452f043434a83263e9880ffb1be8d477e07fbb82cf9e743a37422bcf621c
GET /wp-content/plugins/registration-portin-facility/vendor/jquery-ui-1.12.1.custom/jquery-ui.css HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/registration-port (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: a31c685f9330266e5b4a2fb4c7c6439f0550fefcdadebd2548f746387820359c 3.120.194.163 HTTP/1.1 200 OK Content-Type: text/css Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 8384 Connection: keep-alive --- Additional Info --- Magic: ASCII text, with very long lines (2363) Size: 8384 Md5: 211e9acb7b08468bf462f3cc35d58dba Sha1: 30b16e5f18fb53e5536e1dff154a4288dea94c41 Sha256: a31c685f9330266e5b4a2fb4c7c6439f0550fefcdadebd2548f746387820359c
GET /wp-content/plugins/email-subscribers/widget/es-widget.css HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/email-subscribers (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: a9316286d70257c135d2a0aacf0bf2bc6acba8c1b5e487c97086459c04849155 3.120.194.163 HTTP/1.1 200 OK Content-Type: text/css Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:19:16 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 150 Connection: keep-alive --- Additional Info --- Magic: ASCII text, with no line terminators Size: 150 Md5: 641533dacb82a11aa947513a4892de5a Sha1: b77427d8626d847a80a762456f98beb3e64764b1 Sha256: a9316286d70257c135d2a0aacf0bf2bc6acba8c1b5e487c97086459c04849155
GET /wp-content/plugins/wp-store-locator/css/styles.css HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/wp-store-locator/ (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 5d585c7bba79f48f5ceaca987c6b08fde3da899d8512e1bf13f81a747d8db56d 3.120.194.163 HTTP/1.1 200 OK Content-Type: text/css Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:25:57 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 4432 Connection: keep-alive --- Additional Info --- Magic: ASCII text Size: 4432 Md5: 29d83f16ddcd51bb2d8e29cfa6f0d970 Sha1: d8aa3982c0c288b37f78f81c34eabfd24bd6bf84 Sha256: 5d585c7bba79f48f5ceaca987c6b08fde3da899d8512e1bf13f81a747d8db56d
GET /wp-content/themes/Divi-child/style.css HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 2630570ec137f6d7560e0c72a57e86906a156a1f2752a06df39aa5c5d5151d82 143.204.42.74 HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:23 GMT Last-Modified: Fri, 15 Jul 2022 07:16:49 GMT ETag: W/"07571e83ac07033388dffa6b348bc459" Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: Lvk5CSDXV_DJCchFq0CnvD4YraPDRU6lAK-SXOaKiNaVRvF0AfrL_A== Age: 60141 --- Additional Info --- Magic: ASCII text, with very long lines (505) Size: 117747 Md5: b10017bb170699116a9bc886fbbc9b02 Sha1: 22fe134df4f5c796b65e0790367fec3a374b0e48 Sha256: 2630570ec137f6d7560e0c72a57e86906a156a1f2752a06df39aa5c5d5151d82
GET /wp-includes/js/jquery/jquery-migrate.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-includes/js/jquery/jqu (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: cd0322a464b8d11f747d0b908eba8a5e20d02f2ae72e4f5075b9c40522c43bb4 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:24 GMT Last-Modified: Thu, 06 Aug 2020 03:32:44 GMT ETag: W/"6c57b762589f13ea5b3579ca5e6c369b" Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: iqOVp5wvP7o9PJeN7YZJnAEs3k--OLjMXtopcoPHGo73rhADEfPBCQ== Age: 60140 --- Additional Info --- Magic: ASCII text Size: 7812 Md5: 76208e6235bb3633615f86e39be06a83 Sha1: 0e64293795f0f94a4180792aaf6b44321c1c08e0 Sha256: cd0322a464b8d11f747d0b908eba8a5e20d02f2ae72e4f5075b9c40522c43bb4
GET /wp-includes/js/jquery/ui/core.min.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-includes/js/jquery/ui/ (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: ef0cac6d41ec158c95903b585c5421f3c59e1677fe5943bdd50feb2288a2104f 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:24 GMT Last-Modified: Thu, 06 Aug 2020 03:32:47 GMT ETag: W/"96ff65c925bbaf3e4e7891a7ca1f2b1f" Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: UU30rrNrTqXLZIsQNUQdv7-Tn2jOQTErYBP8pCuC-YvmMT2rTfXCFw== Age: 60140 --- Additional Info --- Magic: ASCII text, with very long lines (3706) Size: 1819 Md5: 52e1a9b065ba39d28db010fd286ae204 Sha1: da3f9265eac53855df786c6f4b8f813f7ac7fb29 Sha256: ef0cac6d41ec158c95903b585c5421f3c59e1677fe5943bdd50feb2288a2104f
GET /wp-includes/js/jquery/ui/widget.min.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-includes/js/jquery/ui/ (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: b48472230d26ab5393b8ba6795cdce37253116178cb5670ff76098190252e9af 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:24 GMT Last-Modified: Thu, 06 Aug 2020 03:32:47 GMT ETag: W/"00dedd56324da186973a3b2cc5e8023c" Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: zn6M1ebb_yF0JKfniZAbJVVIFtyzXqDhx-4Dp2HRFpFMY-uvH0CCLg== Age: 60140 --- Additional Info --- Magic: ASCII text, with very long lines (6614) Size: 2596 Md5: 9e246654320e031b93830f67c2e56a2f Sha1: 9111676ea0b140011659e6579679e9e619cd65e8 Sha256: b48472230d26ab5393b8ba6795cdce37253116178cb5670ff76098190252e9af
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 9dc13eae0a47c289dbe396d64d2120b77886ee84b809c6902feef5a72547351d 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 2054 Cache-Control: max-age=96630 Date: Thu, 20 Oct 2022 17:08:43 GMT Etag: "63504f0b-117" Expires: Fri, 21 Oct 2022 19:59:13 GMT Last-Modified: Wed, 19 Oct 2022 19:24:59 GMT Server: ECS (ska/F70F) X-Cache: HIT Content-Length: 279 --- Additional Info --- Magic: data Size: 279 Md5: 18b23741e87ccf9a70227948d53e0fbc Sha1: d6846eec3c338e846612a76aae25679218180cdf Sha256: 9dc13eae0a47c289dbe396d64d2120b77886ee84b809c6902feef5a72547351d
GET /wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown/style.css HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/sitepress-multili (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 6f64c08cd674c507292ff081be79f54bb5bde34b90a25e2a619f4c7c0e1c421c 3.120.194.163 HTTP/1.1 200 OK Content-Type: text/css Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 552 Connection: keep-alive --- Additional Info --- Magic: ASCII text, with very long lines (1756) Size: 552 Md5: cf85cdcf046f700267df1aaf104a2b39 Sha1: 852c3e9da0e745e68109819957b9ca45f4e55886 Sha256: 6f64c08cd674c507292ff081be79f54bb5bde34b90a25e2a619f4c7c0e1c421c
GET /wp-content/plugins/wpml-translation-management/res/css/admin-bar-style.css HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/wpml-translation- (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 77e5f04f2f5d3a83c50b55652151182633e799d0daf2280c85e4650a0b06d8ab 3.120.194.163 HTTP/1.1 200 OK Content-Type: text/css Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:25:57 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 113 Connection: keep-alive --- Additional Info --- Magic: ASCII text Size: 113 Md5: 8bd858d224c135ea74666d7f05df248e Sha1: 5ef009ed8087ce73a4912d9749d7f041bc16961b Sha256: 77e5f04f2f5d3a83c50b55652151182633e799d0daf2280c85e4650a0b06d8ab
GET /wp-includes/js/jquery/ui/mouse.min.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-includes/js/jquery/ui/ (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: a95eb8bd20eab719947faa4cec36315c50e21652801f14cb0581afac05aa2c47 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:24 GMT Last-Modified: Thu, 06 Aug 2020 03:32:45 GMT ETag: W/"b317c4ccc9aa140339ad72fa27c77266" Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: 3XZ8QRIyMtEraDK55eMNN0SSjb-X3Sex82bxHScTnexApM1SckKajw== Age: 60140 --- Additional Info --- Magic: ASCII text, with very long lines (2927) Size: 999 Md5: e466629bfa82c6f1dc466ac4a5b5e495 Sha1: 45cc7d9457ef090a9c3cb044a5e3ce2115aa7bcd Sha256: a95eb8bd20eab719947faa4cec36315c50e21652801f14cb0581afac05aa2c47
GET /wp-content/plugins/wpml-cms-nav/res/css/cms-navigation-base.css HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/wpml-cms-nav/res/ (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 039804219c46536ac7cdc83d30e672a0467df803c5348a5733e18a687dc828b1 3.120.194.163 HTTP/1.1 200 OK Content-Type: text/css Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 933 Connection: keep-alive --- Additional Info --- Magic: ASCII text Size: 933 Md5: cb13db3c09d0076dc19a1dbf520c7827 Sha1: c01159a4163902f3dc824ffade25949d3a9a4097 Sha256: 039804219c46536ac7cdc83d30e672a0467df803c5348a5733e18a687dc828b1
GET /wp-content/themes/Divi/style.css HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi/st (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 6accc6d6d74dc86cb4e240544abae03859693f764e150ff687f3db99a47ae9be 143.204.42.74 HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Tue, 27 Aug 2019 08:27:55 GMT Server: AmazonS3 Content-Encoding: gzip Date: Thu, 20 Oct 2022 00:24:08 GMT Cache-Control: 2592000 ETag: W/"817303872fd1f4d16b34fcd79ab7d2d3" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: pN6f5GsTcsxANmErVo16C2m7oZARmhsd3BEztnYiN66vU4pQqm8qDg== Age: 60276 --- Additional Info --- Magic: ASCII text, with very long lines (65536), with no line terminators Size: 43546 Md5: fcc10503f3079ce8d7461641a81ef0a6 Sha1: 34c1b41e2b8a78ea003e8d37286d9ff3c7ec8e9c Sha256: 6accc6d6d74dc86cb4e240544abae03859693f764e150ff687f3db99a47ae9be
GET /wp-content/plugins/registration-portin-facility/public/css/registration_portin_facility-public.css HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/registration-port (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 0021049ab8e09b826fbef1cc74d8ce9794a2a9baa88a793e0773ac3e67f43073 3.120.194.163 HTTP/1.1 200 OK Content-Type: text/css Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Mon, 18 Oct 2021 05:15:42 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 5306 Connection: keep-alive --- Additional Info --- Magic: ASCII text, with very long lines (1963) Size: 5306 Md5: 724d0ef3e346ba677dd5987ce62cb5dc Sha1: e73088909d38fc9a932e679f3a4545297899f26e Sha256: 0021049ab8e09b826fbef1cc74d8ce9794a2a9baa88a793e0773ac3e67f43073
GET /wp-content/plugins/testimonialslider/css/jquery.bxslider.css HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/testimonialslider (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 0d23aabe78d874edcef092bcc9611dd3c3e8656a03c58ad6e01d6d98ad9165ed 3.120.194.163 HTTP/1.1 200 OK Content-Type: text/css Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 885 Connection: keep-alive --- Additional Info --- Magic: Unicode text, UTF-8 text, with very long lines (3002), with no line terminators Size: 885 Md5: 3a8400b070b74650e9c7927466b226cf Sha1: 7669a8def8bca883fbbceed367b8037f35fd1968 Sha256: 0d23aabe78d874edcef092bcc9611dd3c3e8656a03c58ad6e01d6d98ad9165ed
GET /wp-content/plugins/sitepress-multilingual-cms/res/js/jquery.cookie.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/sitepress-multili (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 0ad3c73c3eaf52b9deb1941a12db921002dbfb2326ca007c6838d9a936a31b02 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 1109 Connection: keep-alive --- Additional Info --- Magic: ASCII text Size: 1109 Md5: d2c9e62ba741c5dc1cd388f4cb4322c1 Sha1: 57ad65e2ffdb51d2751763b8bee9ad67f372e2a7 Sha256: 0ad3c73c3eaf52b9deb1941a12db921002dbfb2326ca007c6838d9a936a31b02
GET /wp-includes/js/jquery/ui/sortable.min.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-includes/js/jquery/ui/ (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 68de9191b10834077e8172f64f5da33b5e2e76d617fc86e81ca335a72bea91b1 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:24 GMT Last-Modified: Thu, 06 Aug 2020 03:32:47 GMT ETag: W/"efa8171f2226a422003417095d8549dd" Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: EmRx5CasCt32o7dURnkeBqTFr4p3hJw1thj-AuDD6PKGvzwBITCPDQ== Age: 60140 --- Additional Info --- Magic: HTML document, ASCII text, with very long lines (24670) Size: 6480 Md5: a2c52244d7a3bfff3fb4db5090267b68 Sha1: 7b2e86c1ccd76cc40a7591c94c8f3e6445ef0d61 Sha256: 68de9191b10834077e8172f64f5da33b5e2e76d617fc86e81ca335a72bea91b1
GET /wp-content/themes/Divi-child/js/jquery.marquee.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 6b0bae3be5b035e2dbcf39cb85ebe77669a7fdec22dd93ebff2eeef144ca8d9d 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:24:09 GMT Last-Modified: Tue, 27 Aug 2019 08:27:41 GMT ETag: W/"a2ac3fef53d651ac8562f1412b28b359" Cache-Control: 2592000 Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: q9PGppdNhvLxxhtsU9qMuwW2n25nbePeJNU4B7YmE6vQyGdWG24XhQ== Age: 60275 --- Additional Info --- Magic: ASCII text, with very long lines (1219) Size: 2273 Md5: 8baaa88a7c512a4bed1b9dce3fd2b17d Sha1: cf1d581f7283682af4b9635970716d277ea2ff1b Sha256: 6b0bae3be5b035e2dbcf39cb85ebe77669a7fdec22dd93ebff2eeef144ca8d9d
GET /wp-content/themes/Divi-child/js/theme.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 227e739dfbc2ce0fbf55d09228a2910605ee6ef94630df2d7a806e395c4c6189 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Tue, 15 Feb 2022 04:49:45 GMT Server: AmazonS3 Content-Encoding: gzip Date: Thu, 20 Oct 2022 06:59:39 GMT ETag: W/"d056838fef7522c86d80206e3384d0d3" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: WOkefRIpwYkV-iulCUFEQueQtvM7OoVIbvz-3n41eEABwe-pZkvGhg== Age: 36545 --- Additional Info --- Magic: ASCII text, with very long lines (348) Size: 12163 Md5: 5addb2c179e81480592aabb8dba6f4f4 Sha1: 6f1a3d94536e59cece2a7bdc6a7fde55d7c21a26 Sha256: 227e739dfbc2ce0fbf55d09228a2910605ee6ef94630df2d7a806e395c4c6189
GET /wp-content/themes/Divi-child/js/countries.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: b3aa7ac1df611378097517c1f312bf1de2e557d97268c53720ce2b951eec28e3 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Tue, 27 Aug 2019 08:27:41 GMT Server: AmazonS3 Content-Encoding: gzip Date: Thu, 20 Oct 2022 08:44:26 GMT Cache-Control: 2592000 ETag: W/"41a7f1d63de5dc564de5d2e96ba33db8" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: 0XtTaURDAdNTAlGPlLQJqW3k3K0kc_SS-YnpBtyyCR41C1Rc7tAMFQ== Age: 30258 --- Additional Info --- Magic: ASCII text, with very long lines (7323), with no line terminators Size: 3430 Md5: 115cfc6d3f94dfc9904a446724a57773 Sha1: 2698d622a5073c2352f4d47ad9594c362395fc4c Sha256: b3aa7ac1df611378097517c1f312bf1de2e557d97268c53720ce2b951eec28e3
GET /wp-content/themes/Divi-child/js/jquery.validate.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 24aca9deca895550f5ba6c9922eb191b68c28fc247478c0061d985213946df70 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:23 GMT Last-Modified: Tue, 27 Aug 2019 08:27:41 GMT ETag: W/"50d37feba6afb8e8ee322a7b7871550e" Cache-Control: 2592000 Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: ouNvYsuBW3Jlivxu82qQIKroXAxgN0pG1au-h8Y5Da8wy-kZN3uehg== Age: 60141 --- Additional Info --- Magic: Unicode text, UTF-8 text, with very long lines (22821) Size: 7414 Md5: ab24d610fd634316c6a00b21f6b36832 Sha1: 8f408fef36692595f38a086535db86ca765d14a0 Sha256: 24aca9deca895550f5ba6c9922eb191b68c28fc247478c0061d985213946df70
GET /wp-content/plugins/sitepress-multilingual-cms/res/js/cookies/language-cookie.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/sitepress-multili (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: f0fa5140f70a19702bdf6bbf7d495857cadc158e12975983212a36068cab241d 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 155 Connection: keep-alive --- Additional Info --- Magic: ASCII text Size: 155 Md5: d3453f9d25d07fae0b6919f644988971 Sha1: dba21fa483385a873ca38d99bf2433b77dd17fb0 Sha256: f0fa5140f70a19702bdf6bbf7d495857cadc158e12975983212a36068cab241d
GET /wp-content/plugins/custom-search-plugin/js/script.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/custom-search-plu (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 9fb201a9702f44e2d06fd910dc024bb0707badce77b09613754e3ff07038cee1 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 506 Connection: keep-alive --- Additional Info --- Magic: ASCII text Size: 506 Md5: 99ad164c48c30d4ea72bdb15d6efe582 Sha1: f5186aa17398f4034199e9f58308fcf753dfe467 Sha256: 9fb201a9702f44e2d06fd910dc024bb0707badce77b09613754e3ff07038cee1
GET /wp-content/themes/Divi-child/js/selectize.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: bf0d05beb9966ec8562398d47c857e8467084ab17b55ab2ff9cfe9d1dbb5048c 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:24 GMT Last-Modified: Tue, 27 Aug 2019 08:27:41 GMT ETag: W/"0941c2f6d545a74b27f2ccdbe7bdc931" Cache-Control: 2592000 Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: mXR4xN8OiBY2JSR0od8dl5ofFaJDg1OI5IS1XAaQj0UBVe4ih81tTg== Age: 60140 --- Additional Info --- Magic: Unicode text, UTF-8 text, with very long lines (3172) Size: 17837 Md5: b856c20dc4f744ef00e742575f5c5475 Sha1: a1886ffe64016f93c988d20f6fa978d349fbb493 Sha256: bf0d05beb9966ec8562398d47c857e8467084ab17b55ab2ff9cfe9d1dbb5048c
GET /wp-content/themes/Divi-child/js/additional-methods.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: a08a68fd03bc314c6f8d08b4d46c3b8001716b1e6437f764252b37ba32fc7059 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Tue, 27 Aug 2019 08:27:40 GMT Server: AmazonS3 Content-Encoding: gzip Date: Thu, 20 Oct 2022 00:24:09 GMT Cache-Control: 2592000 ETag: W/"074966e2db7e1caa07fd7d0bac25e844" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: BMwTxLBOTo8JsqJ-UCLHIIX-3oovWspdeX5wKnA3Wx8HUTUMspPf4g== Age: 60275 --- Additional Info --- Magic: Non-ISO extended-ASCII text, with very long lines (2940) Size: 5912 Md5: 8dccfd11159d2510d1a3eeeeacf3fac0 Sha1: d8c6c5f7838e9c52a6c6f2e7bdf19516594c3a6d Sha256: a08a68fd03bc314c6f8d08b4d46c3b8001716b1e6437f764252b37ba32fc7059
GET /wp-content/themes/Divi-child/js/roaming_rates.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 3a619d2a21b4d32d5f08bd38422a628f7b3ec5e4cf61a2d573193009d184ca82 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Tue, 15 Feb 2022 04:49:50 GMT Server: AmazonS3 Content-Encoding: gzip Date: Thu, 20 Oct 2022 00:24:08 GMT ETag: W/"456f0e734f90e7e3ccc2835bf708306d" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: n4260Rc20lz9hxjm9CT1zMa88CTv-DFHwUi8wF4yxBa29I6SNCTZXQ== Age: 60276 --- Additional Info --- Magic: ASCII text Size: 8346 Md5: b65656e05d25d99a164cfd6521fa1113 Sha1: 1b176b11cd47684dba7d1387d6ae9fcfb1f354d9 Sha256: 3a619d2a21b4d32d5f08bd38422a628f7b3ec5e4cf61a2d573193009d184ca82
GET /wp-content/themes/Divi-child/js/register.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: cc113bf3bd23d11500ca7bc14b549c92eeea3e70a073b13ba36ce5e6c2e7ed09 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:24 GMT Last-Modified: Thu, 20 Feb 2020 06:59:06 GMT ETag: W/"a4c47e49f1b792925db5d2ee23d17942" Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: dgI6XO7B9uDnLm_KYQi7WT93sPim1wpoGGcCJTgXdnsqThFRVeJkIw== Age: 60140 --- Additional Info --- Magic: ASCII text Size: 2843 Md5: deacf1a6348898cbaaa599a4c38c3ca5 Sha1: 5d817802af4b56aa89883ff72088206d8ee6860e Sha256: cc113bf3bd23d11500ca7bc14b549c92eeea3e70a073b13ba36ce5e6c2e7ed09
GET /wp-content/themes/Divi-child/js/bootstrap-datepicker.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 4be21ecaf79336428353cb4cfd5896392ce86243cef9555a4ff17c92291ca68b 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:24 GMT Last-Modified: Tue, 27 Aug 2019 08:27:40 GMT ETag: W/"8260533cc46428d9b49e3f137ef2efe7" Cache-Control: 2592000 Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: 0-WWNQTdTfm00NNpC923sohP40-PY8e9Qe6FRviBigI6N9V_vu6qsA== Age: 60140 --- Additional Info --- Magic: ASCII text, with very long lines (1634) Size: 8005 Md5: e61f9577d0b7716edfc4ac5ed10ad741 Sha1: 04f0bc966db74a65a2e5f4ea2ff4935c603ddee0 Sha256: 4be21ecaf79336428353cb4cfd5896392ce86243cef9555a4ff17c92291ca68b
GET /wp-content/themes/Divi-child/js/bootstrap.min.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: dd06b0cdc9ebd1c0dff60450b691c24ff583980ae06d4a83c03ca91601f4ca24 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Tue, 27 Aug 2019 08:27:40 GMT Server: AmazonS3 Content-Encoding: gzip Date: Thu, 20 Oct 2022 00:24:09 GMT Cache-Control: 2592000 ETag: W/"5869c96cc8f19086aee625d670d741f9" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: _0GQ8O5gEMUva-EZBIQwA2F2w3TB6tuBYqxFvN6YdkYAv-oPaDr1sg== Age: 60275 --- Additional Info --- Magic: ASCII text, with very long lines (32033) Size: 9844 Md5: c3925c588a840a4382d7e58be0c1a655 Sha1: 24039976dd2dd0c30e107ffa21a03c31995a308c Sha256: dd06b0cdc9ebd1c0dff60450b691c24ff583980ae06d4a83c03ca91601f4ca24
GET /wp-content/plugins/registration-portin-facility/vendor/moment.min.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/registration-port (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 34084291d4c3f11af71b71f00c969a81380daa917e3e90ad1a08e836ced4e5f9 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 16804 Connection: keep-alive --- Additional Info --- Magic: ASCII text, with very long lines (51679), with no line terminators Size: 16804 Md5: 174f71b5e532bbee86b7e51ed2d11a82 Sha1: abbec602df1ebf647b88d18cbd1dd162d7f1f6ad Sha256: 34084291d4c3f11af71b71f00c969a81380daa917e3e90ad1a08e836ced4e5f9
GET /wp-content/plugins/registration-portin-facility/public/js/registration_portin_facility-public.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/registration-port (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 1afad8260106e543ae55da914750a910dcf8bcf16327589f1d9d9ef21713ef2d 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 3837 Connection: keep-alive --- Additional Info --- Magic: ASCII text Size: 3837 Md5: 01179df43b1213ab1106977745e9b906 Sha1: 9e3ea134dd317bc273af92dc88c44d52a3e73e64 Sha256: 1afad8260106e543ae55da914750a910dcf8bcf16327589f1d9d9ef21713ef2d
GET /wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown/script.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/sitepress-multili (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 790c5d96a9a9be889b5b7113a7b22868d8803355f7e215f8c7481945850b6de5 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 383 Connection: keep-alive --- Additional Info --- Magic: ASCII text Size: 383 Md5: 6c0ff919dd37f978ea0c1511f47c132c Sha1: 86c6f73c7f81b5121d666d6968d7debd26c7ab17 Sha256: 790c5d96a9a9be889b5b7113a7b22868d8803355f7e215f8c7481945850b6de5
GET /wp-content/themes/Divi-child/js/lyca_login.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/themes/Divi-child/js/lyca (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 2801af8987984312d4009ff3f665af9da6ad50faa59367fd9cb0405a03ab9fae 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:25:57 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 2926 Connection: keep-alive --- Additional Info --- Magic: ASCII text Size: 2926 Md5: 139463c6855f901b3896c4958ef4392c Sha1: b0fb2a97f006267aae2924021731fe5527d8e2c7 Sha256: 2801af8987984312d4009ff3f665af9da6ad50faa59367fd9cb0405a03ab9fae
GET /wp-content/plugins/testimonialslider/js/jquery.bxslider.min.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/testimonialslider (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 127606d08299d86a42cff2be53731e7f2b437d64331bb2ed94b974bafac0fab0 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 4966 Connection: keep-alive --- Additional Info --- Magic: ASCII text, with very long lines (19040), with no line terminators Size: 4966 Md5: e85a20dd54c74b8868f84e0a6bba50ea Sha1: bada9d0db6d46c9ec2d9b8c62fbcab76abe79aa8 Sha256: 127606d08299d86a42cff2be53731e7f2b437d64331bb2ed94b974bafac0fab0
GET /wp-content/themes/Divi-child/js/custom_validate.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: d48f2166d51e343d4d91b80bf04c970d3d10603d8a6fc5060a53b73c2a8b70cf 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Content-Length: 391 Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:24 GMT Last-Modified: Tue, 27 Aug 2019 08:27:41 GMT ETag: "9f4e4bb98cbc4c5fe6ddfc05c7c48095" Cache-Control: 2592000 Accept-Ranges: bytes Server: AmazonS3 X-Cache: Hit from cloudfront Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: helJGreHfj5wx6UiN1At1xgZ4EwXZDEcI49o9oXQSk8f-4m8xBSPjQ== Age: 60140 --- Additional Info --- Magic: ASCII text, with very long lines (391), with no line terminators Size: 391 Md5: 9f4e4bb98cbc4c5fe6ddfc05c7c48095 Sha1: e87b52374a265e471462e297fad51a39763f2d3b Sha256: d48f2166d51e343d4d91b80bf04c970d3d10603d8a6fc5060a53b73c2a8b70cf
GET /wp-content/themes/Divi-child/js/tab_custome_function.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 1dfff59a8db555caf80801642c545695c90f8471c520559d3841d38e54f7c5b5 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:24 GMT Last-Modified: Tue, 27 Aug 2019 08:27:41 GMT ETag: W/"5ad0eb623e462948f1ac5a7f6174f22a" Cache-Control: 2592000 Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: i2ngoHrr0bzOvjukNXlejoLM0GS3Ml7ZTQRU63XGxs2pQ4ux5DusKg== Age: 60140 --- Additional Info --- Magic: ASCII text, with very long lines (1045) Size: 497 Md5: 0d9940739863c08755bd6f02069459af Sha1: 4026b8e0dfc4678de7cee25bfc7a72477e53ce70 Sha256: 1dfff59a8db555caf80801642c545695c90f8471c520559d3841d38e54f7c5b5
GET /ajax/libs/bootstrap-datetimepicker/4.17.37/js/bootstrap-datetimepicker.min.js HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdnjs.cloudflare.com/ajax/libs/bootstrap-datetimepicker (...) FQDN: cdnjs.cloudflare.com IP: 104.17.25.14 HASH: eab9dfacfbbb59d341c72a7fe6dd9c12ea4e87f20ccf78bf13bd98ffeab243d4 104.17.25.14 HTTP/2 200 OK content-type: application/javascript; charset=utf-8 date: Thu, 20 Oct 2022 17:08:43 GMT content-length: 8256 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03d8e-9443" last-modified: Mon, 04 May 2020 16:06:38 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 86032 expires: Tue, 10 Oct 2023 17:08:43 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OcfTLs2FI1TceeijNFSQHHXi9CkZ%2Fuzo2yj40G0SeXg5k2iONkXz6N13MNM6Y0D4mwp%2BZi35fKt5GUlcSQdJXy%2BEKtmx5qarcN5jNB9xGGvYTH%2BY3n%2FAqGw%2FKPK8FVvb8q9kSuBT"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 75d35b6dab101c02-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document, ASCII text, with very long lines (32010) Size: 8256 Md5: 52b30dc893d14995df58d34ecc5a9f7f Sha1: e360fd76bd734011484ed559fd1780e31949353f Sha256: eab9dfacfbbb59d341c72a7fe6dd9c12ea4e87f20ccf78bf13bd98ffeab243d4
GET /wp-content/themes/Divi-child/js/custom-ajax-script.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 2d05abac3909a98dd4571d22a7e0dfc91ba30f859afc5fecaa892793a520dab0 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:23 GMT Last-Modified: Fri, 16 Apr 2021 07:45:53 GMT ETag: W/"2348f035e1ba7ad6b8df58dbbbd5818e" Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: I51dEv--0FWBfB8IePThzvIyvyOkuTKwTYPP4oOl7Xk9kZJOWxSZGA== Age: 60140 --- Additional Info --- Magic: ASCII text, with very long lines (507) Size: 6420 Md5: 224d5891cbe6ccb966f5a72aa1275cd3 Sha1: 74e96530959122d6e57f85662b4868f58c9ef6ad Sha256: 2d05abac3909a98dd4571d22a7e0dfc91ba30f859afc5fecaa892793a520dab0
GET /wp-content/themes/Divi-child/js/nc_ajax_script.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 1d15210c521e42a696675eec0a46284c850497fdc13e3dc7a0409be4743137e9 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Thu, 05 May 2022 06:47:46 GMT Server: AmazonS3 Content-Encoding: gzip Date: Thu, 20 Oct 2022 00:24:08 GMT ETag: W/"9353377fb1b76e466a7ac26634defc75" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: lgvAi2IE8vQQaDkeQBfA4FYT1Iha6yokdDSbYYtJmAFzy6C8ovbLkw== Age: 60276 --- Additional Info --- Magic: ASCII text Size: 7103 Md5: bf97598dfb70c892f6f303f2d38450a1 Sha1: d28da6fafacb3758b0f55cd71ced792ebcd4f104 Sha256: 1d15210c521e42a696675eec0a46284c850497fdc13e3dc7a0409be4743137e9
GET /wp-includes/js/wp-embed.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-includes/js/wp-embed.js FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: da9848b6b2d331952a400655c534955a9245565503996fbdfe4a1c6f4d6ca200 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:24 GMT Last-Modified: Thu, 06 Aug 2020 03:32:49 GMT ETag: W/"23e24e824f384c5eb11e73576b4ac93c" Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: sSaIHAj4W6oBq1cuk0AnBNnuYPJIkPmHIxpIckP_HI8LFAGrOQBoUQ== Age: 60140 --- Additional Info --- Magic: ASCII text Size: 1273 Md5: a3cacf7987efe841394ab0c091d18aca Sha1: bfff11917aa7b1fb6729f2b9911ac55df2d076c6 Sha256: da9848b6b2d331952a400655c534955a9245565503996fbdfe4a1c6f4d6ca200
GET /wp-content/plugins/email-subscribers/widget/es-widget.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/email-subscribers (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 5fcbd0de5e51104006331763dcf23084505ea9d876e0904815e603e5e0230e90 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:19:16 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 1182 Connection: keep-alive --- Additional Info --- Magic: Unicode text, UTF-8 (with BOM) text, with very long lines (1311) Size: 1182 Md5: 59066978220b7f1b7b925b47ff5e46ab Sha1: bab1c3c14f4b9649864cb46c1c96250ccdc95024 Sha256: 5fcbd0de5e51104006331763dcf23084505ea9d876e0904815e603e5e0230e90
GET /wp-content/plugins/email-subscribers/widget/es-widget-page.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/email-subscribers (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: c27abc361c9a25a87199ebfd36119491c278a33c46bbf06aff3c15d2a9560e0e 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:19:16 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 1229 Connection: keep-alive --- Additional Info --- Magic: Unicode text, UTF-8 (with BOM) text, with very long lines (1362) Size: 1229 Md5: 6bccf039385dadace241e9d47cdc2a0b Sha1: 5cd85d67c6422cedfb4f5ac10df547928d37f7fb Sha256: c27abc361c9a25a87199ebfd36119491c278a33c46bbf06aff3c15d2a9560e0e
GET /wp-content/plugins/lyca-marketing/assets/js/marketing-script.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/lyca-marketing/as (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 30aabbaab74bd6f87cefb998ef1d09a36cb7f36d5c7ddd4bf519ba1059494e8f 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Wed, 05 Jan 2022 02:41:28 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 893 Connection: keep-alive --- Additional Info --- Magic: ASCII text, with CRLF line terminators Size: 893 Md5: 81ac1712537559cdec808b954a7490d8 Sha1: 33f1f5ea6a334887020b71577c72953afda05148 Sha256: 30aabbaab74bd6f87cefb998ef1d09a36cb7f36d5c7ddd4bf519ba1059494e8f
GET /wp-content/themes/Divi-child/js/personal-details.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/themes/Divi-child/js/pers (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 8c4b153673568490f76767839493b7011d1fc1befc88025df6c1a9f6b58dc747 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:25:57 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 1052 Connection: keep-alive --- Additional Info --- Magic: ASCII text Size: 1052 Md5: 1be41f82152e3a9f3dfb3765d314e9a1 Sha1: 50f7c3ad307d0cedf238b0e373116943dd0e0d30 Sha256: 8c4b153673568490f76767839493b7011d1fc1befc88025df6c1a9f6b58dc747
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 3cdc1c4dbdde26acb1eedba11b1aa3a93d8933dda59f777e6172feb9fa773f64 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 20 Oct 2022 17:08:43 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 193d2d5278d7126ac87e3b5d25c73846 Sha1: a113a1bd6d01cf7f17ecdd8c1d71405e3a680359 Sha256: 3cdc1c4dbdde26acb1eedba11b1aa3a93d8933dda59f777e6172feb9fa773f64
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 9dc13eae0a47c289dbe396d64d2120b77886ee84b809c6902feef5a72547351d 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 2054 Cache-Control: max-age=96630 Date: Thu, 20 Oct 2022 17:08:43 GMT Etag: "63504f0b-117" Expires: Fri, 21 Oct 2022 19:59:13 GMT Last-Modified: Wed, 19 Oct 2022 19:24:59 GMT Server: ECS (ska/F70F) X-Cache: HIT Content-Length: 279 --- Additional Info --- Magic: data Size: 279 Md5: 18b23741e87ccf9a70227948d53e0fbc Sha1: d6846eec3c338e846612a76aae25679218180cdf Sha256: 9dc13eae0a47c289dbe396d64d2120b77886ee84b809c6902feef5a72547351d
GET /wp-content/plugins/lyca-marketing/assets/js/jquery.lazy.min.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/lyca-marketing/as (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: c676fc1d198ec9437a42cbfa639bf2bb95cd4502e49e897c922855e4d3d29bd4 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:44 GMT Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 2331 Connection: keep-alive --- Additional Info --- Magic: ASCII text, with very long lines (4890) Size: 2331 Md5: a6cc20d3609181f768dc325025b32715 Sha1: 3911e55e11ce33370a2ec382aafb2447cdffc740 Sha256: c676fc1d198ec9437a42cbfa639bf2bb95cd4502e49e897c922855e4d3d29bd4
GET /wp-content/plugins/registration-portin-facility/public/js/messages_nb.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/registration-port (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 3c64bb2a6ed3fcdc22fec1c1840b6327cdf9f7cc92a53ef302bca6166c61bdc2 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:44 GMT Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 362 Connection: keep-alive --- Additional Info --- Magic: CSV text\012- , ASCII text Size: 362 Md5: a3f9d76a09b85913450b9ad5df628548 Sha1: 3f68b62b063a8b102beeafd5fe478843dcdff423 Sha256: 3c64bb2a6ed3fcdc22fec1c1840b6327cdf9f7cc92a53ef302bca6166c61bdc2
GET /wp-content/themes/Divi/includes/builder/scripts/jquery.mobile.custom.min.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/themes/Divi/includes/buil (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 63b52e7a859b8943c2d1255b30e1d3b8fa262285797a69098def3967d112ad5b 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:44 GMT Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 2872 Connection: keep-alive --- Additional Info --- Magic: ASCII text, with very long lines (7687) Size: 2872 Md5: a7bc9bd6d7a143a13d7072ee406c8692 Sha1: 42a46eca1ae6c1b50602917cc52b4b61e13f24f7 Sha256: 63b52e7a859b8943c2d1255b30e1d3b8fa262285797a69098def3967d112ad5b
GET /wp-content/themes/Divi/includes/builder/scripts/waypoints.min.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/themes/Divi/includes/buil (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 61e3dba589d367496e409a346677b89db66ee134e7370f06a8629ce0492eb6c6 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:44 GMT Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 2698 Connection: keep-alive --- Additional Info --- Magic: Unicode text, UTF-8 text, with very long lines (8668) Size: 2698 Md5: f7d4b6ef09365ba331dda4e3648c05fc Sha1: f852f915b87c84eb1c3590829e8d9f5c97fbe620 Sha256: 61e3dba589d367496e409a346677b89db66ee134e7370f06a8629ce0492eb6c6
GET /wp-content/themes/Divi/js/custom.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/themes/Divi/js/custom.js FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: cef043ceda82b48795b26c0873caaeebbc5bbe7c3aa3d1bfd9339dd7010a208f 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:44 GMT Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 11702 Connection: keep-alive --- Additional Info --- Magic: ASCII text, with very long lines (372) Size: 11702 Md5: fc1ad29248d5c0b974cca2d3687eadd1 Sha1: 854c8b173575abe5b2da21b079276788c31149ae Sha256: cef043ceda82b48795b26c0873caaeebbc5bbe7c3aa3d1bfd9339dd7010a208f
GET /wp-content/themes/Divi/includes/builder/scripts/jquery.fitvids.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/themes/Divi/includes/buil (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 4f7cd006453252967505df8f72f72333de4ba5b2734773aaeca3f250fcf0b5e1 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:44 GMT Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 1298 Connection: keep-alive --- Additional Info --- Magic: HTML document, ASCII text Size: 1298 Md5: 31bd6f103266422712d7f21fd221259c Sha1: 478fe2a563f8edd20468c878ad0c8dabcc506159 Sha256: 4f7cd006453252967505df8f72f72333de4ba5b2734773aaeca3f250fcf0b5e1
GET /wp-content/plugins/email-subscribers/widget/es-widget-customize.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/email-subscribers (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 544db6899780bebc6a30b6e86f3c89023f2b67b9ad9509258739b5005d16c000 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:44 GMT Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 1657 Connection: keep-alive --- Additional Info --- Magic: ASCII text Size: 1657 Md5: e5c46c336e35e9bd8dbf55e4d0fc96c4 Sha1: e4c2bc6c99aade340b1c1484096c79a970b3f019 Sha256: 544db6899780bebc6a30b6e86f3c89023f2b67b9ad9509258739b5005d16c000
GET /wp-content/themes/Divi/includes/builder/scripts/jquery.magnific-popup.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/themes/Divi/includes/buil (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 497c6f92880fe8e1e12aff1c833910958d7b46379980da1ded707c39a2ca33ee 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:44 GMT Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 8382 Connection: keep-alive --- Additional Info --- Magic: ASCII text, with very long lines (21123) Size: 8382 Md5: dc28e6a88fd9930fed07d0de45b3a0ea Sha1: 6181203be9d6e425d138533edaf3121c1a1968b1 Sha256: 497c6f92880fe8e1e12aff1c833910958d7b46379980da1ded707c39a2ca33ee
GET /gtm.js?id=GTM-PNQZL82 HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: www.googletagmanager.com/gtm.js?id=GTM-PNQZL82 FQDN: www.googletagmanager.com IP: 142.250.74.168 HASH: d36a1a0852c5c2a9849cba8e2b639de7575489644365d699f25577e1c9ed9c3f 142.250.74.168 HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Thu, 20 Oct 2022 17:08:44 GMT expires: Thu, 20 Oct 2022 17:08:44 GMT cache-control: private, max-age=900 last-modified: Thu, 20 Oct 2022 16:13:57 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 88281 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Unicode text, UTF-8 text, with very long lines (40170) Size: 88281 Md5: ad205fcd24aceea65ca119ac455815ba Sha1: 68a3f4a4a1ae6f3cf0de0581a6373e8ed303aabb Sha256: d36a1a0852c5c2a9849cba8e2b639de7575489644365d699f25577e1c9ed9c3f
GET /wp-content/plugins/lyca_cart/resources/functions.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/lyca_cart/resourc (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 7cbef667cc2558cdf293a423c6e37d899ef8710e599d6abc8f660fb8bbc9e710 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:44 GMT Last-Modified: Thu, 29 Sep 2022 10:31:54 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 5698 Connection: keep-alive --- Additional Info --- Magic: ASCII text Size: 5698 Md5: b9ac12921009f1f1dbfedd0490977909 Sha1: 185eccf2caf963e90a9c38ed91631dfbc01f10c4 Sha256: 7cbef667cc2558cdf293a423c6e37d899ef8710e599d6abc8f660fb8bbc9e710
GET /wp-content/themes/Divi-child/js/forget-password.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/themes/Divi-child/js/forg (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: d224f7efdd43321dbd29ab5d128a5ab30e8eaca50879978ddbdb68a85647dafa 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:44 GMT Last-Modified: Thu, 05 May 2022 06:42:29 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 1287 Connection: keep-alive --- Additional Info --- Magic: ASCII text, with very long lines (359) Size: 1287 Md5: d9496518c9ca0e9e5de95991baffb89f Sha1: 175543365d682ab41f7ec04640a5bd7a49312998 Sha256: d224f7efdd43321dbd29ab5d128a5ab30e8eaca50879978ddbdb68a85647dafa
GET /wp-content/plugins/rocket-lazy-load/assets/js/12.0/lazyload.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/rocket-lazy-load/ (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 790d3da167b670f0ba09a9f30368be07cdaeffc32f9cd79648be9c892c78fcd8 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:44 GMT Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 3633 Connection: keep-alive --- Additional Info --- Magic: ASCII text, with very long lines (351) Size: 3633 Md5: b53e31a064849939c6a41bb35108dbbe Sha1: 6153863799c6e67ee3b6340ffca9574ebd995b31 Sha256: 790d3da167b670f0ba09a9f30368be07cdaeffc32f9cd79648be9c892c78fcd8
POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.sca1b.amazontrust.com/ FQDN: ocsp.sca1b.amazontrust.com IP: 143.204.42.165 HASH: b37d22ff995a63151c86f04c0967c8a254a99379d7b688c155cf13064fdfc333 143.204.42.165 HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=93913 Date: Thu, 20 Oct 2022 17:08:43 GMT Etag: "63504ac3-1d7" Expires: Fri, 21 Oct 2022 19:13:56 GMT Last-Modified: Wed, 19 Oct 2022 19:06:43 GMT Server: ECS (nyb/1D2E) X-Cache: Miss from cloudfront Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: VOFE0mXHneK4ByDD1I5M6yFGL4C0cQiNvMx2S55_nM1CNxD3fpUvWg== Age: 433 --- Additional Info --- Magic: data Size: 471 Md5: e6a01bebd72b230bf70a80d20367c223 Sha1: b2b72df19e658a2663feadf4052c6b1f4ac039ab Sha256: b37d22ff995a63151c86f04c0967c8a254a99379d7b688c155cf13064fdfc333
GET /wp-content/themes/Divi/includes/builder/scripts/frontend-builder-scripts.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/themes/Divi/includes/buil (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 7cccf0da734eccae2b86e7638e6c6ca280bed97e23741dcdc3db06ca2b6cc707 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:44 GMT Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 31305 Connection: keep-alive --- Additional Info --- Magic: ASCII text Size: 31305 Md5: faf26a56e651031ab3c631961808985a Sha1: d6c1f352c66f23c36af8c32ffe09c8bda908285b Sha256: 7cccf0da734eccae2b86e7638e6c6ca280bed97e23741dcdc3db06ca2b6cc707
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 98f0ad0db175ed53ed6b048cc4427f902c148adc378d833dcb8cd89d59397aad 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 20 Oct 2022 17:08:44 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 13b2ffd04752d468f707090604f6ed1c Sha1: 94de24b43698a598b060edea68a4b1b5c6bf9879 Sha256: 98f0ad0db175ed53ed6b048cc4427f902c148adc378d833dcb8cd89d59397aad
GET /wp-content/themes/Divi-child/fonts/RobotoCondensed-Regular.ttf HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.lyca-mobile.no Connection: keep-alive Referer: https://d3uayxmzbnco7f.cloudfront.net/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 6a2cfb7e61dd09d77526fd314b256894094f96e3a6f3149d9f8000c1132ef4b8 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/vnd.ms-opentype Content-Length: 170284 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, HEAD Access-Control-Max-Age: 3000 Last-Modified: Tue, 27 Aug 2019 08:27:32 GMT Accept-Ranges: bytes Server: AmazonS3 Date: Thu, 20 Oct 2022 07:14:18 GMT Cache-Control: 2592000 ETag: "a5a6b71255dc832da585d5c94fa1a115" Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: Ucz49T3wTowzxk8lFN1JMLbKJ41UvhAA40ZRxePtCtpgXERxkLSW1A== Age: 35667 --- Additional Info --- Magic: TrueType Font data, 18 tables, 1st "GDEF", 26 names, Macintosh, Copyright 2011 Google Inc. All Rights Reserved.Roboto CondensedRegularVersion 2.137; 2017RobotoC\012- data Size: 170284 Md5: a5a6b71255dc832da585d5c94fa1a115 Sha1: 6a632e0244ae68e70aeb8c8a5d3b360e1648712b Sha256: 6a2cfb7e61dd09d77526fd314b256894094f96e3a6f3149d9f8000c1132ef4b8
GET /lycamobile-norway-website/lycamobile-nor-cms/wp-content/uploads/2018/08/30120503/germ-one.svg HTTP/1.1 Host: s3-eu-central-1.amazonaws.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://d3uayxmzbnco7f.cloudfront.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: s3-eu-central-1.amazonaws.com/lycamobile-norway-website (...) FQDN: s3-eu-central-1.amazonaws.com IP: 52.219.171.133 HASH: 28a2f89175ec3599ef375767ea6996f5bb73d38e5a54025deb7f0370505c382f 52.219.171.133 HTTP/1.1 200 OK Content-Type: image/svg+xml x-amz-id-2: DdakO7b6Ll+0/njYOoD89QhQexOiMYWWdmtoKXJpcibZ7e/AQLsKbFmCMXh7Kgw2DPTjfx1EINo= x-amz-request-id: RZ3E3BQGZQQPQRDR Date: Thu, 20 Oct 2022 17:08:45 GMT Last-Modified: Thu, 30 Aug 2018 12:03:58 GMT ETag: "27398d9974a03682bca55a5d1c83cfc0" Cache-Control: max-age=31536000 Content-Encoding: gzip Expires: Fri, 30 Aug 2019 12:05:03 GMT Accept-Ranges: bytes Server: AmazonS3 Content-Length: 2016 --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text Size: 2016 Md5: 27398d9974a03682bca55a5d1c83cfc0 Sha1: 011509bac7ec598f0ba6ff215d92487fc8965bac Sha256: 28a2f89175ec3599ef375767ea6996f5bb73d38e5a54025deb7f0370505c382f
GET /wp-content/themes/Divi-child/vendor/font-awesome/fonts/fontawesome-webfont.woff2?v=4.6.3 HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.lyca-mobile.no Connection: keep-alive Referer: https://d3uayxmzbnco7f.cloudfront.net/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 7dacf83f51179de8d7980a513e67ab3a08f2c6272bb5946df8fd77c0d1763b73 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/octet-stream Content-Length: 71896 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, HEAD Access-Control-Max-Age: 3000 Last-Modified: Tue, 27 Aug 2019 08:27:43 GMT Accept-Ranges: bytes Server: AmazonS3 Date: Thu, 20 Oct 2022 13:05:40 GMT Cache-Control: 2592000 ETag: "e6cf7c6ec7c2d6f670ae9d762604cb0b" Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: 4IsSLtU5SIheZPtJvFDPKwP_T8p5yMgE7OFPw1jQ22OermLiQO8RXw== Age: 14585 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 71896, version 4.393\012- data Size: 71896 Md5: e6cf7c6ec7c2d6f670ae9d762604cb0b Sha1: 97e438cc545714309882fbceadbf344fcaddcec5 Sha256: 7dacf83f51179de8d7980a513e67ab3a08f2c6272bb5946df8fd77c0d1763b73
GET /wp-content/themes/Divi-child/fonts/RobotoCondensed-Bold.ttf HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.lyca-mobile.no Connection: keep-alive Referer: https://d3uayxmzbnco7f.cloudfront.net/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 03b4e8042b9af4bf3349428fa734ed583f2d5d83287e1f42cf4d514c909146ef 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/vnd.ms-opentype Content-Length: 169800 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, HEAD Access-Control-Max-Age: 3000 Last-Modified: Tue, 27 Aug 2019 08:27:32 GMT Accept-Ranges: bytes Server: AmazonS3 Date: Thu, 20 Oct 2022 07:14:18 GMT Cache-Control: 2592000 ETag: "36b5da0333389306669655a13f2209ad" Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: nYSZp_tKB-hwrwdNp5iGTY3qVc9mEg08cff9amSc87QJfahofIyMzw== Age: 35667 --- Additional Info --- Magic: TrueType Font data, 18 tables, 1st "GDEF", 26 names, Macintosh, Copyright 2011 Google Inc. All Rights Reserved.Roboto CondensedBoldRoboto Condensed BoldVersion \012- data Size: 169800 Md5: 36b5da0333389306669655a13f2209ad Sha1: 8354979a1c3d7911df925e3b57d8c99398d54020 Sha256: 03b4e8042b9af4bf3349428fa734ed583f2d5d83287e1f42cf4d514c909146ef
GET /wp-content/themes/Divi-child/vendor/linear-icons/Linearicons-Free.woff2?w118d HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.lyca-mobile.no Connection: keep-alive Referer: https://d3uayxmzbnco7f.cloudfront.net/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 296945e5922e764eef17b1b4a3ee3e60dc202b3c7f074150b62158915bf74e33 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/octet-stream Content-Length: 21780 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, HEAD Access-Control-Max-Age: 3000 Last-Modified: Tue, 27 Aug 2019 08:27:44 GMT Accept-Ranges: bytes Server: AmazonS3 Date: Thu, 20 Oct 2022 13:05:40 GMT Cache-Control: 2592000 ETag: "03e91f122aa5fd425abbe23c85546eb0" Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: sJXqcdzgf1uDYbwoJfifKwKIR-W_zSXlTrkywOQIAt6BRB52uTIqrw== Age: 14585 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 21780, version 1.0\012- data Size: 21780 Md5: 03e91f122aa5fd425abbe23c85546eb0 Sha1: c87a3db06c5db4e75e639382f174eafa439aeb27 Sha256: 296945e5922e764eef17b1b4a3ee3e60dc202b3c7f074150b62158915bf74e33
GET /wp-content/plugins/registration-portin-facility/vendor/jquery-ui-1.12.1.custom/jquery-ui.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/registration-port (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: c683211e591f2048ec4a840586e4f849894c8a57c147f23d7b5652d61c1260e2 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block transfer-encoding: chunked Connection: keep-alive --- Additional Info --- Magic: data Size: 82920 Md5: 87a9fcfa516cd7576d52480b0bb21dae Sha1: 7b2b31c6f1e91d53b76daad7fedea802592e4da4 Sha256: c683211e591f2048ec4a840586e4f849894c8a57c147f23d7b5652d61c1260e2
GET /lycamobile-norway-website/lycamobile-nor-cms/wp-content/uploads/2018/06/06075441/thumbnail_livechat-home-new.png HTTP/1.1 Host: s3-eu-central-1.amazonaws.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://d3uayxmzbnco7f.cloudfront.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: s3-eu-central-1.amazonaws.com/lycamobile-norway-website (...) FQDN: s3-eu-central-1.amazonaws.com IP: 52.219.171.133 HASH: d9d42de448b8e9c5ba116ccd270456367179a295167174953421fafafb5a932b 52.219.171.133 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: bcDcT2G0XXhEJwRIRGMul5PuYw7yaDNIvgbjpQwqvvAPMUEwm403HjNdeQykiKOhk3B4ni70wJc= x-amz-request-id: RZ3F5FZSM4JWBY6P Date: Thu, 20 Oct 2022 17:08:45 GMT Last-Modified: Wed, 06 Oct 2021 07:51:37 GMT ETag: "997934aedeaea00686b8b3ddae955e3f" Cache-Control: max-age=31536000 Expires: Thu, 06 Oct 2022 07:54:41 GMT Accept-Ranges: bytes Server: AmazonS3 Content-Length: 4589 --- Additional Info --- Magic: PNG image data, 169 x 101, 8-bit/color RGBA, non-interlaced\012- data Size: 4589 Md5: 997934aedeaea00686b8b3ddae955e3f Sha1: 6f1ab00c2308c25108bd68368cbacfc6410bdc43 Sha256: d9d42de448b8e9c5ba116ccd270456367179a295167174953421fafafb5a932b
GET /lycamobilespain-website/lycamobile-es-cms/wp-content/uploads/2018/06/25105546/activate-your-sim.svg HTTP/1.1 Host: s3-eu-central-1.amazonaws.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://d3uayxmzbnco7f.cloudfront.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: s3-eu-central-1.amazonaws.com/lycamobilespain-website/l (...) FQDN: s3-eu-central-1.amazonaws.com IP: 52.219.171.133 HASH: 6369d8666187a0119acd2ad3f3bff8472f2cc720649cfa8966fc23719078dd39 52.219.171.133 HTTP/1.1 200 OK Content-Type: image/svg+xml x-amz-id-2: +wO9pcO88wZ9D2nUYaLekT/afBTgXA2+tZezUjZ0btz5irMaIOmnqPn1s5fqyeFbsdYvBFKFCcs= x-amz-request-id: RZ3CKCNK6MT756FH Date: Thu, 20 Oct 2022 17:08:45 GMT Last-Modified: Mon, 16 Jul 2018 16:00:42 GMT ETag: "f6081e075c11d4ee9be3b614cdcab433" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 1914 --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1914), with no line terminators Size: 1914 Md5: f6081e075c11d4ee9be3b614cdcab433 Sha1: 5b46fc85e5698f59567f0446251f52e1207e8d72 Sha256: 6369d8666187a0119acd2ad3f3bff8472f2cc720649cfa8966fc23719078dd39
GET /wp-content/themes/Divi-child/img/quick-topup.svg HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: aa9f77e1ebcb1a541bf88994cecc556f52cf27c8176ee8ae14789f38ff55de84 143.204.42.74 HTTP/1.1 200 OK Content-Type: image/svg+xml Content-Length: 794 Connection: keep-alive Last-Modified: Tue, 27 Aug 2019 08:27:38 GMT Accept-Ranges: bytes Server: AmazonS3 Date: Thu, 20 Oct 2022 15:52:26 GMT Cache-Control: 2592000 ETag: "cf1e3a7aa04f38e1620d798558f2d606" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: ZSq8H_l6IzEWWnKH0owPQQvU-hzZMeqB_JWCLB2XcTp7UElnKuwO5g== Age: 4579 --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (568) Size: 794 Md5: cf1e3a7aa04f38e1620d798558f2d606 Sha1: 2c9ad3c5756a3992d80838aea679b7d13fe2e17b Sha256: aa9f77e1ebcb1a541bf88994cecc556f52cf27c8176ee8ae14789f38ff55de84
GET /wp-content/themes/Divi-child/img/faq.svg HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 42ab849ec5e04c9bad98c11a45f2363492238778f29a64b0a9dc5896dcc90892 143.204.42.74 HTTP/1.1 200 OK Content-Type: image/svg+xml Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Tue, 27 Aug 2019 08:27:36 GMT Server: AmazonS3 Content-Encoding: gzip Date: Thu, 20 Oct 2022 00:26:24 GMT Cache-Control: 2592000 ETag: W/"6f426cc5e8b051ff22516894f385ff7b" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: G8fCTRSFQRa7q7jAsotiorh_iMZfqxuw6T2Jdkk35uc80aZtVx6XMg== Age: 60141 --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text Size: 785 Md5: b97c7e4122996f575e68c944d87095d8 Sha1: d8a4695fe27064b95e4918099aaa3c2be1821f32 Sha256: 42ab849ec5e04c9bad98c11a45f2363492238778f29a64b0a9dc5896dcc90892
GET /wp-content/themes/Divi-child/img/buy-bundles.svg HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 0064959abecb0e9b2ec31a3ef0e7560bcc6ecd0dc246374e49dd674ae6e510b6 143.204.42.74 HTTP/1.1 200 OK Content-Type: image/svg+xml Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Tue, 27 Aug 2019 08:27:33 GMT Server: AmazonS3 Content-Encoding: gzip Date: Thu, 20 Oct 2022 00:24:09 GMT Cache-Control: 2592000 ETag: W/"5fb98b5d9331ffac000aa38ccddcc058" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: bMAbjlog3GDKK2ZkYDHy7TPQAI-GW50pDZG4DIhRnPExx_WMEa4DFw== Age: 60276 --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size: 525 Md5: 089df5ad1f13ed4a67ba8ed563f2fb7a Sha1: 49a349c8d3912f6c9ef5db1519a76519f890b934 Sha256: 0064959abecb0e9b2ec31a3ef0e7560bcc6ecd0dc246374e49dd674ae6e510b6
GET /wp-content/themes/Divi-child/img/mobile-settings.svg HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 9e17a9e0e46f86caaac0774b886dce68c39a3de44469efb7088200e449343d22 143.204.42.74 HTTP/1.1 200 OK Content-Type: image/svg+xml Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:24 GMT Last-Modified: Tue, 27 Aug 2019 08:27:37 GMT

                                        
                                            GET /4/4981334/ HTTP/1.1 

                                        
                                            
Host: rouonixon.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1

                                         139.45.197.238

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/html; charset=utf8

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Date: Thu, 20 Oct 2022 17:08:39 GMT 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
X-Trace-Id: 4256def1fc0140ce693343fea23baed0 

                                        
                                            
Link: <https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://my.rtmark.net>; rel="preconnect dns-prefetch" 

                                        
                                            
Access-Control-Allow-Credentials: true 

                                        
                                            
Access-Control-Max-Age: 86400 

                                        
                                            
Timing-Allow-Origin: * 

                                        
                                            
Set-Cookie: OAID=13ce3c27554a4fd0a06bdd5822f223e4; expires=Fri, 20 Oct 2023 17:08:39 GMT; path=/
oaidts=1666285719; expires=Fri, 20 Oct 2023 17:08:39 GMT; path=/
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT 

                                        
                                            
Pragma: no-cache, no-cache 

                                        
                                            
Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0 

                                        
                                            
Expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT 

                                        
                                            
Access-Control-Allow-Origin: *, * 

                                        
                                            
Access-Control-Allow-Methods: GET, POST, OPTIONS, POST, GET, OPTIONS, PUT, DELETE 

                                        
                                            
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, Accept, Content-Type, Content-Length, Accept-Encoding 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5406)

                                                Size:   2933

                                                Md5:    0ba397ac972064edb48fd416d54e7971

                                                Sha1:   e2f75a399e82319f6d99abd741abf5187fdfce1c

                                                Sha256: bc7f0aad8c80eac9695e5c1a98f780a13f8fba31c1c5a08e279d42b791cab67a

                                        
                                            GET /v1/ HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         143.204.55.115

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/json

                                        

                                        
                                            
Content-Length: 939 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Access-Control-Allow-Origin: * 

                                        
                                            
Access-Control-Expose-Headers: Content-Type, Alert, Content-Length, Retry-After, Backoff 

                                        
                                            
Cache-Control: max-age=3600 

                                        
                                            
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                        
                                            
Date: Thu, 20 Oct 2022 16:51:50 GMT 

                                        
                                            
Expires: Thu, 20 Oct 2022 17:24:51 GMT 

                                        
                                            
Strict-Transport-Security: max-age=31536000 

                                        
                                            
X-Content-Type-Options: nosniff 

                                        
                                            
X-Cache: Hit from cloudfront 

                                        
                                            
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: Bqzc5TNKME3YqMMp3w08PN1q7uf96cyrWanA2RWipEV3vk29Y09Qjw== 

                                        
                                            
Age: 1009 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators

                                                Size:   939

                                                Md5:    bdb8b66c705a7b996496d780f50c00b5

                                                Sha1:   403ae92039fcc933870f51f913f78ccaf9652256

                                                Sha256: c923ed2539f4ce9f4d43743c402fbb2060a52a4cbedbf14c5f5742ab718073d6

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1 

                                        
                                            
Host: content-signature-2.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.160.144.191

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: binary/octet-stream

                                        

                                        
                                            
x-amz-id-2: HVRNQHA8TnnqjSEdchqGqoF1MXnkGoI9uf1qV+dn5bVBE92pWAgO51ECBDaRomFP189OT521xXk= 

                                        
                                            
x-amz-request-id: ACVP7E72279ZJ2AQ 

                                        
                                            
content-disposition: attachment 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
server: AmazonS3 

                                        
                                            
content-length: 5348 

                                        
                                            
via: 1.1 google 

                                        
                                            
date: Thu, 20 Oct 2022 16:36:49 GMT 

                                        
                                            
age: 1910 

                                        
                                            
last-modified: Fri, 30 Sep 2022 18:50:55 GMT 

                                        
                                            
etag: "67d5a988edcda47bc3b3b3f65d32b4b6" 

                                        
                                            
cache-control: public,max-age=3600 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PEM certificate\012- , ASCII text

                                                Size:   5348

                                                Md5:    67d5a988edcda47bc3b3b3f65d32b4b6

                                                Sha1:   d4f0e0da8b3690cc7da925026d3414b68c7d954f

                                                Sha256: 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

                                        
                                            GET /favicon.ico HTTP/1.1 

                                        
                                            
Host: rouonixon.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://rouonixon.com/4/4981334/ 

                                        
                                            
Cookie: OAID=13ce3c27554a4fd0a06bdd5822f223e4; oaidts=1666285719

                                         139.45.197.238

                                        
                                            HTTP/1.1 204 No Content

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Date: Thu, 20 Oct 2022 17:08:39 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Expires: Thu, 31 Dec 2037 23:55:55 GMT 

                                        
                                            
Pragma: public 

                                        
                                            
Cache-Control: max-age=315360000, public, must-revalidate, proxy-revalidate 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            GET /img.gif?f=merge&userId=13ce3c27554a4fd0a06bdd5822f223e4 HTTP/1.1 

                                        
                                            
Host: my.rtmark.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://rouonixon.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         139.45.195.8

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/gif

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Thu, 20 Oct 2022 17:08:39 GMT 

                                        
                                            
content-length: 43 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE 

                                        
                                            
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token 

                                        
                                            
access-control-expose-headers: Authorization 

                                        
                                            
access-control-allow-credentials: true 

                                        
                                            
set-cookie: ID=13ce3c27554a4fd0a06bdd5822f223e4; expires=Fri, 20 Oct 2023 17:08:39 GMT; secure; SameSite=None 

                                        
                                            
strict-transport-security: max-age=1 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
timing-allow-origin: *, * 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  GIF image data, version 89a, 1 x 1\012- data

                                                Size:   43

                                                Md5:    b4491705564909da7f9eaf749dbbfbb1

                                                Sha1:   279315d507855c6a4351e1e2c2f39dd9cd2fccd8

                                                Sha256: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "DC01475D4DC21A1CAE229BE2208A845C23BF05462F559F8A70DD41197043E389" 

                                        
                                            
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=10480 

                                        
                                            
Expires: Thu, 20 Oct 2022 20:03:19 GMT 

                                        
                                            
Date: Thu, 20 Oct 2022 17:08:39 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    7d93d691015f929a758d5fc73fb40be7

                                                Sha1:   05cc32b2d1a176c16f8f95b45925f6923277dda4

                                                Sha256: dc01475d4dc21a1cae229be2208a845c23bf05462f559f8a70dd41197043e389

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "75AD68ED1B06FC9F09C28E134098714184EBA8CFC125E77B6D885684A5A8756D" 

                                        
                                            
Last-Modified: Wed, 19 Oct 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=6380 

                                        
                                            
Expires: Thu, 20 Oct 2022 18:55:00 GMT 

                                        
                                            
Date: Thu, 20 Oct 2022 17:08:40 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    0d330f518497c846d786486092f3d324

                                                Sha1:   862c837e14f192cd373af5b7bb46bf6767123fda

                                                Sha256: 75ad68ed1b06fc9f09c28e134098714184eba8cfc125e77b6d885684a5a8756d

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         93.184.220.29

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Age: 4669 

                                        
                                            
Cache-Control: max-age=144955 

                                        
                                            
Date: Thu, 20 Oct 2022 17:08:40 GMT 

                                        
                                            
Etag: "63510196-1d7" 

                                        
                                            
Expires: Sat, 22 Oct 2022 09:24:35 GMT 

                                        
                                            
Last-Modified: Thu, 20 Oct 2022 08:06:46 GMT 

                                        
                                            
Server: ECS (ska/F70F) 

                                        
                                            
X-Cache: HIT 

                                        
                                            
Content-Length: 471 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   471

                                                Md5:    a5dd4f71f4ddd5be9201466ed7a6c423

                                                Sha1:   1d0832fb6e227d42137d319f728c8bc1414c816f

                                                Sha256: 1edffa6a320210fccbd0e5fa6dbdaa45561678a75a66639985f02791c8283b40

                                        
                                            GET /favicon.ico HTTP/1.1 

                                        
                                            
Host: toapodazoay.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://toapodazoay.com/?rzi=4981334&rsz=4981334&rid= 

                                        
                                            
Cookie: reverse=1yRVuqgN7wIp8Wq2M097hlr0Ysnm9y7ztDonxynFnKs 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         139.45.197.155

                                        
                                            HTTP/2 204 No Content

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Thu, 20 Oct 2022 17:08:40 GMT 

                                        
                                            
strict-transport-security: max-age=60 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            GET / HTTP/1.1 

                                        
                                            
Host: push.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Sec-WebSocket-Version: 13 

                                        
                                            
Origin: wss://push.services.mozilla.com/ 

                                        
                                            
Sec-WebSocket-Protocol: push-notification 

                                        
                                            
Sec-WebSocket-Extensions: permessage-deflate 

                                        
                                            
Sec-WebSocket-Key: Z3DWXZEu3vrM+qQq+5kLFA== 

                                        
                                            
Connection: keep-alive, Upgrade 

                                        
                                            
Sec-Fetch-Dest: websocket 

                                        
                                            
Sec-Fetch-Mode: websocket 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
Upgrade: websocket

                                         54.191.222.112

                                        
                                            HTTP/1.1 101 Switching Protocols

                                        

                                        
                                            
Connection: Upgrade 

                                        
                                            
Upgrade: websocket 

                                        
                                            
Sec-WebSocket-Accept: EHGlI8JE+TT3SIId/fFbLx9Ty0A= 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            GET /afu.php?id=792658&rt=1 HTTP/1.1 

                                        
                                            
Host: go.deliverymodo.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1

                                         139.45.197.236

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/html; charset=utf8

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Date: Thu, 20 Oct 2022 17:08:41 GMT 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
X-Trace-Id: 5f74dfcf3b21b28cfe773889c6f0ef06 

                                        
                                            
Link: <https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://my.rtmark.net>; rel="preconnect dns-prefetch", <https://www.lyca-mobile.no>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch" 

                                        
                                            
Access-Control-Allow-Origin: * 

                                        
                                            
Access-Control-Allow-Credentials: true 

                                        
                                            
Access-Control-Allow-Methods: GET, POST, OPTIONS 

                                        
                                            
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding 

                                        
                                            
Access-Control-Max-Age: 86400 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0 

                                        
                                            
Expires: Tue, 11 Jan 1994 10:00:00 GMT 

                                        
                                            
Set-Cookie: OAID=37a7e3f8a03942b6bb589c34cadb152f; expires=Fri, 20 Oct 2023 17:08:41 GMT; path=/
oaidts=1666285721; expires=Fri, 20 Oct 2023 17:08:41 GMT; path=/
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT 

                                        
                                            
Strict-Transport-Security: max-age=1 

                                        
                                            
X-Content-Type-Options: nosniff 

                                        
                                            
Timing-Allow-Origin: *, * 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text

                                                Size:   737

                                                Md5:    aed6a8a42cbaad11d240a0289f290082

                                                Sha1:   e150cf9f69fb80e3a2d25d0b009a5d8e38275839

                                                Sha256: 75e7db7c5ba29c4617c9f9f5d50352a67a5ba703f4efc22aface3f8df93cbfcd

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1" 

                                        
                                            
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=3217 

                                        
                                            
Expires: Thu, 20 Oct 2022 18:02:18 GMT 

                                        
                                            
Date: Thu, 20 Oct 2022 17:08:41 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    dcbf142b7958e83961fc03b9676d1fc6

                                                Sha1:   930f67e486f95de63450b6d73d1957aac204fb43

                                                Sha256: 9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1" 

                                        
                                            
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=3217 

                                        
                                            
Expires: Thu, 20 Oct 2022 18:02:18 GMT 

                                        
                                            
Date: Thu, 20 Oct 2022 17:08:41 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    dcbf142b7958e83961fc03b9676d1fc6

                                                Sha1:   930f67e486f95de63450b6d73d1957aac204fb43

                                                Sha256: 9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1" 

                                        
                                            
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=3217 

                                        
                                            
Expires: Thu, 20 Oct 2022 18:02:18 GMT 

                                        
                                            
Date: Thu, 20 Oct 2022 17:08:41 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    dcbf142b7958e83961fc03b9676d1fc6

                                                Sha1:   930f67e486f95de63450b6d73d1957aac204fb43

                                                Sha256: 9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F927829d0-802f-4d0d-b566-d5875b574c9a.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 7098 

                                        
                                            
x-amzn-requestid: 2f4f7eac-181e-4fe2-b3de-5b22e9e9b9ef 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: aRYSPGRMIAMFZAg= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-63506da7-42ed935836382b62301fc3e5;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Wed, 19 Oct 2022 21:35:35 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA73-P1 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: JJm8noqjbY7Y8effNKjyVb5D_zbRTxuCTLFif9a5lZLcTPard05YZA== 

                                        
                                            
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Wed, 19 Oct 2022 21:53:58 GMT 

                                        
                                            
age: 69283 

                                        
                                            
etag: "e94567c4fe3adade32f19c8c3053a486fe8c3ac9" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   7098

                                                Md5:    5fd91971508ef6f5985a0017dfcdd73e

                                                Sha1:   e94567c4fe3adade32f19c8c3053a486fe8c3ac9

                                                Sha256: 34966351275d61a81528a5b5eedef55878d9f7b9c0af311ead9471dda8a02e41

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1a95f4f-d066-4cb4-bb6a-392f3ed5c229.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 13101 

                                        
                                            
x-amzn-requestid: e10df8ba-d8f2-44c8-ad0f-bbda32020e0f 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: aRYBYF6noAMFthg= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-63506d3b-56538b97541830784f01f61f;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Wed, 19 Oct 2022 21:33:47 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA73-P1 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: 9R7vli3BwVLfleTf2jeZc5YNDMDxM024T7nyXcIpE2-o8Ddff57Jmg== 

                                        
                                            
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Wed, 19 Oct 2022 21:44:56 GMT 

                                        
                                            
age: 69825 

                                        
                                            
etag: "e008a1663c29616e83dccba105d7f6e2dbbb37dc" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   13101

                                                Md5:    e76755a16cf0bdb76d5e832c7b14af85

                                                Sha1:   e008a1663c29616e83dccba105d7f6e2dbbb37dc

                                                Sha256: ab1d3690731963f85ede6cf6bedfb8b62ae1f93fafecc2cf343ea07bd4f2afce

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab5d17f5-6084-45a5-9677-8ae8646d6ee1.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 9607 

                                        
                                            
x-amzn-requestid: 590b20a6-039c-4c25-a61a-5f579c5b31f2 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: aRZj6HZ7oAMFsSQ= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-63506fb2-04b740c442ae735347b4e2c3;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Wed, 19 Oct 2022 21:44:18 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA73-P1 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: bL5fVog2SuW8ZNt9a0ECc8jwcAELUBVo63LXPovdnIRxCRnsMWVvvQ== 

                                        
                                            
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Wed, 19 Oct 2022 21:46:27 GMT 

                                        
                                            
age: 69734 

                                        
                                            
etag: "6b15c7d7abb9ff1cc040853401ad5a39f81c19a4" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   9607

                                                Md5:    81216ad70664e969888ae7b13871fda0

                                                Sha1:   6b15c7d7abb9ff1cc040853401ad5a39f81c19a4

                                                Sha256: 7294e93d890b4c8eeb8383a67aac0be8b88cac5e0882865c9f38ade713157799

                                        
                                            GET /favicon.ico HTTP/1.1 

                                        
                                            
Host: go.deliverymodo.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Cookie: OAID=37a7e3f8a03942b6bb589c34cadb152f; oaidts=1666285721

                                         139.45.197.236

                                        
                                            HTTP/1.1 204 No Content

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Date: Thu, 20 Oct 2022 17:08:41 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Expires: Thu, 31 Dec 2037 23:55:55 GMT 

                                        
                                            
Pragma: public 

                                        
                                            
Cache-Control: max-age=315360000, public, must-revalidate, proxy-revalidate 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            POST /img.gif?f=merge&userId=37a7e3f8a03942b6bb589c34cadb152f HTTP/1.1 

                                        
                                            
Host: my.rtmark.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
Content-Length: 0

                                         139.45.195.8

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/gif

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Thu, 20 Oct 2022 17:08:41 GMT 

                                        
                                            
content-length: 43 

                                        
                                            
access-control-allow-origin: null 

                                        
                                            
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE 

                                        
                                            
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token 

                                        
                                            
access-control-expose-headers: Authorization 

                                        
                                            
access-control-allow-credentials: true 

                                        
                                            
set-cookie: ID=37a7e3f8a03942b6bb589c34cadb152f; expires=Fri, 20 Oct 2023 17:08:41 GMT; secure; SameSite=None 

                                        
                                            
strict-transport-security: max-age=1 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
timing-allow-origin: *, * 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  GIF image data, version 89a, 1 x 1\012- data

                                                Size:   43

                                                Md5:    b4491705564909da7f9eaf749dbbfbb1

                                                Sha1:   279315d507855c6a4351e1e2c2f39dd9cd2fccd8

                                                Sha256: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49

                                        
                                            GET /wp-content/plugins/simple-sitemap/lib/assets/css/simple-sitemap.css HTTP/1.1 

                                        
                                            
Host: www.lyca-mobile.no

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 

                                        
                                            
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin

                                         3.120.194.163

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/css

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Access-Control-Allow-Origin: * 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Thu, 20 Oct 2022 17:08:43 GMT 

                                        
                                            
Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT 

                                        
                                            
Server: Apache 

                                        
                                            
Strict-Transport-Security: max-age=300; includeSubdomains; 

                                        
                                            
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
X-XSS-Protection: 1; mode=block 

                                        
                                            
Content-Length: 1763 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text

                                                Size:   1763

                                                Md5:    999af40135d16a152caaee08d90f72d8

                                                Sha1:   7462b3f3d77148eb3601c302b182ba74265def75

                                                Sha256: a67e5b0779241cd4c4d99b2b47e4ead0f0ce2cb2ab2a1fb5464d62f5a543dd3f

                                        
                                            GET /wp-content/themes/Divi-child/vendor/flat-icon/flaticon.css HTTP/1.1 

                                        
                                            
Host: d3uayxmzbnco7f.cloudfront.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         143.204.42.74

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/css

                                        

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Last-Modified: Tue, 27 Aug 2019 08:27:43 GMT 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Thu, 20 Oct 2022 00:26:23 GMT 

                                        
                                            
Cache-Control: 2592000 

                                        
                                            
ETag: W/"944296da525e8552632efd1dc0fd0480" 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
X-Cache: Hit from cloudfront 

                                        
                                            
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: nOjlhei9FKhicUtArjN9z_4fybZdmIWlRL3gHyfnE4OSzIK6Vl0ltw== 

                                        
                                            
Age: 60141 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (1000), with no line terminators

                                                Size:   417

                                                Md5:    5e5c8838d3f45e076213445010a63eb8

                                                Sha1:   6aedac1cb54fd087ea16c8bae11c0687bef29ce8

                                                Sha256: 653364905a7234231046bf7134bfb1d2f8f957e10463e74d636e4465bf1b8139

                                        
                                            GET /wp-includes/css/dist/block-library/style.css HTTP/1.1 

                                        
                                            
Host: d3uayxmzbnco7f.cloudfront.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         143.204.42.74

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/css

                                        

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Date: Thu, 20 Oct 2022 00:26:23 GMT 

                                        
                                            
Last-Modified: Thu, 06 Aug 2020 03:32:13 GMT 

                                        
                                            
ETag: W/"ff1e4526d778743bf4370b47ff17e7c7" 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
X-Cache: Hit from cloudfront 

                                        
                                            
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: t3_qjoJVAus-UfsildlihgtQXol4SIVkgqgSj8cU-eY7sWn48CMvtQ== 

                                        
                                            
Age: 60141 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text

                                                Size:   9361

                                                Md5:    2be7bee7ec368ffca87466bc157e2b3b

                                                Sha1:   6782fade3d3b2a2c417544a8635e032b43aee8c9

                                                Sha256: 061f638892d79ba288c543bfb22417de474fd538898931c0f126aad20a997964

                                        
                                            GET /wp-content/themes/Divi-child/css/student-style.css HTTP/1.1 

                                        
                                            
Host: d3uayxmzbnco7f.cloudfront.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         143.204.42.74

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/css

                                        

                                        
                                            
Content-Length: 966 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Last-Modified: Thu, 18 Nov 2021 11:11:57 GMT 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Date: Thu, 20 Oct 2022 08:14:48 GMT 

                                        
                                            
ETag: "64eaec02b035ad1628a7890becee905c" 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
X-Cache: Hit from cloudfront 

                                        
                                            
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: AoUaRSMmRsYQqu3kqGZP2_rWvq-x0j14GOWm2W6M03A5KJsfzZdcjg== 

                                        
                                            
Age: 32036 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with CR line terminators

                                                Size:   966

                                                Md5:    64eaec02b035ad1628a7890becee905c

                                                Sha1:   d9a7cd1dd7d3400c09e341e4bba580b80b0a41d9

                                                Sha256: 370ce3c5280f78beb793f8773f3f74b225a2e54f35449df02aa8e181a4842255

                                        
                                            GET /wp-content/themes/Divi-child/vendor/font-awesome/css/font-awesome.min.css HTTP/1.1 

                                        
                                            
Host: d3uayxmzbnco7f.cloudfront.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         143.204.42.74

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/css

                                        

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Date: Thu, 20 Oct 2022 09:13:00 GMT 

                                        
                                            
Last-Modified: Tue, 27 Aug 2019 08:27:43 GMT 

                                        
                                            
ETag: W/"4f0c935c3631f777ea790a05a44c1744" 

                                        
                                            
Cache-Control: 2592000 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
X-Cache: Hit from cloudfront 

                                        
                                            
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: 8Ahnn-2Mp-kDwSPCrFxA-Z_6FM-a9HIi5pIRB5QkVK0Zf0q9jUqYGA== 

                                        
                                            
Age: 28544 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (28877), with no line terminators

                                                Size:   6549

                                                Md5:    b1de1df73ae7be1caa0d5bcd05a51174

                                                Sha1:   dc031d576fe6505f0c8410156dc69bc8a6174bc6

                                                Sha256: 389946cb872b2df43495a8d161246b53d3153c5131039c68562256e39dce4cb2

                                        
                                            GET /wp-content/themes/Divi-child/vendor/line-awesome/css/line-awesome.min.css HTTP/1.1 

                                        
                                            
Host: d3uayxmzbnco7f.cloudfront.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         143.204.42.74

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/css

                                        

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Date: Thu, 20 Oct 2022 00:26:23 GMT 

                                        
                                            
Last-Modified: Tue, 27 Aug 2019 08:27:44 GMT 

                                        
                                            
ETag: W/"4334c8c70998d81bde3e6765828811a6" 

                                        
                                            
Cache-Control: 2592000 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
X-Cache: Hit from cloudfront 

                                        
                                            
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: vQmUF99jc3PiRzCRGHpGPfY_aoDRhgHuKQtuyXTNSZ6iMJyx9OYL9g== 

                                        
                                            
Age: 60141 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (27557)

                                                Size:   6036

                                                Md5:    c7bc010a6881e686dbb7f4ae2a373f2a

                                                Sha1:   1ce8da2a8a5f8ec1b74220d265cd4e216f8f8e6d

                                                Sha256: c54c83365431d5b6d0983c165687586bbd597893156605ccb9100bb9b1533187

                                        
                                            GET /wp-content/themes/Divi/epanel/shortcodes/css/shortcodes.css HTTP/1.1 

                                        
                                            
Host: d3uayxmzbnco7f.cloudfront.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         143.204.42.74

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/css

                                        

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Date: Thu, 20 Oct 2022 00:26:23 GMT 

                                        
                                            
Last-Modified: Tue, 27 Aug 2019 08:27:49 GMT 

                                        
                                            
ETag: W/"ea1a16f72cd2c8d66fdf5e8924f78eee" 

                                        
                                            
Cache-Control: 2592000 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
X-Cache: Hit from cloudfront 

                                        
                                            
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: mbzmCP8CmCXDItmS8GbzSFJ6987XF3klK_R5Z1QckIVZzeHo95sX5Q== 

                                        
                                            
Age: 60141 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (859)

                                                Size:   5814

                                                Md5:    0b1eb8863b3746cc79bb9d83fdb7e161

                                                Sha1:   2c150a9951c8b4e51744c6336f39a2bad61af34f

                                                Sha256: ddb710b587fafffec1e1fabe04ec3df3d119316925a8ff51703c5f3131759fbd

                                        
                                            GET /wp-content/themes/Divi/includes/builder/styles/magnific_popup.css HTTP/1.1 

                                        
                                            
Host: d3uayxmzbnco7f.cloudfront.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         143.204.42.74

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/css

                                        

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Date: Thu, 20 Oct 2022 07:46:48 GMT 

                                        
                                            
Last-Modified: Tue, 27 Aug 2019 08:27:54 GMT 

                                        
                                            
ETag: W/"6e30bbc36a055e4e39e3b1fe966ba0b2" 

                                        
                                            
Cache-Control: 2592000 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
X-Cache: Hit from cloudfront 

                                        
                                            
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: ueDHXcjRNI5V9QlPP5K8H_PzPXXIOh74wGuRJ8NotzohlMxQRkNesw== 

                                        
                                            
Age: 33716 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (311)

                                                Size:   2053

                                                Md5:    9e4a35dae8eae91a02a7fa5db27df3c6

                                                Sha1:   af4f210b764ac03ea41af15cae8eafb7923553bb

                                                Sha256: 1ea67cc171afff0f3d30c4b0befd142cf70724663962525ab509118cbf276c39

                                        
                                            GET /wp-content/plugins/registration-portin-facility/vendor/jquery-ui-1.12.1.custom/jquery-ui.css HTTP/1.1 

                                        
                                            
Host: www.lyca-mobile.no

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 

                                        
                                            
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin

                                         3.120.194.163

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/css

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Access-Control-Allow-Origin: * 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Thu, 20 Oct 2022 17:08:43 GMT 

                                        
                                            
Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT 

                                        
                                            
Server: Apache 

                                        
                                            
Strict-Transport-Security: max-age=300; includeSubdomains; 

                                        
                                            
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
X-XSS-Protection: 1; mode=block 

                                        
                                            
Content-Length: 8384 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (2363)

                                                Size:   8384

                                                Md5:    211e9acb7b08468bf462f3cc35d58dba

                                                Sha1:   30b16e5f18fb53e5536e1dff154a4288dea94c41

                                                Sha256: a31c685f9330266e5b4a2fb4c7c6439f0550fefcdadebd2548f746387820359c

                                        
                                            GET /wp-content/plugins/wp-store-locator/css/styles.css HTTP/1.1 

                                        
                                            
Host: www.lyca-mobile.no

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 

                                        
                                            
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin

                                         3.120.194.163

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/css

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Access-Control-Allow-Origin: * 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Thu, 20 Oct 2022 17:08:43 GMT 

                                        
                                            
Last-Modified: Thu, 17 Jun 2021 16:25:57 GMT 

                                        
                                            
Server: Apache 

                                        
                                            
Strict-Transport-Security: max-age=300; includeSubdomains; 

                                        
                                            
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
X-XSS-Protection: 1; mode=block 

                                        
                                            
Content-Length: 4432 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text

                                                Size:   4432

                                                Md5:    29d83f16ddcd51bb2d8e29cfa6f0d970

                                                Sha1:   d8aa3982c0c288b37f78f81c34eabfd24bd6bf84

                                                Sha256: 5d585c7bba79f48f5ceaca987c6b08fde3da899d8512e1bf13f81a747d8db56d

                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.js HTTP/1.1 

                                        
                                            
Host: d3uayxmzbnco7f.cloudfront.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         143.204.42.74

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/x-javascript

                                        

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Date: Thu, 20 Oct 2022 00:26:24 GMT 

                                        
                                            
Last-Modified: Thu, 06 Aug 2020 03:32:44 GMT 

                                        
                                            
ETag: W/"6c57b762589f13ea5b3579ca5e6c369b" 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
X-Cache: Hit from cloudfront 

                                        
                                            
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: iqOVp5wvP7o9PJeN7YZJnAEs3k--OLjMXtopcoPHGo73rhADEfPBCQ== 

                                        
                                            
Age: 60140 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text

                                                Size:   7812

                                                Md5:    76208e6235bb3633615f86e39be06a83

                                                Sha1:   0e64293795f0f94a4180792aaf6b44321c1c08e0

                                                Sha256: cd0322a464b8d11f747d0b908eba8a5e20d02f2ae72e4f5075b9c40522c43bb4

                                        
                                            GET /wp-includes/js/jquery/ui/widget.min.js HTTP/1.1 

                                        
                                            
Host: d3uayxmzbnco7f.cloudfront.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         143.204.42.74

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/x-javascript

                                        

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Date: Thu, 20 Oct 2022 00:26:24 GMT 

                                        
                                            
Last-Modified: Thu, 06 Aug 2020 03:32:47 GMT 

                                        
                                            
ETag: W/"00dedd56324da186973a3b2cc5e8023c" 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
X-Cache: Hit from cloudfront 

                                        
                                            
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: zn6M1ebb_yF0JKfniZAbJVVIFtyzXqDhx-4Dp2HRFpFMY-uvH0CCLg== 

                                        
                                            
Age: 60140 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (6614)

                                                Size:   2596

                                                Md5:    9e246654320e031b93830f67c2e56a2f

                                                Sha1:   9111676ea0b140011659e6579679e9e619cd65e8

                                                Sha256: b48472230d26ab5393b8ba6795cdce37253116178cb5670ff76098190252e9af

                                        
                                            GET /wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown/style.css HTTP/1.1 

                                        
                                            
Host: www.lyca-mobile.no

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 

                                        
                                            
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin

                                         3.120.194.163

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/css

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Access-Control-Allow-Origin: * 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Thu, 20 Oct 2022 17:08:43 GMT 

                                        
                                            
Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT 

                                        
                                            
Server: Apache 

                                        
                                            
Strict-Transport-Security: max-age=300; includeSubdomains; 

                                        
                                            
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
X-XSS-Protection: 1; mode=block 

                                        
                                            
Content-Length: 552 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (1756)

                                                Size:   552

                                                Md5:    cf85cdcf046f700267df1aaf104a2b39

                                                Sha1:   852c3e9da0e745e68109819957b9ca45f4e55886

                                                Sha256: 6f64c08cd674c507292ff081be79f54bb5bde34b90a25e2a619f4c7c0e1c421c

                                        
                                            GET /wp-includes/js/jquery/ui/mouse.min.js HTTP/1.1 

                                        
                                            
Host: d3uayxmzbnco7f.cloudfront.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         143.204.42.74

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/x-javascript

                                        

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Date: Thu, 20 Oct 2022 00:26:24 GMT 

                                        
                                            
Last-Modified: Thu, 06 Aug 2020 03:32:45 GMT 

                                        
                                            
ETag: W/"b317c4ccc9aa140339ad72fa27c77266" 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
X-Cache: Hit from cloudfront 

                                        
                                            
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: 3XZ8QRIyMtEraDK55eMNN0SSjb-X3Sex82bxHScTnexApM1SckKajw== 

                                        
                                            
Age: 60140 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (2927)

                                                Size:   999

                                                Md5:    e466629bfa82c6f1dc466ac4a5b5e495

                                                Sha1:   45cc7d9457ef090a9c3cb044a5e3ce2115aa7bcd

                                                Sha256: a95eb8bd20eab719947faa4cec36315c50e21652801f14cb0581afac05aa2c47

                                        
                                            GET /wp-content/themes/Divi/style.css HTTP/1.1 

                                        
                                            
Host: d3uayxmzbnco7f.cloudfront.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         143.204.42.74

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/css

                                        

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Last-Modified: Tue, 27 Aug 2019 08:27:55 GMT 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Thu, 20 Oct 2022 00:24:08 GMT 

                                        
                                            
Cache-Control: 2592000 

                                        
                                            
ETag: W/"817303872fd1f4d16b34fcd79ab7d2d3" 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
X-Cache: Hit from cloudfront 

                                        
                                            
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: pN6f5GsTcsxANmErVo16C2m7oZARmhsd3BEztnYiN66vU4pQqm8qDg== 

                                        
                                            
Age: 60276 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (65536), with no line terminators

                                                Size:   43546

                                                Md5:    fcc10503f3079ce8d7461641a81ef0a6

                                                Sha1:   34c1b41e2b8a78ea003e8d37286d9ff3c7ec8e9c

                                                Sha256: 6accc6d6d74dc86cb4e240544abae03859693f764e150ff687f3db99a47ae9be

                                        
                                            GET /wp-content/plugins/testimonialslider/css/jquery.bxslider.css HTTP/1.1 

                                        
                                            
Host: www.lyca-mobile.no

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 

                                        
                                            
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin

                                         3.120.194.163

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/css

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Access-Control-Allow-Origin: * 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Thu, 20 Oct 2022 17:08:43 GMT 

                                        
                                            
Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT 

                                        
                                            
Server: Apache 

                                        
                                            
Strict-Transport-Security: max-age=300; includeSubdomains; 

                                        
                                            
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
X-XSS-Protection: 1; mode=block 

                                        
                                            
Content-Length: 885 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  Unicode text, UTF-8 text, with very long lines (3002), with no line terminators

                                                Size:   885

                                                Md5:    3a8400b070b74650e9c7927466b226cf

                                                Sha1:   7669a8def8bca883fbbceed367b8037f35fd1968

                                                Sha256: 0d23aabe78d874edcef092bcc9611dd3c3e8656a03c58ad6e01d6d98ad9165ed

                                        
                                            GET /wp-includes/js/jquery/ui/sortable.min.js HTTP/1.1 

                                        
                                            
Host: d3uayxmzbnco7f.cloudfront.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         143.204.42.74

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/x-javascript

                                        

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Date: Thu, 20 Oct 2022 00:26:24 GMT 

                                        
                                            
Last-Modified: Thu, 06 Aug 2020 03:32:47 GMT 

                                        
                                            
ETag: W/"efa8171f2226a422003417095d8549dd" 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
X-Cache: Hit from cloudfront 

                                        
                                            
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: EmRx5CasCt32o7dURnkeBqTFr4p3hJw1thj-AuDD6PKGvzwBITCPDQ== 

                                        
                                            
Age: 60140 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document, ASCII text, with very long lines (24670)

                                                Size:   6480

                                                Md5:    a2c52244d7a3bfff3fb4db5090267b68

                                                Sha1:   7b2e86c1ccd76cc40a7591c94c8f3e6445ef0d61

                                                Sha256: 68de9191b10834077e8172f64f5da33b5e2e76d617fc86e81ca335a72bea91b1

                                        
                                            GET /wp-content/themes/Divi-child/js/theme.js HTTP/1.1 

                                        
                                            
Host: d3uayxmzbnco7f.cloudfront.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         143.204.42.74

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/x-javascript

                                        

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Last-Modified: Tue, 15 Feb 2022 04:49:45 GMT 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Thu, 20 Oct 2022 06:59:39 GMT 

                                        
                                            
ETag: W/"d056838fef7522c86d80206e3384d0d3" 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
X-Cache: Hit from cloudfront 

                                        
                                            
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: WOkefRIpwYkV-iulCUFEQueQtvM7OoVIbvz-3n41eEABwe-pZkvGhg== 

                                        
                                            
Age: 36545 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (348)

                                                Size:   12163

                                                Md5:    5addb2c179e81480592aabb8dba6f4f4

                                                Sha1:   6f1a3d94536e59cece2a7bdc6a7fde55d7c21a26

                                                Sha256: 227e739dfbc2ce0fbf55d09228a2910605ee6ef94630df2d7a806e395c4c6189

                                        
                                            GET /wp-content/themes/Divi-child/js/jquery.validate.js HTTP/1.1 

                                        
                                            
Host: d3uayxmzbnco7f.cloudfront.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         143.204.42.74

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/x-javascript

                                        

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Date: Thu, 20 Oct 2022 00:26:23 GMT 

                                        
                                            
Last-Modified: Tue, 27 Aug 2019 08:27:41 GMT 

                                        
                                            
ETag: W/"50d37feba6afb8e8ee322a7b7871550e" 

                                        
                                            
Cache-Control: 2592000 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
X-Cache: Hit from cloudfront 

                                        
                                            
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: ouNvYsuBW3Jlivxu82qQIKroXAxgN0pG1au-h8Y5Da8wy-kZN3uehg== 

                                        
                                            
Age: 60141 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  Unicode text, UTF-8 text, with very long lines (22821)

                                                Size:   7414

                                                Md5:    ab24d610fd634316c6a00b21f6b36832

                                                Sha1:   8f408fef36692595f38a086535db86ca765d14a0

                                                Sha256: 24aca9deca895550f5ba6c9922eb191b68c28fc247478c0061d985213946df70

                                        
                                            GET /wp-content/plugins/custom-search-plugin/js/script.js HTTP/1.1 

                                        
                                            
Host: www.lyca-mobile.no

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 

                                        
                                            
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin

                                         3.120.194.163

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/javascript

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Access-Control-Allow-Origin: * 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Thu, 20 Oct 2022 17:08:43 GMT 

                                        
                                            
Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT 

                                        
                                            
Server: Apache 

                                        
                                            
Strict-Transport-Security: max-age=300; includeSubdomains; 

                                        
                                            
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
X-XSS-Protection: 1; mode=block 

                                        
                                            
Content-Length: 506 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text

                                                Size:   506

                                                Md5:    99ad164c48c30d4ea72bdb15d6efe582

                                                Sha1:   f5186aa17398f4034199e9f58308fcf753dfe467

                                                Sha256: 9fb201a9702f44e2d06fd910dc024bb0707badce77b09613754e3ff07038cee1

                                        
                                            GET /wp-content/themes/Divi-child/js/additional-methods.js HTTP/1.1 

                                        
                                            
Host: d3uayxmzbnco7f.cloudfront.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         143.204.42.74

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/x-javascript

                                        

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Last-Modified: Tue, 27 Aug 2019 08:27:40 GMT 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Thu, 20 Oct 2022 00:24:09 GMT 

                                        
                                            
Cache-Control: 2592000 

                                        
                                            
ETag: W/"074966e2db7e1caa07fd7d0bac25e844" 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
X-Cache: Hit from cloudfront 

                                        
                                            
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: BMwTxLBOTo8JsqJ-UCLHIIX-3oovWspdeX5wKnA3Wx8HUTUMspPf4g== 

                                        
                                            
Age: 60275 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  Non-ISO extended-ASCII text, with very long lines (2940)

                                                Size:   5912

                                                Md5:    8dccfd11159d2510d1a3eeeeacf3fac0

                                                Sha1:   d8c6c5f7838e9c52a6c6f2e7bdf19516594c3a6d

                                                Sha256: a08a68fd03bc314c6f8d08b4d46c3b8001716b1e6437f764252b37ba32fc7059

                                        
                                            GET /wp-content/themes/Divi-child/js/register.js HTTP/1.1 

                                        
                                            
Host: d3uayxmzbnco7f.cloudfront.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         143.204.42.74

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/x-javascript

                                        

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Date: Thu, 20 Oct 2022 00:26:24 GMT 

                                        
                                            
Last-Modified: Thu, 20 Feb 2020 06:59:06 GMT 

                                        
                                            
ETag: W/"a4c47e49f1b792925db5d2ee23d17942" 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
X-Cache: Hit from cloudfront 

                                        
                                            
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: dgI6XO7B9uDnLm_KYQi7WT93sPim1wpoGGcCJTgXdnsqThFRVeJkIw== 

                                        
                                            
Age: 60140 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text

                                                Size:   2843

                                                Md5:    deacf1a6348898cbaaa599a4c38c3ca5

                                                Sha1:   5d817802af4b56aa89883ff72088206d8ee6860e

                                                Sha256: cc113bf3bd23d11500ca7bc14b549c92eeea3e70a073b13ba36ce5e6c2e7ed09

                                        
                                            GET /wp-content/themes/Divi-child/js/bootstrap.min.js HTTP/1.1 

                                        
                                            
Host: d3uayxmzbnco7f.cloudfront.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         143.204.42.74

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/x-javascript

                                        

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Last-Modified: Tue, 27 Aug 2019 08:27:40 GMT 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Thu, 20 Oct 2022 00:24:09 GMT 

                                        
                                            
Cache-Control: 2592000 

                                        
                                            
ETag: W/"5869c96cc8f19086aee625d670d741f9" 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
X-Cache: Hit from cloudfront 

                                        
                                            
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: _0GQ8O5gEMUva-EZBIQwA2F2w3TB6tuBYqxFvN6YdkYAv-oPaDr1sg== 

                                        
                                            
Age: 60275 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (32033)

                                                Size:   9844

                                                Md5:    c3925c588a840a4382d7e58be0c1a655

                                                Sha1:   24039976dd2dd0c30e107ffa21a03c31995a308c

                                                Sha256: dd06b0cdc9ebd1c0dff60450b691c24ff583980ae06d4a83c03ca91601f4ca24

                                        
                                            GET /wp-content/plugins/registration-portin-facility/public/js/registration_portin_facility-public.js HTTP/1.1 

                                        
                                            
Host: www.lyca-mobile.no

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 

                                        
                                            
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin

                                         3.120.194.163

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/javascript

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Access-Control-Allow-Origin: * 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Thu, 20 Oct 2022 17:08:43 GMT 

                                        
                                            
Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT 

                                        
                                            
Server: Apache 

                                        
                                            
Strict-Transport-Security: max-age=300; includeSubdomains; 

                                        
                                            
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
X-XSS-Protection: 1; mode=block 

                                        
                                            
Content-Length: 3837 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text

                                                Size:   3837

                                                Md5:    01179df43b1213ab1106977745e9b906

                                                Sha1:   9e3ea134dd317bc273af92dc88c44d52a3e73e64

                                                Sha256: 1afad8260106e543ae55da914750a910dcf8bcf16327589f1d9d9ef21713ef2d

                                        
                                            GET /wp-content/themes/Divi-child/js/lyca_login.js HTTP/1.1 

                                        
                                            
Host: www.lyca-mobile.no

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 

                                        
                                            
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin

                                         3.120.194.163

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/javascript

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Access-Control-Allow-Origin: * 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Thu, 20 Oct 2022 17:08:43 GMT 

                                        
                                            
Last-Modified: Thu, 17 Jun 2021 16:25:57 GMT 

                                        
                                            
Server: Apache 

                                        
                                            
Strict-Transport-Security: max-age=300; includeSubdomains; 

                                        
                                            
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
X-XSS-Protection: 1; mode=block 

                                        
                                            
Content-Length: 2926 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text

                                                Size:   2926

                                                Md5:    139463c6855f901b3896c4958ef4392c

                                                Sha1:   b0fb2a97f006267aae2924021731fe5527d8e2c7

                                                Sha256: 2801af8987984312d4009ff3f665af9da6ad50faa59367fd9cb0405a03ab9fae

                                        
                                            GET /wp-content/themes/Divi-child/js/custom_validate.js HTTP/1.1 

                                        
                                            
Host: d3uayxmzbnco7f.cloudfront.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         143.204.42.74

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/x-javascript

                                        

                                        
                                            
Content-Length: 391 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Date: Thu, 20 Oct 2022 00:26:24 GMT 

                                        
                                            
Last-Modified: Tue, 27 Aug 2019 08:27:41 GMT 

                                        
                                            
ETag: "9f4e4bb98cbc4c5fe6ddfc05c7c48095" 

                                        
                                            
Cache-Control: 2592000 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
X-Cache: Hit from cloudfront 

                                        
                                            
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: helJGreHfj5wx6UiN1At1xgZ4EwXZDEcI49o9oXQSk8f-4m8xBSPjQ== 

                                        
                                            
Age: 60140 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (391), with no line terminators

                                                Size:   391

                                                Md5:    9f4e4bb98cbc4c5fe6ddfc05c7c48095

                                                Sha1:   e87b52374a265e471462e297fad51a39763f2d3b

                                                Sha256: d48f2166d51e343d4d91b80bf04c970d3d10603d8a6fc5060a53b73c2a8b70cf

                                        
                                            GET /ajax/libs/bootstrap-datetimepicker/4.17.37/js/bootstrap-datetimepicker.min.js HTTP/1.1 

                                        
                                            
Host: cdnjs.cloudflare.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         104.17.25.14

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript; charset=utf-8

                                        

                                        
                                            
date: Thu, 20 Oct 2022 17:08:43 GMT 

                                        
                                            
content-length: 8256 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
cache-control: public, max-age=30672000 

                                        
                                            
content-encoding: br 

                                        
                                            
etag: "5eb03d8e-9443" 

                                        
                                            
last-modified: Mon, 04 May 2020 16:06:38 GMT 

                                        
                                            
cf-cdnjs-via: cfworker/kv 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
cf-cache-status: HIT 

                                        
                                            
age: 86032 

                                        
                                            
expires: Tue, 10 Oct 2023 17:08:43 GMT 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OcfTLs2FI1TceeijNFSQHHXi9CkZ%2Fuzo2yj40G0SeXg5k2iONkXz6N13MNM6Y0D4mwp%2BZi35fKt5GUlcSQdJXy%2BEKtmx5qarcN5jNB9xGGvYTH%2BY3n%2FAqGw%2FKPK8FVvb8q9kSuBT"}],"group":"cf-nel","max_age":604800} 

                                        
                                            
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} 

                                        
                                            
strict-transport-security: max-age=15780000 

                                        
                                            
server: cloudflare 

                                        
                                            
cf-ray: 75d35b6dab101c02-OSL 

                                        
                                            
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document, ASCII text, with very long lines (32010)

                                                Size:   8256

                                                Md5:    52b30dc893d14995df58d34ecc5a9f7f

                                                Sha1:   e360fd76bd734011484ed559fd1780e31949353f

                                                Sha256: eab9dfacfbbb59d341c72a7fe6dd9c12ea4e87f20ccf78bf13bd98ffeab243d4

                                        
                                            GET /wp-content/themes/Divi-child/js/nc_ajax_script.js HTTP/1.1 

                                        
                                            
Host: d3uayxmzbnco7f.cloudfront.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         143.204.42.74

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/x-javascript

                                        

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Last-Modified: Thu, 05 May 2022 06:47:46 GMT 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Thu, 20 Oct 2022 00:24:08 GMT 

                                        
                                            
ETag: W/"9353377fb1b76e466a7ac26634defc75" 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
X-Cache: Hit from cloudfront 

                                        
                                            
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: lgvAi2IE8vQQaDkeQBfA4FYT1Iha6yokdDSbYYtJmAFzy6C8ovbLkw== 

                                        
                                            
Age: 60276 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text

                                                Size:   7103

                                                Md5:    bf97598dfb70c892f6f303f2d38450a1

                                                Sha1:   d28da6fafacb3758b0f55cd71ced792ebcd4f104

                                                Sha256: 1d15210c521e42a696675eec0a46284c850497fdc13e3dc7a0409be4743137e9

                                        
                                            GET /wp-content/plugins/email-subscribers/widget/es-widget.js HTTP/1.1 

                                        
                                            
Host: www.lyca-mobile.no

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 

                                        
                                            
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin

                                         3.120.194.163

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/javascript

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Access-Control-Allow-Origin: * 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Thu, 20 Oct 2022 17:08:43 GMT 

                                        
                                            
Last-Modified: Thu, 17 Jun 2021 16:19:16 GMT 

                                        
                                            
Server: Apache 

                                        
                                            
Strict-Transport-Security: max-age=300; includeSubdomains; 

                                        
                                            
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
X-XSS-Protection: 1; mode=block 

                                        
                                            
Content-Length: 1182 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (1311)

                                                Size:   1182

                                                Md5:    59066978220b7f1b7b925b47ff5e46ab

                                                Sha1:   bab1c3c14f4b9649864cb46c1c96250ccdc95024

                                                Sha256: 5fcbd0de5e51104006331763dcf23084505ea9d876e0904815e603e5e0230e90

                                        
                                            GET /wp-content/plugins/lyca-marketing/assets/js/marketing-script.js HTTP/1.1 

                                        
                                            
Host: www.lyca-mobile.no

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 

                                        
                                            
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin

                                         3.120.194.163

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/javascript

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Access-Control-Allow-Origin: * 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Thu, 20 Oct 2022 17:08:43 GMT 

                                        
                                            
Last-Modified: Wed, 05 Jan 2022 02:41:28 GMT 

                                        
                                            
Server: Apache 

                                        
                                            
Strict-Transport-Security: max-age=300; includeSubdomains; 

                                        
                                            
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
X-XSS-Protection: 1; mode=block 

                                        
                                            
Content-Length: 893 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with CRLF line terminators

                                                Size:   893

                                                Md5:    81ac1712537559cdec808b954a7490d8

                                                Sha1:   33f1f5ea6a334887020b71577c72953afda05148

                                                Sha256: 30aabbaab74bd6f87cefb998ef1d09a36cb7f36d5c7ddd4bf519ba1059494e8f

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Thu, 20 Oct 2022 17:08:43 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    193d2d5278d7126ac87e3b5d25c73846

                                                Sha1:   a113a1bd6d01cf7f17ecdd8c1d71405e3a680359

                                                Sha256: 3cdc1c4dbdde26acb1eedba11b1aa3a93d8933dda59f777e6172feb9fa773f64

                                        
                                            GET /wp-content/plugins/lyca-marketing/assets/js/jquery.lazy.min.js HTTP/1.1 

                                        
                                            
Host: www.lyca-mobile.no

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 

                                        
                                            
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin

                                         3.120.194.163

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/javascript

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Access-Control-Allow-Origin: * 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Thu, 20 Oct 2022 17:08:44 GMT 

                                        
                                            
Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT 

                                        
                                            
Server: Apache 

                                        
                                            
Strict-Transport-Security: max-age=300; includeSubdomains; 

                                        
                                            
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
X-XSS-Protection: 1; mode=block 

                                        
                                            
Content-Length: 2331 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (4890)

                                                Size:   2331

                                                Md5:    a6cc20d3609181f768dc325025b32715

                                                Sha1:   3911e55e11ce33370a2ec382aafb2447cdffc740

                                                Sha256: c676fc1d198ec9437a42cbfa639bf2bb95cd4502e49e897c922855e4d3d29bd4

                                        
                                            GET /wp-content/themes/Divi/includes/builder/scripts/jquery.mobile.custom.min.js HTTP/1.1 

                                        
                                            
Host: www.lyca-mobile.no

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 

                                        
                                            
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin

                                         3.120.194.163

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/javascript

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Access-Control-Allow-Origin: * 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Thu, 20 Oct 2022 17:08:44 GMT 

                                        
                                            
Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT 

                                        
                                            
Server: Apache 

                                        
                                            
Strict-Transport-Security: max-age=300; includeSubdomains; 

                                        
                                            
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
X-XSS-Protection: 1; mode=block 

                                        
                                            
Content-Length: 2872 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (7687)

                                                Size:   2872

                                                Md5:    a7bc9bd6d7a143a13d7072ee406c8692

                                                Sha1:   42a46eca1ae6c1b50602917cc52b4b61e13f24f7

                                                Sha256: 63b52e7a859b8943c2d1255b30e1d3b8fa262285797a69098def3967d112ad5b

                                        
                                            GET /wp-content/themes/Divi/js/custom.js HTTP/1.1 

                                        
                                            
Host: www.lyca-mobile.no

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 

                                        
                                            
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin

                                         3.120.194.163

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/javascript

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Access-Control-Allow-Origin: * 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Thu, 20 Oct 2022 17:08:44 GMT 

                                        
                                            
Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT 

                                        
                                            
Server: Apache 

                                        
                                            
Strict-Transport-Security: max-age=300; includeSubdomains; 

                                        
                                            
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
X-XSS-Protection: 1; mode=block 

                                        
                                            
Content-Length: 11702 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (372)

                                                Size:   11702

                                                Md5:    fc1ad29248d5c0b974cca2d3687eadd1

                                                Sha1:   854c8b173575abe5b2da21b079276788c31149ae

                                                Sha256: cef043ceda82b48795b26c0873caaeebbc5bbe7c3aa3d1bfd9339dd7010a208f

                                        
                                            GET /wp-content/plugins/email-subscribers/widget/es-widget-customize.js HTTP/1.1 

                                        
                                            
Host: www.lyca-mobile.no

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 

                                        
                                            
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin

                                         3.120.194.163

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/javascript

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Access-Control-Allow-Origin: * 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Thu, 20 Oct 2022 17:08:44 GMT 

                                        
                                            
Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT 

                                        
                                            
Server: Apache 

                                        
                                            
Strict-Transport-Security: max-age=300; includeSubdomains; 

                                        
                                            
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
X-XSS-Protection: 1; mode=block 

                                        
                                            
Content-Length: 1657 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text

                                                Size:   1657

                                                Md5:    e5c46c336e35e9bd8dbf55e4d0fc96c4

                                                Sha1:   e4c2bc6c99aade340b1c1484096c79a970b3f019

                                                Sha256: 544db6899780bebc6a30b6e86f3c89023f2b67b9ad9509258739b5005d16c000

                                        
                                            GET /gtm.js?id=GTM-PNQZL82 HTTP/1.1 

                                        
                                            
Host: www.googletagmanager.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         142.250.74.168

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript; charset=UTF-8

                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
access-control-allow-credentials: true 

                                        
                                            
access-control-allow-headers: Cache-Control 

                                        
                                            
content-encoding: br 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
date: Thu, 20 Oct 2022 17:08:44 GMT 

                                        
                                            
expires: Thu, 20 Oct 2022 17:08:44 GMT 

                                        
                                            
cache-control: private, max-age=900 

                                        
                                            
last-modified: Thu, 20 Oct 2022 16:13:57 GMT 

                                        
                                            
strict-transport-security: max-age=31536000; includeSubDomains 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
server: Google Tag Manager 

                                        
                                            
content-length: 88281 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  Unicode text, UTF-8 text, with very long lines (40170)

                                                Size:   88281

                                                Md5:    ad205fcd24aceea65ca119ac455815ba

                                                Sha1:   68a3f4a4a1ae6f3cf0de0581a6373e8ed303aabb

                                                Sha256: d36a1a0852c5c2a9849cba8e2b639de7575489644365d699f25577e1c9ed9c3f

                                        
                                            GET /wp-content/themes/Divi-child/js/forget-password.js HTTP/1.1 

                                        
                                            
Host: www.lyca-mobile.no

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 

                                        
                                            
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin

                                         3.120.194.163

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/javascript

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Access-Control-Allow-Origin: * 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Thu, 20 Oct 2022 17:08:44 GMT 

                                        
                                            
Last-Modified: Thu, 05 May 2022 06:42:29 GMT 

                                        
                                            
Server: Apache 

                                        
                                            
Strict-Transport-Security: max-age=300; includeSubdomains; 

                                        
                                            
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
X-XSS-Protection: 1; mode=block 

                                        
                                            
Content-Length: 1287 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (359)

                                                Size:   1287

                                                Md5:    d9496518c9ca0e9e5de95991baffb89f

                                                Sha1:   175543365d682ab41f7ec04640a5bd7a49312998

                                                Sha256: d224f7efdd43321dbd29ab5d128a5ab30e8eaca50879978ddbdb68a85647dafa

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.sca1b.amazontrust.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         143.204.42.165

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Content-Length: 471 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Cache-Control: max-age=93913 

                                        
                                            
Date: Thu, 20 Oct 2022 17:08:43 GMT 

                                        
                                            
Etag: "63504ac3-1d7" 

                                        
                                            
Expires: Fri, 21 Oct 2022 19:13:56 GMT 

                                        
                                            
Last-Modified: Wed, 19 Oct 2022 19:06:43 GMT 

                                        
                                            
Server: ECS (nyb/1D2E) 

                                        
                                            
X-Cache: Miss from cloudfront 

                                        
                                            
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: VOFE0mXHneK4ByDD1I5M6yFGL4C0cQiNvMx2S55_nM1CNxD3fpUvWg== 

                                        
                                            
Age: 433 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   471

                                                Md5:    e6a01bebd72b230bf70a80d20367c223

                                                Sha1:   b2b72df19e658a2663feadf4052c6b1f4ac039ab

                                                Sha256: b37d22ff995a63151c86f04c0967c8a254a99379d7b688c155cf13064fdfc333

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Thu, 20 Oct 2022 17:08:44 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    13b2ffd04752d468f707090604f6ed1c

                                                Sha1:   94de24b43698a598b060edea68a4b1b5c6bf9879

                                                Sha256: 98f0ad0db175ed53ed6b048cc4427f902c148adc378d833dcb8cd89d59397aad

                                        
                                            GET /lycamobile-norway-website/lycamobile-nor-cms/wp-content/uploads/2018/08/30120503/germ-one.svg HTTP/1.1 

                                        
                                            
Host: s3-eu-central-1.amazonaws.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://d3uayxmzbnco7f.cloudfront.net/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         52.219.171.133

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/svg+xml

                                        

                                        
                                            
x-amz-id-2: DdakO7b6Ll+0/njYOoD89QhQexOiMYWWdmtoKXJpcibZ7e/AQLsKbFmCMXh7Kgw2DPTjfx1EINo= 

                                        
                                            
x-amz-request-id: RZ3E3BQGZQQPQRDR 

                                        
                                            
Date: Thu, 20 Oct 2022 17:08:45 GMT 

                                        
                                            
Last-Modified: Thu, 30 Aug 2018 12:03:58 GMT 

                                        
                                            
ETag: "27398d9974a03682bca55a5d1c83cfc0" 

                                        
                                            
Cache-Control: max-age=31536000 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Expires: Fri, 30 Aug 2019 12:05:03 GMT 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 2016 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text

                                                Size:   2016

                                                Md5:    27398d9974a03682bca55a5d1c83cfc0

                                                Sha1:   011509bac7ec598f0ba6ff215d92487fc8965bac

                                                Sha256: 28a2f89175ec3599ef375767ea6996f5bb73d38e5a54025deb7f0370505c382f

                                        
                                            GET /wp-content/themes/Divi-child/fonts/RobotoCondensed-Bold.ttf HTTP/1.1 

                                        
                                            
Host: d3uayxmzbnco7f.cloudfront.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: https://www.lyca-mobile.no 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://d3uayxmzbnco7f.cloudfront.net/ 

                                        
                                            
Sec-Fetch-Dest: font 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         143.204.42.74

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/vnd.ms-opentype

                                        

                                        
                                            
Content-Length: 169800 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Access-Control-Allow-Origin: * 

                                        
                                            
Access-Control-Allow-Methods: GET, HEAD 

                                        
                                            
Access-Control-Max-Age: 3000 

                                        
                                            
Last-Modified: Tue, 27 Aug 2019 08:27:32 GMT 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Date: Thu, 20 Oct 2022 07:14:18 GMT 

                                        
                                            
Cache-Control: 2592000 

                                        
                                            
ETag: "36b5da0333389306669655a13f2209ad" 

                                        
                                            
Vary: Accept-Encoding,Origin 

                                        
                                            
X-Cache: Hit from cloudfront 

                                        
                                            
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: nYSZp_tKB-hwrwdNp5iGTY3qVc9mEg08cff9amSc87QJfahofIyMzw== 

                                        
                                            
Age: 35667 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  TrueType Font data, 18 tables, 1st "GDEF", 26 names, Macintosh, Copyright 2011 Google Inc. All Rights Reserved.Roboto CondensedBoldRoboto Condensed BoldVersion \012- data

                                                Size:   169800

                                                Md5:    36b5da0333389306669655a13f2209ad

                                                Sha1:   8354979a1c3d7911df925e3b57d8c99398d54020

                                                Sha256: 03b4e8042b9af4bf3349428fa734ed583f2d5d83287e1f42cf4d514c909146ef

                                        
                                            GET /wp-content/plugins/registration-portin-facility/vendor/jquery-ui-1.12.1.custom/jquery-ui.js HTTP/1.1 

                                        
                                            
Host: www.lyca-mobile.no

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 

                                        
                                            
Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin

                                         3.120.194.163

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/javascript

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Access-Control-Allow-Origin: * 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Thu, 20 Oct 2022 17:08:43 GMT 

                                        
                                            
Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT 

                                        
                                            
Server: Apache 

                                        
                                            
Strict-Transport-Security: max-age=300; includeSubdomains; 

                                        
                                            
Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
X-XSS-Protection: 1; mode=block 

                                        
                                            
transfer-encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   82920

                                                Md5:    87a9fcfa516cd7576d52480b0bb21dae

                                                Sha1:   7b2b31c6f1e91d53b76daad7fedea802592e4da4

                                                Sha256: c683211e591f2048ec4a840586e4f849894c8a57c147f23d7b5652d61c1260e2

                                        
                                            GET /lycamobilespain-website/lycamobile-es-cms/wp-content/uploads/2018/06/25105546/activate-your-sim.svg HTTP/1.1 

                                        
                                            
Host: s3-eu-central-1.amazonaws.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://d3uayxmzbnco7f.cloudfront.net/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         52.219.171.133

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/svg+xml

                                        

                                        
                                            
x-amz-id-2: +wO9pcO88wZ9D2nUYaLekT/afBTgXA2+tZezUjZ0btz5irMaIOmnqPn1s5fqyeFbsdYvBFKFCcs= 

                                        
                                            
x-amz-request-id: RZ3CKCNK6MT756FH 

                                        
                                            
Date: Thu, 20 Oct 2022 17:08:45 GMT 

                                        
                                            
Last-Modified: Mon, 16 Jul 2018 16:00:42 GMT 

                                        
                                            
ETag: "f6081e075c11d4ee9be3b614cdcab433" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 1914 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1914), with no line terminators

                                                Size:   1914

                                                Md5:    f6081e075c11d4ee9be3b614cdcab433

                                                Sha1:   5b46fc85e5698f59567f0446251f52e1207e8d72

                                                Sha256: 6369d8666187a0119acd2ad3f3bff8472f2cc720649cfa8966fc23719078dd39

                                        
                                            GET /wp-content/themes/Divi-child/img/faq.svg HTTP/1.1 

                                        
                                            
Host: d3uayxmzbnco7f.cloudfront.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/style.css 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin

                                         143.204.42.74

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/svg+xml

                                        

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Last-Modified: Tue, 27 Aug 2019 08:27:36 GMT 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Date: Thu, 20 Oct 2022 00:26:24 GMT 

                                        
                                            
Cache-Control: 2592000 

                                        
                                            
ETag: W/"6f426cc5e8b051ff22516894f385ff7b" 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
X-Cache: Hit from cloudfront 

                                        
                                            
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: G8fCTRSFQRa7q7jAsotiorh_iMZfqxuw6T2Jdkk35uc80aZtVx6XMg== 

                                        
                                            
Age: 60141 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text

                                                Size:   785

                                                Md5:    b97c7e4122996f575e68c944d87095d8

                                                Sha1:   d8a4695fe27064b95e4918099aaa3c2be1821f32

                                                Sha256: 42ab849ec5e04c9bad98c11a45f2363492238778f29a64b0a9dc5896dcc90892

                                        
                                            GET /wp-content/themes/Divi-child/img/mobile-settings.svg HTTP/1.1 

                                        
                                            
Host: d3uayxmzbnco7f.cloudfront.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/style.css 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin

                                         143.204.42.74

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/svg+xml

                                        

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Date: Thu, 20 Oct 2022 00:26:24 GMT 

                                        
                                            
Last-Modified: Tue, 27 Aug 2019 08:27:37 GMT

URL	rouonixon.com/4/4981334/
IP	139.45.197.238 (United Kingdom)
ASN	#9002 RETN Limited
UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed	2022-10-20 17:08:50 UTC
Status	Loading report..
IDS alerts	0
Blocklist alert	4
urlquery alerts	No alerts detected
Tags	None

Request	Response
GET /4/4981334/ HTTP/1.1 Host: rouonixon.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: rouonixon.com/4/4981334/ FQDN: rouonixon.com IP: 139.45.197.238 HASH: bc7f0aad8c80eac9695e5c1a98f780a13f8fba31c1c5a08e279d42b791cab67a 139.45.197.238 HTTP/1.1 200 OK Content-Type: text/html; charset=utf8 Server: nginx Date: Thu, 20 Oct 2022 17:08:39 GMT Transfer-Encoding: chunked Connection: keep-alive X-Trace-Id: 4256def1fc0140ce693343fea23baed0 Link: <https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://my.rtmark.net>; rel="preconnect dns-prefetch" Access-Control-Allow-Credentials: true Access-Control-Max-Age: 86400 Timing-Allow-Origin: * Set-Cookie: OAID=13ce3c27554a4fd0a06bdd5822f223e4; expires=Fri, 20 Oct 2023 17:08:39 GMT; path=/ oaidts=1666285719; expires=Fri, 20 Oct 2023 17:08:39 GMT; path=/ syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT Pragma: no-cache, no-cache Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0 Expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT Access-Control-Allow-Origin: , Access-Control-Allow-Methods: GET, POST, OPTIONS, POST, GET, OPTIONS, PUT, DELETE Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, Accept, Content-Type, Content-Length, Accept-Encoding Content-Encoding: gzip --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5406) Size: 2933 Md5: 0ba397ac972064edb48fd416d54e7971 Sha1: e2f75a399e82319f6d99abd741abf5187fdfce1c Sha256: bc7f0aad8c80eac9695e5c1a98f780a13f8fba31c1c5a08e279d42b791cab67a
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 01f6721f2674f54662fff590fdf7247cc8c58a3f84906cae75527fb7b6dd2436 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "01F6721F2674F54662FFF590FDF7247CC8C58A3F84906CAE75527FB7B6DD2436" Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4644 Expires: Thu, 20 Oct 2022 18:26:03 GMT Date: Thu, 20 Oct 2022 17:08:39 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 24a97183f836954e0f05c4dc794ff4d1 Sha1: 52778bbe39b9f736c16b5798575d1d96607ce9d0 Sha256: 01f6721f2674f54662fff590fdf7247cc8c58a3f84906cae75527fb7b6dd2436
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/ FQDN: firefox.settings.services.mozilla.com IP: 143.204.55.115 HASH: c923ed2539f4ce9f4d43743c402fbb2060a52a4cbedbf14c5f5742ab718073d6 143.204.55.115 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 939 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Content-Type, Alert, Content-Length, Retry-After, Backoff Cache-Control: max-age=3600 Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Date: Thu, 20 Oct 2022 16:51:50 GMT Expires: Thu, 20 Oct 2022 17:24:51 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff X-Cache: Hit from cloudfront Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: Bqzc5TNKME3YqMMp3w08PN1q7uf96cyrWanA2RWipEV3vk29Y09Qjw== Age: 1009 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: bdb8b66c705a7b996496d780f50c00b5 Sha1: 403ae92039fcc933870f51f913f78ccaf9652256 Sha256: c923ed2539f4ce9f4d43743c402fbb2060a52a4cbedbf14c5f5742ab718073d6
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 22dfbec34834914ffd13a3bee717dbf695450c05a44949bb691e39d254e39665 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "22DFBEC34834914FFD13A3BEE717DBF695450C05A44949BB691E39D254E39665" Last-Modified: Wed, 19 Oct 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6346 Expires: Thu, 20 Oct 2022 18:54:25 GMT Date: Thu, 20 Oct 2022 17:08:39 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: e41c85816a32bf30e54a8993fcd0406f Sha1: 35013fb83966783145f1439eb7e949beefae4cf8 Sha256: 22dfbec34834914ffd13a3bee717dbf695450c05a44949bb691e39d254e39665
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: content-signature-2.cdn.mozilla.net/chains/remote-setti (...) FQDN: content-signature-2.cdn.mozilla.net IP: 34.160.144.191 HASH: 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78 34.160.144.191 HTTP/2 200 OK content-type: binary/octet-stream x-amz-id-2: HVRNQHA8TnnqjSEdchqGqoF1MXnkGoI9uf1qV+dn5bVBE92pWAgO51ECBDaRomFP189OT521xXk= x-amz-request-id: ACVP7E72279ZJ2AQ content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Thu, 20 Oct 2022 16:36:49 GMT age: 1910 last-modified: Fri, 30 Sep 2022 18:50:55 GMT etag: "67d5a988edcda47bc3b3b3f65d32b4b6" cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 67d5a988edcda47bc3b3b3f65d32b4b6 Sha1: d4f0e0da8b3690cc7da925026d3414b68c7d954f Sha256: 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: contile.services.mozilla.com/v1/tiles FQDN: contile.services.mozilla.com IP: 34.117.237.239 HASH: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 34.117.237.239 HTTP/2 200 OK content-type: application/json server: nginx date: Thu, 20 Oct 2022 17:08:39 GMT content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /favicon.ico HTTP/1.1 Host: rouonixon.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://rouonixon.com/4/4981334/ Cookie: OAID=13ce3c27554a4fd0a06bdd5822f223e4; oaidts=1666285719	URL: rouonixon.com/favicon.ico FQDN: rouonixon.com IP: 139.45.197.238 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 139.45.197.238 HTTP/1.1 204 No Content Server: nginx Date: Thu, 20 Oct 2022 17:08:39 GMT Connection: keep-alive Expires: Thu, 31 Dec 2037 23:55:55 GMT Pragma: public Cache-Control: max-age=315360000, public, must-revalidate, proxy-revalidate --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.sectigo.com/ FQDN: ocsp.sectigo.com IP: 172.64.155.188 HASH: 5f0d328ff3c1a099fc8a405c0ef33168dbdb6fdec93d0db8ea9c0b7795ad7e34 172.64.155.188 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 20 Oct 2022 17:08:39 GMT Content-Length: 471 Connection: keep-alive Last-Modified: Mon, 17 Oct 2022 06:25:19 GMT Expires: Mon, 24 Oct 2022 06:25:18 GMT Etag: "ee071d908b0d2e32f05c1f82ccf7c620dc4e8015" Cache-Control: max-age=306398,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb3 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 75d35b530bb2b518-OSL --- Additional Info --- Magic: data Size: 471 Md5: 82571dc3b59726a8e88def1043dd5dc2 Sha1: ee071d908b0d2e32f05c1f82ccf7c620dc4e8015 Sha256: 5f0d328ff3c1a099fc8a405c0ef33168dbdb6fdec93d0db8ea9c0b7795ad7e34
GET /img.gif?f=merge&userId=13ce3c27554a4fd0a06bdd5822f223e4 HTTP/1.1 Host: my.rtmark.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://rouonixon.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: my.rtmark.net/img.gif?f=merge&userId=13ce3c27554a4fd0a0 (...) FQDN: my.rtmark.net IP: 139.45.195.8 HASH: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49 139.45.195.8 HTTP/2 200 OK content-type: image/gif server: nginx date: Thu, 20 Oct 2022 17:08:39 GMT content-length: 43 access-control-allow-origin: * access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token access-control-expose-headers: Authorization access-control-allow-credentials: true set-cookie: ID=13ce3c27554a4fd0a06bdd5822f223e4; expires=Fri, 20 Oct 2023 17:08:39 GMT; secure; SameSite=None strict-transport-security: max-age=1 x-content-type-options: nosniff timing-allow-origin: , X-Firefox-Spdy: h2 --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 43 Md5: b4491705564909da7f9eaf749dbbfbb1 Sha1: 279315d507855c6a4351e1e2c2f39dd9cd2fccd8 Sha256: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
POST /?z=4981334&syncedCookie=true&rhd=false HTTP/1.1 Host: rouonixon.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/x-www-form-urlencoded Content-Length: 427 Origin: http://rouonixon.com Connection: keep-alive Referer: http://rouonixon.com/afu.php?zoneid=4981334&var=4981334&rid=ksX-wKK1z8yLZCaWKyzJyw%3D%3D&rhd=false Cookie: OAID=13ce3c27554a4fd0a06bdd5822f223e4; oaidts=1666285719 Upgrade-Insecure-Requests: 1	URL: rouonixon.com/?z=4981334&syncedCookie=true&rhd=false FQDN: rouonixon.com IP: 139.45.197.238 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 139.45.197.238 HTTP/1.1 302 Found Server: nginx Date: Thu, 20 Oct 2022 17:08:39 GMT Content-Length: 0 Connection: keep-alive X-Trace-Id: 0896003dbe17aee81340240af6e22582 Link: <https://toapodazoay.com>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch" Referrer-Policy: no-referrer Location: https://toapodazoay.com/?l=qCqekRDLtEBTXwP&s=607008904517522140&z=4981334&g=NO&svar=1666285719&ba=0&dm=0&ep=0&vi=0&vo=0&i18db=0&tr=default&svar=1666285719&ssk=2306c96bceed8427e386aebc792b3c47&svarok=1&b=79056&oaid=13ce3c27554a4fd0a06bdd5822f223e4&rdk=rk3 Access-Control-Allow-Origin: http://rouonixon.com Access-Control-Allow-Credentials: true Access-Control-Allow-Methods: GET, POST, OPTIONS Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding Access-Control-Max-Age: 86400 Pragma: no-cache Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0 Expires: Tue, 11 Jan 1994 10:00:00 GMT Set-Cookie: OAID=13ce3c27554a4fd0a06bdd5822f223e4; expires=Fri, 20 Oct 2023 17:08:39 GMT; path=/ oaidts=1666285719; expires=Fri, 20 Oct 2023 17:08:39 GMT; path=/ syncedCookie=true; expires=Thu, 27 Oct 2022 17:08:39 GMT; path=/ Strict-Transport-Security: max-age=1 X-Content-Type-Options: nosniff Timing-Allow-Origin: , --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: dc01475d4dc21a1cae229be2208a845c23bf05462f559f8a70dd41197043e389 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "DC01475D4DC21A1CAE229BE2208A845C23BF05462F559F8A70DD41197043E389" Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10480 Expires: Thu, 20 Oct 2022 20:03:19 GMT Date: Thu, 20 Oct 2022 17:08:39 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 7d93d691015f929a758d5fc73fb40be7 Sha1: 05cc32b2d1a176c16f8f95b45925f6923277dda4 Sha256: dc01475d4dc21a1cae229be2208a845c23bf05462f559f8a70dd41197043e389
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/buckets/main/c (...) FQDN: firefox.settings.services.mozilla.com IP: 143.204.55.115 HASH: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 143.204.55.115 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 329 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff Cache-Control: max-age=3600 Date: Thu, 20 Oct 2022 16:43:40 GMT Expires: Thu, 20 Oct 2022 17:24:35 GMT ETag: "1648230346554" X-Cache: Hit from cloudfront Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: 9fyMDaXHA6Phld40mPFDBSkDVzSm8Ixy-e7ERNQUe0aneVuo5y3Tzw== Age: 1500 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 75ad68ed1b06fc9f09c28e134098714184eba8cfc125e77b6d885684a5a8756d 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "75AD68ED1B06FC9F09C28E134098714184EBA8CFC125E77B6D885684A5A8756D" Last-Modified: Wed, 19 Oct 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6380 Expires: Thu, 20 Oct 2022 18:55:00 GMT Date: Thu, 20 Oct 2022 17:08:40 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 0d330f518497c846d786486092f3d324 Sha1: 862c837e14f192cd373af5b7bb46bf6767123fda Sha256: 75ad68ed1b06fc9f09c28e134098714184eba8cfc125e77b6d885684a5a8756d
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 23d4ec3aeab3c9e3c833c285ec80fd3a8e9a9b644b47d79f550626511be04ee2 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "23D4EC3AEAB3C9E3C833C285EC80FD3A8E9A9B644B47D79F550626511BE04EE2" Last-Modified: Wed, 19 Oct 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=20355 Expires: Thu, 20 Oct 2022 22:47:55 GMT Date: Thu, 20 Oct 2022 17:08:40 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 12fbe9239c0ee5c4fb3a183db05a5ecc Sha1: 5f6847180e25dfe5e7cf7ddde9834f9cbde135ef Sha256: 23d4ec3aeab3c9e3c833c285ec80fd3a8e9a9b644b47d79f550626511be04ee2
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 1edffa6a320210fccbd0e5fa6dbdaa45561678a75a66639985f02791c8283b40 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 4669 Cache-Control: max-age=144955 Date: Thu, 20 Oct 2022 17:08:40 GMT Etag: "63510196-1d7" Expires: Sat, 22 Oct 2022 09:24:35 GMT Last-Modified: Thu, 20 Oct 2022 08:06:46 GMT Server: ECS (ska/F70F) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: a5dd4f71f4ddd5be9201466ed7a6c423 Sha1: 1d0832fb6e227d42137d319f728c8bc1414c816f Sha256: 1edffa6a320210fccbd0e5fa6dbdaa45561678a75a66639985f02791c8283b40
GET /vctx?t=56193 HTTP/1.1 Host: unphionetor.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://toapodazoay.com Connection: keep-alive Referer: https://toapodazoay.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: unphionetor.com/vctx?t=56193 FQDN: unphionetor.com IP: 139.45.197.236 HASH: d90f986a0a4f15333822af516a6b17c801ae508d1eead9c4da39b0497117f0db 139.45.197.236 HTTP/2 200 OK content-type: text/plain; charset=utf-8 server: nginx date: Thu, 20 Oct 2022 17:08:40 GMT content-length: 72 access-control-allow-origin: https://toapodazoay.com access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token access-control-expose-headers: Authorization access-control-allow-credentials: true pragma: no-cache cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0 expires: Tue, 11 Jan 1994 10:00:00 GMT x-trace-id: 7de936cc23c89dc9a922a0ac22971e19 set-cookie: PRIT[56193]=; expires=Tue, 10 Nov 2009 23:00:00 GMT strict-transport-security: max-age=1 x-content-type-options: nosniff timing-allow-origin: , X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text Size: 72 Md5: 5fad1bb26840b88b000b65aae19ef02c Sha1: 6720f58b1849dd117a411b2d85d9bb3de6eaa931 Sha256: d90f986a0a4f15333822af516a6b17c801ae508d1eead9c4da39b0497117f0db Alerts: Blocklists: - quad9: Sinkholed
GET /favicon.ico HTTP/1.1 Host: toapodazoay.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://toapodazoay.com/?rzi=4981334&rsz=4981334&rid= Cookie: reverse=1yRVuqgN7wIp8Wq2M097hlr0Ysnm9y7ztDonxynFnKs Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: toapodazoay.com/favicon.ico FQDN: toapodazoay.com IP: 139.45.197.155 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 139.45.197.155 HTTP/2 204 No Content server: nginx date: Thu, 20 Oct 2022 17:08:40 GMT strict-transport-security: max-age=60 x-content-type-options: nosniff X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /vbl?t=56193&bid=79056&aid=607008904517522140 HTTP/1.1 Host: unphionetor.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://toapodazoay.com Connection: keep-alive Referer: https://toapodazoay.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0 TE: trailers	URL: unphionetor.com/vbl?t=56193&bid=79056&aid=607008904517522140 FQDN: unphionetor.com IP: 139.45.197.236 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 139.45.197.236 HTTP/2 204 No Content server: nginx date: Thu, 20 Oct 2022 17:08:40 GMT access-control-allow-origin: https://toapodazoay.com access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token access-control-expose-headers: Authorization access-control-allow-credentials: true pragma: no-cache cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0 expires: Tue, 11 Jan 1994 10:00:00 GMT x-trace-id: e0ac882bd09fae7df9b26ef6b20e2cbd strict-transport-security: max-age=1 x-content-type-options: nosniff timing-allow-origin: , X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Alerts: Blocklists: - quad9: Sinkholed
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: Z3DWXZEu3vrM+qQq+5kLFA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	URL: push.services.mozilla.com/ FQDN: push.services.mozilla.com IP: 54.191.222.112 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 54.191.222.112 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: EHGlI8JE+TT3SIId/fFbLx9Ty0A= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /afu.php?id=792658&rt=1 HTTP/1.1 Host: go.ad2upapp.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: go.ad2upapp.com/afu.php?id=792658&rt=1 FQDN: go.ad2upapp.com IP: 139.45.197.237 HASH: 753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0 139.45.197.237 HTTP/1.1 302 Moved Temporarily Content-Type: text/html Server: nginx Date: Thu, 20 Oct 2022 17:08:41 GMT Content-Length: 138 Connection: keep-alive Location: http://go.deliverymodo.com/afu.php?id=792658&rt=1 Strict-Transport-Security: max-age=1 X-Content-Type-Options: nosniff Timing-Allow-Origin: * --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size: 138 Md5: aff950cab4c0265e21d401db15f1026d Sha1: f03e18461817f7a6546c8bf8fa8d686d7e30aca0 Sha256: 753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0
GET /afu.php?id=792658&rt=1 HTTP/1.1 Host: go.deliverymodo.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: go.deliverymodo.com/afu.php?id=792658&rt=1 FQDN: go.deliverymodo.com IP: 139.45.197.236 HASH: 75e7db7c5ba29c4617c9f9f5d50352a67a5ba703f4efc22aface3f8df93cbfcd 139.45.197.236 HTTP/1.1 200 OK Content-Type: text/html; charset=utf8 Server: nginx Date: Thu, 20 Oct 2022 17:08:41 GMT Transfer-Encoding: chunked Connection: keep-alive X-Trace-Id: 5f74dfcf3b21b28cfe773889c6f0ef06 Link: <https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://my.rtmark.net>; rel="preconnect dns-prefetch", <https://www.lyca-mobile.no>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch" Access-Control-Allow-Origin: * Access-Control-Allow-Credentials: true Access-Control-Allow-Methods: GET, POST, OPTIONS Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding Access-Control-Max-Age: 86400 Pragma: no-cache Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0 Expires: Tue, 11 Jan 1994 10:00:00 GMT Set-Cookie: OAID=37a7e3f8a03942b6bb589c34cadb152f; expires=Fri, 20 Oct 2023 17:08:41 GMT; path=/ oaidts=1666285721; expires=Fri, 20 Oct 2023 17:08:41 GMT; path=/ syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT Strict-Transport-Security: max-age=1 X-Content-Type-Options: nosniff Timing-Allow-Origin: , Content-Encoding: gzip --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size: 737 Md5: aed6a8a42cbaad11d240a0289f290082 Sha1: e150cf9f69fb80e3a2d25d0b009a5d8e38275839 Sha256: 75e7db7c5ba29c4617c9f9f5d50352a67a5ba703f4efc22aface3f8df93cbfcd
POST /vb?t=56193&bid=79056&aid=607008904517522140&tp=2016 HTTP/1.1 Host: unphionetor.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://toapodazoay.com Connection: keep-alive Referer: https://toapodazoay.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0 TE: trailers	URL: unphionetor.com/vb?t=56193&bid=79056&aid=60700890451752 (...) FQDN: unphionetor.com IP: 139.45.197.236 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 139.45.197.236 HTTP/2 204 No Content server: nginx date: Thu, 20 Oct 2022 17:08:41 GMT access-control-allow-origin: https://toapodazoay.com access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token access-control-expose-headers: Authorization access-control-allow-credentials: true pragma: no-cache cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0 expires: Tue, 11 Jan 1994 10:00:00 GMT x-trace-id: ab3ad679ca4cb4706c2d01f2ac5c4b3d strict-transport-security: max-age=1 x-content-type-options: nosniff timing-allow-origin: , X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Alerts: Blocklists: - quad9: Sinkholed
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1" Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3217 Expires: Thu, 20 Oct 2022 18:02:18 GMT Date: Thu, 20 Oct 2022 17:08:41 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: dcbf142b7958e83961fc03b9676d1fc6 Sha1: 930f67e486f95de63450b6d73d1957aac204fb43 Sha256: 9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1" Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3217 Expires: Thu, 20 Oct 2022 18:02:18 GMT Date: Thu, 20 Oct 2022 17:08:41 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: dcbf142b7958e83961fc03b9676d1fc6 Sha1: 930f67e486f95de63450b6d73d1957aac204fb43 Sha256: 9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1" Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3217 Expires: Thu, 20 Oct 2022 18:02:18 GMT Date: Thu, 20 Oct 2022 17:08:41 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: dcbf142b7958e83961fc03b9676d1fc6 Sha1: 930f67e486f95de63450b6d73d1957aac204fb43 Sha256: 9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1" Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3217 Expires: Thu, 20 Oct 2022 18:02:18 GMT Date: Thu, 20 Oct 2022 17:08:41 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: dcbf142b7958e83961fc03b9676d1fc6 Sha1: 930f67e486f95de63450b6d73d1957aac204fb43 Sha256: 9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1" Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3217 Expires: Thu, 20 Oct 2022 18:02:18 GMT Date: Thu, 20 Oct 2022 17:08:41 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: dcbf142b7958e83961fc03b9676d1fc6 Sha1: 930f67e486f95de63450b6d73d1957aac204fb43 Sha256: 9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6da0eaa5-24ec-42bb-8269-d235104e844f.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 1309e9dcb36858de70ef82900ec1ad429fbb795ddb9823fd1c290b18f4e2c1a3 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 9623 x-amzn-requestid: b3d5bd8d-111b-4d50-9720-71f72c62f860 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Z7Q8oFLRIAMFrEw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6347951d-613e5e810f420e4c0ba3e6f6;Sampled=0 x-amzn-remapped-date: Thu, 13 Oct 2022 04:33:33 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: OA9iHADyiam26eo88jYDECifkqeBaTjsuoeHD2YOy0aZJZEGhG-xow== via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google date: Thu, 20 Oct 2022 13:19:23 GMT age: 13758 etag: "ce0f78803a81b1c6b3067c78b75bc6f1d5a7f7c1" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 9623 Md5: 440811a19987ddee099df289d9b61e79 Sha1: ce0f78803a81b1c6b3067c78b75bc6f1d5a7f7c1 Sha256: 1309e9dcb36858de70ef82900ec1ad429fbb795ddb9823fd1c290b18f4e2c1a3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F927829d0-802f-4d0d-b566-d5875b574c9a.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 34966351275d61a81528a5b5eedef55878d9f7b9c0af311ead9471dda8a02e41 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 7098 x-amzn-requestid: 2f4f7eac-181e-4fe2-b3de-5b22e9e9b9ef x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: aRYSPGRMIAMFZAg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63506da7-42ed935836382b62301fc3e5;Sampled=0 x-amzn-remapped-date: Wed, 19 Oct 2022 21:35:35 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: JJm8noqjbY7Y8effNKjyVb5D_zbRTxuCTLFif9a5lZLcTPard05YZA== via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google date: Wed, 19 Oct 2022 21:53:58 GMT age: 69283 etag: "e94567c4fe3adade32f19c8c3053a486fe8c3ac9" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7098 Md5: 5fd91971508ef6f5985a0017dfcdd73e Sha1: e94567c4fe3adade32f19c8c3053a486fe8c3ac9 Sha256: 34966351275d61a81528a5b5eedef55878d9f7b9c0af311ead9471dda8a02e41
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F638eac9f-fba9-43ad-a54e-d70a9233253b.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 4cff326ed72c61a05f1150ac1a5423b006915bbb25dfaa11dadab2c24e71de1a 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 5566 x-amzn-requestid: 0eb4a0a4-9659-4c49-81d4-cd605eceed66 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: aRZKGEwzIAMFVbA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63506f0d-0bc0a25f4f5b1e893f448ae2;Sampled=0 x-amzn-remapped-date: Wed, 19 Oct 2022 21:41:33 GMT x-amz-cf-pop: SFO5-P2, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: HJ79GtM4BktNGSt8djSSWbAKtnICVZBOrIzKUg1mrJpV1j_xQqAMxQ== via: 1.1 c07670802688417c8b871124c547eb0a.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google date: Wed, 19 Oct 2022 21:54:06 GMT age: 69275 etag: "14207b4845fc4c2c72a18a77cbcbe5f50aa9056e" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 5566 Md5: 4b38fcf82dcb60f48ee2b0df158d2eb6 Sha1: 14207b4845fc4c2c72a18a77cbcbe5f50aa9056e Sha256: 4cff326ed72c61a05f1150ac1a5423b006915bbb25dfaa11dadab2c24e71de1a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1a95f4f-d066-4cb4-bb6a-392f3ed5c229.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: ab1d3690731963f85ede6cf6bedfb8b62ae1f93fafecc2cf343ea07bd4f2afce 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 13101 x-amzn-requestid: e10df8ba-d8f2-44c8-ad0f-bbda32020e0f x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: aRYBYF6noAMFthg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63506d3b-56538b97541830784f01f61f;Sampled=0 x-amzn-remapped-date: Wed, 19 Oct 2022 21:33:47 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: 9R7vli3BwVLfleTf2jeZc5YNDMDxM024T7nyXcIpE2-o8Ddff57Jmg== via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google date: Wed, 19 Oct 2022 21:44:56 GMT age: 69825 etag: "e008a1663c29616e83dccba105d7f6e2dbbb37dc" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 13101 Md5: e76755a16cf0bdb76d5e832c7b14af85 Sha1: e008a1663c29616e83dccba105d7f6e2dbbb37dc Sha256: ab1d3690731963f85ede6cf6bedfb8b62ae1f93fafecc2cf343ea07bd4f2afce
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1c50c7d-8321-4dac-aa20-04a81680db07.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 2499b2c4414108ed742986b90ca2a1b60c3fd65a82a78322031263650e935c7e 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 10554 x-amzn-requestid: 343fc462-3654-48cb-bb4f-0d0d54c07b58 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: aRX9REoMoAMF21g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63506d21-152a7b145b9fcb0e0a97db57;Sampled=0 x-amzn-remapped-date: Wed, 19 Oct 2022 21:33:21 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: 4b3RT-THlt6W7NHL9Tu35gWrOeJ1aNALztrgXSkSwdT-14ccmz7gtg== via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google date: Wed, 19 Oct 2022 21:49:35 GMT age: 69546 etag: "a8ba1a075a9c5501d043b9b14c45ed6bcd684e68" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 10554 Md5: 8ee7bd4412c0b0eb678b9d53b07bdd9a Sha1: a8ba1a075a9c5501d043b9b14c45ed6bcd684e68 Sha256: 2499b2c4414108ed742986b90ca2a1b60c3fd65a82a78322031263650e935c7e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab5d17f5-6084-45a5-9677-8ae8646d6ee1.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 7294e93d890b4c8eeb8383a67aac0be8b88cac5e0882865c9f38ade713157799 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 9607 x-amzn-requestid: 590b20a6-039c-4c25-a61a-5f579c5b31f2 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: aRZj6HZ7oAMFsSQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63506fb2-04b740c442ae735347b4e2c3;Sampled=0 x-amzn-remapped-date: Wed, 19 Oct 2022 21:44:18 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: bL5fVog2SuW8ZNt9a0ECc8jwcAELUBVo63LXPovdnIRxCRnsMWVvvQ== via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google date: Wed, 19 Oct 2022 21:46:27 GMT age: 69734 etag: "6b15c7d7abb9ff1cc040853401ad5a39f81c19a4" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 9607 Md5: 81216ad70664e969888ae7b13871fda0 Sha1: 6b15c7d7abb9ff1cc040853401ad5a39f81c19a4 Sha256: 7294e93d890b4c8eeb8383a67aac0be8b88cac5e0882865c9f38ade713157799
POST / HTTP/1.1 Host: ocsp.netsolssl.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.netsolssl.com/ FQDN: ocsp.netsolssl.com IP: 104.18.32.68 HASH: 9e0ffd9bb1dcb2e6ebdad78d4f4fff5cd172c21851e0453c01ac74b45955b197 104.18.32.68 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 20 Oct 2022 17:08:41 GMT Content-Length: 472 Connection: keep-alive Last-Modified: Thu, 20 Oct 2022 13:06:08 GMT Expires: Thu, 27 Oct 2022 13:06:07 GMT Etag: "9b5503f23b4bdd6ef58a00ba2395339ac4792272" Cache-Control: max-age=589645,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb2 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 75d35b61ac1db51b-OSL --- Additional Info --- Magic: data Size: 472 Md5: b864c384811bb4dd90a34e0c81cf9f35 Sha1: 9b5503f23b4bdd6ef58a00ba2395339ac4792272 Sha256: 9e0ffd9bb1dcb2e6ebdad78d4f4fff5cd172c21851e0453c01ac74b45955b197
GET /favicon.ico HTTP/1.1 Host: go.deliverymodo.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Cookie: OAID=37a7e3f8a03942b6bb589c34cadb152f; oaidts=1666285721	URL: go.deliverymodo.com/favicon.ico FQDN: go.deliverymodo.com IP: 139.45.197.236 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 139.45.197.236 HTTP/1.1 204 No Content Server: nginx Date: Thu, 20 Oct 2022 17:08:41 GMT Connection: keep-alive Expires: Thu, 31 Dec 2037 23:55:55 GMT Pragma: public Cache-Control: max-age=315360000, public, must-revalidate, proxy-revalidate --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.sectigo.com/ FQDN: ocsp.sectigo.com IP: 172.64.155.188 HASH: 5f0d328ff3c1a099fc8a405c0ef33168dbdb6fdec93d0db8ea9c0b7795ad7e34 172.64.155.188 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 20 Oct 2022 17:08:41 GMT Content-Length: 471 Connection: keep-alive Last-Modified: Mon, 17 Oct 2022 06:25:19 GMT Expires: Mon, 24 Oct 2022 06:25:18 GMT Etag: "ee071d908b0d2e32f05c1f82ccf7c620dc4e8015" Cache-Control: max-age=306396,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb2 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 75d35b61f94fb518-OSL --- Additional Info --- Magic: data Size: 471 Md5: 82571dc3b59726a8e88def1043dd5dc2 Sha1: ee071d908b0d2e32f05c1f82ccf7c620dc4e8015 Sha256: 5f0d328ff3c1a099fc8a405c0ef33168dbdb6fdec93d0db8ea9c0b7795ad7e34
POST /img.gif?f=merge&userId=37a7e3f8a03942b6bb589c34cadb152f HTTP/1.1 Host: my.rtmark.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0	URL: my.rtmark.net/img.gif?f=merge&userId=37a7e3f8a03942b6bb (...) FQDN: my.rtmark.net IP: 139.45.195.8 HASH: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49 139.45.195.8 HTTP/2 200 OK content-type: image/gif server: nginx date: Thu, 20 Oct 2022 17:08:41 GMT content-length: 43 access-control-allow-origin: null access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token access-control-expose-headers: Authorization access-control-allow-credentials: true set-cookie: ID=37a7e3f8a03942b6bb589c34cadb152f; expires=Fri, 20 Oct 2023 17:08:41 GMT; secure; SameSite=None strict-transport-security: max-age=1 x-content-type-options: nosniff timing-allow-origin: , X-Firefox-Spdy: h2 --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 43 Md5: b4491705564909da7f9eaf749dbbfbb1 Sha1: 279315d507855c6a4351e1e2c2f39dd9cd2fccd8 Sha256: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site	URL: www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=S (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 6d00eaf2c965c3d8abd0cd735c433605046fa0a0d6b2c4addd9a1e51d9a4f11c 3.120.194.163 HTTP/1.1 200 OK Content-Type: text/html; charset=UTF-8 Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:41 GMT Link: <https://www.lyca-mobile.no/nb/?p=170723>; rel=shortlink Server: Apache Set-Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; path=/; domain=.lyca-mobile.no; secure; HttpOnly;HttpOnly; Secure; SameSite=None;HttpOnly; Secure; SameSite=None;SameSite=None;Secure newsim_tab=0; expires=Thu, 20-Oct-2022 17:18:42 GMT; Max-Age=600; path=/;HttpOnly; Secure; SameSite=None;HttpOnly; Secure; SameSite=None;SameSite=None;Secure Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 32047 Connection: keep-alive --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1696), with CRLF, LF line terminators Size: 32047 Md5: 7ca95e5b3badc4c8d69d750438dbf8f2 Sha1: 7db55240d9b8639538606417adcb75a1699b218f Sha256: 6d00eaf2c965c3d8abd0cd735c433605046fa0a0d6b2c4addd9a1e51d9a4f11c
GET /wp-content/plugins/simple-sitemap/lib/assets/css/simple-sitemap.css HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/simple-sitemap/li (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: a67e5b0779241cd4c4d99b2b47e4ead0f0ce2cb2ab2a1fb5464d62f5a543dd3f 3.120.194.163 HTTP/1.1 200 OK Content-Type: text/css Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 1763 Connection: keep-alive --- Additional Info --- Magic: ASCII text Size: 1763 Md5: 999af40135d16a152caaee08d90f72d8 Sha1: 7462b3f3d77148eb3601c302b182ba74265def75 Sha256: a67e5b0779241cd4c4d99b2b47e4ead0f0ce2cb2ab2a1fb5464d62f5a543dd3f
GET /wp-content/plugins/custom-search-plugin/css/style.css HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/custom-search-plu (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 2a50c1b8ad7b97eea3b52d13f8623eeffe389262e3eccfb676eaacd15619345b 3.120.194.163 HTTP/1.1 200 OK Content-Type: text/css Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 251 Connection: keep-alive --- Additional Info --- Magic: ASCII text Size: 251 Md5: 90fe42aaed8e5c04b824b1ca3cf3ea34 Sha1: 737cfe50f07686fb94ca84b3e836ac7d85d425d9 Sha256: 2a50c1b8ad7b97eea3b52d13f8623eeffe389262e3eccfb676eaacd15619345b
GET /wp-content/themes/Divi-child/vendor/flat-icon/flaticon.css HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 653364905a7234231046bf7134bfb1d2f8f957e10463e74d636e4465bf1b8139 143.204.42.74 HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Tue, 27 Aug 2019 08:27:43 GMT Server: AmazonS3 Content-Encoding: gzip Date: Thu, 20 Oct 2022 00:26:23 GMT Cache-Control: 2592000 ETag: W/"944296da525e8552632efd1dc0fd0480" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: nOjlhei9FKhicUtArjN9z_4fybZdmIWlRL3gHyfnE4OSzIK6Vl0ltw== Age: 60141 --- Additional Info --- Magic: ASCII text, with very long lines (1000), with no line terminators Size: 417 Md5: 5e5c8838d3f45e076213445010a63eb8 Sha1: 6aedac1cb54fd087ea16c8bae11c0687bef29ce8 Sha256: 653364905a7234231046bf7134bfb1d2f8f957e10463e74d636e4465bf1b8139
GET /wp-content/themes/Divi-child/vendor/linear-icons/style.css HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 266f0f47e47b7112dd2e4eb5ace546dfb6ba3f33102ca84644ba73b916a84e8e 143.204.42.74 HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Tue, 27 Aug 2019 08:27:44 GMT Server: AmazonS3 Content-Encoding: gzip Date: Thu, 20 Oct 2022 00:26:23 GMT Cache-Control: 2592000 ETag: W/"e93b8e4cf5dc750d2d02a5b9d19f9706" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: myf2qD-DSmMuG6NyRG3NGEnjHPLhbHf6UkuwaBF5T6SkKuWbDlgxgA== Age: 60141 --- Additional Info --- Magic: ASCII text, with very long lines (7000), with no line terminators Size: 1594 Md5: 2c3db994977a8259ce017be02d597a5f Sha1: 628f1530806dc499872a67907a3b6c81215fcea8 Sha256: 266f0f47e47b7112dd2e4eb5ace546dfb6ba3f33102ca84644ba73b916a84e8e
GET /wp-includes/css/dist/block-library/style.css HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-includes/css/dist/bloc (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 061f638892d79ba288c543bfb22417de474fd538898931c0f126aad20a997964 143.204.42.74 HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:23 GMT Last-Modified: Thu, 06 Aug 2020 03:32:13 GMT ETag: W/"ff1e4526d778743bf4370b47ff17e7c7" Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: t3_qjoJVAus-UfsildlihgtQXol4SIVkgqgSj8cU-eY7sWn48CMvtQ== Age: 60141 --- Additional Info --- Magic: ASCII text Size: 9361 Md5: 2be7bee7ec368ffca87466bc157e2b3b Sha1: 6782fade3d3b2a2c417544a8635e032b43aee8c9 Sha256: 061f638892d79ba288c543bfb22417de474fd538898931c0f126aad20a997964
GET /wp-content/plugins/wpml-cms-nav/res/css/cms-navigation.css HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/wpml-cms-nav/res/ (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 9fb5a2a2bea5341dd17ec72403d66f0903278030092ae829fe6bb4e23e6af725 3.120.194.163 HTTP/1.1 200 OK Content-Type: text/css Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 645 Connection: keep-alive --- Additional Info --- Magic: ASCII text Size: 645 Md5: c98f02f1afd562a7288aa2dc828e6186 Sha1: d0f42b73794b0d3ffb9e3eb2d79218d14c40dc88 Sha256: 9fb5a2a2bea5341dd17ec72403d66f0903278030092ae829fe6bb4e23e6af725
GET /wp-content/themes/Divi-child/css/student-style.css HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 370ce3c5280f78beb793f8773f3f74b225a2e54f35449df02aa8e181a4842255 143.204.42.74 HTTP/1.1 200 OK Content-Type: text/css Content-Length: 966 Connection: keep-alive Last-Modified: Thu, 18 Nov 2021 11:11:57 GMT Accept-Ranges: bytes Server: AmazonS3 Date: Thu, 20 Oct 2022 08:14:48 GMT ETag: "64eaec02b035ad1628a7890becee905c" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: AoUaRSMmRsYQqu3kqGZP2_rWvq-x0j14GOWm2W6M03A5KJsfzZdcjg== Age: 32036 --- Additional Info --- Magic: ASCII text, with CR line terminators Size: 966 Md5: 64eaec02b035ad1628a7890becee905c Sha1: d9a7cd1dd7d3400c09e341e4bba580b80b0a41d9 Sha256: 370ce3c5280f78beb793f8773f3f74b225a2e54f35449df02aa8e181a4842255
GET /wp-content/themes/Divi-child/vendor/bootstrap/css/bootstrap.min.css HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 049efc7abd7c5e6b918167070e331016adce061c6ceb583dc40776b4317e9dbd 143.204.42.74 HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Tue, 27 Aug 2019 08:27:42 GMT Server: AmazonS3 Content-Encoding: gzip Date: Thu, 20 Oct 2022 00:26:23 GMT Cache-Control: 2592000 ETag: W/"ac9de5b47373547a27390517f13fe21a" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: 8M00B61F6Dj0Aa5iExMbiYRQ0qOpNcbeAXAVqzk6YkHff4mfVa8IUA== Age: 60141 --- Additional Info --- Magic: ASCII text, with very long lines (65371) Size: 19654 Md5: d8c8df5848a3ea1cfdd2ccb47289b476 Sha1: 1e50e49dc562803949b11b1ae4d4890ebd359549 Sha256: 049efc7abd7c5e6b918167070e331016adce061c6ceb583dc40776b4317e9dbd
GET /wp-content/themes/Divi-child/vendor/font-awesome/css/font-awesome.min.css HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 389946cb872b2df43495a8d161246b53d3153c5131039c68562256e39dce4cb2 143.204.42.74 HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 09:13:00 GMT Last-Modified: Tue, 27 Aug 2019 08:27:43 GMT ETag: W/"4f0c935c3631f777ea790a05a44c1744" Cache-Control: 2592000 Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: 8Ahnn-2Mp-kDwSPCrFxA-Z_6FM-a9HIi5pIRB5QkVK0Zf0q9jUqYGA== Age: 28544 --- Additional Info --- Magic: ASCII text, with very long lines (28877), with no line terminators Size: 6549 Md5: b1de1df73ae7be1caa0d5bcd05a51174 Sha1: dc031d576fe6505f0c8410156dc69bc8a6174bc6 Sha256: 389946cb872b2df43495a8d161246b53d3153c5131039c68562256e39dce4cb2
GET /wp-content/themes/Divi-child/my-account.css HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 242a4532fe2f0579adea21357e6302a5b62d50b32e1f8a6ef9f11fa7722174dc 143.204.42.74 HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Thu, 18 Nov 2021 11:11:57 GMT Server: AmazonS3 Content-Encoding: gzip Date: Thu, 20 Oct 2022 00:26:23 GMT ETag: W/"5e2d79452ec87ed86924ea2519c341ef" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: woEP2YnYxUsxRwNA8eN5jZkJGpWO16n9uY7HPqL_xxPWmEMQ56kSrg== Age: 60141 --- Additional Info --- Magic: ASCII text, with very long lines (12687) Size: 2728 Md5: d3ff672944c1aeaee7b472e5d9f40edc Sha1: 31a10749d5afe70dc04b53d5c35d8464c38bfda8 Sha256: 242a4532fe2f0579adea21357e6302a5b62d50b32e1f8a6ef9f11fa7722174dc
GET /wp-content/themes/Divi-child/vendor/line-awesome/css/line-awesome.min.css HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: c54c83365431d5b6d0983c165687586bbd597893156605ccb9100bb9b1533187 143.204.42.74 HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:23 GMT Last-Modified: Tue, 27 Aug 2019 08:27:44 GMT ETag: W/"4334c8c70998d81bde3e6765828811a6" Cache-Control: 2592000 Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: vQmUF99jc3PiRzCRGHpGPfY_aoDRhgHuKQtuyXTNSZ6iMJyx9OYL9g== Age: 60141 --- Additional Info --- Magic: ASCII text, with very long lines (27557) Size: 6036 Md5: c7bc010a6881e686dbb7f4ae2a373f2a Sha1: 1ce8da2a8a5f8ec1b74220d265cd4e216f8f8e6d Sha256: c54c83365431d5b6d0983c165687586bbd597893156605ccb9100bb9b1533187
GET /wp-content/themes/Divi-child/css/countries.css HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: bac09b87c13bdaafef307751aacfb1317808e6c32cd1e399d5d62a5cf6879873 143.204.42.74 HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Tue, 27 Aug 2019 08:27:32 GMT Server: AmazonS3 Content-Encoding: gzip Date: Thu, 20 Oct 2022 00:26:23 GMT Cache-Control: 2592000 ETag: W/"31ec7a36deac6eda43f22dd60a421a40" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: foVkp5W6hdcPh2vLO68SjZx0WBK7i5jf4PPVMbR2Ydt6Q9XwyRutrw== Age: 60141 --- Additional Info --- Magic: ASCII text, with very long lines (15687), with no line terminators Size: 1589 Md5: 004cec651aeec3fcf5a4fbbe9537c9cc Sha1: e963c396d4c87e92a793e62f377af8ab236ecad2 Sha256: bac09b87c13bdaafef307751aacfb1317808e6c32cd1e399d5d62a5cf6879873
GET /wp-content/themes/Divi/epanel/shortcodes/css/shortcodes.css HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi/ep (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: ddb710b587fafffec1e1fabe04ec3df3d119316925a8ff51703c5f3131759fbd 143.204.42.74 HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:23 GMT Last-Modified: Tue, 27 Aug 2019 08:27:49 GMT ETag: W/"ea1a16f72cd2c8d66fdf5e8924f78eee" Cache-Control: 2592000 Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: mbzmCP8CmCXDItmS8GbzSFJ6987XF3klK_R5Z1QckIVZzeHo95sX5Q== Age: 60141 --- Additional Info --- Magic: ASCII text, with very long lines (859) Size: 5814 Md5: 0b1eb8863b3746cc79bb9d83fdb7e161 Sha1: 2c150a9951c8b4e51744c6336f39a2bad61af34f Sha256: ddb710b587fafffec1e1fabe04ec3df3d119316925a8ff51703c5f3131759fbd
GET /wp-content/themes/Divi/epanel/shortcodes/css/shortcodes_responsive.css HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi/ep (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: dbceeae75dc6e2b92d179b238ef4ffbc2286bd84ea0309d6abd3f087309015aa 143.204.42.74 HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:23 GMT Last-Modified: Tue, 27 Aug 2019 08:27:49 GMT ETag: W/"58f7be607923d9296d5628a2d7469422" Cache-Control: 2592000 Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: LmvY_igCg8niB00ZNEYxRM-cyMhK1k_LQ3Lvwf-94Z-JDWMmHijnXA== Age: 60141 --- Additional Info --- Magic: ASCII text Size: 821 Md5: 39586c05ed4972bad19bfa5961faa77a Sha1: 492df4e0c5eba2050c7a2b1d1d95f713540ec22e Sha256: dbceeae75dc6e2b92d179b238ef4ffbc2286bd84ea0309d6abd3f087309015aa
GET /wp-content/themes/Divi/includes/builder/styles/magnific_popup.css HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi/in (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 1ea67cc171afff0f3d30c4b0befd142cf70724663962525ab509118cbf276c39 143.204.42.74 HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 07:46:48 GMT Last-Modified: Tue, 27 Aug 2019 08:27:54 GMT ETag: W/"6e30bbc36a055e4e39e3b1fe966ba0b2" Cache-Control: 2592000 Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: ueDHXcjRNI5V9QlPP5K8H_PzPXXIOh74wGuRJ8NotzohlMxQRkNesw== Age: 33716 --- Additional Info --- Magic: ASCII text, with very long lines (311) Size: 2053 Md5: 9e4a35dae8eae91a02a7fa5db27df3c6 Sha1: af4f210b764ac03ea41af15cae8eafb7923553bb Sha256: 1ea67cc171afff0f3d30c4b0befd142cf70724663962525ab509118cbf276c39
GET /wp-includes/js/jquery/jquery.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-includes/js/jquery/jqu (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: f47e452f043434a83263e9880ffb1be8d477e07fbb82cf9e743a37422bcf621c 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Thu, 06 Aug 2020 03:32:44 GMT Server: AmazonS3 Content-Encoding: gzip Date: Thu, 20 Oct 2022 00:24:08 GMT ETag: W/"49edccea2e7ba985cadc9ba0531cbed1" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: 5QST7hyuyXccv2vjG3anKCm-g1tMPpvqMfvZ91NQZoS7DhkZ96hB0w== Age: 60276 --- Additional Info --- Magic: ASCII text, with very long lines (31997) Size: 33723 Md5: e924b25fa783d6eafffed613d73c4f35 Sha1: f06062a28e08507a2b124898c72733a044ec7565 Sha256: f47e452f043434a83263e9880ffb1be8d477e07fbb82cf9e743a37422bcf621c
GET /wp-content/plugins/registration-portin-facility/vendor/jquery-ui-1.12.1.custom/jquery-ui.css HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/registration-port (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: a31c685f9330266e5b4a2fb4c7c6439f0550fefcdadebd2548f746387820359c 3.120.194.163 HTTP/1.1 200 OK Content-Type: text/css Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 8384 Connection: keep-alive --- Additional Info --- Magic: ASCII text, with very long lines (2363) Size: 8384 Md5: 211e9acb7b08468bf462f3cc35d58dba Sha1: 30b16e5f18fb53e5536e1dff154a4288dea94c41 Sha256: a31c685f9330266e5b4a2fb4c7c6439f0550fefcdadebd2548f746387820359c
GET /wp-content/plugins/email-subscribers/widget/es-widget.css HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/email-subscribers (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: a9316286d70257c135d2a0aacf0bf2bc6acba8c1b5e487c97086459c04849155 3.120.194.163 HTTP/1.1 200 OK Content-Type: text/css Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:19:16 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 150 Connection: keep-alive --- Additional Info --- Magic: ASCII text, with no line terminators Size: 150 Md5: 641533dacb82a11aa947513a4892de5a Sha1: b77427d8626d847a80a762456f98beb3e64764b1 Sha256: a9316286d70257c135d2a0aacf0bf2bc6acba8c1b5e487c97086459c04849155
GET /wp-content/plugins/wp-store-locator/css/styles.css HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/wp-store-locator/ (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 5d585c7bba79f48f5ceaca987c6b08fde3da899d8512e1bf13f81a747d8db56d 3.120.194.163 HTTP/1.1 200 OK Content-Type: text/css Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:25:57 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 4432 Connection: keep-alive --- Additional Info --- Magic: ASCII text Size: 4432 Md5: 29d83f16ddcd51bb2d8e29cfa6f0d970 Sha1: d8aa3982c0c288b37f78f81c34eabfd24bd6bf84 Sha256: 5d585c7bba79f48f5ceaca987c6b08fde3da899d8512e1bf13f81a747d8db56d
GET /wp-content/themes/Divi-child/style.css HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 2630570ec137f6d7560e0c72a57e86906a156a1f2752a06df39aa5c5d5151d82 143.204.42.74 HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:23 GMT Last-Modified: Fri, 15 Jul 2022 07:16:49 GMT ETag: W/"07571e83ac07033388dffa6b348bc459" Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: Lvk5CSDXV_DJCchFq0CnvD4YraPDRU6lAK-SXOaKiNaVRvF0AfrL_A== Age: 60141 --- Additional Info --- Magic: ASCII text, with very long lines (505) Size: 117747 Md5: b10017bb170699116a9bc886fbbc9b02 Sha1: 22fe134df4f5c796b65e0790367fec3a374b0e48 Sha256: 2630570ec137f6d7560e0c72a57e86906a156a1f2752a06df39aa5c5d5151d82
GET /wp-includes/js/jquery/jquery-migrate.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-includes/js/jquery/jqu (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: cd0322a464b8d11f747d0b908eba8a5e20d02f2ae72e4f5075b9c40522c43bb4 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:24 GMT Last-Modified: Thu, 06 Aug 2020 03:32:44 GMT ETag: W/"6c57b762589f13ea5b3579ca5e6c369b" Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: iqOVp5wvP7o9PJeN7YZJnAEs3k--OLjMXtopcoPHGo73rhADEfPBCQ== Age: 60140 --- Additional Info --- Magic: ASCII text Size: 7812 Md5: 76208e6235bb3633615f86e39be06a83 Sha1: 0e64293795f0f94a4180792aaf6b44321c1c08e0 Sha256: cd0322a464b8d11f747d0b908eba8a5e20d02f2ae72e4f5075b9c40522c43bb4
GET /wp-includes/js/jquery/ui/core.min.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-includes/js/jquery/ui/ (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: ef0cac6d41ec158c95903b585c5421f3c59e1677fe5943bdd50feb2288a2104f 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:24 GMT Last-Modified: Thu, 06 Aug 2020 03:32:47 GMT ETag: W/"96ff65c925bbaf3e4e7891a7ca1f2b1f" Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: UU30rrNrTqXLZIsQNUQdv7-Tn2jOQTErYBP8pCuC-YvmMT2rTfXCFw== Age: 60140 --- Additional Info --- Magic: ASCII text, with very long lines (3706) Size: 1819 Md5: 52e1a9b065ba39d28db010fd286ae204 Sha1: da3f9265eac53855df786c6f4b8f813f7ac7fb29 Sha256: ef0cac6d41ec158c95903b585c5421f3c59e1677fe5943bdd50feb2288a2104f
GET /wp-includes/js/jquery/ui/widget.min.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-includes/js/jquery/ui/ (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: b48472230d26ab5393b8ba6795cdce37253116178cb5670ff76098190252e9af 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:24 GMT Last-Modified: Thu, 06 Aug 2020 03:32:47 GMT ETag: W/"00dedd56324da186973a3b2cc5e8023c" Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: zn6M1ebb_yF0JKfniZAbJVVIFtyzXqDhx-4Dp2HRFpFMY-uvH0CCLg== Age: 60140 --- Additional Info --- Magic: ASCII text, with very long lines (6614) Size: 2596 Md5: 9e246654320e031b93830f67c2e56a2f Sha1: 9111676ea0b140011659e6579679e9e619cd65e8 Sha256: b48472230d26ab5393b8ba6795cdce37253116178cb5670ff76098190252e9af
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 9dc13eae0a47c289dbe396d64d2120b77886ee84b809c6902feef5a72547351d 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 2054 Cache-Control: max-age=96630 Date: Thu, 20 Oct 2022 17:08:43 GMT Etag: "63504f0b-117" Expires: Fri, 21 Oct 2022 19:59:13 GMT Last-Modified: Wed, 19 Oct 2022 19:24:59 GMT Server: ECS (ska/F70F) X-Cache: HIT Content-Length: 279 --- Additional Info --- Magic: data Size: 279 Md5: 18b23741e87ccf9a70227948d53e0fbc Sha1: d6846eec3c338e846612a76aae25679218180cdf Sha256: 9dc13eae0a47c289dbe396d64d2120b77886ee84b809c6902feef5a72547351d
GET /wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown/style.css HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/sitepress-multili (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 6f64c08cd674c507292ff081be79f54bb5bde34b90a25e2a619f4c7c0e1c421c 3.120.194.163 HTTP/1.1 200 OK Content-Type: text/css Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 552 Connection: keep-alive --- Additional Info --- Magic: ASCII text, with very long lines (1756) Size: 552 Md5: cf85cdcf046f700267df1aaf104a2b39 Sha1: 852c3e9da0e745e68109819957b9ca45f4e55886 Sha256: 6f64c08cd674c507292ff081be79f54bb5bde34b90a25e2a619f4c7c0e1c421c
GET /wp-content/plugins/wpml-translation-management/res/css/admin-bar-style.css HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/wpml-translation- (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 77e5f04f2f5d3a83c50b55652151182633e799d0daf2280c85e4650a0b06d8ab 3.120.194.163 HTTP/1.1 200 OK Content-Type: text/css Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:25:57 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 113 Connection: keep-alive --- Additional Info --- Magic: ASCII text Size: 113 Md5: 8bd858d224c135ea74666d7f05df248e Sha1: 5ef009ed8087ce73a4912d9749d7f041bc16961b Sha256: 77e5f04f2f5d3a83c50b55652151182633e799d0daf2280c85e4650a0b06d8ab
GET /wp-includes/js/jquery/ui/mouse.min.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-includes/js/jquery/ui/ (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: a95eb8bd20eab719947faa4cec36315c50e21652801f14cb0581afac05aa2c47 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:24 GMT Last-Modified: Thu, 06 Aug 2020 03:32:45 GMT ETag: W/"b317c4ccc9aa140339ad72fa27c77266" Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: 3XZ8QRIyMtEraDK55eMNN0SSjb-X3Sex82bxHScTnexApM1SckKajw== Age: 60140 --- Additional Info --- Magic: ASCII text, with very long lines (2927) Size: 999 Md5: e466629bfa82c6f1dc466ac4a5b5e495 Sha1: 45cc7d9457ef090a9c3cb044a5e3ce2115aa7bcd Sha256: a95eb8bd20eab719947faa4cec36315c50e21652801f14cb0581afac05aa2c47
GET /wp-content/plugins/wpml-cms-nav/res/css/cms-navigation-base.css HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/wpml-cms-nav/res/ (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 039804219c46536ac7cdc83d30e672a0467df803c5348a5733e18a687dc828b1 3.120.194.163 HTTP/1.1 200 OK Content-Type: text/css Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 933 Connection: keep-alive --- Additional Info --- Magic: ASCII text Size: 933 Md5: cb13db3c09d0076dc19a1dbf520c7827 Sha1: c01159a4163902f3dc824ffade25949d3a9a4097 Sha256: 039804219c46536ac7cdc83d30e672a0467df803c5348a5733e18a687dc828b1
GET /wp-content/themes/Divi/style.css HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi/st (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 6accc6d6d74dc86cb4e240544abae03859693f764e150ff687f3db99a47ae9be 143.204.42.74 HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Tue, 27 Aug 2019 08:27:55 GMT Server: AmazonS3 Content-Encoding: gzip Date: Thu, 20 Oct 2022 00:24:08 GMT Cache-Control: 2592000 ETag: W/"817303872fd1f4d16b34fcd79ab7d2d3" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: pN6f5GsTcsxANmErVo16C2m7oZARmhsd3BEztnYiN66vU4pQqm8qDg== Age: 60276 --- Additional Info --- Magic: ASCII text, with very long lines (65536), with no line terminators Size: 43546 Md5: fcc10503f3079ce8d7461641a81ef0a6 Sha1: 34c1b41e2b8a78ea003e8d37286d9ff3c7ec8e9c Sha256: 6accc6d6d74dc86cb4e240544abae03859693f764e150ff687f3db99a47ae9be
GET /wp-content/plugins/registration-portin-facility/public/css/registration_portin_facility-public.css HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/registration-port (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 0021049ab8e09b826fbef1cc74d8ce9794a2a9baa88a793e0773ac3e67f43073 3.120.194.163 HTTP/1.1 200 OK Content-Type: text/css Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Mon, 18 Oct 2021 05:15:42 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 5306 Connection: keep-alive --- Additional Info --- Magic: ASCII text, with very long lines (1963) Size: 5306 Md5: 724d0ef3e346ba677dd5987ce62cb5dc Sha1: e73088909d38fc9a932e679f3a4545297899f26e Sha256: 0021049ab8e09b826fbef1cc74d8ce9794a2a9baa88a793e0773ac3e67f43073
GET /wp-content/plugins/testimonialslider/css/jquery.bxslider.css HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/testimonialslider (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 0d23aabe78d874edcef092bcc9611dd3c3e8656a03c58ad6e01d6d98ad9165ed 3.120.194.163 HTTP/1.1 200 OK Content-Type: text/css Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 885 Connection: keep-alive --- Additional Info --- Magic: Unicode text, UTF-8 text, with very long lines (3002), with no line terminators Size: 885 Md5: 3a8400b070b74650e9c7927466b226cf Sha1: 7669a8def8bca883fbbceed367b8037f35fd1968 Sha256: 0d23aabe78d874edcef092bcc9611dd3c3e8656a03c58ad6e01d6d98ad9165ed
GET /wp-content/plugins/sitepress-multilingual-cms/res/js/jquery.cookie.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/sitepress-multili (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 0ad3c73c3eaf52b9deb1941a12db921002dbfb2326ca007c6838d9a936a31b02 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 1109 Connection: keep-alive --- Additional Info --- Magic: ASCII text Size: 1109 Md5: d2c9e62ba741c5dc1cd388f4cb4322c1 Sha1: 57ad65e2ffdb51d2751763b8bee9ad67f372e2a7 Sha256: 0ad3c73c3eaf52b9deb1941a12db921002dbfb2326ca007c6838d9a936a31b02
GET /wp-includes/js/jquery/ui/sortable.min.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-includes/js/jquery/ui/ (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 68de9191b10834077e8172f64f5da33b5e2e76d617fc86e81ca335a72bea91b1 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:24 GMT Last-Modified: Thu, 06 Aug 2020 03:32:47 GMT ETag: W/"efa8171f2226a422003417095d8549dd" Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: EmRx5CasCt32o7dURnkeBqTFr4p3hJw1thj-AuDD6PKGvzwBITCPDQ== Age: 60140 --- Additional Info --- Magic: HTML document, ASCII text, with very long lines (24670) Size: 6480 Md5: a2c52244d7a3bfff3fb4db5090267b68 Sha1: 7b2e86c1ccd76cc40a7591c94c8f3e6445ef0d61 Sha256: 68de9191b10834077e8172f64f5da33b5e2e76d617fc86e81ca335a72bea91b1
GET /wp-content/themes/Divi-child/js/jquery.marquee.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 6b0bae3be5b035e2dbcf39cb85ebe77669a7fdec22dd93ebff2eeef144ca8d9d 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:24:09 GMT Last-Modified: Tue, 27 Aug 2019 08:27:41 GMT ETag: W/"a2ac3fef53d651ac8562f1412b28b359" Cache-Control: 2592000 Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: q9PGppdNhvLxxhtsU9qMuwW2n25nbePeJNU4B7YmE6vQyGdWG24XhQ== Age: 60275 --- Additional Info --- Magic: ASCII text, with very long lines (1219) Size: 2273 Md5: 8baaa88a7c512a4bed1b9dce3fd2b17d Sha1: cf1d581f7283682af4b9635970716d277ea2ff1b Sha256: 6b0bae3be5b035e2dbcf39cb85ebe77669a7fdec22dd93ebff2eeef144ca8d9d
GET /wp-content/themes/Divi-child/js/theme.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 227e739dfbc2ce0fbf55d09228a2910605ee6ef94630df2d7a806e395c4c6189 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Tue, 15 Feb 2022 04:49:45 GMT Server: AmazonS3 Content-Encoding: gzip Date: Thu, 20 Oct 2022 06:59:39 GMT ETag: W/"d056838fef7522c86d80206e3384d0d3" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: WOkefRIpwYkV-iulCUFEQueQtvM7OoVIbvz-3n41eEABwe-pZkvGhg== Age: 36545 --- Additional Info --- Magic: ASCII text, with very long lines (348) Size: 12163 Md5: 5addb2c179e81480592aabb8dba6f4f4 Sha1: 6f1a3d94536e59cece2a7bdc6a7fde55d7c21a26 Sha256: 227e739dfbc2ce0fbf55d09228a2910605ee6ef94630df2d7a806e395c4c6189
GET /wp-content/themes/Divi-child/js/countries.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: b3aa7ac1df611378097517c1f312bf1de2e557d97268c53720ce2b951eec28e3 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Tue, 27 Aug 2019 08:27:41 GMT Server: AmazonS3 Content-Encoding: gzip Date: Thu, 20 Oct 2022 08:44:26 GMT Cache-Control: 2592000 ETag: W/"41a7f1d63de5dc564de5d2e96ba33db8" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: 0XtTaURDAdNTAlGPlLQJqW3k3K0kc_SS-YnpBtyyCR41C1Rc7tAMFQ== Age: 30258 --- Additional Info --- Magic: ASCII text, with very long lines (7323), with no line terminators Size: 3430 Md5: 115cfc6d3f94dfc9904a446724a57773 Sha1: 2698d622a5073c2352f4d47ad9594c362395fc4c Sha256: b3aa7ac1df611378097517c1f312bf1de2e557d97268c53720ce2b951eec28e3
GET /wp-content/themes/Divi-child/js/jquery.validate.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 24aca9deca895550f5ba6c9922eb191b68c28fc247478c0061d985213946df70 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:23 GMT Last-Modified: Tue, 27 Aug 2019 08:27:41 GMT ETag: W/"50d37feba6afb8e8ee322a7b7871550e" Cache-Control: 2592000 Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: ouNvYsuBW3Jlivxu82qQIKroXAxgN0pG1au-h8Y5Da8wy-kZN3uehg== Age: 60141 --- Additional Info --- Magic: Unicode text, UTF-8 text, with very long lines (22821) Size: 7414 Md5: ab24d610fd634316c6a00b21f6b36832 Sha1: 8f408fef36692595f38a086535db86ca765d14a0 Sha256: 24aca9deca895550f5ba6c9922eb191b68c28fc247478c0061d985213946df70
GET /wp-content/plugins/sitepress-multilingual-cms/res/js/cookies/language-cookie.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/sitepress-multili (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: f0fa5140f70a19702bdf6bbf7d495857cadc158e12975983212a36068cab241d 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 155 Connection: keep-alive --- Additional Info --- Magic: ASCII text Size: 155 Md5: d3453f9d25d07fae0b6919f644988971 Sha1: dba21fa483385a873ca38d99bf2433b77dd17fb0 Sha256: f0fa5140f70a19702bdf6bbf7d495857cadc158e12975983212a36068cab241d
GET /wp-content/plugins/custom-search-plugin/js/script.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/custom-search-plu (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 9fb201a9702f44e2d06fd910dc024bb0707badce77b09613754e3ff07038cee1 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 506 Connection: keep-alive --- Additional Info --- Magic: ASCII text Size: 506 Md5: 99ad164c48c30d4ea72bdb15d6efe582 Sha1: f5186aa17398f4034199e9f58308fcf753dfe467 Sha256: 9fb201a9702f44e2d06fd910dc024bb0707badce77b09613754e3ff07038cee1
GET /wp-content/themes/Divi-child/js/selectize.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: bf0d05beb9966ec8562398d47c857e8467084ab17b55ab2ff9cfe9d1dbb5048c 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:24 GMT Last-Modified: Tue, 27 Aug 2019 08:27:41 GMT ETag: W/"0941c2f6d545a74b27f2ccdbe7bdc931" Cache-Control: 2592000 Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: mXR4xN8OiBY2JSR0od8dl5ofFaJDg1OI5IS1XAaQj0UBVe4ih81tTg== Age: 60140 --- Additional Info --- Magic: Unicode text, UTF-8 text, with very long lines (3172) Size: 17837 Md5: b856c20dc4f744ef00e742575f5c5475 Sha1: a1886ffe64016f93c988d20f6fa978d349fbb493 Sha256: bf0d05beb9966ec8562398d47c857e8467084ab17b55ab2ff9cfe9d1dbb5048c
GET /wp-content/themes/Divi-child/js/additional-methods.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: a08a68fd03bc314c6f8d08b4d46c3b8001716b1e6437f764252b37ba32fc7059 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Tue, 27 Aug 2019 08:27:40 GMT Server: AmazonS3 Content-Encoding: gzip Date: Thu, 20 Oct 2022 00:24:09 GMT Cache-Control: 2592000 ETag: W/"074966e2db7e1caa07fd7d0bac25e844" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: BMwTxLBOTo8JsqJ-UCLHIIX-3oovWspdeX5wKnA3Wx8HUTUMspPf4g== Age: 60275 --- Additional Info --- Magic: Non-ISO extended-ASCII text, with very long lines (2940) Size: 5912 Md5: 8dccfd11159d2510d1a3eeeeacf3fac0 Sha1: d8c6c5f7838e9c52a6c6f2e7bdf19516594c3a6d Sha256: a08a68fd03bc314c6f8d08b4d46c3b8001716b1e6437f764252b37ba32fc7059
GET /wp-content/themes/Divi-child/js/roaming_rates.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 3a619d2a21b4d32d5f08bd38422a628f7b3ec5e4cf61a2d573193009d184ca82 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Tue, 15 Feb 2022 04:49:50 GMT Server: AmazonS3 Content-Encoding: gzip Date: Thu, 20 Oct 2022 00:24:08 GMT ETag: W/"456f0e734f90e7e3ccc2835bf708306d" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: n4260Rc20lz9hxjm9CT1zMa88CTv-DFHwUi8wF4yxBa29I6SNCTZXQ== Age: 60276 --- Additional Info --- Magic: ASCII text Size: 8346 Md5: b65656e05d25d99a164cfd6521fa1113 Sha1: 1b176b11cd47684dba7d1387d6ae9fcfb1f354d9 Sha256: 3a619d2a21b4d32d5f08bd38422a628f7b3ec5e4cf61a2d573193009d184ca82
GET /wp-content/themes/Divi-child/js/register.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: cc113bf3bd23d11500ca7bc14b549c92eeea3e70a073b13ba36ce5e6c2e7ed09 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:24 GMT Last-Modified: Thu, 20 Feb 2020 06:59:06 GMT ETag: W/"a4c47e49f1b792925db5d2ee23d17942" Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: dgI6XO7B9uDnLm_KYQi7WT93sPim1wpoGGcCJTgXdnsqThFRVeJkIw== Age: 60140 --- Additional Info --- Magic: ASCII text Size: 2843 Md5: deacf1a6348898cbaaa599a4c38c3ca5 Sha1: 5d817802af4b56aa89883ff72088206d8ee6860e Sha256: cc113bf3bd23d11500ca7bc14b549c92eeea3e70a073b13ba36ce5e6c2e7ed09
GET /wp-content/themes/Divi-child/js/bootstrap-datepicker.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 4be21ecaf79336428353cb4cfd5896392ce86243cef9555a4ff17c92291ca68b 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:24 GMT Last-Modified: Tue, 27 Aug 2019 08:27:40 GMT ETag: W/"8260533cc46428d9b49e3f137ef2efe7" Cache-Control: 2592000 Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: 0-WWNQTdTfm00NNpC923sohP40-PY8e9Qe6FRviBigI6N9V_vu6qsA== Age: 60140 --- Additional Info --- Magic: ASCII text, with very long lines (1634) Size: 8005 Md5: e61f9577d0b7716edfc4ac5ed10ad741 Sha1: 04f0bc966db74a65a2e5f4ea2ff4935c603ddee0 Sha256: 4be21ecaf79336428353cb4cfd5896392ce86243cef9555a4ff17c92291ca68b
GET /wp-content/themes/Divi-child/js/bootstrap.min.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: dd06b0cdc9ebd1c0dff60450b691c24ff583980ae06d4a83c03ca91601f4ca24 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Tue, 27 Aug 2019 08:27:40 GMT Server: AmazonS3 Content-Encoding: gzip Date: Thu, 20 Oct 2022 00:24:09 GMT Cache-Control: 2592000 ETag: W/"5869c96cc8f19086aee625d670d741f9" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: _0GQ8O5gEMUva-EZBIQwA2F2w3TB6tuBYqxFvN6YdkYAv-oPaDr1sg== Age: 60275 --- Additional Info --- Magic: ASCII text, with very long lines (32033) Size: 9844 Md5: c3925c588a840a4382d7e58be0c1a655 Sha1: 24039976dd2dd0c30e107ffa21a03c31995a308c Sha256: dd06b0cdc9ebd1c0dff60450b691c24ff583980ae06d4a83c03ca91601f4ca24
GET /wp-content/plugins/registration-portin-facility/vendor/moment.min.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/registration-port (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 34084291d4c3f11af71b71f00c969a81380daa917e3e90ad1a08e836ced4e5f9 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 16804 Connection: keep-alive --- Additional Info --- Magic: ASCII text, with very long lines (51679), with no line terminators Size: 16804 Md5: 174f71b5e532bbee86b7e51ed2d11a82 Sha1: abbec602df1ebf647b88d18cbd1dd162d7f1f6ad Sha256: 34084291d4c3f11af71b71f00c969a81380daa917e3e90ad1a08e836ced4e5f9
GET /wp-content/plugins/registration-portin-facility/public/js/registration_portin_facility-public.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/registration-port (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 1afad8260106e543ae55da914750a910dcf8bcf16327589f1d9d9ef21713ef2d 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 3837 Connection: keep-alive --- Additional Info --- Magic: ASCII text Size: 3837 Md5: 01179df43b1213ab1106977745e9b906 Sha1: 9e3ea134dd317bc273af92dc88c44d52a3e73e64 Sha256: 1afad8260106e543ae55da914750a910dcf8bcf16327589f1d9d9ef21713ef2d
GET /wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown/script.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/sitepress-multili (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 790c5d96a9a9be889b5b7113a7b22868d8803355f7e215f8c7481945850b6de5 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 383 Connection: keep-alive --- Additional Info --- Magic: ASCII text Size: 383 Md5: 6c0ff919dd37f978ea0c1511f47c132c Sha1: 86c6f73c7f81b5121d666d6968d7debd26c7ab17 Sha256: 790c5d96a9a9be889b5b7113a7b22868d8803355f7e215f8c7481945850b6de5
GET /wp-content/themes/Divi-child/js/lyca_login.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/themes/Divi-child/js/lyca (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 2801af8987984312d4009ff3f665af9da6ad50faa59367fd9cb0405a03ab9fae 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:25:57 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 2926 Connection: keep-alive --- Additional Info --- Magic: ASCII text Size: 2926 Md5: 139463c6855f901b3896c4958ef4392c Sha1: b0fb2a97f006267aae2924021731fe5527d8e2c7 Sha256: 2801af8987984312d4009ff3f665af9da6ad50faa59367fd9cb0405a03ab9fae
GET /wp-content/plugins/testimonialslider/js/jquery.bxslider.min.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/testimonialslider (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 127606d08299d86a42cff2be53731e7f2b437d64331bb2ed94b974bafac0fab0 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 4966 Connection: keep-alive --- Additional Info --- Magic: ASCII text, with very long lines (19040), with no line terminators Size: 4966 Md5: e85a20dd54c74b8868f84e0a6bba50ea Sha1: bada9d0db6d46c9ec2d9b8c62fbcab76abe79aa8 Sha256: 127606d08299d86a42cff2be53731e7f2b437d64331bb2ed94b974bafac0fab0
GET /wp-content/themes/Divi-child/js/custom_validate.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: d48f2166d51e343d4d91b80bf04c970d3d10603d8a6fc5060a53b73c2a8b70cf 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Content-Length: 391 Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:24 GMT Last-Modified: Tue, 27 Aug 2019 08:27:41 GMT ETag: "9f4e4bb98cbc4c5fe6ddfc05c7c48095" Cache-Control: 2592000 Accept-Ranges: bytes Server: AmazonS3 X-Cache: Hit from cloudfront Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: helJGreHfj5wx6UiN1At1xgZ4EwXZDEcI49o9oXQSk8f-4m8xBSPjQ== Age: 60140 --- Additional Info --- Magic: ASCII text, with very long lines (391), with no line terminators Size: 391 Md5: 9f4e4bb98cbc4c5fe6ddfc05c7c48095 Sha1: e87b52374a265e471462e297fad51a39763f2d3b Sha256: d48f2166d51e343d4d91b80bf04c970d3d10603d8a6fc5060a53b73c2a8b70cf
GET /wp-content/themes/Divi-child/js/tab_custome_function.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 1dfff59a8db555caf80801642c545695c90f8471c520559d3841d38e54f7c5b5 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:24 GMT Last-Modified: Tue, 27 Aug 2019 08:27:41 GMT ETag: W/"5ad0eb623e462948f1ac5a7f6174f22a" Cache-Control: 2592000 Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: i2ngoHrr0bzOvjukNXlejoLM0GS3Ml7ZTQRU63XGxs2pQ4ux5DusKg== Age: 60140 --- Additional Info --- Magic: ASCII text, with very long lines (1045) Size: 497 Md5: 0d9940739863c08755bd6f02069459af Sha1: 4026b8e0dfc4678de7cee25bfc7a72477e53ce70 Sha256: 1dfff59a8db555caf80801642c545695c90f8471c520559d3841d38e54f7c5b5
GET /ajax/libs/bootstrap-datetimepicker/4.17.37/js/bootstrap-datetimepicker.min.js HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdnjs.cloudflare.com/ajax/libs/bootstrap-datetimepicker (...) FQDN: cdnjs.cloudflare.com IP: 104.17.25.14 HASH: eab9dfacfbbb59d341c72a7fe6dd9c12ea4e87f20ccf78bf13bd98ffeab243d4 104.17.25.14 HTTP/2 200 OK content-type: application/javascript; charset=utf-8 date: Thu, 20 Oct 2022 17:08:43 GMT content-length: 8256 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03d8e-9443" last-modified: Mon, 04 May 2020 16:06:38 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 86032 expires: Tue, 10 Oct 2023 17:08:43 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OcfTLs2FI1TceeijNFSQHHXi9CkZ%2Fuzo2yj40G0SeXg5k2iONkXz6N13MNM6Y0D4mwp%2BZi35fKt5GUlcSQdJXy%2BEKtmx5qarcN5jNB9xGGvYTH%2BY3n%2FAqGw%2FKPK8FVvb8q9kSuBT"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 75d35b6dab101c02-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document, ASCII text, with very long lines (32010) Size: 8256 Md5: 52b30dc893d14995df58d34ecc5a9f7f Sha1: e360fd76bd734011484ed559fd1780e31949353f Sha256: eab9dfacfbbb59d341c72a7fe6dd9c12ea4e87f20ccf78bf13bd98ffeab243d4
GET /wp-content/themes/Divi-child/js/custom-ajax-script.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 2d05abac3909a98dd4571d22a7e0dfc91ba30f859afc5fecaa892793a520dab0 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:23 GMT Last-Modified: Fri, 16 Apr 2021 07:45:53 GMT ETag: W/"2348f035e1ba7ad6b8df58dbbbd5818e" Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: I51dEv--0FWBfB8IePThzvIyvyOkuTKwTYPP4oOl7Xk9kZJOWxSZGA== Age: 60140 --- Additional Info --- Magic: ASCII text, with very long lines (507) Size: 6420 Md5: 224d5891cbe6ccb966f5a72aa1275cd3 Sha1: 74e96530959122d6e57f85662b4868f58c9ef6ad Sha256: 2d05abac3909a98dd4571d22a7e0dfc91ba30f859afc5fecaa892793a520dab0
GET /wp-content/themes/Divi-child/js/nc_ajax_script.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 1d15210c521e42a696675eec0a46284c850497fdc13e3dc7a0409be4743137e9 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Thu, 05 May 2022 06:47:46 GMT Server: AmazonS3 Content-Encoding: gzip Date: Thu, 20 Oct 2022 00:24:08 GMT ETag: W/"9353377fb1b76e466a7ac26634defc75" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: lgvAi2IE8vQQaDkeQBfA4FYT1Iha6yokdDSbYYtJmAFzy6C8ovbLkw== Age: 60276 --- Additional Info --- Magic: ASCII text Size: 7103 Md5: bf97598dfb70c892f6f303f2d38450a1 Sha1: d28da6fafacb3758b0f55cd71ced792ebcd4f104 Sha256: 1d15210c521e42a696675eec0a46284c850497fdc13e3dc7a0409be4743137e9
GET /wp-includes/js/wp-embed.js HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-includes/js/wp-embed.js FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: da9848b6b2d331952a400655c534955a9245565503996fbdfe4a1c6f4d6ca200 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:24 GMT Last-Modified: Thu, 06 Aug 2020 03:32:49 GMT ETag: W/"23e24e824f384c5eb11e73576b4ac93c" Server: AmazonS3 Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: sSaIHAj4W6oBq1cuk0AnBNnuYPJIkPmHIxpIckP_HI8LFAGrOQBoUQ== Age: 60140 --- Additional Info --- Magic: ASCII text Size: 1273 Md5: a3cacf7987efe841394ab0c091d18aca Sha1: bfff11917aa7b1fb6729f2b9911ac55df2d076c6 Sha256: da9848b6b2d331952a400655c534955a9245565503996fbdfe4a1c6f4d6ca200
GET /wp-content/plugins/email-subscribers/widget/es-widget.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/email-subscribers (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 5fcbd0de5e51104006331763dcf23084505ea9d876e0904815e603e5e0230e90 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:19:16 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 1182 Connection: keep-alive --- Additional Info --- Magic: Unicode text, UTF-8 (with BOM) text, with very long lines (1311) Size: 1182 Md5: 59066978220b7f1b7b925b47ff5e46ab Sha1: bab1c3c14f4b9649864cb46c1c96250ccdc95024 Sha256: 5fcbd0de5e51104006331763dcf23084505ea9d876e0904815e603e5e0230e90
GET /wp-content/plugins/email-subscribers/widget/es-widget-page.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/email-subscribers (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: c27abc361c9a25a87199ebfd36119491c278a33c46bbf06aff3c15d2a9560e0e 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:19:16 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 1229 Connection: keep-alive --- Additional Info --- Magic: Unicode text, UTF-8 (with BOM) text, with very long lines (1362) Size: 1229 Md5: 6bccf039385dadace241e9d47cdc2a0b Sha1: 5cd85d67c6422cedfb4f5ac10df547928d37f7fb Sha256: c27abc361c9a25a87199ebfd36119491c278a33c46bbf06aff3c15d2a9560e0e
GET /wp-content/plugins/lyca-marketing/assets/js/marketing-script.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/lyca-marketing/as (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 30aabbaab74bd6f87cefb998ef1d09a36cb7f36d5c7ddd4bf519ba1059494e8f 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Wed, 05 Jan 2022 02:41:28 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 893 Connection: keep-alive --- Additional Info --- Magic: ASCII text, with CRLF line terminators Size: 893 Md5: 81ac1712537559cdec808b954a7490d8 Sha1: 33f1f5ea6a334887020b71577c72953afda05148 Sha256: 30aabbaab74bd6f87cefb998ef1d09a36cb7f36d5c7ddd4bf519ba1059494e8f
GET /wp-content/themes/Divi-child/js/personal-details.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/themes/Divi-child/js/pers (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 8c4b153673568490f76767839493b7011d1fc1befc88025df6c1a9f6b58dc747 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:25:57 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 1052 Connection: keep-alive --- Additional Info --- Magic: ASCII text Size: 1052 Md5: 1be41f82152e3a9f3dfb3765d314e9a1 Sha1: 50f7c3ad307d0cedf238b0e373116943dd0e0d30 Sha256: 8c4b153673568490f76767839493b7011d1fc1befc88025df6c1a9f6b58dc747
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 3cdc1c4dbdde26acb1eedba11b1aa3a93d8933dda59f777e6172feb9fa773f64 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 20 Oct 2022 17:08:43 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 193d2d5278d7126ac87e3b5d25c73846 Sha1: a113a1bd6d01cf7f17ecdd8c1d71405e3a680359 Sha256: 3cdc1c4dbdde26acb1eedba11b1aa3a93d8933dda59f777e6172feb9fa773f64
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 9dc13eae0a47c289dbe396d64d2120b77886ee84b809c6902feef5a72547351d 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 2054 Cache-Control: max-age=96630 Date: Thu, 20 Oct 2022 17:08:43 GMT Etag: "63504f0b-117" Expires: Fri, 21 Oct 2022 19:59:13 GMT Last-Modified: Wed, 19 Oct 2022 19:24:59 GMT Server: ECS (ska/F70F) X-Cache: HIT Content-Length: 279 --- Additional Info --- Magic: data Size: 279 Md5: 18b23741e87ccf9a70227948d53e0fbc Sha1: d6846eec3c338e846612a76aae25679218180cdf Sha256: 9dc13eae0a47c289dbe396d64d2120b77886ee84b809c6902feef5a72547351d
GET /wp-content/plugins/lyca-marketing/assets/js/jquery.lazy.min.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/lyca-marketing/as (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: c676fc1d198ec9437a42cbfa639bf2bb95cd4502e49e897c922855e4d3d29bd4 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:44 GMT Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 2331 Connection: keep-alive --- Additional Info --- Magic: ASCII text, with very long lines (4890) Size: 2331 Md5: a6cc20d3609181f768dc325025b32715 Sha1: 3911e55e11ce33370a2ec382aafb2447cdffc740 Sha256: c676fc1d198ec9437a42cbfa639bf2bb95cd4502e49e897c922855e4d3d29bd4
GET /wp-content/plugins/registration-portin-facility/public/js/messages_nb.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/registration-port (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 3c64bb2a6ed3fcdc22fec1c1840b6327cdf9f7cc92a53ef302bca6166c61bdc2 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:44 GMT Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 362 Connection: keep-alive --- Additional Info --- Magic: CSV text\012- , ASCII text Size: 362 Md5: a3f9d76a09b85913450b9ad5df628548 Sha1: 3f68b62b063a8b102beeafd5fe478843dcdff423 Sha256: 3c64bb2a6ed3fcdc22fec1c1840b6327cdf9f7cc92a53ef302bca6166c61bdc2
GET /wp-content/themes/Divi/includes/builder/scripts/jquery.mobile.custom.min.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/themes/Divi/includes/buil (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 63b52e7a859b8943c2d1255b30e1d3b8fa262285797a69098def3967d112ad5b 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:44 GMT Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 2872 Connection: keep-alive --- Additional Info --- Magic: ASCII text, with very long lines (7687) Size: 2872 Md5: a7bc9bd6d7a143a13d7072ee406c8692 Sha1: 42a46eca1ae6c1b50602917cc52b4b61e13f24f7 Sha256: 63b52e7a859b8943c2d1255b30e1d3b8fa262285797a69098def3967d112ad5b
GET /wp-content/themes/Divi/includes/builder/scripts/waypoints.min.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/themes/Divi/includes/buil (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 61e3dba589d367496e409a346677b89db66ee134e7370f06a8629ce0492eb6c6 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:44 GMT Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 2698 Connection: keep-alive --- Additional Info --- Magic: Unicode text, UTF-8 text, with very long lines (8668) Size: 2698 Md5: f7d4b6ef09365ba331dda4e3648c05fc Sha1: f852f915b87c84eb1c3590829e8d9f5c97fbe620 Sha256: 61e3dba589d367496e409a346677b89db66ee134e7370f06a8629ce0492eb6c6
GET /wp-content/themes/Divi/js/custom.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/themes/Divi/js/custom.js FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: cef043ceda82b48795b26c0873caaeebbc5bbe7c3aa3d1bfd9339dd7010a208f 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:44 GMT Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 11702 Connection: keep-alive --- Additional Info --- Magic: ASCII text, with very long lines (372) Size: 11702 Md5: fc1ad29248d5c0b974cca2d3687eadd1 Sha1: 854c8b173575abe5b2da21b079276788c31149ae Sha256: cef043ceda82b48795b26c0873caaeebbc5bbe7c3aa3d1bfd9339dd7010a208f
GET /wp-content/themes/Divi/includes/builder/scripts/jquery.fitvids.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/themes/Divi/includes/buil (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 4f7cd006453252967505df8f72f72333de4ba5b2734773aaeca3f250fcf0b5e1 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:44 GMT Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 1298 Connection: keep-alive --- Additional Info --- Magic: HTML document, ASCII text Size: 1298 Md5: 31bd6f103266422712d7f21fd221259c Sha1: 478fe2a563f8edd20468c878ad0c8dabcc506159 Sha256: 4f7cd006453252967505df8f72f72333de4ba5b2734773aaeca3f250fcf0b5e1
GET /wp-content/plugins/email-subscribers/widget/es-widget-customize.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/email-subscribers (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 544db6899780bebc6a30b6e86f3c89023f2b67b9ad9509258739b5005d16c000 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:44 GMT Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 1657 Connection: keep-alive --- Additional Info --- Magic: ASCII text Size: 1657 Md5: e5c46c336e35e9bd8dbf55e4d0fc96c4 Sha1: e4c2bc6c99aade340b1c1484096c79a970b3f019 Sha256: 544db6899780bebc6a30b6e86f3c89023f2b67b9ad9509258739b5005d16c000
GET /wp-content/themes/Divi/includes/builder/scripts/jquery.magnific-popup.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/themes/Divi/includes/buil (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 497c6f92880fe8e1e12aff1c833910958d7b46379980da1ded707c39a2ca33ee 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:44 GMT Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 8382 Connection: keep-alive --- Additional Info --- Magic: ASCII text, with very long lines (21123) Size: 8382 Md5: dc28e6a88fd9930fed07d0de45b3a0ea Sha1: 6181203be9d6e425d138533edaf3121c1a1968b1 Sha256: 497c6f92880fe8e1e12aff1c833910958d7b46379980da1ded707c39a2ca33ee
GET /gtm.js?id=GTM-PNQZL82 HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: www.googletagmanager.com/gtm.js?id=GTM-PNQZL82 FQDN: www.googletagmanager.com IP: 142.250.74.168 HASH: d36a1a0852c5c2a9849cba8e2b639de7575489644365d699f25577e1c9ed9c3f 142.250.74.168 HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Thu, 20 Oct 2022 17:08:44 GMT expires: Thu, 20 Oct 2022 17:08:44 GMT cache-control: private, max-age=900 last-modified: Thu, 20 Oct 2022 16:13:57 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 88281 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Unicode text, UTF-8 text, with very long lines (40170) Size: 88281 Md5: ad205fcd24aceea65ca119ac455815ba Sha1: 68a3f4a4a1ae6f3cf0de0581a6373e8ed303aabb Sha256: d36a1a0852c5c2a9849cba8e2b639de7575489644365d699f25577e1c9ed9c3f
GET /wp-content/plugins/lyca_cart/resources/functions.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/lyca_cart/resourc (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 7cbef667cc2558cdf293a423c6e37d899ef8710e599d6abc8f660fb8bbc9e710 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:44 GMT Last-Modified: Thu, 29 Sep 2022 10:31:54 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 5698 Connection: keep-alive --- Additional Info --- Magic: ASCII text Size: 5698 Md5: b9ac12921009f1f1dbfedd0490977909 Sha1: 185eccf2caf963e90a9c38ed91631dfbc01f10c4 Sha256: 7cbef667cc2558cdf293a423c6e37d899ef8710e599d6abc8f660fb8bbc9e710
GET /wp-content/themes/Divi-child/js/forget-password.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/themes/Divi-child/js/forg (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: d224f7efdd43321dbd29ab5d128a5ab30e8eaca50879978ddbdb68a85647dafa 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:44 GMT Last-Modified: Thu, 05 May 2022 06:42:29 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 1287 Connection: keep-alive --- Additional Info --- Magic: ASCII text, with very long lines (359) Size: 1287 Md5: d9496518c9ca0e9e5de95991baffb89f Sha1: 175543365d682ab41f7ec04640a5bd7a49312998 Sha256: d224f7efdd43321dbd29ab5d128a5ab30e8eaca50879978ddbdb68a85647dafa
GET /wp-content/plugins/rocket-lazy-load/assets/js/12.0/lazyload.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/rocket-lazy-load/ (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 790d3da167b670f0ba09a9f30368be07cdaeffc32f9cd79648be9c892c78fcd8 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:44 GMT Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 3633 Connection: keep-alive --- Additional Info --- Magic: ASCII text, with very long lines (351) Size: 3633 Md5: b53e31a064849939c6a41bb35108dbbe Sha1: 6153863799c6e67ee3b6340ffca9574ebd995b31 Sha256: 790d3da167b670f0ba09a9f30368be07cdaeffc32f9cd79648be9c892c78fcd8
POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.sca1b.amazontrust.com/ FQDN: ocsp.sca1b.amazontrust.com IP: 143.204.42.165 HASH: b37d22ff995a63151c86f04c0967c8a254a99379d7b688c155cf13064fdfc333 143.204.42.165 HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=93913 Date: Thu, 20 Oct 2022 17:08:43 GMT Etag: "63504ac3-1d7" Expires: Fri, 21 Oct 2022 19:13:56 GMT Last-Modified: Wed, 19 Oct 2022 19:06:43 GMT Server: ECS (nyb/1D2E) X-Cache: Miss from cloudfront Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: VOFE0mXHneK4ByDD1I5M6yFGL4C0cQiNvMx2S55_nM1CNxD3fpUvWg== Age: 433 --- Additional Info --- Magic: data Size: 471 Md5: e6a01bebd72b230bf70a80d20367c223 Sha1: b2b72df19e658a2663feadf4052c6b1f4ac039ab Sha256: b37d22ff995a63151c86f04c0967c8a254a99379d7b688c155cf13064fdfc333
GET /wp-content/themes/Divi/includes/builder/scripts/frontend-builder-scripts.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/themes/Divi/includes/buil (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: 7cccf0da734eccae2b86e7638e6c6ca280bed97e23741dcdc3db06ca2b6cc707 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:44 GMT Last-Modified: Thu, 17 Jun 2021 16:19:17 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Content-Length: 31305 Connection: keep-alive --- Additional Info --- Magic: ASCII text Size: 31305 Md5: faf26a56e651031ab3c631961808985a Sha1: d6c1f352c66f23c36af8c32ffe09c8bda908285b Sha256: 7cccf0da734eccae2b86e7638e6c6ca280bed97e23741dcdc3db06ca2b6cc707
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 98f0ad0db175ed53ed6b048cc4427f902c148adc378d833dcb8cd89d59397aad 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 20 Oct 2022 17:08:44 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 13b2ffd04752d468f707090604f6ed1c Sha1: 94de24b43698a598b060edea68a4b1b5c6bf9879 Sha256: 98f0ad0db175ed53ed6b048cc4427f902c148adc378d833dcb8cd89d59397aad
GET /wp-content/themes/Divi-child/fonts/RobotoCondensed-Regular.ttf HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.lyca-mobile.no Connection: keep-alive Referer: https://d3uayxmzbnco7f.cloudfront.net/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 6a2cfb7e61dd09d77526fd314b256894094f96e3a6f3149d9f8000c1132ef4b8 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/vnd.ms-opentype Content-Length: 170284 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, HEAD Access-Control-Max-Age: 3000 Last-Modified: Tue, 27 Aug 2019 08:27:32 GMT Accept-Ranges: bytes Server: AmazonS3 Date: Thu, 20 Oct 2022 07:14:18 GMT Cache-Control: 2592000 ETag: "a5a6b71255dc832da585d5c94fa1a115" Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: Ucz49T3wTowzxk8lFN1JMLbKJ41UvhAA40ZRxePtCtpgXERxkLSW1A== Age: 35667 --- Additional Info --- Magic: TrueType Font data, 18 tables, 1st "GDEF", 26 names, Macintosh, Copyright 2011 Google Inc. All Rights Reserved.Roboto CondensedRegularVersion 2.137; 2017RobotoC\012- data Size: 170284 Md5: a5a6b71255dc832da585d5c94fa1a115 Sha1: 6a632e0244ae68e70aeb8c8a5d3b360e1648712b Sha256: 6a2cfb7e61dd09d77526fd314b256894094f96e3a6f3149d9f8000c1132ef4b8
GET /lycamobile-norway-website/lycamobile-nor-cms/wp-content/uploads/2018/08/30120503/germ-one.svg HTTP/1.1 Host: s3-eu-central-1.amazonaws.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://d3uayxmzbnco7f.cloudfront.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: s3-eu-central-1.amazonaws.com/lycamobile-norway-website (...) FQDN: s3-eu-central-1.amazonaws.com IP: 52.219.171.133 HASH: 28a2f89175ec3599ef375767ea6996f5bb73d38e5a54025deb7f0370505c382f 52.219.171.133 HTTP/1.1 200 OK Content-Type: image/svg+xml x-amz-id-2: DdakO7b6Ll+0/njYOoD89QhQexOiMYWWdmtoKXJpcibZ7e/AQLsKbFmCMXh7Kgw2DPTjfx1EINo= x-amz-request-id: RZ3E3BQGZQQPQRDR Date: Thu, 20 Oct 2022 17:08:45 GMT Last-Modified: Thu, 30 Aug 2018 12:03:58 GMT ETag: "27398d9974a03682bca55a5d1c83cfc0" Cache-Control: max-age=31536000 Content-Encoding: gzip Expires: Fri, 30 Aug 2019 12:05:03 GMT Accept-Ranges: bytes Server: AmazonS3 Content-Length: 2016 --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text Size: 2016 Md5: 27398d9974a03682bca55a5d1c83cfc0 Sha1: 011509bac7ec598f0ba6ff215d92487fc8965bac Sha256: 28a2f89175ec3599ef375767ea6996f5bb73d38e5a54025deb7f0370505c382f
GET /wp-content/themes/Divi-child/vendor/font-awesome/fonts/fontawesome-webfont.woff2?v=4.6.3 HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.lyca-mobile.no Connection: keep-alive Referer: https://d3uayxmzbnco7f.cloudfront.net/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 7dacf83f51179de8d7980a513e67ab3a08f2c6272bb5946df8fd77c0d1763b73 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/octet-stream Content-Length: 71896 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, HEAD Access-Control-Max-Age: 3000 Last-Modified: Tue, 27 Aug 2019 08:27:43 GMT Accept-Ranges: bytes Server: AmazonS3 Date: Thu, 20 Oct 2022 13:05:40 GMT Cache-Control: 2592000 ETag: "e6cf7c6ec7c2d6f670ae9d762604cb0b" Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: 4IsSLtU5SIheZPtJvFDPKwP_T8p5yMgE7OFPw1jQ22OermLiQO8RXw== Age: 14585 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 71896, version 4.393\012- data Size: 71896 Md5: e6cf7c6ec7c2d6f670ae9d762604cb0b Sha1: 97e438cc545714309882fbceadbf344fcaddcec5 Sha256: 7dacf83f51179de8d7980a513e67ab3a08f2c6272bb5946df8fd77c0d1763b73
GET /wp-content/themes/Divi-child/fonts/RobotoCondensed-Bold.ttf HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.lyca-mobile.no Connection: keep-alive Referer: https://d3uayxmzbnco7f.cloudfront.net/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 03b4e8042b9af4bf3349428fa734ed583f2d5d83287e1f42cf4d514c909146ef 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/vnd.ms-opentype Content-Length: 169800 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, HEAD Access-Control-Max-Age: 3000 Last-Modified: Tue, 27 Aug 2019 08:27:32 GMT Accept-Ranges: bytes Server: AmazonS3 Date: Thu, 20 Oct 2022 07:14:18 GMT Cache-Control: 2592000 ETag: "36b5da0333389306669655a13f2209ad" Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: nYSZp_tKB-hwrwdNp5iGTY3qVc9mEg08cff9amSc87QJfahofIyMzw== Age: 35667 --- Additional Info --- Magic: TrueType Font data, 18 tables, 1st "GDEF", 26 names, Macintosh, Copyright 2011 Google Inc. All Rights Reserved.Roboto CondensedBoldRoboto Condensed BoldVersion \012- data Size: 169800 Md5: 36b5da0333389306669655a13f2209ad Sha1: 8354979a1c3d7911df925e3b57d8c99398d54020 Sha256: 03b4e8042b9af4bf3349428fa734ed583f2d5d83287e1f42cf4d514c909146ef
GET /wp-content/themes/Divi-child/vendor/linear-icons/Linearicons-Free.woff2?w118d HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.lyca-mobile.no Connection: keep-alive Referer: https://d3uayxmzbnco7f.cloudfront.net/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 296945e5922e764eef17b1b4a3ee3e60dc202b3c7f074150b62158915bf74e33 143.204.42.74 HTTP/1.1 200 OK Content-Type: application/octet-stream Content-Length: 21780 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, HEAD Access-Control-Max-Age: 3000 Last-Modified: Tue, 27 Aug 2019 08:27:44 GMT Accept-Ranges: bytes Server: AmazonS3 Date: Thu, 20 Oct 2022 13:05:40 GMT Cache-Control: 2592000 ETag: "03e91f122aa5fd425abbe23c85546eb0" Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: sJXqcdzgf1uDYbwoJfifKwKIR-W_zSXlTrkywOQIAt6BRB52uTIqrw== Age: 14585 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 21780, version 1.0\012- data Size: 21780 Md5: 03e91f122aa5fd425abbe23c85546eb0 Sha1: c87a3db06c5db4e75e639382f174eafa439aeb27 Sha256: 296945e5922e764eef17b1b4a3ee3e60dc202b3c7f074150b62158915bf74e33
GET /wp-content/plugins/registration-portin-facility/vendor/jquery-ui-1.12.1.custom/jquery-ui.js HTTP/1.1 Host: www.lyca-mobile.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.lyca-mobile.no/nb/bundle/lyca-smart-l/?utm_source=Selectivv&utm_medium=banner&utm_campaign=NOR22070001&utm_term=P5&user_id={clickid}&cmpid=6135999&rtkcid={clickid}&rdk=rk1 Cookie: SSESS8b10154026bedacd8362ddcf85d89291=9etdbkrq05tn3oa50tfo5b3laj; newsim_tab=0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: www.lyca-mobile.no/wp-content/plugins/registration-port (...) FQDN: www.lyca-mobile.no IP: 3.120.194.163 HASH: c683211e591f2048ec4a840586e4f849894c8a57c147f23d7b5652d61c1260e2 3.120.194.163 HTTP/1.1 200 OK Content-Type: application/javascript Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Encoding: gzip Date: Thu, 20 Oct 2022 17:08:43 GMT Last-Modified: Thu, 17 Jun 2021 16:25:56 GMT Server: Apache Strict-Transport-Security: max-age=300; includeSubdomains; Vary: User-Agent,X-Forwarded-Proto,Accept-Encoding X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block transfer-encoding: chunked Connection: keep-alive --- Additional Info --- Magic: data Size: 82920 Md5: 87a9fcfa516cd7576d52480b0bb21dae Sha1: 7b2b31c6f1e91d53b76daad7fedea802592e4da4 Sha256: c683211e591f2048ec4a840586e4f849894c8a57c147f23d7b5652d61c1260e2
GET /lycamobile-norway-website/lycamobile-nor-cms/wp-content/uploads/2018/06/06075441/thumbnail_livechat-home-new.png HTTP/1.1 Host: s3-eu-central-1.amazonaws.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://d3uayxmzbnco7f.cloudfront.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: s3-eu-central-1.amazonaws.com/lycamobile-norway-website (...) FQDN: s3-eu-central-1.amazonaws.com IP: 52.219.171.133 HASH: d9d42de448b8e9c5ba116ccd270456367179a295167174953421fafafb5a932b 52.219.171.133 HTTP/1.1 200 OK Content-Type: image/png x-amz-id-2: bcDcT2G0XXhEJwRIRGMul5PuYw7yaDNIvgbjpQwqvvAPMUEwm403HjNdeQykiKOhk3B4ni70wJc= x-amz-request-id: RZ3F5FZSM4JWBY6P Date: Thu, 20 Oct 2022 17:08:45 GMT Last-Modified: Wed, 06 Oct 2021 07:51:37 GMT ETag: "997934aedeaea00686b8b3ddae955e3f" Cache-Control: max-age=31536000 Expires: Thu, 06 Oct 2022 07:54:41 GMT Accept-Ranges: bytes Server: AmazonS3 Content-Length: 4589 --- Additional Info --- Magic: PNG image data, 169 x 101, 8-bit/color RGBA, non-interlaced\012- data Size: 4589 Md5: 997934aedeaea00686b8b3ddae955e3f Sha1: 6f1ab00c2308c25108bd68368cbacfc6410bdc43 Sha256: d9d42de448b8e9c5ba116ccd270456367179a295167174953421fafafb5a932b
GET /lycamobilespain-website/lycamobile-es-cms/wp-content/uploads/2018/06/25105546/activate-your-sim.svg HTTP/1.1 Host: s3-eu-central-1.amazonaws.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://d3uayxmzbnco7f.cloudfront.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: s3-eu-central-1.amazonaws.com/lycamobilespain-website/l (...) FQDN: s3-eu-central-1.amazonaws.com IP: 52.219.171.133 HASH: 6369d8666187a0119acd2ad3f3bff8472f2cc720649cfa8966fc23719078dd39 52.219.171.133 HTTP/1.1 200 OK Content-Type: image/svg+xml x-amz-id-2: +wO9pcO88wZ9D2nUYaLekT/afBTgXA2+tZezUjZ0btz5irMaIOmnqPn1s5fqyeFbsdYvBFKFCcs= x-amz-request-id: RZ3CKCNK6MT756FH Date: Thu, 20 Oct 2022 17:08:45 GMT Last-Modified: Mon, 16 Jul 2018 16:00:42 GMT ETag: "f6081e075c11d4ee9be3b614cdcab433" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 1914 --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1914), with no line terminators Size: 1914 Md5: f6081e075c11d4ee9be3b614cdcab433 Sha1: 5b46fc85e5698f59567f0446251f52e1207e8d72 Sha256: 6369d8666187a0119acd2ad3f3bff8472f2cc720649cfa8966fc23719078dd39
GET /wp-content/themes/Divi-child/img/quick-topup.svg HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: aa9f77e1ebcb1a541bf88994cecc556f52cf27c8176ee8ae14789f38ff55de84 143.204.42.74 HTTP/1.1 200 OK Content-Type: image/svg+xml Content-Length: 794 Connection: keep-alive Last-Modified: Tue, 27 Aug 2019 08:27:38 GMT Accept-Ranges: bytes Server: AmazonS3 Date: Thu, 20 Oct 2022 15:52:26 GMT Cache-Control: 2592000 ETag: "cf1e3a7aa04f38e1620d798558f2d606" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: ZSq8H_l6IzEWWnKH0owPQQvU-hzZMeqB_JWCLB2XcTp7UElnKuwO5g== Age: 4579 --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (568) Size: 794 Md5: cf1e3a7aa04f38e1620d798558f2d606 Sha1: 2c9ad3c5756a3992d80838aea679b7d13fe2e17b Sha256: aa9f77e1ebcb1a541bf88994cecc556f52cf27c8176ee8ae14789f38ff55de84
GET /wp-content/themes/Divi-child/img/faq.svg HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 42ab849ec5e04c9bad98c11a45f2363492238778f29a64b0a9dc5896dcc90892 143.204.42.74 HTTP/1.1 200 OK Content-Type: image/svg+xml Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Tue, 27 Aug 2019 08:27:36 GMT Server: AmazonS3 Content-Encoding: gzip Date: Thu, 20 Oct 2022 00:26:24 GMT Cache-Control: 2592000 ETag: W/"6f426cc5e8b051ff22516894f385ff7b" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: G8fCTRSFQRa7q7jAsotiorh_iMZfqxuw6T2Jdkk35uc80aZtVx6XMg== Age: 60141 --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text Size: 785 Md5: b97c7e4122996f575e68c944d87095d8 Sha1: d8a4695fe27064b95e4918099aaa3c2be1821f32 Sha256: 42ab849ec5e04c9bad98c11a45f2363492238778f29a64b0a9dc5896dcc90892
GET /wp-content/themes/Divi-child/img/buy-bundles.svg HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 0064959abecb0e9b2ec31a3ef0e7560bcc6ecd0dc246374e49dd674ae6e510b6 143.204.42.74 HTTP/1.1 200 OK Content-Type: image/svg+xml Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Tue, 27 Aug 2019 08:27:33 GMT Server: AmazonS3 Content-Encoding: gzip Date: Thu, 20 Oct 2022 00:24:09 GMT Cache-Control: 2592000 ETag: W/"5fb98b5d9331ffac000aa38ccddcc058" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: bMAbjlog3GDKK2ZkYDHy7TPQAI-GW50pDZG4DIhRnPExx_WMEa4DFw== Age: 60276 --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size: 525 Md5: 089df5ad1f13ed4a67ba8ed563f2fb7a Sha1: 49a349c8d3912f6c9ef5db1519a76519f890b934 Sha256: 0064959abecb0e9b2ec31a3ef0e7560bcc6ecd0dc246374e49dd674ae6e510b6
GET /wp-content/themes/Divi-child/img/mobile-settings.svg HTTP/1.1 Host: d3uayxmzbnco7f.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-child/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: d3uayxmzbnco7f.cloudfront.net/wp-content/themes/Divi-ch (...) FQDN: d3uayxmzbnco7f.cloudfront.net IP: 143.204.42.74 HASH: 9e17a9e0e46f86caaac0774b886dce68c39a3de44469efb7088200e449343d22 143.204.42.74 HTTP/1.1 200 OK Content-Type: image/svg+xml Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 20 Oct 2022 00:26:24 GMT Last-Modified: Tue, 27 Aug 2019 08:27:37 GMT

Overview

Domain Summary (46)

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 139.45.197.238

Last 5 reports on ASN: RETN Limited

Last 5 reports on domain: rouonixon.com

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (121)

Executed Evals (1)

#1 JavaScript::Eval (size: 113) - SHA256: 66dc56dec4f01235dfcd64ece4f32f77847bd747f1ded61e6c44911d6d0f9264

Executed Writes (0)

HTTP Transactions (225)

Overview

Domain Summary (46)

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 139.45.197.238

Last 5 reports on ASN: RETN Limited

Last 5 reports on domain: rouonixon.com

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (121)

Executed Evals (1)

#1 JavaScript::Eval (size: 113) - SHA256: 66dc56dec4f01235dfcd64ece4f32f77847bd747f1ded61e6c44911d6d0f9264

Executed Writes (0)

HTTP Transactions (225)

Network Intrusion Detection Systems