r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7181eff9c60e83eb0004ece591e47dca
0fd8cd0c9d10b0547938982e57d2c43e2d98679f
89c5c0e2d6890798644174a8e31976aec03a1b3deb03812afbb520e5ed68f522
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89C5C0E2D6890798644174A8E31976AEC03A1B3DEB03812AFBB520E5ED68F522"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12617
Expires: Thu, 08 Dec 2022 07:14:12 GMT
Date: Thu, 08 Dec 2022 03:43:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 388f6fea5bafa378266622b72311a6ee
447f102dc12172ce1ba44c5e94e1d7bb49d43372
a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15185
Expires: Thu, 08 Dec 2022 07:57:00 GMT
Date: Thu, 08 Dec 2022 03:43:55 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 08 Dec 2022 03:08:07 GMT
content-type: application/json
age: 2148
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c3470f9f0a4df8c1496b577fa9435ff6
f83b0226bb57ed0f3e1acdad61b940414add135d
f542579e3a3577a646babde862282c2afda6ed784360a915143216100f7a3d91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F542579E3A3577A646BABDE862282C2AFDA6ED784360A915143216100F7A3D91"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5765
Expires: Thu, 08 Dec 2022 05:20:00 GMT
Date: Thu, 08 Dec 2022 03:43:55 GMT
Connection: keep-alive
mkkuei4kdsz.com/382/764.html
64.225.91.73200 OK 329 B URL HTTP/1.1 mkkuei4kdsz.com/382/764.html
IP 64.225.91.73:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash ecbcb8bae64098de3e587487b474f8b8
e275409fb40ea27c3826af493f70faf147d0f995
2597a3f2418586d8a9fb0764743a84486ba066c6af3ff194922fb6c65a783688
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /382/764.html HTTP/1.1
Host: mkkuei4kdsz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 08 Dec 2022 03:43:55 GMT
content-type: text/html
last-modified: Wed, 12 Jan 2022 17:20:45 GMT
etag: W/"61df0ded-1ad"
content-encoding: gzip
transfer-encoding: chunked
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: tnI2pk/KznwdRDwewwRPTFr8wndALhP0HPsEk1E5Ly9iKYM41S6uvlKvj9IvEUF/md+yIZs/YPY=
x-amz-request-id: NDBH9W4A8445XKG2
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 08 Dec 2022 02:49:36 GMT
age: 3259
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 03:43:55 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js
104.17.25.14200 OK 28 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (65451)
Hash 4b5f47439b640180cc3450f7de05d0d8
5a0dc9bcab80ddc409dd35fcb00a88fe6846fee2
1f85e8b327f42c17c025d69849914068536d9aa95412fe473ae90ffb2f4ebd82
GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://mkkuei4kdsz.com
Connection: keep-alive
Referer: http://mkkuei4kdsz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 03:43:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 27958
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb09ed3-15d84"
last-modified: Mon, 04 May 2020 23:01:39 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 15914739
expires: Tue, 28 Nov 2023 03:43:55 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ErFGC060IJ%2FTU7UyGWVjaWRx6m53RqzVszSOoI%2Beww1UTPLYtFMN5jy0gDlWhg9ZrUgprdMjnSHRIhENWQC%2BJEME%2FiyZl2ufScrxiPKn2eX3ODQlGOYlgJDNSb%2FtWbNlWJ4MZE6l"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 77627fe638a8b51b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 814abe752aa0a8c5f21a50a04a14fdb3
0b5db09b5ac30948dac5e0dd2dc8b171e6a8851b
d820c9fe909a20b7b11a28c26508cb8a536aae64c6c7094a0d8f9b0e3e705c56
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "D820C9FE909A20B7B11A28C26508CB8A536AAE64C6C7094A0D8F9B0E3E705C56"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13049
Expires: Thu, 08 Dec 2022 07:21:25 GMT
Date: Thu, 08 Dec 2022 03:43:56 GMT
Connection: keep-alive
mkkuei4kdsz.com/favicon.ico
64.225.91.73200 OK 329 B URL HTTP/1.1 mkkuei4kdsz.com/favicon.ico
IP 64.225.91.73:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash ecbcb8bae64098de3e587487b474f8b8
e275409fb40ea27c3826af493f70faf147d0f995
2597a3f2418586d8a9fb0764743a84486ba066c6af3ff194922fb6c65a783688
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: mkkuei4kdsz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mkkuei4kdsz.com/382/764.html
HTTP/1.1 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 08 Dec 2022 03:43:56 GMT
content-type: text/html
last-modified: Wed, 12 Jan 2022 17:20:45 GMT
etag: W/"61df0ded-1ad"
content-encoding: gzip
transfer-encoding: chunked
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 08 Dec 2022 03:07:55 GMT
age: 2161
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 053aff7451e55d4269dd9610ab070f3f
b3376256d11d159b0c7280ba1515b78d7d9e12ca
24114ca560fe70d03185bd66985603fd5a03dc310aa9a8ea7a7b3723ed46ce3e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2498
Cache-Control: max-age=108272
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 03:43:56 GMT
Etag: "639057aa-1d7"
Expires: Fri, 09 Dec 2022 09:48:28 GMT
Last-Modified: Wed, 07 Dec 2022 09:06:50 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
domaincntrol.com/?orighost=http://mkkuei4kdsz.com/382/764.html
104.26.10.61200 OK 28 B URL HTTP/2 domaincntrol.com/?orighost=http://mkkuei4kdsz.com/382/764.html
IP 104.26.10.61:0
File type ASCII text, with no line terminators
Hash 7aae16ed70d2e07943585bbb1cd02b55
3209123510c034e6e38ca45edf14307f1375a8f5
51bfb53a70df6adc48f0670be59a16a657ab5a2bafc176973a32d5c36a4fc5d3
GET /?orighost=http://mkkuei4kdsz.com/382/764.html HTTP/1.1
Host: domaincntrol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://mkkuei4kdsz.com
Connection: keep-alive
Referer: http://mkkuei4kdsz.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 03:43:56 GMT
content-type: text/javascript;charset=UTF-8
content-length: 28
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V%2B6luIBz%2FcWk%2FWpnobbNvi3mbMKV%2F5BPgp%2BxWqLOxWwVmG1%2F61WCNc4Eb3MnnHeUFKfQWDPSt8TfAuud8xaOyEMFf%2FAbg43y%2BCdeThRGjVUsONuN8WfVEdqC8XG%2Bn35r78g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77627fe72dddb512-OSL
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.89.136.7101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.136.7:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: kxmT6Cv6sY07OgPagh+lyA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: jo4f2VucRuI5D6R6PsBUrhUXzFw=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2570
Expires: Thu, 08 Dec 2022 04:26:48 GMT
Date: Thu, 08 Dec 2022 03:43:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2570
Expires: Thu, 08 Dec 2022 04:26:48 GMT
Date: Thu, 08 Dec 2022 03:43:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2570
Expires: Thu, 08 Dec 2022 04:26:48 GMT
Date: Thu, 08 Dec 2022 03:43:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2570
Expires: Thu, 08 Dec 2022 04:26:48 GMT
Date: Thu, 08 Dec 2022 03:43:58 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6524c56-aea0-48f9-a1c0-2eb8b37618cc.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6524c56-aea0-48f9-a1c0-2eb8b37618cc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 39ae12151067969e63a9064a2b273e03
9450229c82f195e4b62c0862650dbb3d159b46e8
7b462d7f52643ca683c18d789d2adc4475c64e655489513a2faa1edbd69eecd3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6524c56-aea0-48f9-a1c0-2eb8b37618cc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8401
x-amzn-requestid: f90a46ff-cf1f-4a27-a85c-088fdca3abb4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy4BDF1zIAMF-EA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639106d3-7496cf2770c9b22924b2a11c;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:34:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: R6ftXKYEOemnZcKjNanVHiKnPEQw34DUyLPODM5DCcqIGU50qVvNIA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:06:53 GMT
age: 20225
etag: "9450229c82f195e4b62c0862650dbb3d159b46e8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9301ee5-df75-4967-a2c7-597f869e557b.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9301ee5-df75-4967-a2c7-597f869e557b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 57be99ac898a37d73f2ba4a24f56248f
04e32eb45581201a6a1863200e4d139df48285e6
a20081b64fc019372843360b15aa3461ec9dd3deb50ab398bca0a5e74d5468c2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9301ee5-df75-4967-a2c7-597f869e557b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12534
x-amzn-requestid: 2a01f2ba-cf3a-4f59-8339-214c66bcc0d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czDbyGTcoAMF_TQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911918-5d3eba8d01e4175a71acc6cd;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 22:52:08 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NoZlZ8WFfOuIbkWaC2pJPJQrWtjzz2gCHJWr-u-nMNYmu8MkTf6_PA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:03:58 GMT
age: 16800
etag: "04e32eb45581201a6a1863200e4d139df48285e6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F525e2750-67bb-410b-9408-34845ca67f18.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F525e2750-67bb-410b-9408-34845ca67f18.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1cfd2bbdab3f88f525c53c375a0e0439
b0a5af508496c98460212497f6e75a0ddfc7f2de
9fd863a6e673c348b4e5cbc3e4747d48e87b4699e9fed7ae9590e36ae72ad9c9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F525e2750-67bb-410b-9408-34845ca67f18.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6746
x-amzn-requestid: 50f40893-5343-473d-96ff-e59b0c7ec77e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy3_pFx6oAMF1cA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639106ca-79cff8fe348074d505426909;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:34:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: s4Zf3VmA9ybuz7NQdvaolSHSFvGyZ0niRgZtogYnTNWEatHRouG3Sw==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:01:55 GMT
age: 20523
etag: "b0a5af508496c98460212497f6e75a0ddfc7f2de"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F95d68d20-ce48-4bc4-a89b-d42a294520bc.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F95d68d20-ce48-4bc4-a89b-d42a294520bc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 077c8b656d9ac4ecba7aea40ecaa4e0c
84b9d58a1cf4174f1a55b1c3475a09d579094f19
abf13120589f3c11466a6b3f65874565a78b3a25b047b2089dafdae0cdf71c08
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F95d68d20-ce48-4bc4-a89b-d42a294520bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6656
x-amzn-requestid: 623488c8-42b4-43d0-a274-f35f4e2695c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy4AwH11IAMFfCw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639106d1-1226750c2e9dbe517b1211e3;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:34:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Wvq8PJEuXz7Yf5QE2phHXPYPCLWzIR1MXWiJKyN84yHINqK6H_ZQrQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:05:39 GMT
age: 20299
etag: "84b9d58a1cf4174f1a55b1c3475a09d579094f19"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 210b27f5f6310d8fad640acce3d9ae0e
08d241e56622cb900754d95bc5d58ed8826d9f32
64410e13759cdfa24976dcba0c64aca27edc3ee56358f344e55f60793422e3ea
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6557
x-amzn-requestid: 0232ddcd-8274-431e-a55e-8298fbfd6dfc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cmcuMG6bIAMFUng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c0e5a-3cc17121425f87321ce7ae7e;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 03:04:58 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: va_vly0iX6rzm_aTWrryPRjoTWlI-_0m6rpS6VrTx-nsd71dk1cSZw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 06:11:41 GMT
age: 77537
etag: "08d241e56622cb900754d95bc5d58ed8826d9f32"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F234796b8-a59e-4174-a03a-b127b03b60eb.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F234796b8-a59e-4174-a03a-b127b03b60eb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 57a992ab666f21c6da0057fefb622ff2
c36381d6744ae44360b2a37ca7586028e980714b
afe4050d9b07dcab509c95eb8d75ca410db74bd59f39561e5d190550cb61503e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F234796b8-a59e-4174-a03a-b127b03b60eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13556
x-amzn-requestid: 3e79e2da-80ea-404c-8d87-939c7682dbe8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy4h8EuUIAMFkIQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639107a5-68318f164708882a43fb0f12;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:37:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7RZTh3iQHGp_XffXQQw13UUWqPNZQFJ_e4pIvNPgAaA1aGy_cXMueA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:13:24 GMT
etag: "c36381d6744ae44360b2a37ca7586028e980714b"
content-type: image/jpeg
age: 19834
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ww2.mkkuei4kdsz.com/
64.190.63.136200 OK 1.4 kB IP 64.190.63.136:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (700)
Hash 2cc9d146021959f88500264c0cf7691c
01b29fe88220baf5fdbf99978014c80ffd3bd27e
c7c8ef9f9a201c88f32fa465318e9e01e26be210a0cd0ee2753773e959d5830c
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET / HTTP/1.1
Host: ww2.mkkuei4kdsz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mkkuei4kdsz.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
date: Thu, 08 Dec 2022 03:43:58 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
vary: Accept-Encoding
x-powered-by: PHP/8.1.9
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_zfi2IAQMFhbeJz7TohoVHVtJWU2hwm7Lrp9mU2CS1tg8fh6Um4KcOzzYJ6LQkNLWAjiGBQP1WU+h5qP7TrTizQ==
last-modified: Thu, 08 Dec 2022 03:43:56 GMT
x-cache-miss-from: parking-d7dbd8c4d-565j6
server: NginX
content-encoding: gzip
img.sedoparking.com/images/js_preloader.gif
205.234.175.175200 OK 4.3 kB URL HTTP/1.1 img.sedoparking.com/images/js_preloader.gif
IP 205.234.175.175:0
File type GIF image data, version 89a, 16 x 16\012- data
Hash 90c93102a88c2ab94bff1575b7a6e86e
56d71bf13de464534643db9d127629a0a3bf677a
5f6ad7031600056b578a6e8c6b34bc718d13125cc8256aa4a9050e549576f81a
GET /images/js_preloader.gif HTTP/1.1
Host: img.sedoparking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww2.mkkuei4kdsz.com/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 03:43:58 GMT
Content-Type: image/gif
Content-Length: 4254
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=604800
Expires: Thu, 15 Dec 2022 03:43:58 GMT
X-CFHash: "90c93102a88c2ab94bff1575b7a6e86e"
X-CFF: B
Last-Modified: Fri, 15 Mar 2019 12:24:07 GMT
X-CF3: H
CF4Age: 156700
x-cf-tsc: 1648179742
CF4ttl: 31536000.000
X-CF2: H
Server: CFS 0215
X-CF-ReqID: 83697164d43296ce9c8d43c15fd2e7fd
X-CF1: 11696:fA.arn1:cf:cacheN.arn1-01:H
Accept-Ranges: bytes
ww2.mkkuei4kdsz.com/search/tsc.php?200=MzgzNDQ1ODM3&21=OTEuOTAuNDIuMTU0&681=MTY3MDQ3MTAzODMyZmUxODYxYmI3MTk5MGM0NzlmZGJmMGFjMWU4NGJm&crc=ff2cb1234b2ec4b48cd42b8f1da1e2a3c3662db1&cv=1
64.190.63.136200 OK 0 B URL HTTP/1.1 ww2.mkkuei4kdsz.com/search/tsc.php?200=MzgzNDQ1ODM3&21=OTEuOTAuNDIuMTU0&681=MTY3MDQ3MTAzODMyZmUxODYxYmI3MTk5MGM0NzlmZGJmMGFjMWU4NGJm&crc=ff2cb1234b2ec4b48cd42b8f1da1e2a3c3662db1&cv=1
IP 64.190.63.136:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /search/tsc.php?200=MzgzNDQ1ODM3&21=OTEuOTAuNDIuMTU0&681=MTY3MDQ3MTAzODMyZmUxODYxYmI3MTk5MGM0NzlmZGJmMGFjMWU4NGJm&crc=ff2cb1234b2ec4b48cd42b8f1da1e2a3c3662db1&cv=1 HTTP/1.1
Host: ww2.mkkuei4kdsz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww2.mkkuei4kdsz.com/
HTTP/1.1 200 OK
date: Thu, 08 Dec 2022 03:43:58 GMT
content-type: text/html; charset=UTF-8
content-length: 0
x-powered-by: PHP/8.1.9
x-cache-miss-from: parking-d7dbd8c4d-565j6
server: NginX
ww2.mkkuei4kdsz.com/search/redirect.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3Dk-0FGa7o8D4_0&v=OTc4YTJmYmVlYjA3Mzg5ODM5NzlmOGNkYzFhOTkxY2MJMQl3dzIubWtrdWVpNGtkc3ouY29tNjM5MTVkN2NkOWM3OTAuMjEyODQ2OTgJd3cyLm1ra3VlaTRrZHN6LmNvbTYzOTE1ZDdjZDljYTQ4LjM5ODIwMjU2CTE2NzA0NzEwMzgJYWRfNjNfMA==&l=OAk2YzZhYzg1YTMyZGExMjMwODY3Njk2MTY1MWJjZjYzYgkwCTM1CTAJNTFhNGRlNWMyN2MyMzEyYzcyNmE2NWFlMjVjMGVkOGYJMzgzNDQ1ODM3CW1ra3VlaTRrZHN6CTAJNjMJNgkyCTE2NzA0NzEwMzgJMC4wMDAyNjcJTgkwCTEJODMwCTEyMDUJMTk0MDQzMTQyCTkxLjkwLjQyLjE1NAkw
64.190.63.136302 Found 0 B URL HTTP/1.1 ww2.mkkuei4kdsz.com/search/redirect.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3Dk-0FGa7o8D4_0&v=OTc4YTJmYmVlYjA3Mzg5ODM5NzlmOGNkYzFhOTkxY2MJMQl3dzIubWtrdWVpNGtkc3ouY29tNjM5MTVkN2NkOWM3OTAuMjEyODQ2OTgJd3cyLm1ra3VlaTRrZHN6LmNvbTYzOTE1ZDdjZDljYTQ4LjM5ODIwMjU2CTE2NzA0NzEwMzgJYWRfNjNfMA==&l=OAk2YzZhYzg1YTMyZGExMjMwODY3Njk2MTY1MWJjZjYzYgkwCTM1CTAJNTFhNGRlNWMyN2MyMzEyYzcyNmE2NWFlMjVjMGVkOGYJMzgzNDQ1ODM3CW1ra3VlaTRrZHN6CTAJNjMJNgkyCTE2NzA0NzEwMzgJMC4wMDAyNjcJTgkwCTEJODMwCTEyMDUJMTk0MDQzMTQyCTkxLjkwLjQyLjE1NAkw
IP 64.190.63.136:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /search/redirect.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3Dk-0FGa7o8D4_0&v=OTc4YTJmYmVlYjA3Mzg5ODM5NzlmOGNkYzFhOTkxY2MJMQl3dzIubWtrdWVpNGtkc3ouY29tNjM5MTVkN2NkOWM3OTAuMjEyODQ2OTgJd3cyLm1ra3VlaTRrZHN6LmNvbTYzOTE1ZDdjZDljYTQ4LjM5ODIwMjU2CTE2NzA0NzEwMzgJYWRfNjNfMA==&l=OAk2YzZhYzg1YTMyZGExMjMwODY3Njk2MTY1MWJjZjYzYgkwCTM1CTAJNTFhNGRlNWMyN2MyMzEyYzcyNmE2NWFlMjVjMGVkOGYJMzgzNDQ1ODM3CW1ra3VlaTRrZHN6CTAJNjMJNgkyCTE2NzA0NzEwMzgJMC4wMDAyNjcJTgkwCTEJODMwCTEyMDUJMTk0MDQzMTQyCTkxLjkwLjQyLjE1NAkw HTTP/1.1
Host: ww2.mkkuei4kdsz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww2.mkkuei4kdsz.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
date: Thu, 08 Dec 2022 03:43:58 GMT
content-type: text/html; charset=UTF-8
content-length: 0
x-powered-by: PHP/8.1.9
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
last-modified: Thu, 08 Dec 2022 03:43:58 GMT
location: /search/tcerider.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3Dk-0FGa7o8D4_0&v=OTc4YTJmYmVlYjA3Mzg5ODM5NzlmOGNkYzFhOTkxY2MJMQl3dzIubWtrdWVpNGtkc3ouY29tNjM5MTVkN2NkOWM3OTAuMjEyODQ2OTgJd3cyLm1ra3VlaTRrZHN6LmNvbTYzOTE1ZDdjZDljYTQ4LjM5ODIwMjU2CTE2NzA0NzEwMzgJYWRfNjNfMA==&l=OAk2YzZhYzg1YTMyZGExMjMwODY3Njk2MTY1MWJjZjYzYgkwCTM1CTAJNTFhNGRlNWMyN2MyMzEyYzcyNmE2NWFlMjVjMGVkOGYJMzgzNDQ1ODM3CW1ra3VlaTRrZHN6CTAJNjMJNgkyCTE2NzA0NzEwMzgJMC4wMDAyNjcJTgkwCTEJODMwCTEyMDUJMTk0MDQzMTQyCTkxLjkwLjQyLjE1NAkw
x-cache-miss-from: parking-d7dbd8c4d-565j6
server: NginX
ww2.mkkuei4kdsz.com/search/tcerider.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3Dk-0FGa7o8D4_0&v=OTc4YTJmYmVlYjA3Mzg5ODM5NzlmOGNkYzFhOTkxY2MJMQl3dzIubWtrdWVpNGtkc3ouY29tNjM5MTVkN2NkOWM3OTAuMjEyODQ2OTgJd3cyLm1ra3VlaTRrZHN6LmNvbTYzOTE1ZDdjZDljYTQ4LjM5ODIwMjU2CTE2NzA0NzEwMzgJYWRfNjNfMA==&l=OAk2YzZhYzg1YTMyZGExMjMwODY3Njk2MTY1MWJjZjYzYgkwCTM1CTAJNTFhNGRlNWMyN2MyMzEyYzcyNmE2NWFlMjVjMGVkOGYJMzgzNDQ1ODM3CW1ra3VlaTRrZHN6CTAJNjMJNgkyCTE2NzA0NzEwMzgJMC4wMDAyNjcJTgkwCTEJODMwCTEyMDUJMTk0MDQzMTQyCTkxLjkwLjQyLjE1NAkw
64.190.63.136302 Found 311 B URL HTTP/1.1 ww2.mkkuei4kdsz.com/search/tcerider.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3Dk-0FGa7o8D4_0&v=OTc4YTJmYmVlYjA3Mzg5ODM5NzlmOGNkYzFhOTkxY2MJMQl3dzIubWtrdWVpNGtkc3ouY29tNjM5MTVkN2NkOWM3OTAuMjEyODQ2OTgJd3cyLm1ra3VlaTRrZHN6LmNvbTYzOTE1ZDdjZDljYTQ4LjM5ODIwMjU2CTE2NzA0NzEwMzgJYWRfNjNfMA==&l=OAk2YzZhYzg1YTMyZGExMjMwODY3Njk2MTY1MWJjZjYzYgkwCTM1CTAJNTFhNGRlNWMyN2MyMzEyYzcyNmE2NWFlMjVjMGVkOGYJMzgzNDQ1ODM3CW1ra3VlaTRrZHN6CTAJNjMJNgkyCTE2NzA0NzEwMzgJMC4wMDAyNjcJTgkwCTEJODMwCTEyMDUJMTk0MDQzMTQyCTkxLjkwLjQyLjE1NAkw
IP 64.190.63.136:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 47df44c2881f3da86936f68fe4139fb9
07ac611aaa9649ccc047a335ee1e203cf14a9c33
d2186a8931aae37acf70989662e15bfa977c43ce8c0578c2093e1c74d2e98c50
Analyzer Verdict Alert quad9 Sinkholed
GET /search/tcerider.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3Dk-0FGa7o8D4_0&v=OTc4YTJmYmVlYjA3Mzg5ODM5NzlmOGNkYzFhOTkxY2MJMQl3dzIubWtrdWVpNGtkc3ouY29tNjM5MTVkN2NkOWM3OTAuMjEyODQ2OTgJd3cyLm1ra3VlaTRrZHN6LmNvbTYzOTE1ZDdjZDljYTQ4LjM5ODIwMjU2CTE2NzA0NzEwMzgJYWRfNjNfMA==&l=OAk2YzZhYzg1YTMyZGExMjMwODY3Njk2MTY1MWJjZjYzYgkwCTM1CTAJNTFhNGRlNWMyN2MyMzEyYzcyNmE2NWFlMjVjMGVkOGYJMzgzNDQ1ODM3CW1ra3VlaTRrZHN6CTAJNjMJNgkyCTE2NzA0NzEwMzgJMC4wMDAyNjcJTgkwCTEJODMwCTEyMDUJMTk0MDQzMTQyCTkxLjkwLjQyLjE1NAkw HTTP/1.1
Host: ww2.mkkuei4kdsz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ww2.mkkuei4kdsz.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
date: Thu, 08 Dec 2022 03:43:59 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
x-powered-by: PHP/8.1.9
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
last-modified: Thu, 08 Dec 2022 03:43:59 GMT
location: http://xml.sedodna.com/click?i=k-0FGa7o8D4_0
x-cache-miss-from: parking-d7dbd8c4d-tggpp
server: NginX
xml.sedodna.com/click?i=k-0FGa7o8D4_0
173.239.53.32302 Found 0 B URL HTTP/1.1 xml.sedodna.com/click?i=k-0FGa7o8D4_0
IP 173.239.53.32:0
ASN #27257 WEBAIR-INTERNET
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?i=k-0FGa7o8D4_0 HTTP/1.1
Host: xml.sedodna.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ww2.mkkuei4kdsz.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Cache-Control: no-store
Content-Length: 0
Age: 0
Connection: keep-alive
Location: https://mybettermb.com/aS/feedclick?s=HFz5zNIIs96fzq49jFkHXa3dDnCBF-q5pjcTajzqm_QH0A88-gtuCxG_6U4hqQTcO4eq_lgR48_oiQJuDuwoS9gcFc4_-stlmbd3B7sGcRAkoDlrhq7v09i6czQKU3WjqWfap4yUt_iPH1TzciB1Qg6AZUDRz9bjOEX4iGGchU0uqmLH6bGB2rKSid9YvhV-7ycHwKeWE1PUD3eg5Z5w7URtWxpLV7zGJF7YtIv_pSU8yedaajdQan7X1xyAWrFGJaATSme3WF9iYH5cn7PpR96H_Z4cAXUhbNWIUl0XQT-85OIp9iwj7uwUW1daS2u3jXkdiroZGpvbnyvokSzRUdkToqh8XF8oSlbEWRe_vMZ585EtGYcDgElmlUqhKAuUWDF_aYFKoC_pCloREz-gAUf4GCn_ti_dC0ynZ48tkGSDsFZzNHNozOQiGGVu-xbsDCRyz2H-C45Heh8v0Km3Y1oaVVIbEr-PuuKRjgR8nMTmxekK28wDoRMkZAll1gGpA7wZp7a6IJO8RJT6is_tgBFVXMhxbJ1a3lLVGDOQcJ7XNLVlVnjPxxbPR3gMLCYzkuKMowKAWI3qEPCeYIJUQLsnuHDiWSpkuOcm9PVxmEokioNNyCd-vEkhdhhajhYJSlNi4THOUAJ_I1h3UOTRcd6Iez1QXWMYWbmStyCJrC9HydVPRrkWrre2FyI3zJE9XtPzPZgsqfpRdQeoA2h4A0JvH6RBYM1x-2hMb9Pb2jF32-S5bEkeFG735iCmsc80-eG-D03DV5K6HCdI1Kk0GRlW1rQMwBEoWLzhrvoXKBsomvFx8OiqAapeJxBM-kw5mLR4OqlPou_jY-nZ4h2Gi8g2MYNKf9gzRu1tHZec409ufGrp8vEveGSZXs9N-UlXWAcy_s0ZetMc-lmTMvRz7cC49WDpqXe-qqdGOzi4GAb-fNgP3tEjDFFehKlGmMbgPAj_yaetn5VIlXqw7Fgk2OgbZLq7t0BuU0js5-rF3QU6RI6IV5OkKlv0FLGsKb_TdMgSsO8Lq_DPnZ6asMmh3atSStWeSexnBDUsAjReqsC8T6FZOp0ZMrgPoxdNST-TuiC5-ZNuWGuIE9ZofkPMQ7aT6S2Tm0fntmC2dINi8z3Nq24IWrSj6yzY3fnmDFjND4lhQOWuNMUI0SP4TWDaHaAClYHbx9ECjibWcz-Zz3xqqnLESi3npsDCBYWiMGH8rtg5Yuugvl7nAA319rQT5Ud6a0Dn6eNJZbhSXBsuqp4TKI2qVF_upugCggYFh3EAoiiZxlTdJcUbO7pWllwGdVGZXxgmhR3INz-QU0tQexjS1sjTSDdvxjTnBG6KLohwyqV7tETR7cP-o1a3gHjZa_gjn5QKyssU7dq2rVA9fmvq9IaY6LYxIeiF1cs76ErxCBdlQonnkAtH2nCzpVOQcBJKWnGaCo17onOqLNsrJIIZq0s55ffWLHJnlhS8h8PiMeTNhQevcYHMrx4A9icrGL_acn7ShipfF2bCv7EFf2VcnzCfRrja5CgVHNrONmq3rXtVVrcM9JFIG71N0_gkaf9wmuFVVIM3RCmuI0tSEk_a_Gei7StA-CFjNx6Toj9kghgbOnleKyz947GP4TsT26NezqvwtmGKUTpGk9yX0sr4SfHbi0RDkFmhaS5DjZ7fq1QONt9OxTf7WLbPkU3hnuULpSBOclApGnETwPbCednl8usGYgrUihltjPnnWR7ArmQLfoUt5WaRwCIXpnHq8I0bYtXdmST4aCvw1mX2qEUhYBeUO1dAajXaSwjszpoemvdNVb-Ai2sCC7QSYRJxkXd-d-Km4x3zpGL3jwDO2rKic6os2yskgrCLYR7wB-v9Wa_x1wU3pDZetrPeDa_33MtPdZsQMGS7Jm7EhOsk27bxGYd3vi6Mg-aHrLZE3F_n
Pragma: no-cache
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 8cff693ee9c762244ede97dd8fcd747a
502f6f4bf0484b95b1a1339077d6fd9df5aced9e
99e344ff76e45b61c748a61cd60c67aff303ffc62e6e5a1e679f59d66c0a15da
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 03:43:59 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 04 Dec 2022 19:25:46 GMT
Expires: Sun, 11 Dec 2022 19:25:45 GMT
Etag: "502f6f4bf0484b95b1a1339077d6fd9df5aced9e"
Cache-Control: max-age=315105,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77627ffdeb11b518-OSL
mybettermb.com/aS/feedclick?s=HFz5zNIIs96fzq49jFkHXa3dDnCBF-q5pjcTajzqm_QH0A88-gtuCxG_6U4hqQTcO4eq_lgR48_oiQJuDuwoS9gcFc4_-stlmbd3B7sGcRAkoDlrhq7v09i6czQKU3WjqWfap4yUt_iPH1TzciB1Qg6AZUDRz9bjOEX4iGGchU0uqmLH6bGB2rKSid9YvhV-7ycHwKeWE1PUD3eg5Z5w7URtWxpLV7zGJF7YtIv_pSU8yedaajdQan7X1xyAWrFGJaATSme3WF9iYH5cn7PpR96H_Z4cAXUhbNWIUl0XQT-85OIp9iwj7uwUW1daS2u3jXkdiroZGpvbnyvokSzRUdkToqh8XF8oSlbEWRe_vMZ585EtGYcDgElmlUqhKAuUWDF_aYFKoC_pCloREz-gAUf4GCn_ti_dC0ynZ48tkGSDsFZzNHNozOQiGGVu-xbsDCRyz2H-C45Heh8v0Km3Y1oaVVIbEr-PuuKRjgR8nMTmxekK28wDoRMkZAll1gGpA7wZp7a6IJO8RJT6is_tgBFVXMhxbJ1a3lLVGDOQcJ7XNLVlVnjPxxbPR3gMLCYzkuKMowKAWI3qEPCeYIJUQLsnuHDiWSpkuOcm9PVxmEokioNNyCd-vEkhdhhajhYJSlNi4THOUAJ_I1h3UOTRcd6Iez1QXWMYWbmStyCJrC9HydVPRrkWrre2FyI3zJE9XtPzPZgsqfpRdQeoA2h4A0JvH6RBYM1x-2hMb9Pb2jF32-S5bEkeFG735iCmsc80-eG-D03DV5K6HCdI1Kk0GRlW1rQMwBEoWLzhrvoXKBsomvFx8OiqAapeJxBM-kw5mLR4OqlPou_jY-nZ4h2Gi8g2MYNKf9gzRu1tHZec409ufGrp8vEveGSZXs9N-UlXWAcy_s0ZetMc-lmTMvRz7cC49WDpqXe-qqdGOzi4GAb-fNgP3tEjDFFehKlGmMbgPAj_yaetn5VIlXqw7Fgk2OgbZLq7t0BuU0js5-rF3QU6RI6IV5OkKlv0FLGsKb_TdMgSsO8Lq_DPnZ6asMmh3atSStWeSexnBDUsAjReqsC8T6FZOp0ZMrgPoxdNST-TuiC5-ZNuWGuIE9ZofkPMQ7aT6S2Tm0fntmC2dINi8z3Nq24IWrSj6yzY3fnmDFjND4lhQOWuNMUI0SP4TWDaHaAClYHbx9ECjibWcz-Zz3xqqnLESi3npsDCBYWiMGH8rtg5Yuugvl7nAA319rQT5Ud6a0Dn6eNJZbhSXBsuqp4TKI2qVF_upugCggYFh3EAoiiZxlTdJcUbO7pWllwGdVGZXxgmhR3INz-QU0tQexjS1sjTSDdvxjTnBG6KLohwyqV7tETR7cP-o1a3gHjZa_gjn5QKyssU7dq2rVA9fmvq9IaY6LYxIeiF1cs76ErxCBdlQonnkAtH2nCzpVOQcBJKWnGaCo17onOqLNsrJIIZq0s55ffWLHJnlhS8h8PiMeTNhQevcYHMrx4A9icrGL_acn7ShipfF2bCv7EFf2VcnzCfRrja5CgVHNrONmq3rXtVVrcM9JFIG71N0_gkaf9wmuFVVIM3RCmuI0tSEk_a_Gei7StA-CFjNx6Toj9kghgbOnleKyz947GP4TsT26NezqvwtmGKUTpGk9yX0sr4SfHbi0RDkFmhaS5DjZ7fq1QONt9OxTf7WLbPkU3hnuULpSBOclApGnETwPbCednl8usGYgrUihltjPnnWR7ArmQLfoUt5WaRwCIXpnHq8I0bYtXdmST4aCvw1mX2qEUhYBeUO1dAajXaSwjszpoemvdNVb-Ai2sCC7QSYRJxkXd-d-Km4x3zpGL3jwDO2rKic6os2yskgrCLYR7wB-v9Wa_x1wU3pDZetrPeDa_33MtPdZsQMGS7Jm7EhOsk27bxGYd3vi6Mg-aHrLZE3F_n
108.168.193.189302 Found 0 B URL HTTP/2 mybettermb.com/aS/feedclick?s=HFz5zNIIs96fzq49jFkHXa3dDnCBF-q5pjcTajzqm_QH0A88-gtuCxG_6U4hqQTcO4eq_lgR48_oiQJuDuwoS9gcFc4_-stlmbd3B7sGcRAkoDlrhq7v09i6czQKU3WjqWfap4yUt_iPH1TzciB1Qg6AZUDRz9bjOEX4iGGchU0uqmLH6bGB2rKSid9YvhV-7ycHwKeWE1PUD3eg5Z5w7URtWxpLV7zGJF7YtIv_pSU8yedaajdQan7X1xyAWrFGJaATSme3WF9iYH5cn7PpR96H_Z4cAXUhbNWIUl0XQT-85OIp9iwj7uwUW1daS2u3jXkdiroZGpvbnyvokSzRUdkToqh8XF8oSlbEWRe_vMZ585EtGYcDgElmlUqhKAuUWDF_aYFKoC_pCloREz-gAUf4GCn_ti_dC0ynZ48tkGSDsFZzNHNozOQiGGVu-xbsDCRyz2H-C45Heh8v0Km3Y1oaVVIbEr-PuuKRjgR8nMTmxekK28wDoRMkZAll1gGpA7wZp7a6IJO8RJT6is_tgBFVXMhxbJ1a3lLVGDOQcJ7XNLVlVnjPxxbPR3gMLCYzkuKMowKAWI3qEPCeYIJUQLsnuHDiWSpkuOcm9PVxmEokioNNyCd-vEkhdhhajhYJSlNi4THOUAJ_I1h3UOTRcd6Iez1QXWMYWbmStyCJrC9HydVPRrkWrre2FyI3zJE9XtPzPZgsqfpRdQeoA2h4A0JvH6RBYM1x-2hMb9Pb2jF32-S5bEkeFG735iCmsc80-eG-D03DV5K6HCdI1Kk0GRlW1rQMwBEoWLzhrvoXKBsomvFx8OiqAapeJxBM-kw5mLR4OqlPou_jY-nZ4h2Gi8g2MYNKf9gzRu1tHZec409ufGrp8vEveGSZXs9N-UlXWAcy_s0ZetMc-lmTMvRz7cC49WDpqXe-qqdGOzi4GAb-fNgP3tEjDFFehKlGmMbgPAj_yaetn5VIlXqw7Fgk2OgbZLq7t0BuU0js5-rF3QU6RI6IV5OkKlv0FLGsKb_TdMgSsO8Lq_DPnZ6asMmh3atSStWeSexnBDUsAjReqsC8T6FZOp0ZMrgPoxdNST-TuiC5-ZNuWGuIE9ZofkPMQ7aT6S2Tm0fntmC2dINi8z3Nq24IWrSj6yzY3fnmDFjND4lhQOWuNMUI0SP4TWDaHaAClYHbx9ECjibWcz-Zz3xqqnLESi3npsDCBYWiMGH8rtg5Yuugvl7nAA319rQT5Ud6a0Dn6eNJZbhSXBsuqp4TKI2qVF_upugCggYFh3EAoiiZxlTdJcUbO7pWllwGdVGZXxgmhR3INz-QU0tQexjS1sjTSDdvxjTnBG6KLohwyqV7tETR7cP-o1a3gHjZa_gjn5QKyssU7dq2rVA9fmvq9IaY6LYxIeiF1cs76ErxCBdlQonnkAtH2nCzpVOQcBJKWnGaCo17onOqLNsrJIIZq0s55ffWLHJnlhS8h8PiMeTNhQevcYHMrx4A9icrGL_acn7ShipfF2bCv7EFf2VcnzCfRrja5CgVHNrONmq3rXtVVrcM9JFIG71N0_gkaf9wmuFVVIM3RCmuI0tSEk_a_Gei7StA-CFjNx6Toj9kghgbOnleKyz947GP4TsT26NezqvwtmGKUTpGk9yX0sr4SfHbi0RDkFmhaS5DjZ7fq1QONt9OxTf7WLbPkU3hnuULpSBOclApGnETwPbCednl8usGYgrUihltjPnnWR7ArmQLfoUt5WaRwCIXpnHq8I0bYtXdmST4aCvw1mX2qEUhYBeUO1dAajXaSwjszpoemvdNVb-Ai2sCC7QSYRJxkXd-d-Km4x3zpGL3jwDO2rKic6os2yskgrCLYR7wB-v9Wa_x1wU3pDZetrPeDa_33MtPdZsQMGS7Jm7EhOsk27bxGYd3vi6Mg-aHrLZE3F_n
IP 108.168.193.189:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /aS/feedclick?s=HFz5zNIIs96fzq49jFkHXa3dDnCBF-q5pjcTajzqm_QH0A88-gtuCxG_6U4hqQTcO4eq_lgR48_oiQJuDuwoS9gcFc4_-stlmbd3B7sGcRAkoDlrhq7v09i6czQKU3WjqWfap4yUt_iPH1TzciB1Qg6AZUDRz9bjOEX4iGGchU0uqmLH6bGB2rKSid9YvhV-7ycHwKeWE1PUD3eg5Z5w7URtWxpLV7zGJF7YtIv_pSU8yedaajdQan7X1xyAWrFGJaATSme3WF9iYH5cn7PpR96H_Z4cAXUhbNWIUl0XQT-85OIp9iwj7uwUW1daS2u3jXkdiroZGpvbnyvokSzRUdkToqh8XF8oSlbEWRe_vMZ585EtGYcDgElmlUqhKAuUWDF_aYFKoC_pCloREz-gAUf4GCn_ti_dC0ynZ48tkGSDsFZzNHNozOQiGGVu-xbsDCRyz2H-C45Heh8v0Km3Y1oaVVIbEr-PuuKRjgR8nMTmxekK28wDoRMkZAll1gGpA7wZp7a6IJO8RJT6is_tgBFVXMhxbJ1a3lLVGDOQcJ7XNLVlVnjPxxbPR3gMLCYzkuKMowKAWI3qEPCeYIJUQLsnuHDiWSpkuOcm9PVxmEokioNNyCd-vEkhdhhajhYJSlNi4THOUAJ_I1h3UOTRcd6Iez1QXWMYWbmStyCJrC9HydVPRrkWrre2FyI3zJE9XtPzPZgsqfpRdQeoA2h4A0JvH6RBYM1x-2hMb9Pb2jF32-S5bEkeFG735iCmsc80-eG-D03DV5K6HCdI1Kk0GRlW1rQMwBEoWLzhrvoXKBsomvFx8OiqAapeJxBM-kw5mLR4OqlPou_jY-nZ4h2Gi8g2MYNKf9gzRu1tHZec409ufGrp8vEveGSZXs9N-UlXWAcy_s0ZetMc-lmTMvRz7cC49WDpqXe-qqdGOzi4GAb-fNgP3tEjDFFehKlGmMbgPAj_yaetn5VIlXqw7Fgk2OgbZLq7t0BuU0js5-rF3QU6RI6IV5OkKlv0FLGsKb_TdMgSsO8Lq_DPnZ6asMmh3atSStWeSexnBDUsAjReqsC8T6FZOp0ZMrgPoxdNST-TuiC5-ZNuWGuIE9ZofkPMQ7aT6S2Tm0fntmC2dINi8z3Nq24IWrSj6yzY3fnmDFjND4lhQOWuNMUI0SP4TWDaHaAClYHbx9ECjibWcz-Zz3xqqnLESi3npsDCBYWiMGH8rtg5Yuugvl7nAA319rQT5Ud6a0Dn6eNJZbhSXBsuqp4TKI2qVF_upugCggYFh3EAoiiZxlTdJcUbO7pWllwGdVGZXxgmhR3INz-QU0tQexjS1sjTSDdvxjTnBG6KLohwyqV7tETR7cP-o1a3gHjZa_gjn5QKyssU7dq2rVA9fmvq9IaY6LYxIeiF1cs76ErxCBdlQonnkAtH2nCzpVOQcBJKWnGaCo17onOqLNsrJIIZq0s55ffWLHJnlhS8h8PiMeTNhQevcYHMrx4A9icrGL_acn7ShipfF2bCv7EFf2VcnzCfRrja5CgVHNrONmq3rXtVVrcM9JFIG71N0_gkaf9wmuFVVIM3RCmuI0tSEk_a_Gei7StA-CFjNx6Toj9kghgbOnleKyz947GP4TsT26NezqvwtmGKUTpGk9yX0sr4SfHbi0RDkFmhaS5DjZ7fq1QONt9OxTf7WLbPkU3hnuULpSBOclApGnETwPbCednl8usGYgrUihltjPnnWR7ArmQLfoUt5WaRwCIXpnHq8I0bYtXdmST4aCvw1mX2qEUhYBeUO1dAajXaSwjszpoemvdNVb-Ai2sCC7QSYRJxkXd-d-Km4x3zpGL3jwDO2rKic6os2yskgrCLYR7wB-v9Wa_x1wU3pDZetrPeDa_33MtPdZsQMGS7Jm7EhOsk27bxGYd3vi6Mg-aHrLZE3F_n HTTP/1.1
Host: mybettermb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://ww2.mkkuei4kdsz.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Thu, 08 Dec 2022 03:43:59 GMT
content-length: 0
set-cookie: rhid=82509913475; Max-Age=15552000; Expires=Tue, 06-Jun-2023 03:43:59 GMT; Domain=mybettermb.com; Path=/; SameSite=None; secure;
location: https://p201298.mybettermb.com/adServe/domainClick?ai=W6LwHsBtbbGliVSBgRHFtmSZVu5NPqSq-h2rSoksoBqNG2LV3Zkk-L8FPCSjKZr_YsQ0yRxpJ6k8LlotqmtX7ErGSkvN2YlGY4HZ8X7cx-dM1QaxFxK0PHGpJGlCLAoWMnzoVZuce8ueVaQ0F217-cHwFJ-CDJF8T7C2wcJ1dqtoOgN9pzNxgl6S4oChQzOvrPE96Ym7CMGlXRdGMK-TkKMF_XSxG7q5c9lRJWHNr4s5bSTdWcYVZJciO9bgcuS1jIeAEiXnU3VYEUAru7F_DuXugOnM5m-8Jm7EhOsk27bxGYd3vi6Mg89LCz5E8ciHT2L9NFyVXF6m2wb9WMUKqQqO8jOswrlobM7TR-A6o2LnrG8E1DfQ9Vu8kUSrMxroonOqLNsrJIKgUSZw7eMl7vr4nvPsKvQNOYwwqJPWDKxkmVbuTT6kqjvQfnk4ki0ivitaEXZPV_A9yZrhH3-SbkgbvU3T-CRpeJ5P1kYa67iOF0SokHo2PZeYO9hdbD2Gn6oVmfmCmc-q0T2xsmJwnBfZ8RtWPEH2SnZADPOdLz_p-OGBQW3exAhKJncPyYXssKbYd4jRL3fz-AbClJeve1IAxxj8fbHTscWi84ZIOk0qJeEuaLJ-WEdDYOEm2_nsCKidNDxuV5s&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukNIG71N0_gkaQBqlfD1W9wPNw-lntrIWMLPRuztazMA1W0zrzeUeu3qaW1NvPtjd8shFuHGdmmkHg&si=1&oref=e2905b67c440133e06d94d472902354c&optunit=g1X1rV7f4BpBS4YUfGI2rw&rb=2Vb288azLYM&rr=1&abtg=0
X-Firefox-Spdy: h2
globalconsumerwinner.com/redirect-simple?ci=193&c=no&m_c_r=-1
137.74.65.7301 Moved Permanently 185 B URL HTTP/2 globalconsumerwinner.com/redirect-simple?ci=193&c=no&m_c_r=-1
IP 137.74.65.7:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4c555068310076e85908835c721911f5
9ec990aabb4391e139034f68e5e657e0f1d0b74d
568b4de0ad30e85670e724dc30ccb675924353b77807356c5ad7f29c8c38f510
GET /redirect-simple?ci=193&c=no&m_c_r=-1 HTTP/1.1
Host: globalconsumerwinner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx/1.14.2
date: Thu, 08 Dec 2022 03:44:00 GMT
content-type: text/html
content-length: 185
location: https://www.globalconsumerwinner.com/redirect-simple?ci=193&c=no&m_c_r=-1
x-frame-options: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3074a66f6d9b2e2af9b41ec0e2f4e2db
942e2c49b3848f11da966937f5914c62aed24bce
7c3b21b91aab06aff58cc56ce4b7273a7d320df8b0b4ad685c660e03ba0b72aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 03:44:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3074a66f6d9b2e2af9b41ec0e2f4e2db
942e2c49b3848f11da966937f5914c62aed24bce
7c3b21b91aab06aff58cc56ce4b7273a7d320df8b0b4ad685c660e03ba0b72aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 03:44:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ec6ece82a7cb8faa3ba171efae3a9eda
7ee75fba9a9d1078960f7834d71961c38f514b82
301d0c4d73b444369e488ee4f78b3a994a9168ec6c6d46cd7f3448722a841a2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 03:44:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/permanentmarker/v16/Fh4uPib9Iyv2ucM6pGQMWimMp004La2Cfw.woff2
216.58.207.227200 OK 30 kB URL HTTP/2 fonts.gstatic.com/s/permanentmarker/v16/Fh4uPib9Iyv2ucM6pGQMWimMp004La2Cfw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 29564, version 1.0\012- data
Hash 1b66ccb164151a6cf698667c8b570cc6
f5617a0f087645703c874453960be6382c8a7427
4884fec2c73aa52a2461073c1b87d1ceb80f400520391b43f97ca7d3c39eeb24
GET /s/permanentmarker/v16/Fh4uPib9Iyv2ucM6pGQMWimMp004La2Cfw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.globalconsumerwinner.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29564
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 12:31:43 GMT
expires: Fri, 01 Dec 2023 12:31:43 GMT
cache-control: public, max-age=31536000
age: 573137
last-modified: Tue, 19 Apr 2022 17:55:57 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ec6ece82a7cb8faa3ba171efae3a9eda
7ee75fba9a9d1078960f7834d71961c38f514b82
301d0c4d73b444369e488ee4f78b3a994a9168ec6c6d46cd7f3448722a841a2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 03:44:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r.srvtrck.com/v1/redirect?type=linkId&id=197c8a0abb724be6bd5ab967b63453f5&api_key=4762ed855d632653578bb0b0b1cbab5b&site_id=8233b159ba5c4e4f970e524d6dd1a9c6&dch=feed&ad_t=advertiser
104.19.168.96302 Found 0 B URL HTTP/2 r.srvtrck.com/v1/redirect?type=linkId&id=197c8a0abb724be6bd5ab967b63453f5&api_key=4762ed855d632653578bb0b0b1cbab5b&site_id=8233b159ba5c4e4f970e524d6dd1a9c6&dch=feed&ad_t=advertiser
IP 104.19.168.96:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v1/redirect?type=linkId&id=197c8a0abb724be6bd5ab967b63453f5&api_key=4762ed855d632653578bb0b0b1cbab5b&site_id=8233b159ba5c4e4f970e524d6dd1a9c6&dch=feed&ad_t=advertiser HTTP/1.1
Host: r.srvtrck.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 08 Dec 2022 03:44:00 GMT
content-length: 0
p3p: CP="CAO PSA OUR"
set-cookie: ykuid=4dcb34cb958f4608b469119b13db8de2; Domain=.srvtrck.com; Expires=Fri, 08-Dec-2023 03:44:00 GMT; Path=/
location: /v2/go?t=ot.ps%3Aw%2Foc.twaFe%25r2cAe%25.teh%2Fuc2214e71m106a92e7d68%26e%3Db020f09042759215024c30v8r44c4802%3D3%263%3D6%26d029c%3D%26%3F%3Dttnpr3k%25aFt2dwrw.ytu%2Fishtnh&e=1&ai=a44299724edc4ed5b6527c9eb6d5c9a3&sct=0&ct=1670471040915&cu=24592fc20b8e48cd8e29363161de21c2&ykuid=4dcb34cb958f4608b469119b13db8de2&sc=1&cs=2e119974868a6eb8958fb4aaa2db4253
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 776280053cf1b4f7-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 07f6daf171941af79032dc6c1827abe6
7f02abe14e60bd5c7003308c21c29903cdb81a4e
b3d4a589033ac95f7d8bd726e5298b8ef61806175e25caa81817a7bcf4e24ca1
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=92222
Date: Thu, 08 Dec 2022 03:44:01 GMT
Etag: "63900a46-1d7"
Expires: Fri, 09 Dec 2022 05:21:03 GMT
Last-Modified: Wed, 07 Dec 2022 03:36:38 GMT
Server: ECS (nyb/1D08)
X-Cache: Miss from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: cf3FddQQC-1uXTN6rBC28WReiG08lET0QUT3uag2P86fXP38wTsyJQ==
Age: 6265
www.youwish.no/
95.85.19.80301 Moved Permanently 185 B IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3c225bc221d5e72bdda902614cd53e8b
da4cf4c4c6e004fc98a620f04d4c4d1b5b52f645
f33a068f8a1bb7c2ab9f0662d563625d9a3bc17ea15f4209e762aacbcf9897a0
GET / HTTP/1.1
Host: www.youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx/1.11.5
Date: Thu, 08 Dec 2022 03:44:01 GMT
Content-Type: text/html
Content-Length: 185
Connection: keep-alive
Location: https://www.youwish.no/
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dd05bc0d8f47fea96172ab2fd3a8624f
585398eec4c0eee4477aec589c844438b3f27db8
cfb65e23df05e239358288d666180bd11c83c4bfaf89be6f0a5b064079ea5039
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CFB65E23DF05E239358288D666180BD11C83C4BFAF89BE6F0A5B064079EA5039"
Last-Modified: Wed, 07 Dec 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21555
Expires: Thu, 08 Dec 2022 09:43:16 GMT
Date: Thu, 08 Dec 2022 03:44:01 GMT
Connection: keep-alive
tc.tradetracker.net/?c=29407&m=0&a=207464&r=v03040001295724592fc20b8e48cd8e29363161de21c2&u=http%3A%2F%2Fwww.youwish.no
54.171.6.235301 Moved Permanently 185 B URL HTTP/2 tc.tradetracker.net/?c=29407&m=0&a=207464&r=v03040001295724592fc20b8e48cd8e29363161de21c2&u=http%3A%2F%2Fwww.youwish.no
IP 54.171.6.235:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3c225bc221d5e72bdda902614cd53e8b
da4cf4c4c6e004fc98a620f04d4c4d1b5b52f645
f33a068f8a1bb7c2ab9f0662d563625d9a3bc17ea15f4209e762aacbcf9897a0
GET /?c=29407&m=0&a=207464&r=v03040001295724592fc20b8e48cd8e29363161de21c2&u=http%3A%2F%2Fwww.youwish.no HTTP/1.1
Host: tc.tradetracker.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://r.srvtrck.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Thu, 08 Dec 2022 03:44:01 GMT
content-type: text/html; charset=UTF-8
location: http://www.youwish.no/
server: nginx
cache-control: no-cache, must-revalidate
set-cookie: uf=McwFyhrEceswnnGF8PIt73VoUUVsVGlaY3FQOXUxS0gwVzRHek5rQy9nM2wxRVB4Sm1DbHJIRE5xK2xZMTlQWm9Ob3NQNlFyVE5sbkVoQUxDVlNMY1ZyT29rc0tHRHlaV1lRVkVnPT0%3D; expires=Fri, 08-Dec-2023 03:44:01 GMT; Max-Age=31536000; path=/; domain=.tradetracker.net; secure; SameSite=None
__tdat29407=MTY3MDQ3MTA0MTo6MDo6MjA3NDY0Ojp2MDMwNDAwMDEyOTU3MjQ1OTJmYzIwYjhlNDhjZDhlMjkzNjMxNjFkZTIxYzI6OmY6OjA1MWVhYmI5MTY2YjhiNmMxZmFlNGI3NzViYjFhNGVj; expires=Wed, 28-Dec-2022 03:44:01 GMT; Max-Age=1728000; path=/; domain=.tradetracker.net; secure; SameSite=None
X-Firefox-Spdy: h2
youwish.no/svg/img/png/logo-punch-black.png
95.85.19.80200 OK 8.3 kB URL HTTP/2 youwish.no/svg/img/png/logo-punch-black.png
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 542 x 116, 8-bit/color RGBA, non-interlaced\012- data
Hash 5895decec64184969bd1d409eab3828e
c100076f10d1c316b693c3d567860704e1cff995
d0b64629f6d8cb548c37ae26aeeae28253ac29bf92ce114312a21ef8c8c908fd
GET /svg/img/png/logo-punch-black.png HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: image/png
content-length: 8338
last-modified: Mon, 07 Jan 2019 10:58:34 GMT
etag: "5c3330da-2092"
expires: Thu, 15 Dec 2022 03:44:02 GMT
cache-control: max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2
youwish.no/svg/img/png/logo.png
95.85.19.80200 OK 7.5 kB URL HTTP/2 youwish.no/svg/img/png/logo.png
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 543 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 2f3697a397418cf4747683f9b886a248
d868b62e5b0e2f7073e49cf6da2ce1089e7c755e
4b8e199f18ec9237e802043c5cc800cdea9525405e7d3fe9d4dc3ac136c604c5
GET /svg/img/png/logo.png HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: image/png
content-length: 7490
last-modified: Mon, 07 Jan 2019 10:58:34 GMT
etag: "5c3330da-1d42"
expires: Thu, 15 Dec 2022 03:44:02 GMT
cache-control: max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2
youwish.no/svg/img/png/logo-punch-white.png
95.85.19.80200 OK 8.4 kB URL HTTP/2 youwish.no/svg/img/png/logo-punch-white.png
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 542 x 116, 8-bit/color RGBA, non-interlaced\012- data
Hash 70c683737f15d4787ec45d6b8cfa383a
4f664a0a7af11271cdabcb76757d5f688ae8d956
85fb609dabd324d5e207d343f276e4bcad8cbee4c00563401870c722d09a87c7
GET /svg/img/png/logo-punch-white.png HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: image/png
content-length: 8441
last-modified: Mon, 07 Jan 2019 10:58:34 GMT
etag: "5c3330da-20f9"
expires: Thu, 15 Dec 2022 03:44:02 GMT
cache-control: max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2
youwish.no/img/polaroids/frame-5-v2.jpg
95.85.19.80200 OK 98 kB URL HTTP/2 youwish.no/img/polaroids/frame-5-v2.jpg
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 480x270, components 3\012- data
Hash 1dbb50e1d1a069aa0798bfb96b5e8c2b
00a2d9e57b1314275a877559d7b7622bb89649da
30b87325547346c0c19276cc10b26c4414f889f6eac6b65370f9ce1acd5e5bb4
GET /img/polaroids/frame-5-v2.jpg HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: image/jpeg
content-length: 98543
last-modified: Mon, 05 Dec 2022 03:27:57 GMT
etag: "638d653d-180ef"
expires: Thu, 15 Dec 2022 03:44:02 GMT
cache-control: max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6ec5f6261a8262e9f94b29627f54cefe
7ac766cf2ac8c2d960ec033388a767ff8a7d45e2
5f6ee11d840909fc5272c2c32f7874d55f49d831abc88d527e35562d218890f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 03:44:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
youwish.no/img/polaroids/massage.jpg
95.85.19.80200 OK 27 kB URL HTTP/2 youwish.no/img/polaroids/massage.jpg
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 338x188, components 3\012- data
Hash 0db5f0d14cf68c9c2331a81b6fe6e44c
2eec2b0883fa75347377c0747c34764488a01bdd
d96ce3c8f08f8aac8878f97ff686b9cad14bdbe1bae34ebc30296b0430cd6ccc
GET /img/polaroids/massage.jpg HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: image/jpeg
content-length: 27385
last-modified: Mon, 05 Dec 2022 03:27:57 GMT
etag: "638d653d-6af9"
expires: Thu, 15 Dec 2022 03:44:02 GMT
cache-control: max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2
api.mapbox.com/mapbox-gl-js/v2.6.0/mapbox-gl.css
143.204.50.3200 OK 4.8 kB URL HTTP/1.1 api.mapbox.com/mapbox-gl-js/v2.6.0/mapbox-gl.css
IP 143.204.50.3:0
File type ASCII text, with very long lines (36619), with no line terminators
Hash 2a2f98db1b677bc8076f46947acd1076
fb98eba7db79718bae2cd04ca183b45e8e128a1b
f918fe5c739ba0273e2d798cff60f1937283d06b646da37c8e098eedff9b6aaa
GET /mapbox-gl-js/v2.6.0/mapbox-gl.css HTTP/1.1
Host: api.mapbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sun, 30 Oct 2022 01:55:24 GMT
X-Powered-By: Express
Access-Control-Allow-Origin: *
ETag: "7c190b0f4a05ad3f59a76bc4880ab6dd"
Last-Modified: Mon Nov 08 2021 20:01:31 GMT+0000 (Coordinated Universal Time)
Cache-Control: max-age=31536000
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: siCIZlgOkswJMEZJvNtN1dLRE6yNub_ZR3m4eSFD2tw_6H5W39hhfw==
Age: 3376118
youwish.no/img/polaroids/lambo.jpg
95.85.19.80200 OK 34 kB URL HTTP/2 youwish.no/img/polaroids/lambo.jpg
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 338x188, components 3\012- data
Hash 400356d67e2a8698df10eb4da70aeb93
b0e229591fcf8633710ff11f7dfd603da01538a9
1d1057a7cd9d99e8177862f9491ace8996e30a9c2f8e47592eee9d3a8f1b1f1c
GET /img/polaroids/lambo.jpg HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: image/jpeg
content-length: 33861
last-modified: Mon, 05 Dec 2022 03:27:57 GMT
etag: "638d653d-8445"
expires: Thu, 15 Dec 2022 03:44:02 GMT
cache-control: max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2
youwish.no/img/polaroids/frame-4-v2.jpg
95.85.19.80200 OK 37 kB URL HTTP/2 youwish.no/img/polaroids/frame-4-v2.jpg
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 405x226, components 3\012- data
Hash b4a090a46688d237f67f6727752dcf98
ca5ac51257bceb8ee6b5caac2ce1b5d03952c7e5
412f312eab98c0b65fe0ee24a16a49e5f5839132e36700ba85b10b41540340b7
GET /img/polaroids/frame-4-v2.jpg HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: image/jpeg
content-length: 36980
last-modified: Mon, 05 Dec 2022 03:27:57 GMT
etag: "638d653d-9074"
expires: Thu, 15 Dec 2022 03:44:02 GMT
cache-control: max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2
youwish.no/img/polaroids/frame-1-v2.jpg
95.85.19.80200 OK 62 kB URL HTTP/2 youwish.no/img/polaroids/frame-1-v2.jpg
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 400x225, components 3\012- data
Hash f268408cab113a67eeafef78542984ff
6ca40eff130d74779ecea218c37da3ec09c4e2fd
be3752927795072fc45ac8fe8aa6ef1cdae5e83bb745a42e8e8d9ea3a776ea39
GET /img/polaroids/frame-1-v2.jpg HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: image/jpeg
content-length: 61514
last-modified: Mon, 05 Dec 2022 03:27:57 GMT
etag: "638d653d-f04a"
expires: Thu, 15 Dec 2022 03:44:02 GMT
cache-control: max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2
youwish.no/assets/img/categories/istock-596391288.jpg
95.85.19.80200 OK 76 kB URL HTTP/2 youwish.no/assets/img/categories/istock-596391288.jpg
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 240x240, segment length 16, progressive, precision 8, 640x426, components 3\012- data
Hash 09c325a0797e88786a9b89917455abba
2c633cb42635734fa49f1606389b5b817cc5ea13
d67897fbb794cc7449de8cede5bb370f7d678f2ff8637994785bf31d1e99d276
GET /assets/img/categories/istock-596391288.jpg HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: image/jpeg
content-length: 75900
last-modified: Mon, 07 Jan 2019 10:48:17 GMT
etag: "5c332e71-1287c"
expires: Thu, 15 Dec 2022 03:44:02 GMT
cache-control: max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2
youwish.no/assets/img/categories/istock-891506486.jpg
95.85.19.80200 OK 76 kB URL HTTP/2 youwish.no/assets/img/categories/istock-891506486.jpg
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 762x762, segment length 16, progressive, precision 8, 640x426, components 3\012- data
Hash 36fd4715f3e422f58955141911a36c89
24dafe4eba98fbf93199a7b7f19b4f09a33f4d03
5260b8e39bf1fb6b46fbd853ff3b99b613d8c229ad77ab760e37095611660b37
GET /assets/img/categories/istock-891506486.jpg HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: image/jpeg
content-length: 75516
last-modified: Mon, 07 Jan 2019 10:48:17 GMT
etag: "5c332e71-126fc"
expires: Thu, 15 Dec 2022 03:44:02 GMT
cache-control: max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2
youwish.no/assets/img/categories/istock-692976348.jpg
95.85.19.80200 OK 86 kB URL HTTP/2 youwish.no/assets/img/categories/istock-692976348.jpg
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 300x300, segment length 16, progressive, precision 8, 640x426, components 3\012- data
Hash 543aa77835d6b3ff796386825700daa2
463042404c0df8507699d74eb8c8caf16795e34e
ca246dd9a9827f2ee1877e74ccd8533d6a53f58be3cf3874b85331e1bc857120
GET /assets/img/categories/istock-692976348.jpg HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: image/jpeg
content-length: 86086
last-modified: Mon, 07 Jan 2019 10:48:17 GMT
etag: "5c332e71-15046"
expires: Thu, 15 Dec 2022 03:44:02 GMT
cache-control: max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2
youwish.no/assets/img/categories/istock-862209732.jpg
95.85.19.80200 OK 56 kB URL HTTP/2 youwish.no/assets/img/categories/istock-862209732.jpg
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 300x300, segment length 16, progressive, precision 8, 640x391, components 3\012- data
Hash 2aec62bc0281555816eec83de86d87ef
81580981908f932d382dae2eed5d2452b70d5b5d
fb1e3b29755070de8f86a1d11de04551a2f8e80b1d7192fc11d8c98c877faa1b
GET /assets/img/categories/istock-862209732.jpg HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: image/jpeg
content-length: 55467
last-modified: Mon, 07 Jan 2019 10:48:17 GMT
etag: "5c332e71-d8ab"
expires: Thu, 15 Dec 2022 03:44:02 GMT
cache-control: max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2
youwish.no/svg/img/landing/new-case-2.png
95.85.19.80200 OK 94 kB URL HTTP/2 youwish.no/svg/img/landing/new-case-2.png
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 519 x 422, 8-bit colormap, non-interlaced\012- data
Hash 4fd401fc04f61145c950d914dd57ec9a
e247586e6597c50a32eeb3b7f333a62f084fc17d
5a9afb365ec9c7d6743b50678510a192316ae302ecc38ba2a8240c58fa1cb0f7
GET /svg/img/landing/new-case-2.png HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: image/png
content-length: 94484
last-modified: Thu, 07 Nov 2019 07:16:25 GMT
etag: "5dc3c4c9-17114"
expires: Thu, 15 Dec 2022 03:44:02 GMT
cache-control: max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2
youwish.no/svg/img/svg/delete.svg
95.85.19.80200 OK 725 B URL HTTP/2 youwish.no/svg/img/svg/delete.svg
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
Hash e674ba41b7eb6455a5915375a08a5746
1bbc85833eb1c4bff3feb444cd3e75de7a90511d
fd409e63ce9caecae462e5a6f1da875232a92e52c8b7fab938ad0499ed55a624
GET /svg/img/svg/delete.svg HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: image/svg+xml
last-modified: Thu, 01 Nov 2018 02:23:23 GMT
vary: Accept-Encoding
etag: W/"5bda639b-3bd"
expires: Thu, 15 Dec 2022 03:44:02 GMT
cache-control: max-age=604800, public
content-encoding: gzip
X-Firefox-Spdy: h2
youwish.no/img/Jenny_Indoor-skydive.jpg
95.85.19.80200 OK 44 kB URL HTTP/2 youwish.no/img/Jenny_Indoor-skydive.jpg
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 534x350, components 3\012- data
Hash 5eb317b366696c954866a83153d0f234
5b80054e2df1c4e65009314d735fc0e576bfcf1c
167c46f8f4609b5d0376c011cf4af3fbff77d29b8ecf3d83f42af560be90dca2
GET /img/Jenny_Indoor-skydive.jpg HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: image/jpeg
content-length: 43984
last-modified: Fri, 03 Dec 2021 04:36:02 GMT
etag: "61a99eb2-abd0"
expires: Thu, 15 Dec 2022 03:44:02 GMT
cache-control: max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2
youwish.no/storage/1700/elvepadling-i-akerselva_header_5d567f2ee6546_original.jpg
95.85.19.80200 OK 646 kB URL HTTP/2 youwish.no/storage/1700/elvepadling-i-akerselva_header_5d567f2ee6546_original.jpg
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 1350x752, components 3\012- data
Size 646 kB (646009 bytes)
Hash 7651b86862d2e0af1fb365337d689015
640fb224eca0a11f708096ec9edba427ef8a65f3
92c4c951313a7603becb0506df7d92e7be684149ea1ffb83142ab0adeb74a0b2
GET /storage/1700/elvepadling-i-akerselva_header_5d567f2ee6546_original.jpg HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: image/jpeg
content-length: 646009
last-modified: Fri, 16 Aug 2019 10:02:23 GMT
etag: "5d567f2f-9db79"
expires: Thu, 15 Dec 2022 03:44:02 GMT
cache-control: max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2
youwish.no/img/Tor-Andre_Speedtest.jpg
95.85.19.80200 OK 55 kB URL HTTP/2 youwish.no/img/Tor-Andre_Speedtest.jpg
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 525x350, components 3\012- data
Hash 8bc686c6af8eee4e88522e2927061067
aa4576f7b21444ad89b71f768ce5538d3edbe2cc
83a403ca1745ed0bc02153730c69b5e4f5b441d6b2049a8dadad751bb707fded
GET /img/Tor-Andre_Speedtest.jpg HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: image/jpeg
content-length: 55067
last-modified: Fri, 03 Dec 2021 04:36:02 GMT
etag: "61a99eb2-d71b"
expires: Thu, 15 Dec 2022 03:44:02 GMT
cache-control: max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2
youwish.no/img/Kerstil_surfekurs.jpg
95.85.19.80200 OK 52 kB URL HTTP/2 youwish.no/img/Kerstil_surfekurs.jpg
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 446x350, components 3\012- data
Hash e9b62a4253b7ce552af2a2e12d6c1310
2c99b61aa8eca74c8c6222576532a852606380a6
fc970611a06e8b412b9789d1531d7b0fe26cfd37bab095c9fe8cb4b83321d21e
GET /img/Kerstil_surfekurs.jpg HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: image/jpeg
content-length: 52027
last-modified: Fri, 03 Dec 2021 04:36:02 GMT
etag: "61a99eb2-cb3b"
expires: Thu, 15 Dec 2022 03:44:02 GMT
cache-control: max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2
youwish.no/svg/img/landing/xmas-case-3.png
95.85.19.80200 OK 132 kB URL HTTP/2 youwish.no/svg/img/landing/xmas-case-3.png
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 520 x 424, 8-bit colormap, non-interlaced\012- data
Size 132 kB (131736 bytes)
Hash 64c6acf732043431bd14b5c9a55256f3
e15ee37ebf1fcf0117070a387a9435932c7383c5
aec4a2b9977e3b4b6e20e0e7b96c01d89cc41c76bb87baf4ec2910f7903ddc56
GET /svg/img/landing/xmas-case-3.png HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: image/png
content-length: 131736
last-modified: Thu, 07 Nov 2019 07:16:25 GMT
etag: "5dc3c4c9-20298"
expires: Thu, 15 Dec 2022 03:44:02 GMT
cache-control: max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/lazysizes/4.1.5/lazysizes.min.js
104.17.24.14200 OK 2.8 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/lazysizes/4.1.5/lazysizes.min.js
IP 104.17.24.14:0
File type ASCII text, with very long lines (6750)
Hash 43aa7182402088fc6b21f6c06fd9eb5d
33449942b19b25fa28c107d8971f8549868129c2
55024b41a5f992d4d932e9428c4566a8f7c44753efa1989991047a40f084ebd0
GET /ajax/libs/lazysizes/4.1.5/lazysizes.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: application/javascript; charset=utf-8
content-length: 2826
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ed0-1a78"
last-modified: Mon, 04 May 2020 16:12:00 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2360160
expires: Tue, 28 Nov 2023 03:44:02 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Bt21ym53CnrlxQg7UXfILo7mD9MTibMjSZnAklYczaYH8PySixZvNnemI96YpBrhhTq21yXcf1qV9nRQTbIulbS3n8chzAjxRwa2I5wiBnhBbCXGL9YMe23jK%2Fpks%2B5m2WlQDImK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 77628010aaf4b4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
youwish.no/svg/img/landing/julegavetips-til-mamma-2.png
95.85.19.80200 OK 92 kB URL HTTP/2 youwish.no/svg/img/landing/julegavetips-til-mamma-2.png
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 519 x 290, 8-bit colormap, non-interlaced\012- data
Hash 71a1b7202e39f5a49bfcf9ee776e3afa
d5887eb71d018a4ae548cb57b2346b02c65d17c1
47dfd34cfd89488fbe6d16be4f53fe3dd1773cfa69b019c33ba2d3ac310a5227
GET /svg/img/landing/julegavetips-til-mamma-2.png HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: image/png
content-length: 91968
last-modified: Thu, 07 Nov 2019 07:16:25 GMT
etag: "5dc3c4c9-16740"
expires: Thu, 15 Dec 2022 03:44:02 GMT
cache-control: max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2
youwish.no/svg/img/svg/visa.png
95.85.19.80200 OK 7.7 kB URL HTTP/2 youwish.no/svg/img/svg/visa.png
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 220 x 72, 8-bit/color RGBA, non-interlaced\012- data
Hash bf25eb85e7778b3fa9c3c10c926da6e1
0bed871b8556b592b0ea4f10555ff4c5bc88663c
3f8a1df7e3b8f99258fe5970251cd30ec11c85e89203c433b1558327fbb210d2
GET /svg/img/svg/visa.png HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: image/png
content-length: 7709
last-modified: Thu, 01 Nov 2018 02:23:23 GMT
etag: "5bda639b-1e1d"
expires: Thu, 15 Dec 2022 03:44:02 GMT
cache-control: max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/promise-polyfill@8/dist/polyfill.min.js
151.101.193.229200 OK 1.4 kB URL HTTP/2 cdn.jsdelivr.net/npm/promise-polyfill@8/dist/polyfill.min.js
IP 151.101.193.229:0
File type ASCII text, with very long lines (3877)
Hash 11bfc4955e2830786d213160a8bdc1a9
24ae0896f1d196bbbd132b13743dfea445a98b83
92004c41cd7e1899f4e425b477c3e30bd579eb7111994163ac936f28eaecfd51
GET /npm/promise-polyfill@8/dist/polyfill.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 8.2.3
x-jsd-version-type: version
etag: W/"f26-FWXXa3KrzQH/fWltbeBv8RdYrTg"
content-encoding: gzip
accept-ranges: bytes
date: Thu, 08 Dec 2022 03:44:02 GMT
age: 4891
x-served-by: cache-fra-eddf8230082-FRA, cache-bma1668-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1374
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.20.226:0
Hash 9015cfcf2f2dc6d5f376e2baca67f01a
43e47705d8cb49b473df65f7a5ffda8a401b0146
251f7eb2c984ef757492cfdc838408546f22bd939b9a0ecce28b5b1084f11fde
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 03:44:02 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "99FFE84FADC5F9287DF903A8FE1FBF0409B4E55A"
Expires: Thu, 08 Dec 2022 14:00:00 GMT
Last-Modified: Thu, 08 Dec 2022 02:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2432
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7762801128dffab8-OSL
youwish.no/
95.85.19.80200 OK 86 kB IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
Hash 8c19f9e9c3e73bc06338a49ce2916d2e
e512f156dc4620c9571315fb3121e70e1310ddae
f06afd034fe9e438acd24efdfc02f43e8d2f2ce9462e08534ef8320ba87088ed
GET / HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: no-cache
date: Thu, 08 Dec 2022 03:44:02 GMT
set-cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; expires=Thu, 08-Dec-2022 05:44:02 GMT; Max-Age=7200; path=/
laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; expires=Thu, 08-Dec-2022 05:44:02 GMT; Max-Age=7200; path=/; HttpOnly
wishlist=63915d81cb1be; expires=Tue, 07-Dec-2027 03:44:01 GMT; Max-Age=157679999; path=/; HttpOnly
youwish_id=63915d824d154; expires=Tue, 07-Dec-2027 03:44:02 GMT; Max-Age=157680000; path=/; HttpOnly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
youwish.no/svg/img/svg/frontpage/yw-bg-autumn.jpg
95.85.19.80200 OK 52 kB URL HTTP/2 youwish.no/svg/img/svg/frontpage/yw-bg-autumn.jpg
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1440x455, components 3\012- data
Hash b179ba000a5bfa1a650c8e5bcda05f13
8911cc84f1f9acabe9b0264ab96849baf403350d
67ade615e1ac76feaa1053a6b64d91190479b4198a20477bee6c96e073b34bc9
GET /svg/img/svg/frontpage/yw-bg-autumn.jpg HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/dist/v2/app.css?id=211e1bfbbdf3ca630407
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: image/jpeg
content-length: 51897
last-modified: Mon, 28 Nov 2022 02:12:06 GMT
etag: "638418f6-cab9"
expires: Thu, 15 Dec 2022 03:44:02 GMT
cache-control: max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2
youwish.no/dist/v2/vendor.js?id=88ed457bc067a2a7e912
95.85.19.80200 OK 158 kB URL HTTP/2 youwish.no/dist/v2/vendor.js?id=88ed457bc067a2a7e912
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
Size 158 kB (157681 bytes)
Hash 1802ccb240c4bee76203f0fe7bc83f1d
6303c7c46b11020458498983eb1cfd6236c886b8
417f96e11e2eb40524139241c93415c93d07146e6c6b5ba1ba4e45d74aba3ca1
GET /dist/v2/vendor.js?id=88ed457bc067a2a7e912 HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 12 Jan 2022 22:19:01 GMT
vary: Accept-Encoding
etag: W/"61df53d5-730cd"
expires: Thu, 15 Dec 2022 03:44:02 GMT
cache-control: max-age=604800, public
content-encoding: gzip
X-Firefox-Spdy: h2
youwish.no/svg/img/svg/mastercard.svg
95.85.19.80200 OK 1.9 kB URL HTTP/2 youwish.no/svg/img/svg/mastercard.svg
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
Hash 3955f164ebb1e1a35e391f9bcf1efe95
cbfc257a3d2cf1c4ceb636550b5fdba7a7063c3f
a1ebd6363dfbdb002b7e211d974e318ffd6b62f8c0c2284f17f33cbafa2ad68d
GET /svg/img/svg/mastercard.svg HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: image/svg+xml
last-modified: Thu, 01 Nov 2018 02:23:23 GMT
vary: Accept-Encoding
etag: W/"5bda639b-d41"
expires: Thu, 15 Dec 2022 03:44:02 GMT
cache-control: max-age=604800, public
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ec6ece82a7cb8faa3ba171efae3a9eda
7ee75fba9a9d1078960f7834d71961c38f514b82
301d0c4d73b444369e488ee4f78b3a994a9168ec6c6d46cd7f3448722a841a2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 03:44:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ec6ece82a7cb8faa3ba171efae3a9eda
7ee75fba9a9d1078960f7834d71961c38f514b82
301d0c4d73b444369e488ee4f78b3a994a9168ec6c6d46cd7f3448722a841a2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 03:44:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2
216.58.207.227200 OK 34 kB URL HTTP/2 fonts.gstatic.com/s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 34112, version 1.0\012- data
Hash c21e7acd53a6d80fa451f1af92d9a492
4096e12b96fa2549e4f169044a49b6ec60214008
6a0d96c353719068401ebbedf7f58e3be1232756327243922b6ab9690a3591bd
GET /s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://youwish.no
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34112
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 19:42:15 GMT
expires: Thu, 07 Dec 2023 19:42:15 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 Dec 2022 18:11:50 GMT
content-type: font/woff2
age: 28907
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.7.2/webfonts/fa-solid-900.woff2
172.64.132.15200 OK 74 kB URL HTTP/2 use.fontawesome.com/releases/v5.7.2/webfonts/fa-solid-900.woff2
IP 172.64.132.15:0
File type Web Open Font Format (Version 2), TrueType, length 74348, version 329.31064\012- data
Hash 462806316fea535a6a57651bc2b000b0
80644191098f863f25be27841c0d92c452cf2327
4f9ee3d8f6e621642979e6a8f7e75c57cb9da34918cc08a38abfe178dbae1dd2
GET /releases/v5.7.2/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://youwish.no
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: font/woff2
content-length: 74348
x-amz-id-2: ZhMq+xmDCAkAsfObl77qlBAtpI5yO202CBx0ZKwNGQE7VeU1fqlP1LaonTEbxyLgUAwrbcZ7Yko=
x-amz-request-id: DE007XW6SNCXR6Y3
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:46:18 GMT
etag: "462806316fea535a6a57651bc2b000b0"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 705334
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1eAL%2BRuPdN10bkQu1iZR%2FnJqrNn4ctNVrKbh24s29G10aQZx1zq9n5ExhLyA%2BRpLJwbYKC0PdsOr1J%2BawP4Xi2c2G2R8Ag%2Fr9uHioglk3zxqqgqngarrq7jdlL4ItKZ574QrRLj2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 776280123b9e76d8-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
youwish.no/dist/v2/app.js?id=0f141bae75065747a065
95.85.19.80200 OK 919 kB URL HTTP/2 youwish.no/dist/v2/app.js?id=0f141bae75065747a065
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
Size 919 kB (919438 bytes)
Hash cc0f71cc032df7989a0145ccf0e0cd9b
9eb3ddc2572a42c4da396d699001f9a4e6967f06
8caa2271352a80b26a2703a0ac5fd83b15b5d282eb7c03ba406cb4bb3956fc0c
GET /dist/v2/app.js?id=0f141bae75065747a065 HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 06 Dec 2022 05:29:08 GMT
vary: Accept-Encoding
etag: W/"638ed324-2e222d"
expires: Thu, 15 Dec 2022 03:44:02 GMT
cache-control: max-age=604800, public
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.segment.com/analytics.js/v1/9LhWVY6B2k6Un15OnZIIc5QAAehSfeX2/analytics.min.js
143.204.48.96200 OK 132 kB URL HTTP/2 cdn.segment.com/analytics.js/v1/9LhWVY6B2k6Un15OnZIIc5QAAehSfeX2/analytics.min.js
IP 143.204.48.96:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 132 kB (131675 bytes)
Hash af6306a2cc1a76b80d4bb0184908c906
ffaf4ca23d24c5ed2defe607d1b2b07ab0c2b84d
a48c4151225d51529bc0daaaef6561982dd9383eb29248cb39ff29a720f502c9
GET /analytics.js/v1/9LhWVY6B2k6Un15OnZIIc5QAAehSfeX2/analytics.min.js HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Mon, 21 Nov 2022 20:43:22 GMT
x-amz-version-id: 0H0CGr6ygMiDXjGQzpvFyod94yZFLfoV
server: AmazonS3
content-encoding: br
date: Thu, 08 Dec 2022 03:44:04 GMT
cache-control: public, max-age=120
etag: W/"56f60de6b6edba2ad26ece42c1792a07"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: b-EQ-4Sb_xV7DkBJlPRpzhw4LAd4FTwiTeccTGKUPha_bfvAOxm_qA==
X-Firefox-Spdy: h2
youwish.no/img/newsletter-bg.jpg
95.85.19.80200 OK 96 kB URL HTTP/2 youwish.no/img/newsletter-bg.jpg
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 1080x216, components 3\012- data
Hash b4c6c0561707ad27c76f2011cc414c6a
adce6448c45ad8dce7df718a35aa0d80b729aa5f
7c633342e7b7f7072a1309ad9f7bd93eb0b0760432f50d0ec79db20a9e45e25a
GET /img/newsletter-bg.jpg HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/dist/v2/app.css?id=211e1bfbbdf3ca630407
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:04 GMT
content-type: image/jpeg
content-length: 95502
last-modified: Tue, 06 Dec 2022 05:29:08 GMT
etag: "638ed324-1750e"
expires: Thu, 15 Dec 2022 03:44:04 GMT
cache-control: max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2
youwish.no/svg/favicons/apple-touch-icon.png
95.85.19.80200 OK 4.6 kB URL HTTP/2 youwish.no/svg/favicons/apple-touch-icon.png
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 180 x 180, 8-bit colormap, non-interlaced\012- data
Hash 5686ed4a51c4a0a5c670b00a248a65b9
1838b2358b1c7569a587f6d8eb2e180a11a7eb8d
d21bd56689565bf95252ce044d05448fa4e9db85925505c6c9dbcd45074e9431
GET /svg/favicons/apple-touch-icon.png HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:04 GMT
content-type: image/png
content-length: 4587
last-modified: Sun, 04 Nov 2018 17:40:55 GMT
etag: "5bdf2f27-11eb"
expires: Thu, 15 Dec 2022 03:44:04 GMT
cache-control: max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2
youwish.no/svg/favicons/favicon-16x16.png
95.85.19.80200 OK 969 B URL HTTP/2 youwish.no/svg/favicons/favicon-16x16.png
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash ed0111fccbc0721b4b7e57e593fa2915
f3703aac284b7066ef6c6584efae1b4f4e1c6192
51280d5c8f0b8132463241c4fb70e5e75191ec1bfbb5383fb16016794dbb70d1
GET /svg/favicons/favicon-16x16.png HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:04 GMT
content-type: image/png
content-length: 969
last-modified: Sun, 04 Nov 2018 17:40:55 GMT
etag: "5bdf2f27-3c9"
expires: Thu, 15 Dec 2022 03:44:04 GMT
cache-control: max-age=604800, public
accept-ranges: bytes
X-Firefox-Spdy: h2
youwish.no/svg/img/svg/search.svg
95.85.19.80200 OK 543 B URL HTTP/2 youwish.no/svg/img/svg/search.svg
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (357)
Hash 6964935ad3b476cbb9c9a807985cadf5
adc4f47cd61b4d9545c8b364a7daf29b528aaafe
e3e170d81408c6bc59bdb418217271b8ab0e3e56a901cb4bd59db4374aa0950b
GET /svg/img/svg/search.svg HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: VQIAUVZWCBADV1RUDggEUQ==
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:04 GMT
content-type: image/svg+xml
last-modified: Sun, 20 Nov 2022 01:00:54 GMT
vary: Accept-Encoding
etag: W/"63797c46-1db"
expires: Thu, 15 Dec 2022 03:44:04 GMT
cache-control: max-age=604800, public
content-encoding: gzip
X-Firefox-Spdy: h2
www.gravatar.com/avatar/ac4aba2cfd70c1db16bca14a1c2fc028?s=60&d=https%3A%2F%2Fyouwish.no%2Fsvg%2Fimg%2Fjpg%2Favatars%2Fmale-any-2-1.png&r=g
192.0.73.2302 Found 0 B URL HTTP/2 www.gravatar.com/avatar/ac4aba2cfd70c1db16bca14a1c2fc028?s=60&d=https%3A%2F%2Fyouwish.no%2Fsvg%2Fimg%2Fjpg%2Favatars%2Fmale-any-2-1.png&r=g
IP 192.0.73.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /avatar/ac4aba2cfd70c1db16bca14a1c2fc028?s=60&d=https%3A%2F%2Fyouwish.no%2Fsvg%2Fimg%2Fjpg%2Favatars%2Fmale-any-2-1.png&r=g HTTP/1.1
Host: www.gravatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Thu, 08 Dec 2022 03:44:04 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://i1.wp.com/youwish.no/svg/img/jpg/avatars/male-any-2-1.png?ssl=1
last-modified: Wed, 11 Jan 1984 08:00:00 GMT
link: <https://www.gravatar.com/avatar/ac4aba2cfd70c1db16bca14a1c2fc028?s=60&d=https%3A%2F%2Fyouwish.no%2Fsvg%2Fimg%2Fjpg%2Favatars%2Fmale-any-2-1.png&r=g>; rel="canonical"
expires: Thu, 08 Dec 2022 03:49:04 GMT
cache-control: max-age=300
x-nc: HIT arn 2
X-Firefox-Spdy: h2
www.gravatar.com/avatar/15f996f81bf5e0566ffa2bf5a62e89d8?s=60&d=https%3A%2F%2Fyouwish.no%2Fsvg%2Fimg%2Fjpg%2Favatars%2Funisex-any-3-1.png&r=g
192.0.73.2302 Found 0 B URL HTTP/2 www.gravatar.com/avatar/15f996f81bf5e0566ffa2bf5a62e89d8?s=60&d=https%3A%2F%2Fyouwish.no%2Fsvg%2Fimg%2Fjpg%2Favatars%2Funisex-any-3-1.png&r=g
IP 192.0.73.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /avatar/15f996f81bf5e0566ffa2bf5a62e89d8?s=60&d=https%3A%2F%2Fyouwish.no%2Fsvg%2Fimg%2Fjpg%2Favatars%2Funisex-any-3-1.png&r=g HTTP/1.1
Host: www.gravatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Thu, 08 Dec 2022 03:44:04 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://i2.wp.com/youwish.no/svg/img/jpg/avatars/unisex-any-3-1.png?ssl=1
last-modified: Wed, 11 Jan 1984 08:00:00 GMT
link: <https://www.gravatar.com/avatar/15f996f81bf5e0566ffa2bf5a62e89d8?s=60&d=https%3A%2F%2Fyouwish.no%2Fsvg%2Fimg%2Fjpg%2Favatars%2Funisex-any-3-1.png&r=g>; rel="canonical"
expires: Thu, 08 Dec 2022 03:49:04 GMT
cache-control: max-age=300
x-nc: HIT arn 2
X-Firefox-Spdy: h2
www.gravatar.com/avatar/3c063085a6ba378112d9e3c13c7ec0bb?s=60&d=https%3A%2F%2Fyouwish.no%2Fsvg%2Fimg%2Fjpg%2Favatars%2Fmale-any-1-1.png&r=g
192.0.73.2302 Found 0 B URL HTTP/2 www.gravatar.com/avatar/3c063085a6ba378112d9e3c13c7ec0bb?s=60&d=https%3A%2F%2Fyouwish.no%2Fsvg%2Fimg%2Fjpg%2Favatars%2Fmale-any-1-1.png&r=g
IP 192.0.73.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /avatar/3c063085a6ba378112d9e3c13c7ec0bb?s=60&d=https%3A%2F%2Fyouwish.no%2Fsvg%2Fimg%2Fjpg%2Favatars%2Fmale-any-1-1.png&r=g HTTP/1.1
Host: www.gravatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Thu, 08 Dec 2022 03:44:04 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://i2.wp.com/youwish.no/svg/img/jpg/avatars/male-any-1-1.png?ssl=1
last-modified: Wed, 11 Jan 1984 08:00:00 GMT
link: <https://www.gravatar.com/avatar/3c063085a6ba378112d9e3c13c7ec0bb?s=60&d=https%3A%2F%2Fyouwish.no%2Fsvg%2Fimg%2Fjpg%2Favatars%2Fmale-any-1-1.png&r=g>; rel="canonical"
expires: Thu, 08 Dec 2022 03:49:04 GMT
cache-control: max-age=300
x-nc: HIT arn 2
X-Firefox-Spdy: h2
www.gravatar.com/avatar/1a1e1341603680abbb5baa89eaa321fd?s=60&d=https%3A%2F%2Fyouwish.no%2Fsvg%2Fimg%2Fjpg%2Favatars%2Ffemale-20-30-2-1.png&r=g
192.0.73.2302 Found 0 B URL HTTP/2 www.gravatar.com/avatar/1a1e1341603680abbb5baa89eaa321fd?s=60&d=https%3A%2F%2Fyouwish.no%2Fsvg%2Fimg%2Fjpg%2Favatars%2Ffemale-20-30-2-1.png&r=g
IP 192.0.73.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /avatar/1a1e1341603680abbb5baa89eaa321fd?s=60&d=https%3A%2F%2Fyouwish.no%2Fsvg%2Fimg%2Fjpg%2Favatars%2Ffemale-20-30-2-1.png&r=g HTTP/1.1
Host: www.gravatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Thu, 08 Dec 2022 03:44:04 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://i0.wp.com/youwish.no/svg/img/jpg/avatars/female-20-30-2-1.png?ssl=1
last-modified: Wed, 11 Jan 1984 08:00:00 GMT
link: <https://www.gravatar.com/avatar/1a1e1341603680abbb5baa89eaa321fd?s=60&d=https%3A%2F%2Fyouwish.no%2Fsvg%2Fimg%2Fjpg%2Favatars%2Ffemale-20-30-2-1.png&r=g>; rel="canonical"
expires: Thu, 08 Dec 2022 03:49:04 GMT
cache-control: max-age=300
x-nc: HIT arn 2
X-Firefox-Spdy: h2
www.gravatar.com/avatar/173d277173d92f50490ffc87ce16433f?s=60&d=https%3A%2F%2Fyouwish.no%2Fsvg%2Fimg%2Fjpg%2Favatars%2Fmale-any-2-1.png&r=g
192.0.73.2302 Found 0 B URL HTTP/2 www.gravatar.com/avatar/173d277173d92f50490ffc87ce16433f?s=60&d=https%3A%2F%2Fyouwish.no%2Fsvg%2Fimg%2Fjpg%2Favatars%2Fmale-any-2-1.png&r=g
IP 192.0.73.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /avatar/173d277173d92f50490ffc87ce16433f?s=60&d=https%3A%2F%2Fyouwish.no%2Fsvg%2Fimg%2Fjpg%2Favatars%2Fmale-any-2-1.png&r=g HTTP/1.1
Host: www.gravatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Thu, 08 Dec 2022 03:44:04 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://i1.wp.com/youwish.no/svg/img/jpg/avatars/male-any-2-1.png?ssl=1
last-modified: Wed, 11 Jan 1984 08:00:00 GMT
link: <https://www.gravatar.com/avatar/173d277173d92f50490ffc87ce16433f?s=60&d=https%3A%2F%2Fyouwish.no%2Fsvg%2Fimg%2Fjpg%2Favatars%2Fmale-any-2-1.png&r=g>; rel="canonical"
expires: Thu, 08 Dec 2022 03:49:04 GMT
cache-control: max-age=300
x-nc: HIT arn 2
X-Firefox-Spdy: h2
www.gravatar.com/avatar/605043cf085110ccada3b40fd3059572?s=60&d=https%3A%2F%2Fyouwish.no%2Fsvg%2Fimg%2Fjpg%2Favatars%2Fmale-any-1-1.png&r=g
192.0.73.2302 Found 0 B URL HTTP/2 www.gravatar.com/avatar/605043cf085110ccada3b40fd3059572?s=60&d=https%3A%2F%2Fyouwish.no%2Fsvg%2Fimg%2Fjpg%2Favatars%2Fmale-any-1-1.png&r=g
IP 192.0.73.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /avatar/605043cf085110ccada3b40fd3059572?s=60&d=https%3A%2F%2Fyouwish.no%2Fsvg%2Fimg%2Fjpg%2Favatars%2Fmale-any-1-1.png&r=g HTTP/1.1
Host: www.gravatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Thu, 08 Dec 2022 03:44:04 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://i2.wp.com/youwish.no/svg/img/jpg/avatars/male-any-1-1.png?ssl=1
last-modified: Wed, 11 Jan 1984 08:00:00 GMT
link: <https://www.gravatar.com/avatar/605043cf085110ccada3b40fd3059572?s=60&d=https%3A%2F%2Fyouwish.no%2Fsvg%2Fimg%2Fjpg%2Favatars%2Fmale-any-1-1.png&r=g>; rel="canonical"
expires: Thu, 08 Dec 2022 03:49:04 GMT
cache-control: max-age=300
x-nc: HIT arn 2
X-Firefox-Spdy: h2
www.gravatar.com/avatar/e810543abc0ee9a4f2a7be3c7aad9334?s=60&d=https%3A%2F%2Fyouwish.no%2Fsvg%2Fimg%2Fjpg%2Favatars%2Ffemale-20-30-3-1.png&r=g
192.0.73.2302 Found 0 B URL HTTP/2 www.gravatar.com/avatar/e810543abc0ee9a4f2a7be3c7aad9334?s=60&d=https%3A%2F%2Fyouwish.no%2Fsvg%2Fimg%2Fjpg%2Favatars%2Ffemale-20-30-3-1.png&r=g
IP 192.0.73.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /avatar/e810543abc0ee9a4f2a7be3c7aad9334?s=60&d=https%3A%2F%2Fyouwish.no%2Fsvg%2Fimg%2Fjpg%2Favatars%2Ffemale-20-30-3-1.png&r=g HTTP/1.1
Host: www.gravatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Thu, 08 Dec 2022 03:44:04 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://i0.wp.com/youwish.no/svg/img/jpg/avatars/female-20-30-3-1.png?ssl=1
last-modified: Wed, 11 Jan 1984 08:00:00 GMT
link: <https://www.gravatar.com/avatar/e810543abc0ee9a4f2a7be3c7aad9334?s=60&d=https%3A%2F%2Fyouwish.no%2Fsvg%2Fimg%2Fjpg%2Favatars%2Ffemale-20-30-3-1.png&r=g>; rel="canonical"
expires: Thu, 08 Dec 2022 03:49:04 GMT
cache-control: max-age=300
x-nc: HIT arn 2
X-Firefox-Spdy: h2
eu-library.klarnaservices.com/lib.js
54.230.111.80200 OK 11 kB URL HTTP/2 eu-library.klarnaservices.com/lib.js
IP 54.230.111.80:0
File type ASCII text, with very long lines (34396), with no line terminators
Hash 18a9891e03b9648e017670a5dff40881
6dfdc13edcdda8f6a38095e6763931fbde6ce2b1
6b49c8d2859b4fe8329243a1455f661bc51f675658f9d8db8233a5838529d24b
GET /lib.js HTTP/1.1
Host: eu-library.klarnaservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 07 Dec 2022 09:56:25 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Thu, 08 Dec 2022 03:40:13 GMT
cache-control: max-age=900
etag: W/"b18e3681acdd1a3ce854e7a3c8791e83"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YV9_SNY368v5KCi8eesUoz_QNUADMKkelHGvPsKQ-FbuG-AinuQ72A==
age: 229
X-Firefox-Spdy: h2
youwish.no/svg/img/svg/heart-black.svg
95.85.19.80200 OK 349 B URL HTTP/2 youwish.no/svg/img/svg/heart-black.svg
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (490)
Hash c0de7339e23b52b983ffb6ae50c8fbee
6a48b03ba19fae79b15676f87907d4494c169e10
d6331d6058607d70f4dac96f6b0124acce36319b8f406b70f4a230e3749b0f39
GET /svg/img/svg/heart-black.svg HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: VQIAUVZWCBADV1RUDggEUQ==
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:04 GMT
content-type: image/svg+xml
last-modified: Fri, 12 Nov 2021 01:03:54 GMT
vary: Accept-Encoding
etag: W/"618dbd7a-252"
expires: Thu, 15 Dec 2022 03:44:04 GMT
cache-control: max-age=604800, public
content-encoding: gzip
X-Firefox-Spdy: h2
youwish.no/svg/img/svg/cart.svg
95.85.19.80200 OK 293 B URL HTTP/2 youwish.no/svg/img/svg/cart.svg
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 312b89eef77854ec5be9a5eafb33efad
4a03316b4173366e4d431b627040f9d0f484a669
cdcdc1939e78c9fde6f58f6da167dd6ac490886d79cb2ba93de90cfe5393a8b8
GET /svg/img/svg/cart.svg HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: VQIAUVZWCBADV1RUDggEUQ==
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:04 GMT
content-type: image/svg+xml
last-modified: Sun, 20 Nov 2022 01:00:54 GMT
vary: Accept-Encoding
etag: W/"63797c46-2d0"
expires: Thu, 15 Dec 2022 03:44:04 GMT
cache-control: max-age=604800, public
content-encoding: gzip
X-Firefox-Spdy: h2
i0.wp.com/youwish.no/svg/img/jpg/avatars/female-any-3-1.png?ssl=1
192.0.77.2200 OK 610 B URL HTTP/2 i0.wp.com/youwish.no/svg/img/jpg/avatars/female-any-3-1.png?ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 82330b1bb978ce5ebcc8e1c8eaa81dc3
df10cfd321981d927a2981ac047d077e75824991
0d428c597a29ab9e903f227b179a0150665036022b7c1928d0cd7527f72963da
GET /youwish.no/svg/img/jpg/avatars/female-any-3-1.png?ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://youwish.no/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 03:44:04 GMT
content-type: image/webp
content-length: 610
last-modified: Mon, 06 Jun 2022 09:10:47 GMT
expires: Wed, 05 Jun 2024 21:10:47 GMT
cache-control: public, max-age=63115200
link: <https://youwish.no/svg/img/jpg/avatars/female-any-3-1.png>; rel="canonical"
x-content-type-options: nosniff
etag: "2fbbb6c3213cb2b1"
vary: Accept
x-nc: HIT arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i1.wp.com/youwish.no/svg/img/jpg/avatars/male-any-2-1.png?ssl=1
192.0.77.2200 OK 1.0 kB URL HTTP/2 i1.wp.com/youwish.no/svg/img/jpg/avatars/male-any-2-1.png?ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 3ce1ed9a4297ff595af9dd1e3350530e
48a9e3174e2527e98c482a50b513298fb9b346b6
631dc799d99ab87ee11fc92d2113844350a97c82ab093ae0a5371b32af49871f
GET /youwish.no/svg/img/jpg/avatars/male-any-2-1.png?ssl=1 HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://youwish.no/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 03:44:04 GMT
content-type: image/webp
content-length: 1002
last-modified: Tue, 08 Dec 2020 08:47:25 GMT
expires: Thu, 08 Dec 2022 20:47:25 GMT
cache-control: public, max-age=63115200
link: <https://youwish.no/svg/img/jpg/avatars/male-any-2-1.png>; rel="canonical"
x-content-type-options: nosniff
etag: "4c88718a919472fa"
vary: Accept
x-nc: HIT arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i2.wp.com/youwish.no/svg/img/jpg/avatars/unisex-any-3-1.png?ssl=1
192.0.77.2200 OK 1.0 kB URL HTTP/2 i2.wp.com/youwish.no/svg/img/jpg/avatars/unisex-any-3-1.png?ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash bc4fdbde259ed74612d324c766827363
3545a9ffe88b825f88ebd5db6c2c1c26003f67bb
04d071d534accc239349e0c4df2cc1546860af8e86195d29177125a5128b6a7d
GET /youwish.no/svg/img/jpg/avatars/unisex-any-3-1.png?ssl=1 HTTP/1.1
Host: i2.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://youwish.no/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 03:44:04 GMT
content-type: image/webp
content-length: 1046
last-modified: Wed, 31 Mar 2021 14:16:38 GMT
expires: Sat, 01 Apr 2023 02:16:38 GMT
cache-control: public, max-age=63115200
link: <https://youwish.no/svg/img/jpg/avatars/unisex-any-3-1.png>; rel="canonical"
x-content-type-options: nosniff
etag: "06c15ce6c669297a"
vary: Accept
x-nc: HIT arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/youwish.no/svg/img/jpg/avatars/female-any-1-1.png?ssl=1
192.0.77.2200 OK 786 B URL HTTP/2 i0.wp.com/youwish.no/svg/img/jpg/avatars/female-any-1-1.png?ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 21a5ad65eead9e86af3681a4f88413ad
f3d71cacf15d8e9c0cad947dd2282d4bad04fcfe
06725631e62a1428f8cde8e3b378ad8fe015947c002479e7b8fa8f1f44a7fbaa
GET /youwish.no/svg/img/jpg/avatars/female-any-1-1.png?ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://youwish.no/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 03:44:04 GMT
content-type: image/webp
content-length: 786
last-modified: Wed, 25 May 2022 14:53:42 GMT
expires: Sat, 25 May 2024 02:53:42 GMT
cache-control: public, max-age=63115200
link: <https://youwish.no/svg/img/jpg/avatars/female-any-1-1.png>; rel="canonical"
x-content-type-options: nosniff
etag: "07b8bcda1dbbb9d4"
vary: Accept
x-nc: HIT arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/youwish.no/svg/img/jpg/avatars/female-20-30-2-1.png?ssl=1
192.0.77.2200 OK 1.0 kB URL HTTP/2 i0.wp.com/youwish.no/svg/img/jpg/avatars/female-20-30-2-1.png?ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 03dbb587722e745cacd382eaf13e3b1c
49cd51807248e5c318a291aa1279e5f99223efc2
a9153d132ba413204035ff0d3e6cdc525ac248427a8463247a2ea93164ca70f0
GET /youwish.no/svg/img/jpg/avatars/female-20-30-2-1.png?ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://youwish.no/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 03:44:04 GMT
content-type: image/webp
content-length: 1002
last-modified: Sun, 07 Mar 2021 15:43:39 GMT
expires: Wed, 08 Mar 2023 03:43:39 GMT
cache-control: public, max-age=63115200
link: <https://youwish.no/svg/img/jpg/avatars/female-20-30-2-1.png>; rel="canonical"
x-content-type-options: nosniff
etag: "ff61a808634bb996"
vary: Accept
x-nc: HIT arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i2.wp.com/youwish.no/svg/img/jpg/avatars/male-any-1-1.png?ssl=1
192.0.77.2200 OK 936 B URL HTTP/2 i2.wp.com/youwish.no/svg/img/jpg/avatars/male-any-1-1.png?ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 241c5473298a32ad978ae16d21c4de14
0573c96fee27e3b3fb748e01b0996de95289ddb2
b092a73121134c20db601a3585bd813033877b1dc952dff44ac73f3d6060bcc0
GET /youwish.no/svg/img/jpg/avatars/male-any-1-1.png?ssl=1 HTTP/1.1
Host: i2.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://youwish.no/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 03:44:04 GMT
content-type: image/webp
content-length: 936
last-modified: Mon, 06 Jun 2022 16:47:47 GMT
expires: Thu, 06 Jun 2024 04:47:47 GMT
cache-control: public, max-age=63115200
link: <https://youwish.no/svg/img/jpg/avatars/male-any-1-1.png>; rel="canonical"
x-content-type-options: nosniff
etag: "7b055466fe8b7e85"
vary: Accept
x-nc: HIT arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/youwish.no/svg/img/jpg/avatars/female-20-30-3-1.png?ssl=1
192.0.77.2200 OK 872 B URL HTTP/2 i0.wp.com/youwish.no/svg/img/jpg/avatars/female-20-30-3-1.png?ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 34db072145e15c293fad19981530921c
42cf796bd27990b9d302184a9d8b8cf5a67842e5
ae84e7781d85246816253932dfeca17551263ef46021bce26d41939cb38a3a3e
GET /youwish.no/svg/img/jpg/avatars/female-20-30-3-1.png?ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://youwish.no/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 03:44:04 GMT
content-type: image/webp
content-length: 872
last-modified: Tue, 15 Feb 2022 04:00:11 GMT
expires: Thu, 15 Feb 2024 16:00:11 GMT
cache-control: public, max-age=63115200
link: <https://youwish.no/svg/img/jpg/avatars/female-20-30-3-1.png>; rel="canonical"
x-content-type-options: nosniff
etag: "07a863b04f7c2782"
vary: Accept
x-nc: HIT arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
cdn.segment.com/next-integrations/integrations/google-analytics/2.18.5/google-analytics.dynamic.js.gz
143.204.48.96200 OK 4.7 kB URL HTTP/2 cdn.segment.com/next-integrations/integrations/google-analytics/2.18.5/google-analytics.dynamic.js.gz
IP 143.204.48.96:0
File type HTML document, ASCII text, with very long lines (15894)
Hash 36786f75981fc0efd629c4a89e1c78ec
53eae18749c15231d94fd55cc06d83ad287671e7
f41951564ca665482669a0c4e335b2720a64cd58fc983d64cbb825ef3e8df32e
GET /next-integrations/integrations/google-analytics/2.18.5/google-analytics.dynamic.js.gz HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 4743
date: Fri, 18 Nov 2022 23:04:26 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 24 Oct 2022 18:48:00 GMT
etag: "36786f75981fc0efd629c4a89e1c78ec"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: 93Sj1E.cRs_JOVEMHMClfQYLj8ysGAbV
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: G4azLWotAyoBIRPSO2uLXGW7gVtha8NjMAboZicJjGMQ22yDsf0P_A==
age: 1658379
X-Firefox-Spdy: h2
cdn.segment.com/next-integrations/integrations/facebook-pixel/2.11.4/facebook-pixel.dynamic.js.gz
143.204.48.96200 OK 3.3 kB URL HTTP/2 cdn.segment.com/next-integrations/integrations/facebook-pixel/2.11.4/facebook-pixel.dynamic.js.gz
IP 143.204.48.96:0
File type HTML document, ASCII text, with very long lines (10360)
Hash a6a51bf375940b6b8b8dc17bad7c100d
8fb07d8facf476a98f0aceb0253d9059d1621efd
73b91b899e567ea1f4685fa1e4cc9455dd758aea9259e84f1b80e93762ee1e41
GET /next-integrations/integrations/facebook-pixel/2.11.4/facebook-pixel.dynamic.js.gz HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 3269
date: Thu, 01 Dec 2022 01:19:28 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 24 Oct 2022 18:48:00 GMT
etag: "a6a51bf375940b6b8b8dc17bad7c100d"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: RTxiycDerKdpoyALA__FPwQKxkLdwn1E
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1UqHgRSIg5vhEMbZqU9QZpq9m77OSrGpDvy32YEVLTKBsuf7T4VWQg==
age: 613477
X-Firefox-Spdy: h2
cdn.segment.com/next-integrations/integrations/adwords/2.5.3/adwords.dynamic.js.gz
143.204.48.96200 OK 1.4 kB URL HTTP/2 cdn.segment.com/next-integrations/integrations/adwords/2.5.3/adwords.dynamic.js.gz
IP 143.204.48.96:0
File type HTML document, ASCII text, with very long lines (3675)
Hash 257fe81df53dcd4819bc1a81e78fce58
c8359d1d27cce7de170e6aed63e157390b33e202
f5d159180db9c44e6f82b7fb33ef2983b42ef6d369ebe4c1c6ae299a7ec669e2
GET /next-integrations/integrations/adwords/2.5.3/adwords.dynamic.js.gz HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 1356
date: Sat, 19 Nov 2022 00:00:00 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 24 Oct 2022 18:47:59 GMT
etag: "257fe81df53dcd4819bc1a81e78fce58"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: a_UrJ3fwQjpizH7mijguRgbb4PvaZ36l
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zgugCsPO0wmFh5OUd_MonEdhCrh3BYld6y2Cr0ronKkU4ZAhzeAYtQ==
age: 1655045
X-Firefox-Spdy: h2
cdn.segment.com/next-integrations/integrations/pinterest-tag/1.2.3/pinterest-tag.dynamic.js.gz
143.204.48.96200 OK 1.9 kB URL HTTP/2 cdn.segment.com/next-integrations/integrations/pinterest-tag/1.2.3/pinterest-tag.dynamic.js.gz
IP 143.204.48.96:0
File type HTML document, ASCII text, with very long lines (4637)
Hash 2b34939053248ad0a80e088569dafdae
f82d0d936e4895c53560fc75bdf6759d43b7371c
7d141da8b4729e928f95eecd8f12379ea500fe53cfebc156d3d39fe3b8b88eae
GET /next-integrations/integrations/pinterest-tag/1.2.3/pinterest-tag.dynamic.js.gz HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 1894
date: Thu, 17 Nov 2022 09:33:23 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 24 Oct 2022 18:48:00 GMT
etag: "2b34939053248ad0a80e088569dafdae"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: UOEaP5R8ywe8vU1VnX0oGuVPgc6m_Wxg
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xekVFVfwi0WgUCpUVN11KByUtY77M7o-G1vtQsoypL9vO86NFNW8Tg==
age: 1793442
X-Firefox-Spdy: h2
cdn.segment.com/next-integrations/integrations/vendor/commons.c42222c4cb2f8913500f.js.gz
143.204.48.96200 OK 22 kB URL HTTP/2 cdn.segment.com/next-integrations/integrations/vendor/commons.c42222c4cb2f8913500f.js.gz
IP 143.204.48.96:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (65536), with no line terminators
Hash befb217271e2e926c7d898f1c85f6cb7
b6ca8f0b9eb7ddebc916cbc77eddab8532216748
21c28b41965eaf22aae5ee670f71227bd2d8fd32a024d62864873f7c8621e8f4
GET /next-integrations/integrations/vendor/commons.c42222c4cb2f8913500f.js.gz HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 22177
date: Wed, 30 Nov 2022 22:31:30 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 24 Oct 2022 18:47:58 GMT
etag: "befb217271e2e926c7d898f1c85f6cb7"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: t.HHEvUZUgxzLKa1tzzXBbRzWu6jUMd.
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4ygAGvIkmskOdJEgBGdG83Ep0zaS2HfYFCnE7eDqOZd3lS6qFmSl3g==
age: 623554
X-Firefox-Spdy: h2
youwish.no/svg/img/svg/usp/pdf-direkte.svg
95.85.19.80200 OK 0 B URL HTTP/2 youwish.no/svg/img/svg/usp/pdf-direkte.svg
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
GET /svg/img/svg/usp/pdf-direkte.svg HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: image/svg+xml
last-modified: Fri, 22 Nov 2019 07:09:17 GMT
vary: Accept-Encoding
etag: W/"5dd7899d-d5f"
expires: Thu, 15 Dec 2022 03:44:02 GMT
cache-control: max-age=604800, public
content-encoding: gzip
X-Firefox-Spdy: h2
youwish.no/svg/img/svg/usp/exhcange-365.svg
95.85.19.80200 OK 0 B URL HTTP/2 youwish.no/svg/img/svg/usp/exhcange-365.svg
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
GET /svg/img/svg/usp/exhcange-365.svg HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: image/svg+xml
last-modified: Fri, 22 Nov 2019 07:09:17 GMT
vary: Accept-Encoding
etag: W/"5dd7899d-ae7"
expires: Thu, 15 Dec 2022 03:44:02 GMT
cache-control: max-age=604800, public
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.segment.com/analytics-next/bundles/schemaFilter.bundle.debb169c1abb431faaa6.js
143.204.48.96200 OK 0 B URL HTTP/2 cdn.segment.com/analytics-next/bundles/schemaFilter.bundle.debb169c1abb431faaa6.js
IP 143.204.48.96:0
GET /analytics-next/bundles/schemaFilter.bundle.debb169c1abb431faaa6.js HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Sun, 04 Dec 2022 05:04:27 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Sun, 04 Dec 2022 04:06:01 GMT
etag: W/"3e448afdfea355c0f19700d04431ce7d"
cache-control: public,max-age=31536000,immutable
x-amz-version-id: DaaIbLnzvn06V4JPscsHdkknFnPWetFJ
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9JS8eHWh65tr3G-7k8TOp95mzReHhYYVHWKE67s8hgAf_X8hrZZ-wA==
age: 340777
X-Firefox-Spdy: h2
youwish.no/svg/img/svg/klarna.svg
95.85.19.80200 OK 0 B URL HTTP/2 youwish.no/svg/img/svg/klarna.svg
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
GET /svg/img/svg/klarna.svg HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: image/svg+xml
last-modified: Thu, 01 Nov 2018 02:23:23 GMT
vary: Accept-Encoding
etag: W/"5bda639b-587"
expires: Thu, 15 Dec 2022 03:44:02 GMT
cache-control: max-age=604800, public
content-encoding: gzip
X-Firefox-Spdy: h2
youwish.no/dist/v2/.jpg
95.85.19.80404 Not Found 0 B IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
GET /dist/v2/.jpg HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/dist/v2/app.css?id=211e1bfbbdf3ca630407
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx/1.11.5
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: no-cache, private
date: Thu, 08 Dec 2022 03:44:03 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.segment.com/analytics-next/bundles/ajs-destination.bundle.f10d3096539d72f6123e.js
143.204.48.96200 OK 0 B URL HTTP/2 cdn.segment.com/analytics-next/bundles/ajs-destination.bundle.f10d3096539d72f6123e.js
IP 143.204.48.96:0
GET /analytics-next/bundles/ajs-destination.bundle.f10d3096539d72f6123e.js HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Sun, 27 Nov 2022 05:10:09 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Sun, 27 Nov 2022 04:05:11 GMT
etag: W/"3fe4d92339c7d21c57f0044fcdcf5274"
cache-control: public,max-age=31536000,immutable
x-amz-version-id: eWZ_Pm2mNT9k0TonRN_95lp_q61Q1oj1
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7pyPY-c090Au6RgijN-P_yoDrkUd1ugb5-63bm5SiKgav7jhDSeBJw==
age: 945236
X-Firefox-Spdy: h2
www.globalconsumerwinner.com/redirect-simple?ci=193&c=no&m_c_r=-1
137.74.65.7200 OK 0 B URL HTTP/2 www.globalconsumerwinner.com/redirect-simple?ci=193&c=no&m_c_r=-1
IP 137.74.65.7:0
GET /redirect-simple?ci=193&c=no&m_c_r=-1 HTTP/1.1
Host: www.globalconsumerwinner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Thu, 08 Dec 2022 03:44:00 GMT
content-type: text/html; charset=UTF-8
x-frame-options: *
content-encoding: gzip
X-Firefox-Spdy: h2
youwish.no/dist/v2/app.css?id=211e1bfbbdf3ca630407
95.85.19.80200 OK 0 B URL HTTP/2 youwish.no/dist/v2/app.css?id=211e1bfbbdf3ca630407
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
GET /dist/v2/app.css?id=211e1bfbbdf3ca630407 HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: text/css
last-modified: Tue, 06 Dec 2022 05:29:08 GMT
vary: Accept-Encoding
etag: W/"638ed324-4b06f"
expires: Thu, 15 Dec 2022 03:44:02 GMT
cache-control: max-age=604800, public
content-encoding: gzip
X-Firefox-Spdy: h2
youwish.no/svg/img/svg/usp/number-one.svg
95.85.19.80200 OK 0 B URL HTTP/2 youwish.no/svg/img/svg/usp/number-one.svg
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
GET /svg/img/svg/usp/number-one.svg HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: image/svg+xml
last-modified: Fri, 22 Nov 2019 07:09:17 GMT
vary: Accept-Encoding
etag: W/"5dd7899d-1aeb"
expires: Thu, 15 Dec 2022 03:44:02 GMT
cache-control: max-age=604800, public
content-encoding: gzip
X-Firefox-Spdy: h2
youwish.no/svg/img/svg/usp/customize.svg
95.85.19.80200 OK 0 B URL HTTP/2 youwish.no/svg/img/svg/usp/customize.svg
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
GET /svg/img/svg/usp/customize.svg HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: image/svg+xml
last-modified: Fri, 22 Nov 2019 07:09:17 GMT
vary: Accept-Encoding
etag: W/"5dd7899d-8dd"
expires: Thu, 15 Dec 2022 03:44:02 GMT
cache-control: max-age=604800, public
content-encoding: gzip
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.7.2/css/all.css
172.64.132.15200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.7.2/css/all.css
IP 172.64.132.15:0
GET /releases/v5.7.2/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://youwish.no
Connection: keep-alive
Referer: https://youwish.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: text/css
x-amz-id-2: QKpL9igTKyOliAi15Q/vQznZrdJSBjSOH1Hu45hJ3FHOgpF+fgzSpb40Devhd38y7cCe1H0R5zI=
x-amz-request-id: CYFRD0TQS8ETD0GA
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:45:57 GMT
etag: W/"7b1d7f457d056ace7b230b587b9f3753"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 2243692
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vfGz2NBbwoV4PpBVFIpqsSiJaW5lq3qgY2meerZc5V99BiFtds31XHtZ1fwd2v0Tj9MO%2BAq38OJj%2Fk8%2FR%2BBO08oi6XzZAbPRNzMaRhwcOgTt6VwBu9g13EqZxGVq%2FLwnjofMe6UW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77628010baf076d8-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
youwish.no/svg/img/svg/product/check.svg
95.85.19.80200 OK 0 B URL HTTP/2 youwish.no/svg/img/svg/product/check.svg
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
GET /svg/img/svg/product/check.svg HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/dist/v2/app.css?id=211e1bfbbdf3ca630407
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: image/svg+xml
last-modified: Wed, 20 Nov 2019 00:56:22 GMT
vary: Accept-Encoding
etag: W/"5dd48f36-750"
expires: Thu, 15 Dec 2022 03:44:02 GMT
cache-control: max-age=604800, public
content-encoding: gzip
X-Firefox-Spdy: h2
p201298.mybettermb.com/adServe/domainClick?ai=W6LwHsBtbbGliVSBgRHFtmSZVu5NPqSq-h2rSoksoBqNG2LV3Zkk-L8FPCSjKZr_YsQ0yRxpJ6k8LlotqmtX7ErGSkvN2YlGY4HZ8X7cx-dM1QaxFxK0PHGpJGlCLAoWMnzoVZuce8ueVaQ0F217-cHwFJ-CDJF8T7C2wcJ1dqtoOgN9pzNxgl6S4oChQzOvrPE96Ym7CMGlXRdGMK-TkKMF_XSxG7q5c9lRJWHNr4s5bSTdWcYVZJciO9bgcuS1jIeAEiXnU3VYEUAru7F_DuXugOnM5m-8Jm7EhOsk27bxGYd3vi6Mg89LCz5E8ciHT2L9NFyVXF6m2wb9WMUKqQqO8jOswrlobM7TR-A6o2LnrG8E1DfQ9Vu8kUSrMxroonOqLNsrJIKgUSZw7eMl7vr4nvPsKvQNOYwwqJPWDKxkmVbuTT6kqjvQfnk4ki0ivitaEXZPV_A9yZrhH3-SbkgbvU3T-CRpeJ5P1kYa67iOF0SokHo2PZeYO9hdbD2Gn6oVmfmCmc-q0T2xsmJwnBfZ8RtWPEH2SnZADPOdLz_p-OGBQW3exAhKJncPyYXssKbYd4jRL3fz-AbClJeve1IAxxj8fbHTscWi84ZIOk0qJeEuaLJ-WEdDYOEm2_nsCKidNDxuV5s&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukNIG71N0_gkaQBqlfD1W9wPNw-lntrIWMLPRuztazMA1W0zrzeUeu3qaW1NvPtjd8shFuHGdmmkHg&si=1&oref=e2905b67c440133e06d94d472902354c&optunit=g1X1rV7f4BpBS4YUfGI2rw&rb=2Vb288azLYM&rr=1&abtg=0
108.168.193.189200 OK 0 B URL HTTP/2 p201298.mybettermb.com/adServe/domainClick?ai=W6LwHsBtbbGliVSBgRHFtmSZVu5NPqSq-h2rSoksoBqNG2LV3Zkk-L8FPCSjKZr_YsQ0yRxpJ6k8LlotqmtX7ErGSkvN2YlGY4HZ8X7cx-dM1QaxFxK0PHGpJGlCLAoWMnzoVZuce8ueVaQ0F217-cHwFJ-CDJF8T7C2wcJ1dqtoOgN9pzNxgl6S4oChQzOvrPE96Ym7CMGlXRdGMK-TkKMF_XSxG7q5c9lRJWHNr4s5bSTdWcYVZJciO9bgcuS1jIeAEiXnU3VYEUAru7F_DuXugOnM5m-8Jm7EhOsk27bxGYd3vi6Mg89LCz5E8ciHT2L9NFyVXF6m2wb9WMUKqQqO8jOswrlobM7TR-A6o2LnrG8E1DfQ9Vu8kUSrMxroonOqLNsrJIKgUSZw7eMl7vr4nvPsKvQNOYwwqJPWDKxkmVbuTT6kqjvQfnk4ki0ivitaEXZPV_A9yZrhH3-SbkgbvU3T-CRpeJ5P1kYa67iOF0SokHo2PZeYO9hdbD2Gn6oVmfmCmc-q0T2xsmJwnBfZ8RtWPEH2SnZADPOdLz_p-OGBQW3exAhKJncPyYXssKbYd4jRL3fz-AbClJeve1IAxxj8fbHTscWi84ZIOk0qJeEuaLJ-WEdDYOEm2_nsCKidNDxuV5s&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukNIG71N0_gkaQBqlfD1W9wPNw-lntrIWMLPRuztazMA1W0zrzeUeu3qaW1NvPtjd8shFuHGdmmkHg&si=1&oref=e2905b67c440133e06d94d472902354c&optunit=g1X1rV7f4BpBS4YUfGI2rw&rb=2Vb288azLYM&rr=1&abtg=0
IP 108.168.193.189:0
GET /adServe/domainClick?ai=W6LwHsBtbbGliVSBgRHFtmSZVu5NPqSq-h2rSoksoBqNG2LV3Zkk-L8FPCSjKZr_YsQ0yRxpJ6k8LlotqmtX7ErGSkvN2YlGY4HZ8X7cx-dM1QaxFxK0PHGpJGlCLAoWMnzoVZuce8ueVaQ0F217-cHwFJ-CDJF8T7C2wcJ1dqtoOgN9pzNxgl6S4oChQzOvrPE96Ym7CMGlXRdGMK-TkKMF_XSxG7q5c9lRJWHNr4s5bSTdWcYVZJciO9bgcuS1jIeAEiXnU3VYEUAru7F_DuXugOnM5m-8Jm7EhOsk27bxGYd3vi6Mg89LCz5E8ciHT2L9NFyVXF6m2wb9WMUKqQqO8jOswrlobM7TR-A6o2LnrG8E1DfQ9Vu8kUSrMxroonOqLNsrJIKgUSZw7eMl7vr4nvPsKvQNOYwwqJPWDKxkmVbuTT6kqjvQfnk4ki0ivitaEXZPV_A9yZrhH3-SbkgbvU3T-CRpeJ5P1kYa67iOF0SokHo2PZeYO9hdbD2Gn6oVmfmCmc-q0T2xsmJwnBfZ8RtWPEH2SnZADPOdLz_p-OGBQW3exAhKJncPyYXssKbYd4jRL3fz-AbClJeve1IAxxj8fbHTscWi84ZIOk0qJeEuaLJ-WEdDYOEm2_nsCKidNDxuV5s&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukNIG71N0_gkaQBqlfD1W9wPNw-lntrIWMLPRuztazMA1W0zrzeUeu3qaW1NvPtjd8shFuHGdmmkHg&si=1&oref=e2905b67c440133e06d94d472902354c&optunit=g1X1rV7f4BpBS4YUfGI2rw&rb=2Vb288azLYM&rr=1&abtg=0 HTTP/1.1
Host: p201298.mybettermb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://ww2.mkkuei4kdsz.com/
Connection: keep-alive
Cookie: rhid=82509913475
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 03:44:00 GMT
content-type: text/html;charset=ISO-8859-1
vary: Accept-Encoding
set-cookie: rhid=82509913475; Max-Age=15552000; Expires=Tue, 06-Jun-2023 03:44:00 GMT; Domain=mybettermb.com; Path=/; SameSite=None; secure;
loi=ad_1136358_off_580757_aff_13719_cid_201298-MKKUEI4KDSZ.COM_ts_1670471040; Max-Age=3600; Expires=Thu, 08-Dec-2022 04:44:00 GMT; Domain=mybettermb.com; Path=/; SameSite=None; secure;
content-encoding: gzip
X-Firefox-Spdy: h2
youwish.no/svg/img/svg/thin-arrow.svg
95.85.19.80200 OK 0 B URL HTTP/2 youwish.no/svg/img/svg/thin-arrow.svg
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
GET /svg/img/svg/thin-arrow.svg HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: image/svg+xml
last-modified: Thu, 01 Nov 2018 02:23:23 GMT
vary: Accept-Encoding
etag: W/"5bda639b-4cd"
expires: Thu, 15 Dec 2022 03:44:02 GMT
cache-control: max-age=604800, public
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.segment.com/v1/projects/9LhWVY6B2k6Un15OnZIIc5QAAehSfeX2/settings
143.204.48.96200 OK 0 B URL HTTP/2 cdn.segment.com/v1/projects/9LhWVY6B2k6Un15OnZIIc5QAAehSfeX2/settings
IP 143.204.48.96:0
GET /v1/projects/9LhWVY6B2k6Un15OnZIIc5QAAehSfeX2/settings HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://youwish.no
Connection: keep-alive
Referer: https://youwish.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Mon, 13 Jun 2022 17:05:57 GMT
x-amz-version-id: OCydDXhqMQ9w7N8hwp5t3OmhEpMOjgDT
server: AmazonS3
content-encoding: gzip
date: Thu, 08 Dec 2022 01:24:06 GMT
cache-control: public, max-age=10800
etag: W/"f3279f6ce13b55fbd532543d7a3ec34e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: l1VY37QMPyvvJCmusj-7lpjJxDRQvIvrKwUwEtCxlplUd1_X3ssFOg==
age: 8399
X-Firefox-Spdy: h2
r.srvtrck.com/v2/go?t=ot.ps%3Aw%2Foc.twaFe%25r2cAe%25.teh%2Fuc2214e71m106a92e7d68%26e%3Db020f09042759215024c30v8r44c4802%3D3%263%3D6%26d029c%3D%26%3F%3Dttnpr3k%25aFt2dwrw.ytu%2Fishtnh&e=1&ai=a44299724edc4ed5b6527c9eb6d5c9a3&sct=0&ct=1670471040915&cu=24592fc20b8e48cd8e29363161de21c2&ykuid=4dcb34cb958f4608b469119b13db8de2&sc=1&cs=2e119974868a6eb8958fb4aaa2db4253
104.19.168.96200 OK 0 B URL HTTP/2 r.srvtrck.com/v2/go?t=ot.ps%3Aw%2Foc.twaFe%25r2cAe%25.teh%2Fuc2214e71m106a92e7d68%26e%3Db020f09042759215024c30v8r44c4802%3D3%263%3D6%26d029c%3D%26%3F%3Dttnpr3k%25aFt2dwrw.ytu%2Fishtnh&e=1&ai=a44299724edc4ed5b6527c9eb6d5c9a3&sct=0&ct=1670471040915&cu=24592fc20b8e48cd8e29363161de21c2&ykuid=4dcb34cb958f4608b469119b13db8de2&sc=1&cs=2e119974868a6eb8958fb4aaa2db4253
IP 104.19.168.96:0
GET /v2/go?t=ot.ps%3Aw%2Foc.twaFe%25r2cAe%25.teh%2Fuc2214e71m106a92e7d68%26e%3Db020f09042759215024c30v8r44c4802%3D3%263%3D6%26d029c%3D%26%3F%3Dttnpr3k%25aFt2dwrw.ytu%2Fishtnh&e=1&ai=a44299724edc4ed5b6527c9eb6d5c9a3&sct=0&ct=1670471040915&cu=24592fc20b8e48cd8e29363161de21c2&ykuid=4dcb34cb958f4608b469119b13db8de2&sc=1&cs=2e119974868a6eb8958fb4aaa2db4253 HTTP/1.1
Host: r.srvtrck.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ykuid=4dcb34cb958f4608b469119b13db8de2
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 03:44:01 GMT
content-type: text/html;charset=UTF-8
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 77628005ed3cb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
youwish.no/dist/manifest.js?id=3856261ebef1de6b975c
95.85.19.80200 OK 0 B URL HTTP/2 youwish.no/dist/manifest.js?id=3856261ebef1de6b975c
IP 95.85.19.80:0
ASN #14061 DIGITALOCEAN-ASN
GET /dist/manifest.js?id=3856261ebef1de6b975c HTTP/1.1
Host: youwish.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youwish.no/
Cookie: XSRF-TOKEN=eyJpdiI6IjI1NWVCaDdvNzZBZ0JNSzM1UlZjVlE9PSIsInZhbHVlIjoiUTVDZ2ZDNktPY2liMWFpc0QzblwvM2pEZE1DUzhtMkpqeTNnNGlEOGh4VCtvaWJ5ZmhTS25lNGFwNXQrMkhhOUhSSW13czg4Mlp1ZllXdVVaU0g4MzZnPT0iLCJtYWMiOiI3MTFiMTMwN2MxNmQwNzI0MTA3YjY5NDlmZWU1ZWZiOGM5ZjJjMmQwZmJmMTE2OWZlZjAxMGEyYjFmMmIxNGRhIn0%3D; laravel_session=eyJpdiI6IlpVVURQZlppODBFNExcL2FPSW1ZT0tRPT0iLCJ2YWx1ZSI6IlRub3FoSXV6dUcrTWVKRTNXTXdBYnVTalhRYlBGTmNvbmhFbXA3ajdtRGlTT1phZ1Bwcml0VVo1OENLRHJNeEFqcFAzTjl1K2VBSWRmSGdkdGQyMUZnPT0iLCJtYWMiOiI2NDYwOWFiYTEzNDhiNmMzYzI2NjAwOWNlMjFjZTllY2EwODkxYjNlZGQ3MmRjOThlOTBmMmQwMzVmOGRiZTkzIn0%3D; wishlist=63915d81cb1be; youwish_id=63915d824d154
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.11.5
date: Thu, 08 Dec 2022 03:44:02 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 12 Jan 2022 22:19:01 GMT
vary: Accept-Encoding
etag: W/"61df53d5-31f"
expires: Thu, 15 Dec 2022 03:44:02 GMT
cache-control: max-age=604800, public
content-encoding: gzip
X-Firefox-Spdy: h2