track.gositego.live/sl?id=6372315a14cb732daa6b203e&pid=930&sub1=pubeab65620dd1c4e9cbed136ac572fbecf&sub2=8a71a381_a251613s106
34.91.234.242302 Found 0 B URL HTTP/1.1 track.gositego.live/sl?id=6372315a14cb732daa6b203e&pid=930&sub1=pubeab65620dd1c4e9cbed136ac572fbecf&sub2=8a71a381_a251613s106
IP 34.91.234.242:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sl?id=6372315a14cb732daa6b203e&pid=930&sub1=pubeab65620dd1c4e9cbed136ac572fbecf&sub2=8a71a381_a251613s106 HTTP/1.1
Host: track.gositego.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 07 Jan 2023 14:14:25 GMT
Content-Length: 0
Connection: keep-alive
X-Adjust-Use-Original-Forwarded-For: 1
Location: https://t3.blowingwnd.com/p.php?p=c:8pnojh5wwryg9ycmq&d=61b86bb2caff0c3520644fec&pid=CLICKID&s=SUBID&pid=63b97e41dac66c0001306258&s=930_8a71a381_a251613s106
Set-Cookie: afclick=63b97e41dac66c0001306258; expires=Sun, 07 Jan 2024 14:14:25 GMT; secure; SameSite=None
Access-Control-Allow-Origin: *
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash b782882bdabaf3b08e64120922b4a4b7
2035ed7fc9fb5b6ee9715601ba43de5f94d0c0e9
3fe7d1a9a55b86ec25d02634749ccfae11f3477033ba8cd7ac4131b7948ba619
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3FE7D1A9A55B86EC25D02634749CCFAE11F3477033BA8CD7AC4131B7948BA619"
Last-Modified: Sat, 07 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11808
Expires: Sat, 07 Jan 2023 17:31:13 GMT
Date: Sat, 07 Jan 2023 14:14:25 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash e4bdd77c0369662aa71ce2d01fd3edab
0ab1c5857e200e7e7946424c2c844537bfbb9775
a163c19fcc8fcf985e8df6ad4bd7ce73912b3df892d8236c70f9bc80820b26da
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A163C19FCC8FCF985E8DF6AD4BD7CE73912B3DF892D8236C70F9BC80820B26DA"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14129
Expires: Sat, 07 Jan 2023 18:09:54 GMT
Date: Sat, 07 Jan 2023 14:14:25 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 07 Jan 2023 13:41:25 GMT
content-type: application/json
age: 1980
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 75f0037a1d53a9a5321a796206ec3e24
70d42c9bf1334f20e1cea4ce3c8212e0e780ee77
80ec1e61f9563e799c9f44ea31e616c37daea1b9670091fbbc6efc39ebafe3d3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "80EC1E61F9563E799C9F44EA31E616C37DAEA1B9670091FBBC6EFC39EBAFE3D3"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14864
Expires: Sat, 07 Jan 2023 18:22:09 GMT
Date: Sat, 07 Jan 2023 14:14:25 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: qI1d4wQdWZcS8kIsBnpNuOILfdZZACw6wPERdBo842VwBcqNgNyCV6KuWR8RVUvqIjb8nZB2+dc=
x-amz-request-id: YSD5ZQP6FFQ6QRB8
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 07 Jan 2023 13:15:19 GMT
age: 3546
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 07 Jan 2023 14:14:25 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash bb1784f7111d5358d3cd4771a1d897e6
3f42d7288f6de0578e32062652924a2e11b2fa21
0ae54e4d17254684d78266ca786a23785d04f10a9fa0b4a4ebef873a32689965
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0AE54E4D17254684D78266CA786A23785D04F10A9FA0B4A4EBEF873A32689965"
Last-Modified: Fri, 06 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17557
Expires: Sat, 07 Jan 2023 19:07:02 GMT
Date: Sat, 07 Jan 2023 14:14:25 GMT
Connection: keep-alive
t3.blowingwnd.com/p.php?p=c:8pnojh5wwryg9ycmq&d=61b86bb2caff0c3520644fec&pid=CLICKID&s=SUBID&pid=63b97e41dac66c0001306258&s=930_8a71a381_a251613s106
51.161.115.163302 Found 0 B URL HTTP/1.1 t3.blowingwnd.com/p.php?p=c:8pnojh5wwryg9ycmq&d=61b86bb2caff0c3520644fec&pid=CLICKID&s=SUBID&pid=63b97e41dac66c0001306258&s=930_8a71a381_a251613s106
IP 51.161.115.163:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p.php?p=c:8pnojh5wwryg9ycmq&d=61b86bb2caff0c3520644fec&pid=CLICKID&s=SUBID&pid=63b97e41dac66c0001306258&s=930_8a71a381_a251613s106 HTTP/1.1
Host: t3.blowingwnd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 07 Jan 2023 14:14:25 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Round: 1217p3t0dz
Raund: xi
Location: https://ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_930_8a71a381_a251613s106
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Pragma, Content-Length, Alert, Expires, ETag, Last-Modified, Backoff, Content-Type, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 07 Jan 2023 13:17:20 GMT
age: 3425
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 86c963f74f106d563a09b4a34c6b6453
7c3bb2c593d3ab315e931ec58a9d6b416a1fd811
a69c0664045abbc72183ce6702e9d6227e75914d9d4f68f0879b2c995944975c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A69C0664045ABBC72183CE6702E9D6227E75914D9D4F68F0879B2C995944975C"
Last-Modified: Fri, 06 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7810
Expires: Sat, 07 Jan 2023 16:24:35 GMT
Date: Sat, 07 Jan 2023 14:14:25 GMT
Connection: keep-alive
ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_930_8a71a381_a251613s106
51.83.143.92200 OK 508 B URL HTTP/1.1 ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_930_8a71a381_a251613s106
IP 51.83.143.92:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (558)
Hash aef179402f507dce4a8544535aadedb1
f7e5244276bdeab4a186a18ef4beb254d35dda72
e933dc2ac6dd6b150676a97616a016feb7ee3d3dbaf831f3cbc623d628ae1270
Analyzer Verdict Alert quad9 Sinkholed
GET /f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_930_8a71a381_a251613s106 HTTP/1.1
Host: ron.trffclb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 14:14:25 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: bt-603611c5b7eaf46891533240=63b97e41e6b8c052e7578e3f; expires=Tue, 10-Jan-2023 14:14:25 GMT; Max-Age=259200; path=/; domain=ron.trffclb.com; HttpOnly
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8589b6a84dd5a09ec546aff38bbd2515
1c3a3d8a69ae7a3ebda64292caf0e0f5968e81f7
f013da155203f0509d56e8174c2ae5ed23aad413b4391f276efd388519743b17
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5426
Cache-Control: max-age=159770
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 14:14:26 GMT
Etag: "63b9362a-1d7"
Expires: Mon, 09 Jan 2023 10:37:16 GMT
Last-Modified: Sat, 07 Jan 2023 09:06:50 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_930_8a71a381_a251613s106&bv=1
51.83.143.92302 Found 0 B URL HTTP/1.1 ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_930_8a71a381_a251613s106&bv=1
IP 51.83.143.92:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_930_8a71a381_a251613s106&bv=1 HTTP/1.1
Host: ron.trffclb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_930_8a71a381_a251613s106
Cookie: bt-603611c5b7eaf46891533240=63b97e41e6b8c052e7578e3f
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 07 Jan 2023 14:14:26 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: bt-603611c5b7eaf46891533240=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=ron.trffclb.com; HttpOnly
Round: 119cdtswvl
Raund: 12uf2w0vxv-2v5
Location: https://popcash.net/world/go/134600/317194
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 43d5ee8e6eeb7de8c20ada8034de093c
1b1b454214f335891b1afb064b0e5c0b7eaac599
475ff3e83b4c4e498fbe9d56a85f06a9b9b2d18eac0d9830a6c81e207d034a5a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5096
Cache-Control: max-age=137111
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 14:14:26 GMT
Etag: "63b8def1-117"
Expires: Mon, 09 Jan 2023 04:19:37 GMT
Last-Modified: Sat, 07 Jan 2023 02:54:41 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 279
ron.trffclb.com/favicon.ico
51.83.143.92200 OK 20 B URL HTTP/1.1 ron.trffclb.com/favicon.ico
IP 51.83.143.92:0
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: ron.trffclb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_930_8a71a381_a251613s106
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Jan 2023 14:14:26 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
push.services.mozilla.com/
54.149.219.22101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.219.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: vS2c2+4jqSih2M5n1zmVeg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: mmw7pDnAY+a+QmbrqHxdScNI1lk=
popcash.net/world/go/134600/317194
104.21.52.38301 Moved Permanently 162 B URL HTTP/2 popcash.net/world/go/134600/317194
IP 104.21.52.38:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /world/go/134600/317194 HTTP/1.1
Host: popcash.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ron.trffclb.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sat, 07 Jan 2023 14:14:26 GMT
content-type: text/html
content-length: 162
location: http://ps.popcash.net/go/134600/317194
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B3LquXRZ%2FIPEer%2FLXoge2NzeS1j894g5aCtVoxGcHkmkk2y33e%2BarL3ShFKjdslIfyDENOGD8jX2DH9OUIBVsDQZhimDx5IBM4QdRZ4zMYvmXt4dInPWMfz%2F1n3P"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 785d4cbd3dd3fac8-OSL
X-Firefox-Spdy: h2
ps.popcash.net/go/134600/317194
54.205.43.136200 OK 271 B URL HTTP/1.1 ps.popcash.net/go/134600/317194
IP 54.205.43.136:0
File type HTML document, ASCII text
Hash df32fa3ea6b7f5e45fe8d4a7298df9fe
d55795ec3944a96c802ba1808377b6f95e3e2818
cefb2489458819df3f2c86008f235124ef91f2710130f0bb56351db6dbe555e8
Analyzer Verdict Alert fortinet Malware
GET /go/134600/317194 HTTP/1.1
Host: ps.popcash.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Encoding: gzip
Content-Type: text/html
Date: Sat, 07 Jan 2023 14:14:26 GMT
Server: nginx
Vary: Accept-Encoding
Content-Length: 271
Connection: keep-alive
ps.popcash.net/ad/ad?p=134600&w=317194&t=9be1fa343373c3e1&r=&vw=1280&vh=0
54.205.43.136303 See Other 0 B URL HTTP/1.1 ps.popcash.net/ad/ad?p=134600&w=317194&t=9be1fa343373c3e1&r=&vw=1280&vh=0
IP 54.205.43.136:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ad/ad?p=134600&w=317194&t=9be1fa343373c3e1&r=&vw=1280&vh=0 HTTP/1.1
Host: ps.popcash.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ps.popcash.net/go/134600/317194
Upgrade-Insecure-Requests: 1
HTTP/1.1 303 See Other
Date: Sat, 07 Jan 2023 14:14:26 GMT
Location: http://enki-mit.com/zcvisitor/97f0b7c0-8e95-11ed-9805-124d5aeda8f3/7fcf9220-c93c-11e7-9820-0e06c6fba698?campaignid=7d7c3280-6dab-11ed-9d23-12beee04f19b#pc151445
Server: nginx
Content-Length: 0
Connection: keep-alive
enki-mit.com/zcvisitor/97f0b7c0-8e95-11ed-9805-124d5aeda8f3/7fcf9220-c93c-11e7-9820-0e06c6fba698?campaignid=7d7c3280-6dab-11ed-9d23-12beee04f19b
23.23.100.235302 0 B URL HTTP/1.1 enki-mit.com/zcvisitor/97f0b7c0-8e95-11ed-9805-124d5aeda8f3/7fcf9220-c93c-11e7-9820-0e06c6fba698?campaignid=7d7c3280-6dab-11ed-9d23-12beee04f19b
IP 23.23.100.235:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /zcvisitor/97f0b7c0-8e95-11ed-9805-124d5aeda8f3/7fcf9220-c93c-11e7-9820-0e06c6fba698?campaignid=7d7c3280-6dab-11ed-9d23-12beee04f19b HTTP/1.1
Host: enki-mit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ps.popcash.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302
Date: Sat, 07 Jan 2023 14:14:27 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Location: https://bnr.thedataclicks.com/get/Y2x1uwhzCQUWsRki19S5Fpdr?target=whiskey-ria-ss9gkru3z&source=vitellary-lion&keyword=mainstream&match=&zid=zr97f0b7c08e9511ed9805124d5aeda8f3fd119fda4a654dcd9f6b2661c7442e1f070286cbdc93b90f24&trafficType=POPUP&visitorType=NON-ADULT&campaignId=1998166&longCampaignId=7d7c3280-6dab-11ed-9d23-12beee04f19b&campaignName=NEW+-+ZP5+-+NO&cost=0.000130
Server: yCELcREW
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 457ca75ed75785c514fb36a16792410f
fcc640c00713c93633d0b2887104c8fbc6c754f9
ff6a40bdaa6bc25eefb2d7ed130ea34460494d92c19c07dff4cc371c45d1ac44
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FF6A40BDAA6BC25EEFB2D7ED130EA34460494D92C19C07DFF4CC371C45D1AC44"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13760
Expires: Sat, 07 Jan 2023 18:03:47 GMT
Date: Sat, 07 Jan 2023 14:14:27 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 457ca75ed75785c514fb36a16792410f
fcc640c00713c93633d0b2887104c8fbc6c754f9
ff6a40bdaa6bc25eefb2d7ed130ea34460494d92c19c07dff4cc371c45d1ac44
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FF6A40BDAA6BC25EEFB2D7ED130EA34460494D92C19C07DFF4CC371C45D1AC44"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13760
Expires: Sat, 07 Jan 2023 18:03:47 GMT
Date: Sat, 07 Jan 2023 14:14:27 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e832123ea0c92a446b5894e75efc86ae
bb438ca635b43819701067ef07a3d910ad29a0c7
e1b0c6cd873f304de15664f96af6b6914e13fbbfb3e2179ba43369e116446773
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5578
x-amzn-requestid: 93353c3e-1b26-424c-b4c6-0d113703edd6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eFvpBFGvIAMFobw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b22c9f-1d07cff31ae39320693642f0;Sampled=0
x-amzn-remapped-date: Mon, 02 Jan 2023 01:00:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vIFVXgt2RmoplkAVOtUrOkXj3LmhRw-XEPe7fugZ2-mv_iDY07XzUg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 00:24:31 GMT
age: 49796
etag: "bb438ca635b43819701067ef07a3d910ad29a0c7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1787721-cbc0-4d0c-9ab8-c2bf14e3c622.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1787721-cbc0-4d0c-9ab8-c2bf14e3c622.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 65a13b7b11843a364e80dbc2d54345ff
5b24f4bf17da840e61d96b0ed7452911539dbf67
8dea14e05eb2a0c850fe9441b605f50ec6206baf57da4293f2297cab0a82fe37
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1787721-cbc0-4d0c-9ab8-c2bf14e3c622.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10064
x-amzn-requestid: 69f52653-2506-462d-9893-0f799b344286
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eVkwUGirIAMFncw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b8819b-0fa57a29615e8bb45dc4542a;Sampled=0
x-amzn-remapped-date: Fri, 06 Jan 2023 20:16:27 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: wIRDocC9oXbYc6MO03kfkfBlZe44nlRSoJUaEkt23Hoxp_f51r6FAw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 ae06b19943a6bad1c1b12b79f7339498.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 04:22:22 GMT
age: 35525
etag: "5b24f4bf17da840e61d96b0ed7452911539dbf67"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32750e1f-43b2-4ea2-9562-1ec8c85222fe.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32750e1f-43b2-4ea2-9562-1ec8c85222fe.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 05977aeaee3d020a9e54b103bff0072e
74f544d78132f079b849fc2ef613a892c515378f
72b0b5e6ed8685fa24bd66e4173db1701b4a48b3df15c86228b833e615935da8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32750e1f-43b2-4ea2-9562-1ec8c85222fe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8704
x-amzn-requestid: 1a997886-3172-4ba2-967d-328539cf685c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eVxErFfVoAMFhYg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b89550-7c30a3ff5d97f8b421776fb5;Sampled=0
x-amzn-remapped-date: Fri, 06 Jan 2023 21:40:32 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: CKplX8NiGi4DVG0lwV2LILGwKdV6wOzThlE7SEjStyLgYQieTmJfPw==
via: 1.1 599f04a365a179d553682d476509c388.cloudfront.net (CloudFront), 1.1 5c7981a979abd51ba7e5ca7d464fd048.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 21:58:05 GMT
age: 58582
etag: "74f544d78132f079b849fc2ef613a892c515378f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7a51093b-a234-4694-9280-6ea68de36744.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7a51093b-a234-4694-9280-6ea68de36744.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b970a91b8b2e02c08da490ad7a897a79
0b25447121c9d5d1c276cde893549234ab1d0448
e528ef574f793d899cd41ec3d2f954bc1a3658f4c8faedc04206aaf0c530e2e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7a51093b-a234-4694-9280-6ea68de36744.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5815
x-amzn-requestid: c2634739-191d-47c0-98bb-2c91f0d7e5ab
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d_-8mEtSoAMF1Fg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63afdeb6-55946d3d7784a69409205dfc;Sampled=0
x-amzn-remapped-date: Sat, 31 Dec 2022 07:03:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -th5qESR6innpF94Jxt76YClWg6POsf_bL0RBQBRgIhcrNCR6S88rQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 05:16:13 GMT
age: 32294
etag: "0b25447121c9d5d1c276cde893549234ab1d0448"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82e9dc28-a1b8-4185-9eb1-6856bb670646.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82e9dc28-a1b8-4185-9eb1-6856bb670646.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3c0fd17757d97ed3b4570387623f465f
889b2e3d0db6f9bc03393ff59a5eb7bee816cac3
1035a9d3c973762adfc08529b59642c3839ef95a7e8cfcced63e61ec154ad092
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82e9dc28-a1b8-4185-9eb1-6856bb670646.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10695
x-amzn-requestid: ae69c1c3-22f6-49de-91ec-8e7a854e4b27
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eGCNWFo5IAMFUKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b24a55-75032a3e7ab3eb897382cad4;Sampled=0
x-amzn-remapped-date: Mon, 02 Jan 2023 03:07:01 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 5ZQenYpYQdMO-K0uy0zgWwUVEGUHGy1M_jgQI6VoMt1LEtaQBWGiRg==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 5c35539543902c678280929df206948c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 12:14:12 GMT
age: 7215
etag: "889b2e3d0db6f9bc03393ff59a5eb7bee816cac3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5c619dc-4aba-44fa-b20f-5156f0b5ce48.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5c619dc-4aba-44fa-b20f-5156f0b5ce48.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5196aa81157b1c7f02a2aeec700cb184
f298bf34671800af23c78a4dcc14ff0ed60f48e8
ecdaf55df4565409bd6f6cb66a7272e9a6f3cee750437df658d4412827e0d042
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5c619dc-4aba-44fa-b20f-5156f0b5ce48.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10809
x-amzn-requestid: 6871f0ab-096d-42bc-82c4-ed72871efd30
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d4DgmF_EIAMF_Jw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63acb2d0-551e264261f23a0f3afa9213;Sampled=0
x-amzn-remapped-date: Wed, 28 Dec 2022 21:19:12 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BoHEdJaS8XPY5eqT7q4mdxypOsnxpFgvMoB5O8iKkMSiNicBZgz5mw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 15:53:32 GMT
age: 80455
etag: "f298bf34671800af23c78a4dcc14ff0ed60f48e8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 1fc16e6eb1c50962031308ba40f89f4a
c8463bf68529c7736e4e8b8c3fe0349e42a58b92
4f98f974010b039c91d227c5bea282f17b965df838fa2415612283d9a7ac8d8c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 07 Jan 2023 14:14:27 GMT
Last-Modified: Sat, 07 Jan 2023 12:37:40 GMT
Server: ECS (bsa/EB19)
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: QBgTsMaTJBbjjGImrnod7cCoXpjhJ9FA0kdrb0L8KI6UytMnT8nQpg==
Age: 5807
bnr.thedataclicks.com/get/Y2x1uwhzCQUWsRki19S5Fpdr?target=whiskey-ria-ss9gkru3z&source=vitellary-lion&keyword=mainstream&match=&zid=zr97f0b7c08e9511ed9805124d5aeda8f3fd119fda4a654dcd9f6b2661c7442e1f070286cbdc93b90f24&trafficType=POPUP&visitorType=NON-ADULT&campaignId=1998166&longCampaignId=7d7c3280-6dab-11ed-9d23-12beee04f19b&campaignName=NEW+-+ZP5+-+NO&cost=0.000130
54.82.151.162200 OK 1.6 kB URL HTTP/2 bnr.thedataclicks.com/get/Y2x1uwhzCQUWsRki19S5Fpdr?target=whiskey-ria-ss9gkru3z&source=vitellary-lion&keyword=mainstream&match=&zid=zr97f0b7c08e9511ed9805124d5aeda8f3fd119fda4a654dcd9f6b2661c7442e1f070286cbdc93b90f24&trafficType=POPUP&visitorType=NON-ADULT&campaignId=1998166&longCampaignId=7d7c3280-6dab-11ed-9d23-12beee04f19b&campaignName=NEW+-+ZP5+-+NO&cost=0.000130
IP 54.82.151.162:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (793)
Hash e9863e8ed6601c8796f7df9dbac86b14
406ad16f7d500bb5b66a280b147234b2397b632e
0ebd3bbc54e2e4ad37440e2ec358c53e73653c7d4b4a89ac0cbfc04037486900
GET /get/Y2x1uwhzCQUWsRki19S5Fpdr?target=whiskey-ria-ss9gkru3z&source=vitellary-lion&keyword=mainstream&match=&zid=zr97f0b7c08e9511ed9805124d5aeda8f3fd119fda4a654dcd9f6b2661c7442e1f070286cbdc93b90f24&trafficType=POPUP&visitorType=NON-ADULT&campaignId=1998166&longCampaignId=7d7c3280-6dab-11ed-9d23-12beee04f19b&campaignName=NEW+-+ZP5+-+NO&cost=0.000130 HTTP/1.1
Host: bnr.thedataclicks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://ps.popcash.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: awselb/2.0
date: Sat, 07 Jan 2023 14:14:27 GMT
content-type: text/html
content-length: 1571
X-Firefox-Spdy: h2
d1aaucsx2ftut2.cloudfront.net/jcm-mm/dbf22d50eb3f9d835a7399371403565c.jpg
143.204.42.138200 OK 184 kB URL HTTP/2 d1aaucsx2ftut2.cloudfront.net/jcm-mm/dbf22d50eb3f9d835a7399371403565c.jpg
IP 143.204.42.138:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 800x575, components 3\012- data
Size 184 kB (184529 bytes)
Hash ef60018c5db320c478ea0738b33966e5
9dd467554cf4b76fc7df3eaac3766d29bdb2b543
9789121067d1f5aa7eeb3267b926014932e6d089fa6053ff05289875f9b262e5
GET /jcm-mm/dbf22d50eb3f9d835a7399371403565c.jpg HTTP/1.1
Host: d1aaucsx2ftut2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bnr.thedataclicks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 184529
last-modified: Wed, 15 Apr 2020 16:57:11 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 07 Jan 2023 00:04:02 GMT
etag: "ef60018c5db320c478ea0738b33966e5"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9yypJPWfwBkXF0691OACzfcq3mddipQrAoBdt55pO9NhVZHyz3Ev1g==
age: 51167
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash cd9af429686dc55da658a9de65878c2d
2c2a156103351b8884abe10325a51dca4ad732f8
a2af064616c4be2fb5d1baece05c5f91473ece9e4b2a9bc31f1efc1f935561a1
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=161531
Date: Sat, 07 Jan 2023 14:14:28 GMT
Etag: "63b9523f-1d7"
Expires: Mon, 09 Jan 2023 11:06:39 GMT
Last-Modified: Sat, 07 Jan 2023 11:06:39 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 1f-8Nw2SWCZcsJk6T043PvG7_Z4q1Ky2JqOJfVplXopG7nAzGvulMQ==
lnk.clickadsolutions.com/js/c.js
18.156.112.12200 OK 7.8 kB URL HTTP/2 lnk.clickadsolutions.com/js/c.js
IP 18.156.112.12:0
Hash 28f147c32edde42fcfabfc9cfa93edcd
4540d4c6db74de7651a1fe723ea0aa563b4c0678
e762d6ca1ddd7dab2fa0db7702efdbd3bc10e6f7f3be7b0f8818d45d5bcb96d7
GET /js/c.js HTTP/1.1
Host: lnk.clickadsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lnk.clickadsolutions.com/trk/Y2x1uwhzCQUWsRki19S5Fpdr?campaignId=1998166&campaignName=NEW+-+ZP5+-+NO&cost=0.000130&keyword=mainstream&longCampaignId=7d7c3280-6dab-11ed-9d23-12beee04f19b&match=&source=vitellary-lion&target=whiskey-ria-ss9gkru3z&trafficType=POPUP&visitorType=NON-ADULT&zid=zr97f0b7c08e9511ed9805124d5aeda8f3fd119fda4a654dcd9f6b2661c7442e1f070286cbdc93b90f24&c2=true&vpw=1280&vph=1024
Cookie: v=t; cas=3451:1832:1832:1; rls=290869:1832:1832:1|290867:1832:1832:1|258635:1832:1832:1; com=16101:166:NO:1832:1832:1|12826:141:NO:1832:1832:1|13083:166:NO:1832:1832:1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:28 GMT
content-type: application/javascript
content-length: 7804
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 24 Oct 2022 15:49:56 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 17cf9dce587a0172ed5024014092613a
c4d54d41bb2065c443b71ce4cb0765afcf25ff5d
c9e7f02104dba48ac14728545d4e4fbc2393ab6c2cb4b36504aad9626f8d10b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 14:14:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lnk.clickadsolutions.com/?bt=fnc.contextwidget.tech&ref=&friend=&u=as.ad4m.at%252Fad%252Ftur%253Fa%253D1995%2526c%253Dhttps%25253A%25252F%25252Fmimmis.no%2526b%253D63b97e44bde85a4bd67be7e1-RL-290867&log=false&type=ROTATOR_LINK&linkId=290867&clickId=63b97e44bde85a4bd67be7e1&br=false
18.156.112.12200 OK 1.6 kB URL HTTP/2 lnk.clickadsolutions.com/?bt=fnc.contextwidget.tech&ref=&friend=&u=as.ad4m.at%252Fad%252Ftur%253Fa%253D1995%2526c%253Dhttps%25253A%25252F%25252Fmimmis.no%2526b%253D63b97e44bde85a4bd67be7e1-RL-290867&log=false&type=ROTATOR_LINK&linkId=290867&clickId=63b97e44bde85a4bd67be7e1&br=false
IP 18.156.112.12:0
Hash 7611f6afba79518d5e2ee7ed7369b261
afbae7a21ae8bed8ebfdd8803f9f8ca1d4bd45f1
9194e1f1acaf0657a1ed2d3b43fc27d77877e646ced7b9c0b6baf77a616aa9ef
GET /?bt=fnc.contextwidget.tech&ref=&friend=&u=as.ad4m.at%252Fad%252Ftur%253Fa%253D1995%2526c%253Dhttps%25253A%25252F%25252Fmimmis.no%2526b%253D63b97e44bde85a4bd67be7e1-RL-290867&log=false&type=ROTATOR_LINK&linkId=290867&clickId=63b97e44bde85a4bd67be7e1&br=false HTTP/1.1
Host: lnk.clickadsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lnk.clickadsolutions.com/trk/Y2x1uwhzCQUWsRki19S5Fpdr?campaignId=1998166&campaignName=NEW+-+ZP5+-+NO&cost=0.000130&keyword=mainstream&longCampaignId=7d7c3280-6dab-11ed-9d23-12beee04f19b&match=&source=vitellary-lion&target=whiskey-ria-ss9gkru3z&trafficType=POPUP&visitorType=NON-ADULT&zid=zr97f0b7c08e9511ed9805124d5aeda8f3fd119fda4a654dcd9f6b2661c7442e1f070286cbdc93b90f24&c2=true&vpw=1280&vph=1024
Cookie: v=t; cas=3451:1832:1832:1; rls=290869:1832:1832:1|290867:1832:1832:1|258635:1832:1832:1; com=16101:166:NO:1832:1832:1|12826:141:NO:1832:1832:1|13083:166:NO:1832:1832:1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:28 GMT
content-type: text/html;charset=UTF-8
content-language: en-US
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 17cf9dce587a0172ed5024014092613a
c4d54d41bb2065c443b71ce4cb0765afcf25ff5d
c9e7f02104dba48ac14728545d4e4fbc2393ab6c2cb4b36504aad9626f8d10b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 14:14:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 17cf9dce587a0172ed5024014092613a
c4d54d41bb2065c443b71ce4cb0765afcf25ff5d
c9e7f02104dba48ac14728545d4e4fbc2393ab6c2cb4b36504aad9626f8d10b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 14:14:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lnk.clickadsolutions.com/trk/Y2x1uwhzCQUWsRki19S5Fpdr?campaignId=1998166&campaignName=NEW+-+ZP5+-+NO&cost=0.000130&keyword=mainstream&longCampaignId=7d7c3280-6dab-11ed-9d23-12beee04f19b&match=&source=vitellary-lion&target=whiskey-ria-ss9gkru3z&trafficType=POPUP&visitorType=NON-ADULT&zid=zr97f0b7c08e9511ed9805124d5aeda8f3fd119fda4a654dcd9f6b2661c7442e1f070286cbdc93b90f24&c2=true&vpw=1280&vph=1024
18.156.112.12200 OK 5.0 kB URL HTTP/2 lnk.clickadsolutions.com/trk/Y2x1uwhzCQUWsRki19S5Fpdr?campaignId=1998166&campaignName=NEW+-+ZP5+-+NO&cost=0.000130&keyword=mainstream&longCampaignId=7d7c3280-6dab-11ed-9d23-12beee04f19b&match=&source=vitellary-lion&target=whiskey-ria-ss9gkru3z&trafficType=POPUP&visitorType=NON-ADULT&zid=zr97f0b7c08e9511ed9805124d5aeda8f3fd119fda4a654dcd9f6b2661c7442e1f070286cbdc93b90f24&c2=true&vpw=1280&vph=1024
IP 18.156.112.12:0
Hash b7114be08d3bba99af9bf0ccaa4a772c
cc62a5c5876868877ceead6e2ce85258bdb42b1f
3df7f447cf882a1c3f28a1805aee51aaa1427b6c8e3da0cbc5e321199a29ef92
GET /trk/Y2x1uwhzCQUWsRki19S5Fpdr?campaignId=1998166&campaignName=NEW+-+ZP5+-+NO&cost=0.000130&keyword=mainstream&longCampaignId=7d7c3280-6dab-11ed-9d23-12beee04f19b&match=&source=vitellary-lion&target=whiskey-ria-ss9gkru3z&trafficType=POPUP&visitorType=NON-ADULT&zid=zr97f0b7c08e9511ed9805124d5aeda8f3fd119fda4a654dcd9f6b2661c7442e1f070286cbdc93b90f24&c2=true&vpw=1280&vph=1024 HTTP/1.1
Host: lnk.clickadsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bnr.thedataclicks.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:28 GMT
content-type: text/html;charset=UTF-8
set-cookie: v=t; Path=/; Domain=lnk.clickadsolutions.com; Max-Age=31536000; Expires=Sun, 07 Jan 2024 14:14:28 GMT; Secure; SameSite=None
cas=3451:1832:1832:1; Path=/; Domain=lnk.clickadsolutions.com; Max-Age=31536000; Expires=Sun, 07 Jan 2024 14:14:28 GMT; Secure; SameSite=None
rls=290869:1832:1832:1|290867:1832:1832:1|258635:1832:1832:1; Path=/; Domain=lnk.clickadsolutions.com; Max-Age=31536000; Expires=Sun, 07 Jan 2024 14:14:28 GMT; Secure; SameSite=None
com=16101:166:NO:1832:1832:1|12826:141:NO:1832:1832:1|13083:166:NO:1832:1832:1; Path=/; Domain=lnk.clickadsolutions.com; Max-Age=31536000; Expires=Sun, 07 Jan 2024 14:14:28 GMT; Secure; SameSite=None
content-language: en-US
X-Firefox-Spdy: h2
www.google-analytics.com/collect?cs=QuizBanner&cc=258635&ck=42259&cm=YieldKit&cn=Forthglade&tid=UA-207042490-1&v=1&t=pageview&ds=web&aip=1&dh=forthglade.com&dp=%2F&dt=Natural+Grain+Free+Dog+Food+-+Natural+Dog+Food+%E2%80%93+Forthglade&dr=&vp=1280x1024&sr=1280x1024&je=0&ul=en-US&cid=1163861349.1323966012
142.250.74.14200 OK 35 B URL HTTP/2 www.google-analytics.com/collect?cs=QuizBanner&cc=258635&ck=42259&cm=YieldKit&cn=Forthglade&tid=UA-207042490-1&v=1&t=pageview&ds=web&aip=1&dh=forthglade.com&dp=%2F&dt=Natural+Grain+Free+Dog+Food+-+Natural+Dog+Food+%E2%80%93+Forthglade&dr=&vp=1280x1024&sr=1280x1024&je=0&ul=en-US&cid=1163861349.1323966012
IP 142.250.74.14:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /collect?cs=QuizBanner&cc=258635&ck=42259&cm=YieldKit&cn=Forthglade&tid=UA-207042490-1&v=1&t=pageview&ds=web&aip=1&dh=forthglade.com&dp=%2F&dt=Natural+Grain+Free+Dog+Food+-+Natural+Dog+Food+%E2%80%93+Forthglade&dr=&vp=1280x1024&sr=1280x1024&je=0&ul=en-US&cid=1163861349.1323966012 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lnk.clickadsolutions.com
Connection: keep-alive
Referer: https://lnk.clickadsolutions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
pragma: no-cache
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
date: Fri, 06 Jan 2023 16:21:27 GMT
expires: Mon, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
age: 78781
last-modified: Sun, 17 May 1998 03:00:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/collect?v=1&tid=UA-26147774-1&t=pageview&ds=web&aip=1&cs=referral&cm=4251&cn=%28not+set%29&cc=%28not+set%29&dh=www.mimmis.no&dp=%2F&dt=Mimmis.no+%7C+Babyutstyr+p%C3%A5+nett+-+Kj%C3%B8p+barnevogn%2C+bilstol%2C+barnesikring+til+Norges+beste+priser%21+Rask+levering+og+prisgaranti%21&dr=&vp=1280x1024&sr=1280x1024&je=0&ul=en-US&cid=1336191129.1286504289
142.250.74.14200 OK 35 B URL HTTP/2 www.google-analytics.com/collect?v=1&tid=UA-26147774-1&t=pageview&ds=web&aip=1&cs=referral&cm=4251&cn=%28not+set%29&cc=%28not+set%29&dh=www.mimmis.no&dp=%2F&dt=Mimmis.no+%7C+Babyutstyr+p%C3%A5+nett+-+Kj%C3%B8p+barnevogn%2C+bilstol%2C+barnesikring+til+Norges+beste+priser%21+Rask+levering+og+prisgaranti%21&dr=&vp=1280x1024&sr=1280x1024&je=0&ul=en-US&cid=1336191129.1286504289
IP 142.250.74.14:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /collect?v=1&tid=UA-26147774-1&t=pageview&ds=web&aip=1&cs=referral&cm=4251&cn=%28not+set%29&cc=%28not+set%29&dh=www.mimmis.no&dp=%2F&dt=Mimmis.no+%7C+Babyutstyr+p%C3%A5+nett+-+Kj%C3%B8p+barnevogn%2C+bilstol%2C+barnesikring+til+Norges+beste+priser%21+Rask+levering+og+prisgaranti%21&dr=&vp=1280x1024&sr=1280x1024&je=0&ul=en-US&cid=1336191129.1286504289 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lnk.clickadsolutions.com
Connection: keep-alive
Referer: https://lnk.clickadsolutions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
pragma: no-cache
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
date: Fri, 06 Jan 2023 16:21:27 GMT
expires: Mon, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
age: 78781
last-modified: Sun, 17 May 1998 03:00:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/collect?v=1&tid=UA-3101167-1&t=pageview&ds=web&aip=1&cs=awin&cm=affiliate&cn=subnetwork&cc=%28not+set%29&dh=www.blivakker.no&dp=%2F&dt=BliVakker.no+%7C+Gratis+frakt+-+rask+levering&dr=&vp=1280x1024&sr=1280x1024&je=0&ul=en-US&cid=1816121871.1663237974
142.250.74.14200 OK 35 B URL HTTP/2 www.google-analytics.com/collect?v=1&tid=UA-3101167-1&t=pageview&ds=web&aip=1&cs=awin&cm=affiliate&cn=subnetwork&cc=%28not+set%29&dh=www.blivakker.no&dp=%2F&dt=BliVakker.no+%7C+Gratis+frakt+-+rask+levering&dr=&vp=1280x1024&sr=1280x1024&je=0&ul=en-US&cid=1816121871.1663237974
IP 142.250.74.14:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /collect?v=1&tid=UA-3101167-1&t=pageview&ds=web&aip=1&cs=awin&cm=affiliate&cn=subnetwork&cc=%28not+set%29&dh=www.blivakker.no&dp=%2F&dt=BliVakker.no+%7C+Gratis+frakt+-+rask+levering&dr=&vp=1280x1024&sr=1280x1024&je=0&ul=en-US&cid=1816121871.1663237974 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lnk.clickadsolutions.com
Connection: keep-alive
Referer: https://lnk.clickadsolutions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
pragma: no-cache
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
date: Fri, 06 Jan 2023 16:21:27 GMT
expires: Mon, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
age: 78781
last-modified: Sun, 17 May 1998 03:00:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/collect?v=1&tid=UA-69586919-1&t=pageview&ds=web&aip=1&cs=webgains&cm=4249&cn=Savoo.co.uk&cc=%28not+set%29&dh=forthglade.com&dp=%2F&dt=Natural+Grain+Free+Dog+Food+-+Natural+Dog+Food+%E2%80%93+Forthglade&dr=&vp=1280x1024&sr=1280x1024&je=0&ul=en-US&cid=1721930592.1754100813
142.250.74.14200 OK 35 B URL HTTP/2 www.google-analytics.com/collect?v=1&tid=UA-69586919-1&t=pageview&ds=web&aip=1&cs=webgains&cm=4249&cn=Savoo.co.uk&cc=%28not+set%29&dh=forthglade.com&dp=%2F&dt=Natural+Grain+Free+Dog+Food+-+Natural+Dog+Food+%E2%80%93+Forthglade&dr=&vp=1280x1024&sr=1280x1024&je=0&ul=en-US&cid=1721930592.1754100813
IP 142.250.74.14:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /collect?v=1&tid=UA-69586919-1&t=pageview&ds=web&aip=1&cs=webgains&cm=4249&cn=Savoo.co.uk&cc=%28not+set%29&dh=forthglade.com&dp=%2F&dt=Natural+Grain+Free+Dog+Food+-+Natural+Dog+Food+%E2%80%93+Forthglade&dr=&vp=1280x1024&sr=1280x1024&je=0&ul=en-US&cid=1721930592.1754100813 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lnk.clickadsolutions.com
Connection: keep-alive
Referer: https://lnk.clickadsolutions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
pragma: no-cache
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
date: Fri, 06 Jan 2023 16:21:27 GMT
expires: Mon, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
age: 78781
last-modified: Sun, 17 May 1998 03:00:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/collect?cs=Adcontext&cc=290867&ck=42259&cm=Advanced+Store&cn=mimmis&tid=UA-207042490-1&v=1&t=pageview&ds=web&aip=1&dh=www.mimmis.no&dp=%2F&dt=Mimmis.no+%7C+Babyutstyr+p%C3%A5+nett+-+Kj%C3%B8p+barnevogn%2C+bilstol%2C+barnesikring+til+Norges+beste+priser%21+Rask+levering+og+prisgaranti%21&dr=&vp=1280x1024&sr=1280x1024&je=0&ul=en-US&cid=1388704571.1960409936
142.250.74.14200 OK 35 B URL HTTP/2 www.google-analytics.com/collect?cs=Adcontext&cc=290867&ck=42259&cm=Advanced+Store&cn=mimmis&tid=UA-207042490-1&v=1&t=pageview&ds=web&aip=1&dh=www.mimmis.no&dp=%2F&dt=Mimmis.no+%7C+Babyutstyr+p%C3%A5+nett+-+Kj%C3%B8p+barnevogn%2C+bilstol%2C+barnesikring+til+Norges+beste+priser%21+Rask+levering+og+prisgaranti%21&dr=&vp=1280x1024&sr=1280x1024&je=0&ul=en-US&cid=1388704571.1960409936
IP 142.250.74.14:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /collect?cs=Adcontext&cc=290867&ck=42259&cm=Advanced+Store&cn=mimmis&tid=UA-207042490-1&v=1&t=pageview&ds=web&aip=1&dh=www.mimmis.no&dp=%2F&dt=Mimmis.no+%7C+Babyutstyr+p%C3%A5+nett+-+Kj%C3%B8p+barnevogn%2C+bilstol%2C+barnesikring+til+Norges+beste+priser%21+Rask+levering+og+prisgaranti%21&dr=&vp=1280x1024&sr=1280x1024&je=0&ul=en-US&cid=1388704571.1960409936 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lnk.clickadsolutions.com
Connection: keep-alive
Referer: https://lnk.clickadsolutions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
pragma: no-cache
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
date: Fri, 06 Jan 2023 16:21:27 GMT
expires: Mon, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
age: 78781
last-modified: Sun, 17 May 1998 03:00:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/collect?cs=Adcontext&cc=290869&ck=42259&cm=Advanced+Store&cn=BliVakker&tid=UA-207042490-1&v=1&t=pageview&ds=web&aip=1&dh=www.blivakker.no&dp=%2F&dt=BliVakker.no+%7C+Gratis+frakt+-+rask+levering&dr=&vp=1280x1024&sr=1280x1024&je=0&ul=en-US&cid=1802684584.1138177601
142.250.74.14200 OK 35 B URL HTTP/2 www.google-analytics.com/collect?cs=Adcontext&cc=290869&ck=42259&cm=Advanced+Store&cn=BliVakker&tid=UA-207042490-1&v=1&t=pageview&ds=web&aip=1&dh=www.blivakker.no&dp=%2F&dt=BliVakker.no+%7C+Gratis+frakt+-+rask+levering&dr=&vp=1280x1024&sr=1280x1024&je=0&ul=en-US&cid=1802684584.1138177601
IP 142.250.74.14:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /collect?cs=Adcontext&cc=290869&ck=42259&cm=Advanced+Store&cn=BliVakker&tid=UA-207042490-1&v=1&t=pageview&ds=web&aip=1&dh=www.blivakker.no&dp=%2F&dt=BliVakker.no+%7C+Gratis+frakt+-+rask+levering&dr=&vp=1280x1024&sr=1280x1024&je=0&ul=en-US&cid=1802684584.1138177601 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lnk.clickadsolutions.com
Connection: keep-alive
Referer: https://lnk.clickadsolutions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
pragma: no-cache
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
date: Fri, 06 Jan 2023 16:21:27 GMT
expires: Mon, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
age: 78781
last-modified: Sun, 17 May 1998 03:00:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 17cf9dce587a0172ed5024014092613a
c4d54d41bb2065c443b71ce4cb0765afcf25ff5d
c9e7f02104dba48ac14728545d4e4fbc2393ab6c2cb4b36504aad9626f8d10b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 14:14:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.r2m02.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash 0ec191e9c73734ff3721dc22733b98ee
40ecee192b8977d39d1881211c76ca598d480fbc
e157db4710166081b3d5db7d84b953181c315edfcd7e91be3342bb2814b9f8da
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=119721
Date: Sat, 07 Jan 2023 14:14:28 GMT
Etag: "63b8ab12-1d7"
Expires: Sun, 08 Jan 2023 23:29:49 GMT
Last-Modified: Fri, 06 Jan 2023 23:13:22 GMT
Server: ECS (dcb/7EEE)
X-Cache: Miss from cloudfront
Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: OWGz4Z8sD3Ubn7RRGVOJYllxBntIdLyAZar5jhU5sNjtYtKSBxK1JQ==
Age: 987
ocsp.r2m02.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash 0ec191e9c73734ff3721dc22733b98ee
40ecee192b8977d39d1881211c76ca598d480fbc
e157db4710166081b3d5db7d84b953181c315edfcd7e91be3342bb2814b9f8da
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 07 Jan 2023 14:14:28 GMT
Last-Modified: Sat, 07 Jan 2023 13:38:22 GMT
Server: ECS (dcb/7EED)
X-Cache: Miss from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: rDbeuPkLfi4c01LNL0pDG-zYoGQub5dKsM3baDUSNOF_gHAcM-C-Mg==
Age: 2166
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 0c60159f1f98ef4b99d2d9cec92f061e
0707a04853aa0159c5d42eb52d839b8696eb0635
f4df716131e62f7239bfc2b8381715d85c66b3959518f7c63d2276dfb900cf2c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1908
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 14:14:28 GMT
Last-Modified: Sat, 07 Jan 2023 13:42:40 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 0c60159f1f98ef4b99d2d9cec92f061e
0707a04853aa0159c5d42eb52d839b8696eb0635
f4df716131e62f7239bfc2b8381715d85c66b3959518f7c63d2276dfb900cf2c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1908
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 14:14:28 GMT
Last-Modified: Sat, 07 Jan 2023 13:42:40 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 0c60159f1f98ef4b99d2d9cec92f061e
0707a04853aa0159c5d42eb52d839b8696eb0635
f4df716131e62f7239bfc2b8381715d85c66b3959518f7c63d2276dfb900cf2c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1908
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 14:14:28 GMT
Last-Modified: Sat, 07 Jan 2023 13:42:40 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 280
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 61bcdef36654d75cb72810e8bc97c3bc
5fe062f714d203cb6dffd4396f76003a7b8dc44e
565c4547ecf64a9d5c25cd37201fa936bdde490c1aad7f1a4ea45896c7855a61
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 07 Jan 2023 14:14:29 GMT
Last-Modified: Sat, 07 Jan 2023 12:34:05 GMT
Server: ECS (nyb/1D2D)
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: -i1t8aqOBpokCzeb0OLPuRcKHEOUr2lceriq9EscmZwRqFZ0I-oyuA==
Age: 6024
api.kelkoogroup.net/publisher/shopping/v2/link-monetizer/link?country=no&custom2=3CeYEHzlZ0EHZYOkQjyywLtSI3w6sDmFxuZpv9hqUOGJDp&id=e4e2e5c6-03eb-11eb-bf21-ba5ec25d7100&merchantUrl=https://www.mimmis.no
143.204.55.95303 See Other 0 B URL HTTP/2 api.kelkoogroup.net/publisher/shopping/v2/link-monetizer/link?country=no&custom2=3CeYEHzlZ0EHZYOkQjyywLtSI3w6sDmFxuZpv9hqUOGJDp&id=e4e2e5c6-03eb-11eb-bf21-ba5ec25d7100&merchantUrl=https://www.mimmis.no
IP 143.204.55.95:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /publisher/shopping/v2/link-monetizer/link?country=no&custom2=3CeYEHzlZ0EHZYOkQjyywLtSI3w6sDmFxuZpv9hqUOGJDp&id=e4e2e5c6-03eb-11eb-bf21-ba5ec25d7100&merchantUrl=https://www.mimmis.no HTTP/1.1
Host: api.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fnc.contextwidget.tech/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 303 See Other
content-length: 0
location: https://www.mimmis.no
x-gravitee-transaction-id: 9892c541-6318-49ba-92c5-41631809bad8
x-gravitee-request-id: 9892c541-6318-49ba-92c5-41631809bad8
clickid: 107698154_1673100869410_4497876
accept-ch: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
set-cookie: datadome=0A8t8pUC3_bdvQljX2aC6a2qruDwj~Er2EpG_8EUNj484-KeHf3mdJebb-RTD9DfR86QAFVkg0B65iXyV4AJDKCSYoCyrloZ94c3-FODHQdms0coj_YTGNZIuP0fR3gc; Max-Age=31536000; Expires=Sun, 07 Jan 2024 14:14:29 GMT; SameSite=Lax; Path=/; Domain=.kelkoo.net; Secure
kelkooID=a4c629a-1858c953f22-13a58f; Max-Age=31536000; Expires=Sun, 07 Jan 2024 14:14:29 GMT; SameSite=None; Path=/; Domain=kelkoogroup.net; Secure; HTTPOnly
x-datadome: protected
request-time: PT0.010671S
x-robots-tag: noindex,nofollow
referrer-policy: origin-when-cross-origin
x-frame-options: DENY
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-permitted-cross-domain-policies: master-only
date: Sat, 07 Jan 2023 14:14:29 GMT
x-cache: Miss from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ydl-m0gSDM2GyQNNM8u6p4B3UYBT5FI4t3nkJY4_eR40cRVVwPHx3Q==
X-Firefox-Spdy: h2
de.trck.one/redir/clickGate.php?u=RkkuMW4M&m=1&p=Fr5xngjWXe&t=iRhdghTT&url=https%3A%2F%2Fwww.mimmis.no&r=https%3A%2F%2Fwww.advancedstore.com&s=oneid18zVcbfKf6zAKfRtRcEcpCrQJc2SVtRfAoneid_63b97e44bde85a4bd67be7e1-RL-290867
35.156.87.1302 Found 35 B URL HTTP/2 de.trck.one/redir/clickGate.php?u=RkkuMW4M&m=1&p=Fr5xngjWXe&t=iRhdghTT&url=https%3A%2F%2Fwww.mimmis.no&r=https%3A%2F%2Fwww.advancedstore.com&s=oneid18zVcbfKf6zAKfRtRcEcpCrQJc2SVtRfAoneid_63b97e44bde85a4bd67be7e1-RL-290867
IP 35.156.87.1:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /redir/clickGate.php?u=RkkuMW4M&m=1&p=Fr5xngjWXe&t=iRhdghTT&url=https%3A%2F%2Fwww.mimmis.no&r=https%3A%2F%2Fwww.advancedstore.com&s=oneid18zVcbfKf6zAKfRtRcEcpCrQJc2SVtRfAoneid_63b97e44bde85a4bd67be7e1-RL-290867 HTTP/1.1
Host: de.trck.one
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fnc.contextwidget.tech/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: text/html; charset=UTF-8
location: https://api.kelkoogroup.net/publisher/shopping/v2/link-monetizer/link?country=no&custom2=3CeYEHzlZ0EHZYOkQjyywLtSI3w6sDmFxuZpv9hqUOGJDp&id=e4e2e5c6-03eb-11eb-bf21-ba5ec25d7100&merchantUrl=https://www.mimmis.no
server: nginx
cache-control: no-cache, private
X-Firefox-Spdy: h2
www.google-analytics.com/collect?cs=Adcontext&cc=290867&ck=42259&cm=Advanced+Store&cn=mimmis&tid=UA-207042490-1&v=1&t=pageview&ds=web&aip=1&dh=www.mimmis.no&dp=%2F&dt=Mimmis.no+%7C+Babyutstyr+p%C3%A5+nett+-+Kj%C3%B8p+barnevogn%2C+bilstol%2C+barnesikring+til+Norges+beste+priser%21+Rask+levering+og+prisgaranti%21&dr=&vp=1280x1024&sr=1280x1024&je=0&ul=en-US&cid=1388704571.1960409936
142.250.74.14200 OK 35 B URL HTTP/2 www.google-analytics.com/collect?cs=Adcontext&cc=290867&ck=42259&cm=Advanced+Store&cn=mimmis&tid=UA-207042490-1&v=1&t=pageview&ds=web&aip=1&dh=www.mimmis.no&dp=%2F&dt=Mimmis.no+%7C+Babyutstyr+p%C3%A5+nett+-+Kj%C3%B8p+barnevogn%2C+bilstol%2C+barnesikring+til+Norges+beste+priser%21+Rask+levering+og+prisgaranti%21&dr=&vp=1280x1024&sr=1280x1024&je=0&ul=en-US&cid=1388704571.1960409936
IP 142.250.74.14:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /collect?cs=Adcontext&cc=290867&ck=42259&cm=Advanced+Store&cn=mimmis&tid=UA-207042490-1&v=1&t=pageview&ds=web&aip=1&dh=www.mimmis.no&dp=%2F&dt=Mimmis.no+%7C+Babyutstyr+p%C3%A5+nett+-+Kj%C3%B8p+barnevogn%2C+bilstol%2C+barnesikring+til+Norges+beste+priser%21+Rask+levering+og+prisgaranti%21&dr=&vp=1280x1024&sr=1280x1024&je=0&ul=en-US&cid=1388704571.1960409936 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lnk.clickadsolutions.com
Connection: keep-alive
Referer: https://lnk.clickadsolutions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
pragma: no-cache
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
date: Fri, 06 Jan 2023 16:21:27 GMT
expires: Mon, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
age: 78782
last-modified: Sun, 17 May 1998 03:00:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fnc.contextwidget.tech/
52.29.32.173200 OK 1.4 kB IP 52.29.32.173:0
Hash 41d7c48444f757b284888b5a661afe96
01dd62a1a0abc0245416081cb1dd98919eb2ff77
e1f17622b72b381241f94e685397f66e081964471bfbe43058b18d93d955e93f
POST / HTTP/1.1
Host: fnc.contextwidget.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 203
Origin: https://lnk.clickadsolutions.com
Connection: keep-alive
Referer: https://lnk.clickadsolutions.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:28 GMT
content-type: text/html;charset=UTF-8
content-language: en-US
X-Firefox-Spdy: h2
r.srvtrck.com/v1/redirect?type=link&id=a7b1aee6453a43ad81f2493aa19ca67c&site_id=b2d0921615ab4f9197a4594787c864d9&ad_zi=YieldShare&ad_t=advertiser&yk_tag=63b97e44bde85a4bd67be7e1-RL-258635
104.19.169.96302 Found 0 B URL HTTP/2 r.srvtrck.com/v1/redirect?type=link&id=a7b1aee6453a43ad81f2493aa19ca67c&site_id=b2d0921615ab4f9197a4594787c864d9&ad_zi=YieldShare&ad_t=advertiser&yk_tag=63b97e44bde85a4bd67be7e1-RL-258635
IP 104.19.169.96:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v1/redirect?type=link&id=a7b1aee6453a43ad81f2493aa19ca67c&site_id=b2d0921615ab4f9197a4594787c864d9&ad_zi=YieldShare&ad_t=advertiser&yk_tag=63b97e44bde85a4bd67be7e1-RL-258635 HTTP/1.1
Host: r.srvtrck.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 07 Jan 2023 14:14:29 GMT
content-length: 0
location: https://forthglade.com/
p3p: CP="CAO PSA OUR"
set-cookie: ykuid=0143a6865d3c4009a96ed24a6cfe05ee; Domain=.srvtrck.com; Expires=Sun, 07-Jan-2024 14:14:29 GMT; Path=/
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 785d4cd27fde0b4d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash 334a4dc9485e8e59e1d0f1bc7ab339aa
8abef7f4e55a0c9373b79ce5b7d9cd4aaa5be6f7
35bd16b60fd05d3733769b56b7a0c77811b080b422d154f3fd5fca1982f17a13
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 07 Jan 2023 14:14:29 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 07 Jan 2023 06:34:50 GMT
Expires: Sun, 08 Jan 2023 06:34:50 GMT
ETag: "8abef7f4e55a0c9373b79ce5b7d9cd4aaa5be6f7"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
www.googleoptimize.com/optimize.js?id=GTM-NRQRJCM
142.250.74.78200 OK 48 kB URL HTTP/2 www.googleoptimize.com/optimize.js?id=GTM-NRQRJCM
IP 142.250.74.78:0
File type ASCII text, with very long lines (6352)
Hash ddaf4b4e8a6ba41d14717b3fa3629b95
7dc3e40c809833ca9aebfea0f0dca895c53d2abd
203dc2cf44e35e16ed867dde6d4b063f67d0217e24abdab6d480e5164dff6a72
GET /optimize.js?id=GTM-NRQRJCM HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 07 Jan 2023 14:14:29 GMT
expires: Sat, 07 Jan 2023 14:14:29 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 47769
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 22ab80d5a502113c0fb2b8463d86bb71
0c0441fb8f26fef1d471c47bb7fdfa3e54c8054d
5fcc67dd74762a6514b3bd15877cb3a3a081fad1fa395aa9b78a71c060270ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5FCC67DD74762A6514B3BD15877CB3A3A081FAD1FA395AA9B78A71C060270BA1"
Last-Modified: Fri, 06 Jan 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 07 Jan 2023 20:14:29 GMT
Date: Sat, 07 Jan 2023 14:14:29 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 623e85ff33837eb6c59e11ae2759237a
cea1948490802e652e7f6678dc76694e0d6ab61a
1fb30f3579d3277435c860f472008bea3680db1202d838ad4669d943ec88ba65
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 14:14:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.mimmis.no/content/images/thumbs/m0030594.png
172.66.43.134200 OK 12 kB URL HTTP/2 www.mimmis.no/content/images/thumbs/m0030594.png
IP 172.66.43.134:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash bc6501c4c2ac45925dfba2b038d37d1c
e87b29b6a4b3abb8a90f3cbe50ca32eae4e21ce3
b05a1524098265a3f11cc53d8c8b916666f6cec3f4071f3f21c8de8f4636d196
GET /content/images/thumbs/m0030594.png HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: image/webp
content-length: 11766
cache-control: max-age=2073600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=12095
content-disposition: inline; filename="m0030594.webp"
etag: "0d4c83478d21:0"
last-modified: Fri, 27 Jan 2017 00:26:42 GMT
vary: Accept
cf-cache-status: HIT
age: 2038528
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ol%2FPmEaoQBhSyV1UAWX4vh0rHMndIDDHU5JNajvGyZAB1CLz6aSTe8za3r8dhycoV15QgI3UK38LHmNOuwrJNgML8Q1HGUT43wwjQzzlVkBPARoKIEDAeA0OI%2BZJK2g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 785d4cd45ccbb4ff-OSL
X-Firefox-Spdy: h2
www.mimmis.no/content/images/thumbs/0114840.jpeg
172.66.43.134200 OK 106 kB URL HTTP/2 www.mimmis.no/content/images/thumbs/0114840.jpeg
IP 172.66.43.134:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1080x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 106 kB (105898 bytes)
Hash e940a7003284499c07ce3f62fbe37c6b
c48045176701d80694a5707c546bfcbe7e0219e6
67ed1cb912a092fafcc7ab1beb44691718d5a321b181cfbe8f98ee7d246bd77b
GET /content/images/thumbs/0114840.jpeg HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: image/webp
content-length: 105898
cache-control: max-age=2073600
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=125304
content-disposition: inline; filename="0114840.webp"
etag: "d2744a219e1ed91:0"
last-modified: Mon, 02 Jan 2023 11:34:09 GMT
vary: Accept
cf-cache-status: HIT
age: 163858
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V2E%2BdcMSFrytv6zpaV6iz%2FYOURHcPnZ1SXp7uVb7BybvynWKXUoabkMXcZ6DBH9cMTXLuoo5NwT5UczQ0gHGcqLbSbAFUyzqyitc%2BTU5WI29vbWrbWJkk0bcgx%2Fgv84%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 785d4cd45cceb4ff-OSL
X-Firefox-Spdy: h2
www.mimmis.no/content/images/thumbs/0114844.png
172.66.43.134200 OK 344 kB URL HTTP/2 www.mimmis.no/content/images/thumbs/0114844.png
IP 172.66.43.134:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 344 kB (344188 bytes)
Hash 3fa6f8f496f23583a42ae23e2707c0b5
e617f3dbe4c966612b5978262d3ef0e24c1e739d
aa5fae336d7ed59e48b40bcec22379468aa1c82887ccffdcac24ddd64022e868
GET /content/images/thumbs/0114844.png HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: image/webp
content-length: 344188
cache-control: max-age=2073600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=850863
content-disposition: inline; filename="0114844.webp"
etag: W/"e7e2220b521d91:0"
last-modified: Fri, 06 Jan 2023 09:56:19 GMT
vary: Accept
cf-cache-status: HIT
age: 65061
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Mv3%2FevpfqA4r8n%2FiGaIjK%2Bu7fgjC3%2B1apw3PZRdhIwc5dSSHbmAoJ5OF1AZjWfWOAY4pRAXu1ZVGfTwrW%2F2rjDNABOOVggUWV9DHGIhvz0f4sj9R%2BYhGFxKAQN%2FpeaI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 785d4cd46cd0b4ff-OSL
X-Firefox-Spdy: h2
www.mimmis.no/content/images/thumbs/0114836.jpeg
172.66.43.134200 OK 195 kB URL HTTP/2 www.mimmis.no/content/images/thumbs/0114836.jpeg
IP 172.66.43.134:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 1080x1080, components 3\012- data
Size 195 kB (195406 bytes)
Hash c8e860c0170e3bb74662137d942d0ae0
c91ef1d9a4d51a5d2154eed2c4efed9ee652e6bb
d510c210a018772c83e783fa0a052b109da7dfe59777a4191123b7504f4fb70b
GET /content/images/thumbs/0114836.jpeg HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: image/jpeg
content-length: 195406
cache-control: max-age=2073600
cf-bgj: imgq:85,h2pri
cf-polished: origSize=205922, status=webp_bigger
etag: W/"9b9ec8bf9d1ed91:0"
last-modified: Mon, 02 Jan 2023 11:31:26 GMT
cf-cache-status: HIT
age: 441782
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QG0jbr5l4tK6nJ2huICArlrpEY4YCxJtXdZ%2BTYMfltOP3xnYsCf%2Ff7gY%2B74pHHQ2P8OCrexdMfFUxmsCltFYHHeO09Waa1OsOMD3u2QX9POBn182xjyg6xGp2sUTCMI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd46cd9b4ff-OSL
X-Firefox-Spdy: h2
www.mimmis.no/content/images/thumbs/0114842.jpeg
172.66.43.134200 OK 28 kB URL HTTP/2 www.mimmis.no/content/images/thumbs/0114842.jpeg
IP 172.66.43.134:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 650x650, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 97e983896d0bd8c996f8fe6d88a93281
875f2b75d8a1b881a96f655f5e486015d8f8b07b
25845d45020f4cfa5b384f0110309843c235ed8c45deb6e3e8e0eb238def8f7a
GET /content/images/thumbs/0114842.jpeg HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: image/webp
content-length: 28376
cache-control: max-age=2073600
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=44274
content-disposition: inline; filename="0114842.webp"
etag: W/"c460cca7e020d91:0"
last-modified: Thu, 05 Jan 2023 08:35:24 GMT
vary: Accept
cf-cache-status: HIT
age: 163047
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xyML92LUwPebYikOeCNVvy4DFVToNj9O%2BLzdrjwz8KO%2F6vSHgMGl5mT2wdB4u0CU%2FGr4Lc9fmLBrb0aVPY6HmC2s5t8%2BoAAlSo8nTBRKzSHiADtyr%2BSG67JGt%2BQYa5U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 785d4cd47cedb4ff-OSL
X-Firefox-Spdy: h2
www.mimmis.no/content/images/thumbs/0101261_bilstoler_450.png
172.66.43.134200 OK 129 kB URL HTTP/2 www.mimmis.no/content/images/thumbs/0101261_bilstoler_450.png
IP 172.66.43.134:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 129 kB (129238 bytes)
Hash cba974121ed2eb0c00b522cf1ca8be5f
d9826536c98fe4a00ce1d8b71ef219cf0701e976
a07e3a9841a66c6c98df8030597f6951fe6367838373f3e8f48f474f8fb7990a
GET /content/images/thumbs/0101261_bilstoler_450.png HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: image/webp
content-length: 129238
cache-control: max-age=2073600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=321102
content-disposition: inline; filename="0101261_bilstoler_450.webp"
etag: "b7bb4a39ad7d81:0"
last-modified: Wed, 12 Jan 2022 12:09:17 GMT
vary: Accept
cf-cache-status: HIT
age: 1969061
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Vs7JzO8j5pA%2FYw9VE9iJWJdayHeWRPum4MFgIFowynq5KdgW8hFrUCMexQypzFvhcZFY%2BN0hMOXBeAHBGtpvuS1x%2BMSiWHhZR5TAfIsaYAoPau0EXD4oGIyrTN5gPP8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 785d4cd47cf0b4ff-OSL
X-Firefox-Spdy: h2
www.mimmis.no/content/images/thumbs/0114841.jpeg
172.66.43.134200 OK 49 kB URL HTTP/2 www.mimmis.no/content/images/thumbs/0114841.jpeg
IP 172.66.43.134:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 650x650, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 88bd94538e257cd1f8b10b46a603054e
ed2ea448680ff173bb454f24b27e04430d15b229
44979f8ee11a6f39f975f85a0bb336b1a089dde9971a3bfe8eb3016767a6f2fe
GET /content/images/thumbs/0114841.jpeg HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: image/webp
content-length: 49172
cache-control: max-age=2073600
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=58134
content-disposition: inline; filename="0114841.webp"
etag: W/"69fec9a7e020d91:0"
last-modified: Thu, 05 Jan 2023 08:35:24 GMT
vary: Accept
cf-cache-status: HIT
age: 163785
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AAL6G6fUfKQXAZnr6dJX8I6BQgK2LWzRr5Zd5mBNH4MKY6oIkqox2XAwz0FkDo6pInIl3ROpNUjvwH0zy8NSUGQPHIiK5s5tve9EVqZ5%2B7Kf%2FY8iS5Wq0jJ68jgadI0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 785d4cd47cebb4ff-OSL
X-Firefox-Spdy: h2
www.mimmis.no/content/images/thumbs/0101209_barnevogn_450.png
172.66.43.134200 OK 198 kB URL HTTP/2 www.mimmis.no/content/images/thumbs/0101209_barnevogn_450.png
IP 172.66.43.134:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 198 kB (198356 bytes)
Hash d5190fbe48519a8364878c4988d8e7bd
25f14851a0b3f0adb6c68b84d062a5413cd0aa2c
2198d86126c9372c8e02fbad6f7f6f36f78b372da710ee1ae2dd9d7da8946c17
GET /content/images/thumbs/0101209_barnevogn_450.png HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: image/webp
content-length: 198356
cache-control: max-age=2073600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=393800
content-disposition: inline; filename="0101209_barnevogn_450.webp"
etag: "21a3baf79c7d81:0"
last-modified: Wed, 12 Jan 2022 10:12:55 GMT
vary: Accept
cf-cache-status: HIT
age: 1628899
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WoH%2ByjepaWPytes4Ccqs021ALXern%2BrcCqTbQK33zC8q4uODJ4aigGfwv1De3WJ%2FgKht%2BPhi1zobZc1j5z%2Bi5oIbeSq%2B2Twv2bdqegVjX5EEIE%2FoNgYuc0sqkxiL7bY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 785d4cd47cefb4ff-OSL
X-Firefox-Spdy: h2
www.mimmis.no/content/images/thumbs/0101564_utstyr_450.png
172.66.43.134200 OK 131 kB URL HTTP/2 www.mimmis.no/content/images/thumbs/0101564_utstyr_450.png
IP 172.66.43.134:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 131 kB (131312 bytes)
Hash c4d0c27385ccee3dcf160d433db4b982
6aed5944c164098ffd3c6e9b646e91f04aeed739
1204e9866d90c1220b05cdfbdb87fa31c068b9ad594be5f380b8ada563c62d36
GET /content/images/thumbs/0101564_utstyr_450.png HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: image/webp
content-length: 131312
cache-control: max-age=2073600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=349820
content-disposition: inline; filename="0101564_utstyr_450.webp"
etag: "b2c9e7969ebd81:0"
last-modified: Mon, 17 Jan 2022 12:34:37 GMT
vary: Accept
cf-cache-status: HIT
age: 1872374
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nS4AZAjSmN%2BeqPEB1oN5yiDShx2ur0oyZMZ55QXwCyJzcJ42pI7SMoTpJDtUv532rXXUQ9If1Khr0a4GmMe6ATjmYcRGhbIKYZfqiHitrjLTBUb6UxsdFmsoZ1HWWQQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 785d4cd49d09b4ff-OSL
X-Firefox-Spdy: h2
www.mimmis.no/content/images/thumbs/0101546_alle-salg_450.png
172.66.43.134200 OK 39 kB URL HTTP/2 www.mimmis.no/content/images/thumbs/0101546_alle-salg_450.png
IP 172.66.43.134:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 96bd915b03fdce476a74bad0a8f27f7a
59dc3f83f0c23941e4d8841550408dc604e06feb
e0f271c2a15d28e068814630acaab61fcf6e686b45a279ce3567d784cdccad15
GET /content/images/thumbs/0101546_alle-salg_450.png HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: image/webp
content-length: 39024
cache-control: max-age=2073600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=89520
content-disposition: inline; filename="0101546_alle-salg_450.webp"
etag: "063ed73aa5bd81:0"
last-modified: Fri, 29 Apr 2022 09:21:05 GMT
vary: Accept
cf-cache-status: HIT
age: 1107007
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R%2FtsHW0aZj%2BQPtjFqnZ0RICZhoLqiZh6rDvgmiGaKX5H0JszQxA7UeqyH8D%2F8Ljnb%2B%2B8j70DwnAIt1%2F%2BXqUY1PX0xNunD%2BKZIDxOpaIEWx%2FllNg16KliW3gAt8NLyDQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 785d4cd4dd53b4ff-OSL
X-Firefox-Spdy: h2
www.mimmis.no/content/images/thumbs/0101173_barnerommet_450.png
172.66.43.134200 OK 174 kB URL HTTP/2 www.mimmis.no/content/images/thumbs/0101173_barnerommet_450.png
IP 172.66.43.134:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 174 kB (173492 bytes)
Hash f4ac9aa521a38a7672613a1ad5c36e5f
d9db65d62a913b8615ce98b5984a670af098c8ce
837ac2c1247e19a8bb7098373318ea1301f19ea6f8d6840f7526968187261a1e
GET /content/images/thumbs/0101173_barnerommet_450.png HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: image/webp
content-length: 173492
cache-control: max-age=2073600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=429039
content-disposition: inline; filename="0101173_barnerommet_450.webp"
etag: "64aecb85ed6d81:0"
last-modified: Tue, 11 Jan 2022 13:17:02 GMT
vary: Accept
cf-cache-status: HIT
age: 521954
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xr8p7myeHsdC7C1tZrWMTQyfqVb%2FGt8NPPq0j64dEN7q9MTw87VzumLykhzF72IaIfJJYF19KxpCYnOigH9sRbGRTkxNdiFscHBMCvleHd6%2BWPYGBp6fEld%2B0Po9%2FLo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 785d4cd49d0bb4ff-OSL
X-Firefox-Spdy: h2
www.mimmis.no/content/images/thumbs/0055869_topplisten-_450.jpeg
172.66.43.134200 OK 28 kB URL HTTP/2 www.mimmis.no/content/images/thumbs/0055869_topplisten-_450.jpeg
IP 172.66.43.134:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 375x450, components 3\012- data
Hash b52a1d8221130c854ce1a0da23a80f80
d4fd56fe94e1350f596d8e2a3d367b2e6847bbc3
fa732a0086097216116327478888b48d7423ff92dd93352386671c23c077cd67
GET /content/images/thumbs/0055869_topplisten-_450.jpeg HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: image/jpeg
content-length: 27694
cache-control: max-age=2073600
cf-bgj: imgq:85,h2pri
cf-polished: origSize=28692
etag: "461f4f1414c5d61:0"
last-modified: Fri, 27 Nov 2020 23:21:48 GMT
vary: Accept
cf-cache-status: HIT
age: 502610
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qN6AvDBMY3iD3ie4Olrl3nQClnmMa0uw9QiLETIWUasmwNob%2BzKbdkRDxF3%2FlifU4JuYvTaKhQ%2Fhet6hT7m97RzJ%2FMiZR7OMHqoUzDAbBMIYMrQToJ25RBqLdg%2BERFY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 785d4cd4dd54b4ff-OSL
X-Firefox-Spdy: h2
www.mimmis.no/content/images/thumbs/0101257_leker_450.png
172.66.43.134200 OK 250 kB URL HTTP/2 www.mimmis.no/content/images/thumbs/0101257_leker_450.png
IP 172.66.43.134:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 250 kB (249876 bytes)
Hash e103e0a26487f78ea733c2156a352bb6
90df687f183417d35262f5d7d69d47ea489b0bbb
c7327098fb6f29ebc17ce4f4b1cf4f0984593c1b92a02c387489dd4f3ea6f11d
GET /content/images/thumbs/0101257_leker_450.png HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: image/webp
content-length: 249876
cache-control: max-age=2073600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=540196
content-disposition: inline; filename="0101257_leker_450.webp"
etag: "b86de2dea87d81:0"
last-modified: Wed, 12 Jan 2022 11:38:08 GMT
vary: Accept
cf-cache-status: HIT
age: 1957177
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=88SCRYO9YkK5iVbdS4bVXzK7xOGhQcHAuG6uE%2F%2BCeX2odWNQBg6SeACaoFnhz%2BAlMnj9R1aE5pAa8Jey9T81a4S6IpaR8HLZzCQ8me2o3KPJ6fhdK0gO2X2UbOv2gOA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 785d4cd49d0cb4ff-OSL
X-Firefox-Spdy: h2
www.mimmis.no/content/images/thumbs/0093572.png
172.66.43.134200 OK 290 kB URL HTTP/2 www.mimmis.no/content/images/thumbs/0093572.png
IP 172.66.43.134:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 290 kB (289836 bytes)
Hash fdfbefadfdb245cb8bb5f84578cb47a3
e61218f6cd0eeb5ea063057b69d58e37d42697de
48bccb48dd1f4a71fd9e0adc2403e6760e735d2571601dd0d202df2e49c711a6
GET /content/images/thumbs/0093572.png HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: image/webp
content-length: 289836
cache-control: max-age=2073600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=536496
content-disposition: inline; filename="0093572.webp"
etag: "b3dbfcf8f19fd71:0"
last-modified: Thu, 02 Sep 2021 11:59:24 GMT
vary: Accept
cf-cache-status: HIT
age: 68636
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dM9%2BvUMN2XWgcBF5G9mu4D2dO8ho55NKmjJFm%2FruoQlA8fZVFPY8qA%2FFDKPNDKH8oLy0jTRvURcIMJS1WeMJFYg8VMU8%2BlcW4uwt5wJIADX%2BoOf1HLE7Jd5EpUpcG2U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 785d4cd50daab4ff-OSL
X-Firefox-Spdy: h2
s.kk-resources.com/leadtag.js
143.204.55.92200 OK 2.6 kB URL HTTP/1.1 s.kk-resources.com/leadtag.js
IP 143.204.55.92:0
File type C source, ASCII text, with very long lines (6910)
Hash b9c7aa9898d0e7b5d8dfa27c81eda1ac
3e22a4f4ac1fd469128de60e1a80433513242071
980531f0a81016e3a7a4c3fa56f75e7b791f1f4c09296992221bd766b91a53a0
GET /leadtag.js HTTP/1.1
Host: s.kk-resources.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
Content-Length: 2595
Connection: keep-alive
X-Gravitee-Transaction-Id: 373972d0-d3d4-4944-b972-d0d3d4e94447
X-Gravitee-Request-Id: 373972d0-d3d4-4944-b972-d0d3d4e94447
ETag: "4ce868c0fdc969d380979979f635e5c92f06898b"
Request-Time: 6
Accept-Ranges: bytes
Cache-Control: public, max-age=3600
Last-Modified: Thu, 05 Jan 2023 14:36:32 GMT
Content-Encoding: gzip
Date: Sat, 07 Jan 2023 14:02:03 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: QLWTnl2YBRcBKmxHAyl8kJUNTbaI9arvGa6j7gOt8u4vVDWIybCKFA==
Age: 747
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 623e85ff33837eb6c59e11ae2759237a
cea1948490802e652e7f6678dc76694e0d6ab61a
1fb30f3579d3277435c860f472008bea3680db1202d838ad4669d943ec88ba65
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 14:14:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 22ab80d5a502113c0fb2b8463d86bb71
0c0441fb8f26fef1d471c47bb7fdfa3e54c8054d
5fcc67dd74762a6514b3bd15877cb3a3a081fad1fa395aa9b78a71c060270ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5FCC67DD74762A6514B3BD15877CB3A3A081FAD1FA395AA9B78A71C060270BA1"
Last-Modified: Fri, 06 Jan 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21599
Expires: Sat, 07 Jan 2023 20:14:29 GMT
Date: Sat, 07 Jan 2023 14:14:30 GMT
Connection: keep-alive
sc-static.net/scevent.min.js
54.230.82.240200 OK 13 kB URL HTTP/2 sc-static.net/scevent.min.js
IP 54.230.82.240:0
File type ASCII text, with very long lines (30920), with no line terminators
Hash 5c1e6ef321052f9ef17baa3b17775b15
dc24d4674334a60c2b9d1cd9aae0b6ed1bbb09ea
12a2c25fdde940fdbf0dcf5f2743c615bf8acac3ce6d19bf8b55102526bf763f
GET /scevent.min.js HTTP/1.1
Host: sc-static.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 13268
server: CloudFront
date: Sat, 07 Jan 2023 14:14:30 GMT
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Content-Type
cache-control: private, s-maxage=0, max-age=600
set-cookie: X-AB=0d6e407936704bd380072f5891d28b0e;max-age=86400;expires=Sun, 08 Jan 2023 12:55:36 GMT;Path=/scevent.min.js; Secure; SameSite=None
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6Xr-N1G1k2sYROSl01IExmIgwDRT4Mi0ftpYGm__2VupmYBI3qfZiw==
X-Firefox-Spdy: h2
clientcdn.pushengage.com/core/30be776083ddd9570aeb840506e66e05.js
54.230.111.71200 OK 26 kB URL HTTP/2 clientcdn.pushengage.com/core/30be776083ddd9570aeb840506e66e05.js
IP 54.230.111.71:0
Hash e541bb6500c2974857e28514a900dd7d
94ff1fded3d89ed67c2d248ce3d2d0c340df3a4c
ef27c263f1e85868fb9238e1b020ef92908b3c4ca237074f6e4fa9645feef0ff
GET /core/30be776083ddd9570aeb840506e66e05.js HTTP/1.1
Host: clientcdn.pushengage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Sat, 07 Jan 2023 14:14:29 GMT
server: nginx
access-control-allow-origin: *
cache-control: max-age=3600, s-maxage=120
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: yU2KX7Ve8FhYw2gVRjlOSV5rhpk-boeoEtkh0YGXWTkzcRNb-4dl9Q==
age: 1
X-Firefox-Spdy: h2
sleeknotecustomerscripts.sleeknote.com/3023.js
143.204.55.98200 OK 989 B URL HTTP/2 sleeknotecustomerscripts.sleeknote.com/3023.js
IP 143.204.55.98:0
File type ASCII text, with very long lines (2591), with no line terminators
Hash c5a320fd174f3bb8c966887311ba5eb7
6ff8b03f716cefeabedf3b255dd3245f6bece870
97a91e342d8ae414945002e0c44c0fc2b051a190eb57e7260999baa729ba8010
GET /3023.js HTTP/1.1
Host: sleeknotecustomerscripts.sleeknote.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 989
last-modified: Tue, 08 Nov 2022 10:33:04 GMT
content-encoding: gzip
x-amz-version-id: 2mFozQXk5UojSTRMD05KqqMBeVyoCNoe
accept-ranges: bytes
server: AmazonS3
date: Sat, 07 Jan 2023 14:14:28 GMT
cache-control: max-age=60
etag: "c5a320fd174f3bb8c966887311ba5eb7"
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: g54Sr-JAapx_HmcEc8GEH_5IgsUlu9OzCb2ChZB7oKIqshAJTtvqag==
age: 3
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 30e9fdae376ea10574bac81a28b4e0e0
f20b1980ae9e4a260bf6057266c69cfe86658d9b
d0cb0bb551a5edf0ba372d595a7d05a0b93414dc9de27b1458f5d9ebbda802b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 14:14:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.mimmis.no/Plugins/SevenSpikes.Nop.Plugins.ProductRibbons/Scripts/ProductRibbons.min.js
172.66.43.134200 OK 3.5 kB URL HTTP/2 www.mimmis.no/Plugins/SevenSpikes.Nop.Plugins.ProductRibbons/Scripts/ProductRibbons.min.js
IP 172.66.43.134:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (2317), with CRLF line terminators
Hash 77505d6809d39d63c1f0d1572b7b181c
f1b5235b1340f98b9e3bd73fe1264d0c6bba88cc
d0740348416f3674da87785f03245bc8b20ed0075fee0d6c3e584ddd8518518f
GET /Plugins/SevenSpikes.Nop.Plugins.ProductRibbons/Scripts/ProductRibbons.min.js HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: application/javascript
cache-control: max-age=2073600
last-modified: Mon, 09 Jun 2014 15:37:20 GMT
etag: W/"0f847b3f883cf1:0"
cf-cache-status: HIT
age: 435481
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tIFdf1bvwa1fbCyGQlGxMmhYtGBtC48tN%2BQLp%2BCPJ2fS%2FO8z3cwcYpBFV3jvL0e%2BohmZvNftbRcQ6a3dGlHkpTCBlF1Sblm%2BDA2SjzFANA%2F36KexRg%2BdDQ8trxM7ELo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd45cc7b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 83ca4b6b7df9dd6ee21d6f3da56c9e1a
4bc528595ddcbe59abe12205a60f53a291389a45
82174564d8f6d3c55c5a972035821ff492964ae59a12c4e83c422300ffd992bc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82174564D8F6D3C55C5A972035821FF492964AE59A12C4E83C422300FFD992BC"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11433
Expires: Sat, 07 Jan 2023 17:25:03 GMT
Date: Sat, 07 Jan 2023 14:14:30 GMT
Connection: keep-alive
www.mimmis.no/
172.66.43.134200 OK 22 kB IP 172.66.43.134:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (365), with CRLF, LF line terminators
Hash e56fc01584790256ad4aeda21e0d713e
7d998e550b5f43cc1d91deae2158c328edacd8cd
d869ab9fd6bc7be5fad3001f3113b61168267e4b74181a8eea29fbe9e56086c4
GET / HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fnc.contextwidget.tech/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: text/html; charset=utf-8
cache-control: private
x-aspnetmvc-version: 5.2
x-aspnet-version: 4.0.30319
set-cookie: Nop.customer=5921cbc1-3945-4fa8-a2d5-5698df62f4c3; expires=Sun, 07-Jan-2024 14:14:32 GMT; path=/; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MQofTvvNIOJ4optBpPkaIg5z06Ar8K%2BwqFLf00huiRbdps%2BAMkRz3n9QWK1Ty8UtyLuccg%2BOlNNNRi8vZWHumoJeFWL5%2BFQ9iMSbhFdca%2F7Y5uUI3kpMmPZh5G9Hu0E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 785d4cd21a86b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.mimmis.no/images/FFFFFF.png
172.66.43.134200 OK 67 B URL HTTP/2 www.mimmis.no/images/FFFFFF.png
IP 172.66.43.134:0
File type PNG image data, 1 x 1, 8-bit grayscale, non-interlaced\012- data
Hash 3eaf17869bb51bf27bd7c91bc9853973
6b71fbe07b498a8245c11bdb2c3ba00e5480935d
e0ee6ce31a24984036bfd39b55ea8d696734e1eaa40c30010cf12c63fd04e196
GET /images/FFFFFF.png HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/Themes/Native/Content/CSS/styles.css?v=1.332
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:30 GMT
content-type: image/png
content-length: 67
cache-control: max-age=2073600
cf-bgj: imgq:85,h2pri
cf-polished: status=not_needed
etag: "0856b6f3579d11:0"
last-modified: Tue, 08 Mar 2016 12:24:18 GMT
vary: Accept
cf-cache-status: HIT
age: 505853
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=12xaecjddmCh1Q%2Ffxzz6P4uPwyLrRFSkvRARiIGU7tO4cEyXZiq0sLktg%2F0iI625yOPCu%2B5CLOeZJ1iX8Hsq2zpi1YH5w2ppUFY0HCjMEtHz5tlbBdX0n56XOB8HUGE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 785d4cd60e8bb4ff-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
142.250.74.35200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.mimmis.no
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 13:33:12 GMT
expires: Sat, 06 Jan 2024 13:33:12 GMT
cache-control: public, max-age=31536000
age: 88878
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.mimmis.no/Themes/Native/Content/img/cart-icons.png
172.66.43.134200 OK 268 B URL HTTP/2 www.mimmis.no/Themes/Native/Content/img/cart-icons.png
IP 172.66.43.134:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 6021c816945dff410c480ac8315ce3c8
d78250d553367ead250c3fa9b2edcdc645481115
c105f113a832bcd191087ff689bf22f55e75c71249c14ac91180b2c1f49984b3
GET /Themes/Native/Content/img/cart-icons.png HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/Themes/Native/Content/CSS/980.css?v=1.19
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:30 GMT
content-type: image/webp
content-length: 268
cache-control: max-age=2073600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=1362
content-disposition: inline; filename="cart-icons.webp"
etag: "07c9e561c46d01:0"
last-modified: Wed, 11 Feb 2015 17:01:12 GMT
vary: Accept
cf-cache-status: HIT
age: 1877667
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DJ%2FK3zzKOl4lDqPpWXrH%2BHXigXUYeWmfrVL%2Fz2O%2FHNWQ26GrvP8fz7WhPPmt1h9XOt9jBtymllnoPBzxHGQyBz0pZMtpFRqpy%2FvtpBGDw9jvdjlxkKaK%2BJW%2Bd7VdcyQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 785d4cd60e8eb4ff-OSL
X-Firefox-Spdy: h2
www.mimmis.no/Scripts/kendo/2014.1.318/kendo.list.min.js
172.66.43.134200 OK 5.0 kB URL HTTP/2 www.mimmis.no/Scripts/kendo/2014.1.318/kendo.list.min.js
IP 172.66.43.134:0
File type ASCII text, with very long lines (11621), with CRLF line terminators
Hash a5172297fa9907a96680d916fca1e430
14347f3f9f4bdbed89f3d8e5f35ef72f4ed98633
6a1e0198a6ff1bbaf4d303d2f544c07693988b63cf0a0649b0f6eabd197a9c6f
GET /Scripts/kendo/2014.1.318/kendo.list.min.js HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: application/javascript
cache-control: max-age=2073600
last-modified: Wed, 20 May 2015 08:57:54 GMT
etag: W/"055f2edb92d01:0"
cf-cache-status: HIT
age: 1301716
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w6j0wsMDWYMIOA4tERD1Mo64XbNqclHHsHjlyONNpFBFK1BUWwZ3eIADP%2BkbaR4XAEG9d6%2FBk%2FWlQDJ%2BWt7Iawn1YdmH%2FN%2Fayg5BPUQpu%2B2bQfkwU%2FpXZPx%2FbqxtTf0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd44ca1b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.mimmis.no/content/images/thumbs/0055798_ergobaby-aura-bresjal-gra.jpeg
172.66.43.134200 OK 54 kB URL HTTP/2 www.mimmis.no/content/images/thumbs/0055798_ergobaby-aura-bresjal-gra.jpeg
IP 172.66.43.134:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1179x647, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 441d218cb75d70fa032aa09363ed7a3e
85c00a92ccf342f494f097abcc7d7632b3cca023
35ef5296fdad2c8d6d7c54a5d08e7d94e2221c2f13bcdc663f17e50742c0ea70
GET /content/images/thumbs/0055798_ergobaby-aura-bresjal-gra.jpeg HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:30 GMT
content-type: image/webp
content-length: 54334
cache-control: max-age=2073600
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=70465
content-disposition: inline; filename="0055798_ergobaby-aura-bresjal-gra.webp"
etag: "562a4ad786fd41:0"
last-modified: Mon, 29 Oct 2018 11:10:51 GMT
vary: Accept
cf-cache-status: HIT
age: 1015380
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tjdYo54Hr%2F2SuwU7VAIJKnUXEFObMu9hbQf9mKV9WJnOFjRnG56QNtpts6PuMTxg7iNY7nKCA7l1inZOGJyDZgO7L3pl28gV%2BlSGrM%2F0FJG%2BXr6uQf2PleeBqGTB6mQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 785d4cd61e9eb4ff-OSL
X-Firefox-Spdy: h2
www.googleadservices.com/pagead/conversion_async.js
172.217.21.162200 OK 15 kB URL HTTP/2 www.googleadservices.com/pagead/conversion_async.js
IP 172.217.21.162:0
File type ASCII text, with very long lines (1654)
Hash d7e57b409ab8e9fd2c4b28141f186fec
e2de2762e96f09e91a8cb5181ba2fba412aa78f9
c1f02433e71b1614f085f2517e374f589c47a50b5ff4d3b9a72e9a163ff4a5ea
GET /pagead/conversion_async.js HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sat, 07 Jan 2023 14:14:30 GMT
expires: Sat, 07 Jan 2023 14:14:30 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 18268299454107164705
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 15163
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.mimmis.no/Themes/Native/Content/img/social_sprite.png
172.66.43.134200 OK 978 B URL HTTP/2 www.mimmis.no/Themes/Native/Content/img/social_sprite.png
IP 172.66.43.134:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 4d398b11c9d3e00763855fe2aa3d6e5b
2ede56ad5cea658e411852b9ac499837701f71b3
c5a00af6fc4db9a9bc84062287cc062e178000cdf7e7e00a99009c36a3fd1f9a
GET /Themes/Native/Content/img/social_sprite.png HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/Themes/Native/Content/CSS/styles.css?v=1.332
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:30 GMT
content-type: image/webp
content-length: 978
cache-control: max-age=2073600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=4579
content-disposition: inline; filename="social_sprite.webp"
etag: "064da10c681d01:0"
last-modified: Tue, 28 Apr 2015 15:14:48 GMT
vary: Accept
cf-cache-status: HIT
age: 1955199
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iW4dzoftjK7pz41sPC%2BABgVYS%2FcrJN7T%2B7Q%2FaPzxJP1lclPQdT41LSSVC6Qn5tSr8M3OOkGQiMexbJHauzOWNSn8u%2BHzlo52ccpk6Oqb2%2F0FuiW%2BEYpBRK5mhrMmYMU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 785d4cd63ec6b4ff-OSL
X-Firefox-Spdy: h2
www.mimmis.no/Themes/Native/Content/scripts/Native.js
172.66.43.134200 OK 1.7 kB URL HTTP/2 www.mimmis.no/Themes/Native/Content/scripts/Native.js
IP 172.66.43.134:0
File type ASCII text, with very long lines (1528)
Hash ea9290112a822e897d4db08b006a0e54
fc0a80b6854b677070fd66448ece04ad6f220831
4bf8b197f961d207163ab5fffbd258fbb08f2ec4203615bad5d974f69aa06cac
GET /Themes/Native/Content/scripts/Native.js HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: application/javascript
cache-control: max-age=2073600
cf-bgj: minify
cf-polished: origSize=3984
etag: W/"0bad1d99f22d11:0"
last-modified: Thu, 19 Nov 2015 07:56:52 GMT
cf-cache-status: HIT
age: 427639
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B2yQA5JKCIhdv88GPCh%2FvsVKu3Ja%2B%2Fo5SRBCoLYq%2F%2BP9v4fgggvMKRHLVSTsTyMSpdnmSj1CoxO9UJMlOS9bVrGAuLtCEcGZeTZCEYjR5Ug5EOsFUhe7J90tU9HH1wg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd45ccab4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8b64a17d9b8c33515817fc19dd6f60d7
a752305109964bc1ef3537debed9c40c44198cea
8f7b7d229100176e82780eb0c3808b410b078025237210d8b5037c30ac3b0987
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 14:14:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.mimmis.no/Plugins/SevenSpikes.Core/Scripts/perfect-scrollbar.min.js
172.66.43.134200 OK 3.9 kB URL HTTP/2 www.mimmis.no/Plugins/SevenSpikes.Core/Scripts/perfect-scrollbar.min.js
IP 172.66.43.134:0
File type ASCII text, with very long lines (9322)
Hash ad15d503dd723a0af1955d96cf6efa19
9dce35e5fa886b2a5d478ec81d4f1c530c7c1d56
b20f73aac5f61b550827eb1df2fc6589a237ab2a49212ce40ed9b44b3519198e
GET /Plugins/SevenSpikes.Core/Scripts/perfect-scrollbar.min.js HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: application/javascript
cache-control: max-age=2073600
last-modified: Wed, 07 Jan 2015 17:18:14 GMT
etag: W/"0f52eb9d2ad01:0"
cf-cache-status: HIT
age: 1301717
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2oMYR2LoKMzkiPVjo9Bwx7NEmciqlyWrKSJRZyMhf%2FZznnzznrsTHPYBjUkmDn%2FdnQDVx7Mc9Rtul2ntcVFTpf9vE9bCXlW6Iwz0SwhHcuzU79fHiI1QyhQ4du5R9Vw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd45cc8b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 65b7ee664f1101a9058381b67dbc08f2
ffd58c045a59d27467e261baa79062cf5bd729d9
033fde251a6e35f8d0b35e16a591bb2d0d486c59f904925f4c798c40c473c652
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 07 Jan 2023 14:14:30 GMT
Last-Modified: Sat, 07 Jan 2023 12:45:00 GMT
Server: ECS (bsa/EB11)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: PcJh-2AW5jVV39fB_4QcT69LsORmwLOOe23ujtoX8Kothe-rdTsb0Q==
Age: 5370
www.mimmis.no/Scripts/kendo/2014.1.318/kendo.draganddrop.min.js
172.66.43.134200 OK 22 kB URL HTTP/2 www.mimmis.no/Scripts/kendo/2014.1.318/kendo.draganddrop.min.js
IP 172.66.43.134:0
File type ASCII text, with very long lines (9954), with CRLF line terminators
Hash de9ba77adf18eab52c6a2f76312656e9
b74ae50b3fb81bf5fde6c45ca7a3e3169e9a4f76
0202c908cc0a18096eb1502844a2bac1394ce8be539435d135acce3de6ce6cfb
GET /Scripts/kendo/2014.1.318/kendo.draganddrop.min.js HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: application/javascript
cache-control: max-age=2073600
last-modified: Wed, 20 May 2015 08:57:46 GMT
etag: W/"0a12dadb92d01:0"
cf-cache-status: HIT
age: 1955401
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PzWnI3II1vlal7zCN5WBITOltH0U%2BJMFQyvV%2FBkya0JFOO8mx96AYAg4s6i10J0DDJA0r4byD8GeIahqySLziSCi1LWDqN3kU%2BiHiHB9EIVQfpIFiRk7g0IJQw7d944%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd45cc0b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.mimmis.no/Plugins/SevenSpikes.Nop.Plugins.ProductRibbons/Scripts/jquery.json-2.4.min.js
172.66.43.134200 OK 70 kB URL HTTP/2 www.mimmis.no/Plugins/SevenSpikes.Nop.Plugins.ProductRibbons/Scripts/jquery.json-2.4.min.js
IP 172.66.43.134:0
File type ASCII text, with very long lines (433)
Hash d4d707890c6fa4278ffb8ca2918251fd
6114aaf38c8973d4a5aacce22fac50426a8be50c
f8093c0a27b66751d1eafacdef448e73f01390d490c1e02f114f2bb83d2baefa
GET /Plugins/SevenSpikes.Nop.Plugins.ProductRibbons/Scripts/jquery.json-2.4.min.js HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: application/javascript
cache-control: max-age=2073600
last-modified: Mon, 21 Jan 2013 13:50:56 GMT
etag: W/"0e0ec55def7cd1:0"
cf-cache-status: HIT
age: 1952085
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zWO4dXhM3HwJWp%2FHYhOXHDBvrOEih2TiDJU35%2B21o4JKdTksFVbbdY3KFJrqEkpWqMfeuvCXKdpOmoxC67OqfRKZtmq7Wjzo1o6zRAmHsrixweXOueaux9KIK7cCWA4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd45cc5b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.mimmis.no/Themes/Native/Content/CSS/images/loader.gif
172.66.43.134200 OK 11 kB URL HTTP/2 www.mimmis.no/Themes/Native/Content/CSS/images/loader.gif
IP 172.66.43.134:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash c3741f243045cb4319a5d648019e00e1
56ec3485830f04bb46b111a7374651f4194c01ee
1b1c4dc37dc599ef153244f20fe65b2c037e01485707e924420fd9f77f6deaed
GET /Themes/Native/Content/CSS/images/loader.gif HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/Themes/Native/Content/CSS/plugins.css?v=1.016
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:30 GMT
content-type: image/webp
content-length: 11320
cache-control: max-age=2073600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=gif, origSize=32085
content-disposition: inline; filename="loader.webp"
etag: "02b71f53252ce1:0"
last-modified: Thu, 16 May 2013 12:43:26 GMT
vary: Accept
cf-cache-status: HIT
age: 1955400
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kO%2BILE1Pl2xAED2ci4YruD4GUymyx0VgmanpuAd4UvrgXx%2BWRrDQ0jVfvaIElxgfrLWKaXhpQrORDjfkE0hKrL7aIp4uoHcQusDiyGo0w4Sx65WlU3Xpm9qCDIbzjC0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 785d4cd77851b4ff-OSL
X-Firefox-Spdy: h2
www.mimmis.no/Themes/Native/Content/CSS/styles.css?v=1.332
172.66.43.134200 OK 38 kB URL HTTP/2 www.mimmis.no/Themes/Native/Content/CSS/styles.css?v=1.332
IP 172.66.43.134:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65531), with no line terminators
Hash 381390115ca11f4f3c5cff7f4e98ee6d
a8ab110561f1f7c72c2a47f9fa2f1a95ef6bceee
7a73f9fd8d3be674e0c0cfe6bd4c4d6d4127c292cc1ef6eedd86626a4e2b458e
GET /Themes/Native/Content/CSS/styles.css?v=1.332 HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: text/css
cache-control: max-age=2073600
cf-bgj: minify
cf-polished: origSize=184153
etag: W/"fe78916387fad81:0"
last-modified: Thu, 17 Nov 2022 13:20:40 GMT
cf-cache-status: HIT
age: 262360
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F7zFSKGHK2OsSlPPFJYdEqftyTI%2B6XymrAz971Ko18vKTlcCpfohY4EbRZ9EpQabVjd%2BGGrFLNtIdpQUZQJdigx9s3s22gGrSayxOjgahQbeHEOv9zAYhyH9DHctgZ4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd3cc16b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
104.16.57.101200 OK 36 kB URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
IP 104.16.57.101:0
File type ASCII text, with very long lines (42583)
Hash 11b153c62e172fa435699096a8052f74
e7fa1e8a8a2875e36142bae286b7637cf13ebc24
54e6f6d531754d8f179590c7e026d2858b9f2144ce69bffa3fbade8ca6ce70aa
GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mimmis.no
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:30 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2022.10.1
last-modified: Fri, 21 Oct 2022 01:56:09 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd58b85b4ed-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 26647df774197b1bd1d1c0d17bb2e458
7141940462ee40ad7586fa7d34ee8d7cadd772b2
1fed1ccbf849cc34f1731574403cb6619de9229cafce79cd633c0ca90a8b79de
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6157
Cache-Control: max-age=169877
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 14:14:30 GMT
Etag: "63b95ace-1d7"
Expires: Mon, 09 Jan 2023 13:25:47 GMT
Last-Modified: Sat, 07 Jan 2023 11:43:10 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
www.mimmis.no/Plugins/SevenSpikes.Nop.Plugins.JCarousel/Themes/Native/Content/images/prev-horizontal.png
172.66.43.134200 OK 116 B URL HTTP/2 www.mimmis.no/Plugins/SevenSpikes.Nop.Plugins.JCarousel/Themes/Native/Content/images/prev-horizontal.png
IP 172.66.43.134:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 51e08d8a8d5909b022c0d2be15f4a62d
8d948b29f5e4c241e82262a5af5d5c771640f017
f0eebd80b8ab4d0c755a13ca51a7e2d9d55958890d8eeb345e0806de0c90c106
GET /Plugins/SevenSpikes.Nop.Plugins.JCarousel/Themes/Native/Content/images/prev-horizontal.png HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/Plugins/SevenSpikes.Nop.Plugins.JCarousel/Themes/Native/Content/JCarousel.css?v=1.16
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:30 GMT
content-type: image/webp
content-length: 116
cache-control: max-age=2073600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=2877
content-disposition: inline; filename="prev-horizontal.webp"
etag: "0f847fd2958d01:0"
last-modified: Fri, 06 Mar 2015 16:24:16 GMT
vary: Accept
cf-cache-status: HIT
age: 918691
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6uMCQiSsl62hhjPoRRAMA1jk1xeVel155Bvk55jW1og0NWqSimuQahVxoVXHTHS1zLfCpVTMD9996ujTV2tE%2BcKjQJira8Of8IEyvi%2FMlgL0WYfedpIIy54kFOlqrcY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 785d4cd889cab4ff-OSL
X-Firefox-Spdy: h2
www.linkbux.com/track?pid=LB00003636&mid=10138&uid=oneidK7dkCRfZfGWjXaVtPcJczCKkZgH7Srt4fqoneid_63b97e44bde85a4bd67be7e1-RL-290869&url=https%3A%2F%2Fwww.blivakker.no%2F
198.11.181.248200 OK 617 B URL HTTP/2 www.linkbux.com/track?pid=LB00003636&mid=10138&uid=oneidK7dkCRfZfGWjXaVtPcJczCKkZgH7Srt4fqoneid_63b97e44bde85a4bd67be7e1-RL-290869&url=https%3A%2F%2Fwww.blivakker.no%2F
IP 198.11.181.248:0
ASN #45102 Alibaba US Technology Co., Ltd.
Hash 6bd8c77bb6863c6c049841a4779b9ace
a9341a41e811e81eb2644cd994205a719c8fb130
51134d2ab71d9d49ce193079d1c5ebd29a576c33a11099af9b7e4e81a805bd86
GET /track?pid=LB00003636&mid=10138&uid=oneidK7dkCRfZfGWjXaVtPcJczCKkZgH7Srt4fqoneid_63b97e44bde85a4bd67be7e1-RL-290869&url=https%3A%2F%2Fwww.blivakker.no%2F HTTP/1.1
Host: www.linkbux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fnc.contextwidget.tech/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
set-cookie: discuz_2132_saltkey=sWCsH4JQ; expires=Mon, 06-Feb-2023 14:14:29 GMT; Max-Age=2592000; path=/; secure; httponly
discuz_2132_lang=en; path=/; secure
discuz_2132_lang=en; path=/; secure
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash 334a4dc9485e8e59e1d0f1bc7ab339aa
8abef7f4e55a0c9373b79ce5b7d9cd4aaa5be6f7
35bd16b60fd05d3733769b56b7a0c77811b080b422d154f3fd5fca1982f17a13
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 07 Jan 2023 14:14:30 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 07 Jan 2023 06:34:50 GMT
Expires: Sun, 08 Jan 2023 06:34:50 GMT
ETag: "8abef7f4e55a0c9373b79ce5b7d9cd4aaa5be6f7"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
www.mimmis.no/ProductRibbons/RetrieveProductRibbons
172.66.43.134200 OK 13 kB URL HTTP/2 www.mimmis.no/ProductRibbons/RetrieveProductRibbons
IP 172.66.43.134:0
File type HTML document, ASCII text, with CRLF, LF line terminators
Hash e6768f5be2f52ccd9dc1afa3c7494e28
e7ca56c82a57bbf392ca26fdeb829428a1635ef9
354867b86eb5e21f3015e562d05b3a6ca25df53b96a32710228e3898286ad2ee
POST /ProductRibbons/RetrieveProductRibbons HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=utf-8
X-Requested-With: XMLHttpRequest
Content-Length: 585
Origin: https://www.mimmis.no
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:30 GMT
content-type: text/html; charset=utf-8
cache-control: private
x-aspnetmvc-version: 5.2
x-aspnet-version: 4.0.30319
set-cookie: Nop.customer=408fa805-396f-4bc5-867c-cdee3c2e437e; expires=Sun, 07-Jan-2024 14:14:33 GMT; path=/; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eZzQ3k4gUV%2F1w2BOG442CC1wTuIarQTKtFlIYruqsZmfNKN8%2FYOshF%2Bu7%2F4f67RtT%2FaPrF7u2qjRncXq9nuqeOdQbSw%2BWBHqUHKg3uXfOGJNeztnwLHN1W%2FqN1CuGvw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 785d4cd82936b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
x.klarnacdn.net/ui/fonts/v1.3/fonts.css
54.230.111.108200 OK 5.2 kB URL HTTP/2 x.klarnacdn.net/ui/fonts/v1.3/fonts.css
IP 54.230.111.108:0
File type CSV text\012- , ASCII text
Hash c992228f869c757b2b0a2f8ecb17fa21
c3348b27876c39996fea3652f74eb732c4bf2197
facb59b2ae83c0d73ae3aa0c23731f8e1791fcd3148f525bdfe1b381e14c70d4
GET /ui/fonts/v1.3/fonts.css HTTP/1.1
Host: x.klarnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-length: 5189
date: Wed, 09 Nov 2022 03:13:13 GMT
x-amz-replication-status: COMPLETED
last-modified: Fri, 30 Apr 2021 10:01:44 GMT
etag: "c992228f869c757b2b0a2f8ecb17fa21"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000
x-amz-meta-ui: ui
x-amz-version-id: t6YqdT7IzEDnLlEXrdYp2k7IY4qR3s8G
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8NF4twj7Z5xmaNsiTJptdG3ic2uGNCPQQ7E_o20aQfSzsl-RxMAGVA==
age: 5137279
X-Firefox-Spdy: h2
www.awin1.com/cread.php?pref1=ad4mat.com%2Fcontent-commerce%2F&awinmid=19717&awinaffid=685769&clickref=lb_fehfzg&p=https%3A%2F%2Fwww.blivakker.no%2F
104.66.114.57302 Moved Temporarily 0 B URL HTTP/1.1 www.awin1.com/cread.php?pref1=ad4mat.com%2Fcontent-commerce%2F&awinmid=19717&awinaffid=685769&clickref=lb_fehfzg&p=https%3A%2F%2Fwww.blivakker.no%2F
IP 104.66.114.57:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cread.php?pref1=ad4mat.com%2Fcontent-commerce%2F&awinmid=19717&awinaffid=685769&clickref=lb_fehfzg&p=https%3A%2F%2Fwww.blivakker.no%2F HTTP/1.1
Host: www.awin1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.linkbux.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Content-Length: 0
Location: https://www.blivakker.no/?utm_source=awin&utm_medium=affiliate&utm_campaign=subnetwork&awc=19717_1673100871_131bfe791df11a9a49ecdc4b83cf6343
Allow: GET
Node: Helix
P3P: policyref="http://www.awin1.com/w3c/p3p.xml", CP="NOI NID CURa ADMa PSAa HISa OUR IND UNI PUR COM NAV"
Date: Sat, 07 Jan 2023 14:14:31 GMT
Connection: keep-alive
Set-Cookie: aw19717=685769|0|0|1673100871|lb_fehfzg|aw|0;domain=.awin1.com;path=/;expires=Monday, 06-Feb-2023 14:14:31 UTC;Secure;SameSite=None
bId=HLEX_63b97e47c4d844.08999124;domain=.awin1.com;path=/;expires=Sunday, 07-Jan-2024 14:14:31 UTC;Secure;SameSite=None
Strict-Transport-Security: max-age=86400
Awin-Akamai-Rule-Set: default
www.mimmis.no/Themes/Native/Content/CSS/recategory.css?v=1.05
172.66.43.134200 OK 930 B URL HTTP/2 www.mimmis.no/Themes/Native/Content/CSS/recategory.css?v=1.05
IP 172.66.43.134:0
File type Unicode text, UTF-8 text, with very long lines (2850), with no line terminators
Hash d48d0b0fac2b7f9107a0f539bae7e89e
251da0fe76ab9edb9488dde88ed66ddbd78e8cef
6d18421c8026b26e64b465672b33303d9aa9ebd99020bd4608b28b37e46881d9
GET /Themes/Native/Content/CSS/recategory.css?v=1.05 HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: text/css
cache-control: max-age=2073600
cf-bgj: minify
cf-polished: origSize=4214
etag: W/"522b0387417d81:0"
last-modified: Tue, 01 Feb 2022 14:01:34 GMT
cf-cache-status: HIT
age: 1958627
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pKWbpbmgW29DRoK%2BOjtvOzNFj3oLBGlxHk%2Fb6A1VACBLoP4r3we9sZhlRcsGrrxChg3q75rjer3gBDesbKvA5O6lIGk2%2ByC3YaOVezoZxTjFq6tiPmySgYhUjX92QH8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd40c48b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=439900476210471&ev=PageView&dl=https%3A%2F%2Fwww.mimmis.no%2F&rl=https%3A%2F%2Ffnc.contextwidget.tech%2F&if=true&ts=1673100859797&sw=1280&sh=1024&v=2.9.91&r=stable&ec=0&o=30&it=1673100859582&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=439900476210471&ev=PageView&dl=https%3A%2F%2Fwww.mimmis.no%2F&rl=https%3A%2F%2Ffnc.contextwidget.tech%2F&if=true&ts=1673100859797&sw=1280&sh=1024&v=2.9.91&r=stable&ec=0&o=30&it=1673100859582&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=439900476210471&ev=PageView&dl=https%3A%2F%2Fwww.mimmis.no%2F&rl=https%3A%2F%2Ffnc.contextwidget.tech%2F&if=true&ts=1673100859797&sw=1280&sh=1024&v=2.9.91&r=stable&ec=0&o=30&it=1673100859582&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 07 Jan 2023 14:14:31 GMT
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.20.226:0
Hash 634ec31fde9d69df00819ff61cf6bd24
c75dffc83303b5684affb6253330e58cb17fdeec
459b0c32ddf0ba19bdef388842bea365198e18e5550919473723232697b6f5dc
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 07 Jan 2023 14:14:31 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Wed, 11 Jan 2023 11:47:49 GMT
ETag: "c75dffc83303b5684affb6253330e58cb17fdeec"
Last-Modified: Sat, 07 Jan 2023 11:47:50 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3199
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 785d4cdf5bf8b506-OSL
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a012314b5212c7f57987e6ba07f5fcfb
ae30447629b87fe3677b164c03c74984913b61b0
194109771fa35dbcd9b864301d74be2723835264927e01eb6a23ede9c011bc51
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=150766
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 14:14:31 GMT
Etag: "63b92835-117"
Expires: Mon, 09 Jan 2023 08:07:17 GMT
Last-Modified: Sat, 07 Jan 2023 08:07:17 GMT
Server: nginx
Content-Length: 279
www.mimmis.no/cdn-cgi/rum?
172.66.43.134204 No Content 0 B URL HTTP/2 www.mimmis.no/cdn-cgi/rum?
IP 172.66.43.134:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 23370
Origin: https://www.mimmis.no
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Sat, 07 Jan 2023 14:14:31 GMT
access-control-allow-origin: https://www.mimmis.no
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 785d4ce0bc96b4ff-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f226f3a1968481bd4d1f7785c0e19500
e3f8a2490051a98bba2b3a7697eb29f861715cc3
b938b0e63c3550469ad18156a2e302d38394e87d84997b11cde5cdb787fcb5b5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4065
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 14:14:31 GMT
Last-Modified: Sat, 07 Jan 2023 13:06:47 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f226f3a1968481bd4d1f7785c0e19500
e3f8a2490051a98bba2b3a7697eb29f861715cc3
b938b0e63c3550469ad18156a2e302d38394e87d84997b11cde5cdb787fcb5b5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4608
Cache-Control: max-age=150689
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 14:14:31 GMT
Etag: "63b915e8-1d7"
Expires: Mon, 09 Jan 2023 08:06:00 GMT
Last-Modified: Sat, 07 Jan 2023 06:49:12 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
mimmis.pushengage.com/dialog.css
52.45.67.32200 OK 2.7 kB URL HTTP/2 mimmis.pushengage.com/dialog.css
IP 52.45.67.32:0
File type ASCII text, with very long lines (15682), with no line terminators
Hash 3887de3394964579a70895b2e89ceb72
082ad96758ab60043a1634a63365dcedea468647
ba3344aee5948f2a50a42c0a2e504ec7467acb8ba5b403ffa8f6fdf1aaf05121
GET /dialog.css HTTP/1.1
Host: mimmis.pushengage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:31 GMT
content-type: text/css;charset=UTF-8
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
www.mimmis.no/Plugins/SevenSpikes.Nop.Plugins.JCarousel/Scripts/jquery.jcarousel.min.js
172.66.43.134200 OK 14 kB URL HTTP/2 www.mimmis.no/Plugins/SevenSpikes.Nop.Plugins.JCarousel/Scripts/jquery.jcarousel.min.js
IP 172.66.43.134:0
File type ASCII text, with very long lines (17399)
Hash 9614bc9414e0c5c27cde94ade9d0b329
3cd1cf5874e4d199d789a0bc51b0e3f0af272fc5
097995ca532c8a5429b07f9bbe2f2a15668040f2247d704719425acc96760855
GET /Plugins/SevenSpikes.Nop.Plugins.JCarousel/Scripts/jquery.jcarousel.min.js HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: application/javascript
cache-control: max-age=2073600
last-modified: Sat, 21 Mar 2015 14:57:10 GMT
etag: W/"0e7894ee763d01:0"
cf-cache-status: HIT
age: 1301712
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5zkof%2F2BvhaZrZmTohroSgi9GDVb2uI1tWm77n2TnroyFEG45XO5asButwqJ0nexLQVx%2FtPA8TrEYdSK0bMc3N%2FVQ64vcVvgz%2FHl%2B%2FwtMt7yVdoxXRnMrH05Hx7H4mU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd43c88b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f226f3a1968481bd4d1f7785c0e19500
e3f8a2490051a98bba2b3a7697eb29f861715cc3
b938b0e63c3550469ad18156a2e302d38394e87d84997b11cde5cdb787fcb5b5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4065
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 14:14:31 GMT
Last-Modified: Sat, 07 Jan 2023 13:06:47 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
wapi.lipscore.com/hit?api_key=0734655caee3482634fc72ed
199.232.198.217200 OK 0 B URL HTTP/2 wapi.lipscore.com/hit?api_key=0734655caee3482634fc72ed
IP 199.232.198.217:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /hit?api_key=0734655caee3482634fc72ed HTTP/1.1
Host: wapi.lipscore.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mimmis.no
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Varnish
retry-after: 0
access-control-allow-credentials: true
accept-ranges: bytes
date: Sat, 07 Jan 2023 14:14:31 GMT
via: 1.1 varnish
x-served-by: cache-bma1625-BMA
x-cache: HIT
x-cache-hits: 0
x-timer: S1673100872.928812,VS0,VE0
access-control-allow-origin: https://www.mimmis.no
content-length: 0
X-Firefox-Spdy: h2
wapi.lipscore.com/initial_data/products/show?api_key=0734655caee3482634fc72ed&internal_id=service_review&widgets=srw_t&translate_to_lang=no
199.232.198.217200 OK 2.0 kB URL HTTP/2 wapi.lipscore.com/initial_data/products/show?api_key=0734655caee3482634fc72ed&internal_id=service_review&widgets=srw_t&translate_to_lang=no
IP 199.232.198.217:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (1989), with no line terminators
Hash 4d55714c088eaae0e2c254e1d81c04f1
2509cb7498f6b7111d01d8bd6cb17efbd956c23c
76c42c12c45581ad2646dd36048b4fb588b0617c39989de73fbd48e2ac4eb993
GET /initial_data/products/show?api_key=0734655caee3482634fc72ed&internal_id=service_review&widgets=srw_t&translate_to_lang=no HTTP/1.1
Host: wapi.lipscore.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mimmis.no
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Cowboy
access-control-allow-methods: GET,POST,OPTIONS,PUT,DELETE
access-control-expose-headers: X-Pagination
access-control-max-age: 86400
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
access-control-allow-credentials: true
access-control-allow-headers: X-Http-Method-Override
cache-control: public, no-cache
content-type: application/json; charset=utf-8
x-request-id: 13deed62-53ee-4e0f-a7dc-1912adc54999
x-runtime: 0.087076
via: 1.1 vegur, 1.1 varnish
accept-ranges: bytes
date: Sat, 07 Jan 2023 14:14:31 GMT
age: 103008
x-served-by: cache-bma1625-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1673100872.957156,VS0,VE0
vary: Origin
access-control-allow-origin: https://www.mimmis.no
content-length: 2015
X-Firefox-Spdy: h2
static.lipscore.com/assets/lipscore-plugin-icons-50b4b25eca9136b22bd93da92567e966.woff
54.230.111.88200 OK 1.2 kB URL HTTP/1.1 static.lipscore.com/assets/lipscore-plugin-icons-50b4b25eca9136b22bd93da92567e966.woff
IP 54.230.111.88:0
File type Web Open Font Format, CFF, length 1192, version 1.0\012- data
Hash c6d2fba8756c3e43a3dbd5c708550121
691694201280898a21a535ff904712c0c8da4545
3db7852ef1e0fa9f2bbf21800b7a600ceece16e69f5781b0c205984c1ac460ee
GET /assets/lipscore-plugin-icons-50b4b25eca9136b22bd93da92567e966.woff HTTP/1.1
Host: static.lipscore.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.mimmis.no
Connection: keep-alive
Referer: https://static.lipscore.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/font-woff
Content-Length: 1192
Connection: keep-alive
Date: Tue, 03 Jan 2023 05:45:35 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Last-Modified: Tue, 03 Jan 2023 04:47:28 GMT
ETag: "c6d2fba8756c3e43a3dbd5c708550121"
Cache-Control: public, max-age=31557600
Expires: Wed, 03 Jan 2024 10:47:27 GMT
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: wqp28uB_hZRf6YDVWfDhIm1L1cIL0iOHGQKKY82OeTr3ejV904K0Ig==
Age: 376138
static.lipscore.com/assets/open-sans-v28-latin-italic-e3f4a564cfb199cd0a07cf0104e8c84c.woff2
54.230.111.88200 OK 23 kB URL HTTP/1.1 static.lipscore.com/assets/open-sans-v28-latin-italic-e3f4a564cfb199cd0a07cf0104e8c84c.woff2
IP 54.230.111.88:0
File type gzip compressed data, from Unix\012- data
Hash 507a4f404e89f9de006b0cfa235ab292
85c2f0b3f5b642a17745e249a99ef53218d09e83
66917e6cbbde5b4277c692b665b7724ff5bc156b0cfee86a11656c87c189cdc3
GET /assets/open-sans-v28-latin-italic-e3f4a564cfb199cd0a07cf0104e8c84c.woff2 HTTP/1.1
Host: static.lipscore.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.mimmis.no
Connection: keep-alive
Referer: https://static.lipscore.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/font-woff
Content-Length: 17768
Connection: keep-alive
Date: Tue, 03 Jan 2023 04:50:40 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Last-Modified: Tue, 03 Jan 2023 04:47:32 GMT
ETag: "b42f06e6ecc6ae551b010ba0ff4fa6a3"
Cache-Control: public, max-age=31557600
Expires: Wed, 03 Jan 2024 10:47:31 GMT
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Fa_FFZ9Hdeuk_KQ4ZnZSspfx4C4GY-J1fmRESyD7gNLi-SywCfnBkg==
Age: 379433
ocsp.pki.goog/s/gts1d4/im0yfC7j5C4
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/im0yfC7j5C4
IP 142.250.74.131:0
Hash e0739a14122506cac36b83c5ed5fc3a8
1a584e16061a4b3e73035021cae95181484c4c4a
6c9c75d2dfadb858f0406ca8b877e1b108079852170abe17d20336b06d7d4d11
POST /s/gts1d4/im0yfC7j5C4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 07 Jan 2023 14:14:32 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
analytics.sleeknote.com/?v8=2_pageview&v0=fa7d96ed840522ad89e623dc1b5344af&v3=2023-01-07T14%3A14%3A20Z&v6=2023-01-07T14%3A14%3A20Z&v20=true&v25=true&v27=0&s4=https%3A%2F%2Fwww.mimmis.no%2F&s9=https%3A&s11=%2F&s12=&s13=&s2=Mimmis.no+%7C+Babyutstyr+p%C3%A5+nett+-+Kj%C3%B8p+barnevogn%2C+bilstol%2C+barnesikring+til+Norges+beste+priser%21+Rask+levering+og+prisgaranti%21&c1=&s7=en-US&v5=Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0&v22=firefox&v23=105&v24=windows&v26=desktop&v4=https%3A%2F%2Ffnc.contextwidget.tech%2F&v21=ab2f16a5-6261-41d5-8a6d-7fea4dd0ea03&s1=3023&s3=www.mimmis.no
216.239.34.21200 OK 35 B URL HTTP/2 analytics.sleeknote.com/?v8=2_pageview&v0=fa7d96ed840522ad89e623dc1b5344af&v3=2023-01-07T14%3A14%3A20Z&v6=2023-01-07T14%3A14%3A20Z&v20=true&v25=true&v27=0&s4=https%3A%2F%2Fwww.mimmis.no%2F&s9=https%3A&s11=%2F&s12=&s13=&s2=Mimmis.no+%7C+Babyutstyr+p%C3%A5+nett+-+Kj%C3%B8p+barnevogn%2C+bilstol%2C+barnesikring+til+Norges+beste+priser%21+Rask+levering+og+prisgaranti%21&c1=&s7=en-US&v5=Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0&v22=firefox&v23=105&v24=windows&v26=desktop&v4=https%3A%2F%2Ffnc.contextwidget.tech%2F&v21=ab2f16a5-6261-41d5-8a6d-7fea4dd0ea03&s1=3023&s3=www.mimmis.no
IP 216.239.34.21:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /?v8=2_pageview&v0=fa7d96ed840522ad89e623dc1b5344af&v3=2023-01-07T14%3A14%3A20Z&v6=2023-01-07T14%3A14%3A20Z&v20=true&v25=true&v27=0&s4=https%3A%2F%2Fwww.mimmis.no%2F&s9=https%3A&s11=%2F&s12=&s13=&s2=Mimmis.no+%7C+Babyutstyr+p%C3%A5+nett+-+Kj%C3%B8p+barnevogn%2C+bilstol%2C+barnesikring+til+Norges+beste+priser%21+Rask+levering+og+prisgaranti%21&c1=&s7=en-US&v5=Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0&v22=firefox&v23=105&v24=windows&v26=desktop&v4=https%3A%2F%2Ffnc.contextwidget.tech%2F&v21=ab2f16a5-6261-41d5-8a6d-7fea4dd0ea03&s1=3023&s3=www.mimmis.no HTTP/1.1
Host: analytics.sleeknote.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:32 GMT
content-type: image/gif
content-length: 35
x-powered-by: Express
x-content-type-options: nosniff
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
etag: W/"23-X71HIiL+uKIs9biqXcW44Tr4jis"
via: 1.1 google
X-Firefox-Spdy: h2
www.mimmis.no/cdn-cgi/rum?
172.66.43.134204 No Content 0 B URL HTTP/2 www.mimmis.no/cdn-cgi/rum?
IP 172.66.43.134:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 493
Origin: https://www.mimmis.no
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Sat, 07 Jan 2023 14:14:34 GMT
access-control-allow-origin: https://www.mimmis.no
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 785d4ceeee33b4ff-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.mimmis.no/Scripts/kendo/2014.1.318/kendo.data.min.js
172.66.43.134200 OK 0 B URL HTTP/2 www.mimmis.no/Scripts/kendo/2014.1.318/kendo.data.min.js
IP 172.66.43.134:0
GET /Scripts/kendo/2014.1.318/kendo.data.min.js HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: application/javascript
cache-control: max-age=2073600
last-modified: Wed, 20 May 2015 08:57:42 GMT
etag: W/"047cb7db92d01:0"
cf-cache-status: HIT
age: 1958732
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Vhds1ifHWBR9dMhUm43MM2vNE0QNGSRFPkxfV5Ik22AGl3iakynMU5HCpdEbNofHAQ%2BfKWo6zn53toJeKQF%2FL7po8AZJP%2BnGGWT1fIgnkc7kSUZKypULs6%2FlCHa1heU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd44c9fb4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.mimmis.no/Scripts/kendo/2014.1.318/kendo.popup.min.js
172.66.43.134200 OK 0 B URL HTTP/2 www.mimmis.no/Scripts/kendo/2014.1.318/kendo.popup.min.js
IP 172.66.43.134:0
GET /Scripts/kendo/2014.1.318/kendo.popup.min.js HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: application/javascript
cache-control: max-age=2073600
last-modified: Wed, 20 May 2015 08:58:04 GMT
etag: W/"036e814db92d01:0"
cf-cache-status: HIT
age: 1301717
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qvWlesFZIohdfC8xMWprP8G0B0uM%2Bqi7e3oQfOVwBOyF4MNXf6VYm3QHjBJ6o7rgEmLGya7MS3atjB271jAS1gHMkk%2B0OutRW2GMZDSJ0JmvqYUe0QV59SDMpr4yrUk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd44ca0b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.mimmis.no/Scripts/kendo/2014.1.318/kendo.userevents.min.js
172.66.43.134200 OK 0 B URL HTTP/2 www.mimmis.no/Scripts/kendo/2014.1.318/kendo.userevents.min.js
IP 172.66.43.134:0
GET /Scripts/kendo/2014.1.318/kendo.userevents.min.js HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: application/javascript
cache-control: max-age=2073600
last-modified: Wed, 20 May 2015 08:58:18 GMT
etag: W/"071401ddb92d01:0"
cf-cache-status: HIT
age: 1934329
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rRKZxISKt5Dz2iOV%2FvnLIWfXFkOeQq9rLf6l%2Bvci5mqI%2FZmtgg7weqVBpXAjamZL5fB4%2Fh6GaqH5O%2BLwOzGF7dXjE5lfaol21%2BAlDadBD22YxWxBULBem14V3xf5NyE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd45cbfb4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.mimmis.no/Themes/Native/Content/CSS/mobile-only.css?v=1.11
172.66.43.134200 OK 0 B URL HTTP/2 www.mimmis.no/Themes/Native/Content/CSS/mobile-only.css?v=1.11
IP 172.66.43.134:0
GET /Themes/Native/Content/CSS/mobile-only.css?v=1.11 HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:30 GMT
content-type: text/css
cache-control: max-age=2073600
cf-bgj: minify
cf-polished: origSize=9411
etag: W/"47203981e311d81:0"
last-modified: Tue, 25 Jan 2022 12:03:03 GMT
cf-cache-status: HIT
age: 1958627
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GyDmg2bBDFir8iBuEEaoooTybOMjLZWK2bMbBBxPejE0tmg02L34bkxv1UYEd3JPTn9GAGqQfC2I3XoTdbpW%2B9b%2F3FCs0lOdpx3P5AZdSxfvpAfkcKAu0yT0gDZd33c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd6ef9ab4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.mimmis.no/Themes/Native/Content/CSS/restyle.css?v=1.091
172.66.43.134200 OK 0 B URL HTTP/2 www.mimmis.no/Themes/Native/Content/CSS/restyle.css?v=1.091
IP 172.66.43.134:0
GET /Themes/Native/Content/CSS/restyle.css?v=1.091 HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: text/css
cache-control: max-age=2073600
cf-bgj: minify
cf-polished: origSize=6537
etag: W/"fe368feec39d81:0"
last-modified: Thu, 17 Mar 2022 10:51:45 GMT
cf-cache-status: HIT
age: 1958627
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oxe8k%2BSzxoQrqcqrB0t9t5Vhc2LIV89G%2BP%2B11IIz%2FKbkeGwU4y57%2F86ZqTFL3Lvj2wu7lXjJPBiLrNrGkYjqYcQH4L8SJjvcUpjEYx3AHKlrBgxwublG5N3xq6soorU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd40c46b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.mimmis.no/Plugins/SevenSpikes.Nop.Plugins.AnywhereSliders/Themes/Native/Content/nivo/nivo.css
172.66.43.134200 OK 0 B URL HTTP/2 www.mimmis.no/Plugins/SevenSpikes.Nop.Plugins.AnywhereSliders/Themes/Native/Content/nivo/nivo.css
IP 172.66.43.134:0
GET /Plugins/SevenSpikes.Nop.Plugins.AnywhereSliders/Themes/Native/Content/nivo/nivo.css HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: text/css
cache-control: max-age=2073600
cf-bgj: minify
cf-polished: origSize=1988
etag: W/"07b91505075d11:0"
last-modified: Thu, 03 Mar 2016 13:26:38 GMT
cf-cache-status: HIT
age: 1945885
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Cxo125mZPLDiUjSdOjxGpPSxFcvOix9x7Qxllp6E7vlqF7bqTCOxRdI4x0P2d85Kaz6GYfR1vbWKX2V12yYSwcQ5B6P8P6jn45kel4%2B7DXLMso%2F36nrBjifdl%2FTLrfU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd41c55b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.mimmis.no/Plugins/SevenSpikes.Nop.Plugins.JCarousel/Scripts/jquery.disable.text.select.js
172.66.43.134200 OK 0 B URL HTTP/2 www.mimmis.no/Plugins/SevenSpikes.Nop.Plugins.JCarousel/Scripts/jquery.disable.text.select.js
IP 172.66.43.134:0
GET /Plugins/SevenSpikes.Nop.Plugins.JCarousel/Scripts/jquery.disable.text.select.js HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: application/javascript
cache-control: max-age=2073600
cf-bgj: minify
cf-polished: origSize=1800
etag: W/"0596f9a5758cd1:0"
last-modified: Mon, 02 Jul 2012 13:35:54 GMT
cf-cache-status: HIT
age: 1301712
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BQlDb7ckRp4xaMBqFi5mNUE9Bi66bm%2B28u1J4Z9pjq3UHgISap7ZoMvRQwaCfaFPXCC28mSPaynILnsOSqUogpsiFWZfxMOI0kYkvgQ1FAVAAP5p5MuKWcUBUQtxk8w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd43c8bb4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,700|Oswald:400,700
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,700|Oswald:400,700
IP 142.250.74.74:0
GET /css?family=Open+Sans:400,700|Oswald:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 07 Jan 2023 14:14:29 GMT
date: Sat, 07 Jan 2023 14:14:29 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.mimmis.no/Themes/Native/Content/CSS/480.css?v=1.21
172.66.43.134200 OK 0 B URL HTTP/2 www.mimmis.no/Themes/Native/Content/CSS/480.css?v=1.21
IP 172.66.43.134:0
GET /Themes/Native/Content/CSS/480.css?v=1.21 HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: text/css
cf-bgj: minify
cf-polished: status=cannot_optimize
cache-control: max-age=2073600
etag: W/"b796ead89316d81:0"
last-modified: Mon, 31 Jan 2022 11:15:26 GMT
cf-cache-status: HIT
age: 1952085
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=55%2BgE1MjiA6%2FsnpKzu0NIgX%2BHr7BzZcaFLyly85E3S6Lk4H%2FUur2oX1rasITp8%2B%2BILyZqomtQg3is%2B0S9FG1pFPqJEXo%2BpvYW6b5WmIBeMxZaYBlzXWSPf5R24%2Fwk8Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd3fc31b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.mimmis.no/Plugins/SevenSpikes.Core/Styles/perfect-scrollbar.min.css
172.66.43.134200 OK 0 B URL HTTP/2 www.mimmis.no/Plugins/SevenSpikes.Core/Styles/perfect-scrollbar.min.css
IP 172.66.43.134:0
GET /Plugins/SevenSpikes.Core/Styles/perfect-scrollbar.min.css HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: text/css
cache-control: max-age=2073600
last-modified: Wed, 07 Jan 2015 17:18:14 GMT
etag: W/"0f52eb9d2ad01:0"
cf-cache-status: HIT
age: 1301717
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=h5JywYaM3VBo%2BnBLCcmYMV4qjEL%2BCUAjOwAjBrk1KFcXlZ98BGFpSB8Oclq8W1Q60uCNeV034De4l5ogAowSiKMUEOH7%2BsjvOp%2BAC5bbUv3SUgK49J99uWWhK7npecE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd40c4ab4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
fnc.contextwidget.tech/
52.29.32.173200 OK 0 B IP 52.29.32.173:0
POST / HTTP/1.1
Host: fnc.contextwidget.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 206
Origin: https://lnk.clickadsolutions.com
Connection: keep-alive
Referer: https://lnk.clickadsolutions.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:28 GMT
content-type: text/html;charset=UTF-8
content-language: en-US
X-Firefox-Spdy: h2
www.mimmis.no/Themes/Native/Content/CSS/980.css?v=1.19
172.66.43.134200 OK 0 B URL HTTP/2 www.mimmis.no/Themes/Native/Content/CSS/980.css?v=1.19
IP 172.66.43.134:0
GET /Themes/Native/Content/CSS/980.css?v=1.19 HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: text/css
cache-control: max-age=2073600
cf-bgj: minify
cf-polished: status=cannot_optimize
etag: W/"e12ae96e939d81:0"
last-modified: Thu, 17 Mar 2022 10:27:22 GMT
cf-cache-status: HIT
age: 1955368
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dyAhZe4zmmEPWjq2Hg%2B0bIotRz3DCLOCfMpnZBa9RnfLVqe3STsGy%2FyqzGfsY0m8YfcaRzlmhOSPtm0Vr6XoexPH3jMExDPWiZ9au8SGDrkyBO2vW1dElfK4vCdS9S8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd3fc40b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.blivakker.no/?utm_source=awin&utm_medium=affiliate&utm_campaign=subnetwork&awc=19717_1673100871_131bfe791df11a9a49ecdc4b83cf6343
104.26.0.18200 OK 0 B URL HTTP/2 www.blivakker.no/?utm_source=awin&utm_medium=affiliate&utm_campaign=subnetwork&awc=19717_1673100871_131bfe791df11a9a49ecdc4b83cf6343
IP 104.26.0.18:0
GET /?utm_source=awin&utm_medium=affiliate&utm_campaign=subnetwork&awc=19717_1673100871_131bfe791df11a9a49ecdc4b83cf6343 HTTP/1.1
Host: www.blivakker.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.linkbux.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:31 GMT
content-type: text/html; charset=utf-8
cache-control: private
vary: Accept-Encoding
x-frame-options: SAMEORIGIN, SAMEORIGIN
set-cookie: ASP.NET_SessionId=y4dsw3wuzb4vht24bwtr3gng; path=/; secure; HttpOnly
2_brandsdalGroupSession=%7b%22sid%22%3a5395633345983372523%2c%22ts%22%3a%22133175744715399667%22%7d; expires=Mon, 06-Feb-2023 14:14:31 GMT; path=/; secure; HttpOnly
__RequestVerificationToken=lWB7WAWmkBG9Juv7DYiQLAD96KzvWp_bl8IWoGL-QpiwwMmI-_U5HuKmGJb8YbDnXzPsM98uT_7UssgyNbmc4ysoRjo1; path=/; secure; HttpOnly
bgPersistent={"bgdid":"6df372ce-8382-419b-a5a4-7ece28c72a7c","bgsid":"e72be6fc-aee2-41fe-b2b2-950d0b1d08b3","bgsts":1673100871618}; expires=Sat, 06-Jan-2024 23:00:00 GMT; path=/; secure; SameSite=None
ASP.NET_SessionId-samesite-bg2020=y4dsw3wuzb4vht24bwtr3gng; path=/; secure; HttpOnly; SameSite=None
2_brandsdalGroupSession-samesite-bg2020=%7b%22sid%22%3a5395633345983372523%2c%22ts%22%3a%22133175744715399667%22%7d; expires=Mon, 06-Feb-2023 14:14:31 GMT; path=/; secure; HttpOnly; SameSite=None
__RequestVerificationToken-samesite-bg2020=lWB7WAWmkBG9Juv7DYiQLAD96KzvWp_bl8IWoGL-QpiwwMmI-_U5HuKmGJb8YbDnXzPsM98uT_7UssgyNbmc4ysoRjo1; path=/; secure; HttpOnly; SameSite=None
snaptid=28; path=/; HttpOnly; Secure
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i0yCx4KEUJVUiCvCoxQMjoJAABBhnM1NBgdFpMbJEpf3RO8krJCfbhqfEkrWDzRmazfz1x%2FxJeP0NLk8V2A06gbg%2Fps8TQPcJ4ML0gwoWtpLwLi6CaEvESMvLa%2F5DWjUeI8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 785d4cdfca870b31-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.mimmis.no/Plugins/SevenSpikes.Core/Scripts/SevenSpikesExtensions.js
172.66.43.134200 OK 0 B URL HTTP/2 www.mimmis.no/Plugins/SevenSpikes.Core/Scripts/SevenSpikesExtensions.js
IP 172.66.43.134:0
GET /Plugins/SevenSpikes.Core/Scripts/SevenSpikesExtensions.js HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: application/javascript
cache-control: max-age=2073600
cf-bgj: minify
cf-polished: origSize=15139
etag: W/"0349849c28cd01:0"
last-modified: Tue, 12 May 2015 14:45:28 GMT
cf-cache-status: HIT
age: 1301717
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N1LbdVJXtMILFZYZ2TUp%2BaxYyoUi3nzMLSynFxVfd%2BcboFsUbDdQ1NXEZNA7SbfeNKaLobldaseqkNAqDS19d4FQ2k5fos7Dw7M09wTx9AI%2Fhvk3N5xtJzA5jnDKdPA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd44c95b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.mimmis.no/Themes/Native/Content/CSS/tables.css?v=1.07
172.66.43.134200 OK 0 B URL HTTP/2 www.mimmis.no/Themes/Native/Content/CSS/tables.css?v=1.07
IP 172.66.43.134:0
GET /Themes/Native/Content/CSS/tables.css?v=1.07 HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: text/css
cache-control: max-age=2073600
cf-bgj: minify
cf-polished: origSize=6897
etag: W/"7bb18761e9cad51:0"
last-modified: Tue, 14 Jan 2020 14:46:18 GMT
cf-cache-status: HIT
age: 1301717
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2IZaOxHmxL3JVm0l3wrCLZEhnoZ5AEpd9WBAPUUPZaIjqD8H3LYJ%2BfVcVEDX5WALMP95ynLXqYPDiKFnlyb3cHSdiklGrTMKeiqUmboz1ATa%2FpwDZInUfGHVAT6wdz4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd3dc21b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.mimmis.no/Scripts/public.ajaxcart.js?v=1.06
172.66.43.134200 OK 0 B URL HTTP/2 www.mimmis.no/Scripts/public.ajaxcart.js?v=1.06
IP 172.66.43.134:0
GET /Scripts/public.ajaxcart.js?v=1.06 HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: application/javascript
cache-control: max-age=2073600
cf-bgj: minify
cf-polished: origSize=3654
etag: W/"f5dca941965d61:0"
last-modified: Tue, 28 Jul 2020 19:59:18 GMT
cf-cache-status: HIT
age: 1301717
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pfwc%2Bc%2BfMVLw6gMHtTE4uzynucoWmYrdW7LPzl4%2BwtZee21mO6uZtRxZZQbYlGiPZ2dSLjqbbVjGuUSc3IZvsyM6Hlel21G0R1v0Qb4pkF73gkip2v152qzUMUkRqac%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd43c87b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.mimmis.no/Scripts/public.common.js
172.66.43.134200 OK 0 B URL HTTP/2 www.mimmis.no/Scripts/public.common.js
IP 172.66.43.134:0
GET /Scripts/public.common.js HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: application/javascript
cache-control: max-age=2073600
cf-bgj: minify
cf-polished: origSize=3120
etag: W/"039a40db92d01:0"
last-modified: Wed, 20 May 2015 08:57:30 GMT
cf-cache-status: HIT
age: 1301717
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d8hjXwRkkFQ1FAVbqd7nlZjyoVeLBT1UAOkVQ5NZGLXrDboua5AUbVWtSWyqW0qie2nvRPMhNf4qgpLHQcWhKT4g17FAQ6DkUHWa5zzHFFpoA1vU1T2iV33Bhk2eGMc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd43c85b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.mimmis.no/Plugins/SevenSpikes.Nop.Plugins.MegaMenu/Scripts/jquery.lazyload.min.js
172.66.43.134200 OK 0 B URL HTTP/2 www.mimmis.no/Plugins/SevenSpikes.Nop.Plugins.MegaMenu/Scripts/jquery.lazyload.min.js
IP 172.66.43.134:0
GET /Plugins/SevenSpikes.Nop.Plugins.MegaMenu/Scripts/jquery.lazyload.min.js HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: application/javascript
cache-control: max-age=2073600
last-modified: Tue, 09 Jul 2013 08:47:54 GMT
etag: W/"0996b0817cce1:0"
cf-cache-status: HIT
age: 1955311
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T60UE1%2FXSqL5VVp9%2B9WqThX8n9tRyziYtm77M0j84Bv3SqqLRgliVAA8Nfv6KvDXWQ8sk0Q5o2lwydjcWyW6AF9iFJyZDQ0x2ow2jm%2FJYBiQP9xTk7Shy%2B0jHuJvgYU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd43c8eb4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
lnk.clickadsolutions.com/?bt=qmg.trck.tech&ref=&friend=&u=r.srvtrck.com%252Fv1%252Fredirect%253Ftype%253Dlink%2526id%253Da7b1aee6453a43ad81f2493aa19ca67c%2526site_id%253Db2d0921615ab4f9197a4594787c864d9%2526ad_zi%253DYieldShare%2526ad_t%253Dadvertiser%2526yk_tag%253D63b97e44bde85a4bd67be7e1-RL-258635&log=false&type=ROTATOR_LINK&linkId=258635&clickId=63b97e44bde85a4bd67be7e1&br=true
18.156.112.12200 OK 0 B URL HTTP/2 lnk.clickadsolutions.com/?bt=qmg.trck.tech&ref=&friend=&u=r.srvtrck.com%252Fv1%252Fredirect%253Ftype%253Dlink%2526id%253Da7b1aee6453a43ad81f2493aa19ca67c%2526site_id%253Db2d0921615ab4f9197a4594787c864d9%2526ad_zi%253DYieldShare%2526ad_t%253Dadvertiser%2526yk_tag%253D63b97e44bde85a4bd67be7e1-RL-258635&log=false&type=ROTATOR_LINK&linkId=258635&clickId=63b97e44bde85a4bd67be7e1&br=true
IP 18.156.112.12:0
GET /?bt=qmg.trck.tech&ref=&friend=&u=r.srvtrck.com%252Fv1%252Fredirect%253Ftype%253Dlink%2526id%253Da7b1aee6453a43ad81f2493aa19ca67c%2526site_id%253Db2d0921615ab4f9197a4594787c864d9%2526ad_zi%253DYieldShare%2526ad_t%253Dadvertiser%2526yk_tag%253D63b97e44bde85a4bd67be7e1-RL-258635&log=false&type=ROTATOR_LINK&linkId=258635&clickId=63b97e44bde85a4bd67be7e1&br=true HTTP/1.1
Host: lnk.clickadsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lnk.clickadsolutions.com/trk/Y2x1uwhzCQUWsRki19S5Fpdr?campaignId=1998166&campaignName=NEW+-+ZP5+-+NO&cost=0.000130&keyword=mainstream&longCampaignId=7d7c3280-6dab-11ed-9d23-12beee04f19b&match=&source=vitellary-lion&target=whiskey-ria-ss9gkru3z&trafficType=POPUP&visitorType=NON-ADULT&zid=zr97f0b7c08e9511ed9805124d5aeda8f3fd119fda4a654dcd9f6b2661c7442e1f070286cbdc93b90f24&c2=true&vpw=1280&vph=1024
Cookie: v=t; cas=3451:1832:1832:1; rls=290869:1832:1832:1|290867:1832:1832:1|258635:1832:1832:1; com=16101:166:NO:1832:1832:1|12826:141:NO:1832:1832:1|13083:166:NO:1832:1832:1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:28 GMT
content-type: text/html;charset=UTF-8
referrer-policy: no-referrer
content-language: en-US
X-Firefox-Spdy: h2
as.ad4m.at/ad/tur?a=1995&c=https%3A%2F%2Fblivakker.no&b=63b97e44bde85a4bd67be7e1-RL-290869
172.67.74.129307 Temporary Redirect 0 B URL HTTP/2 as.ad4m.at/ad/tur?a=1995&c=https%3A%2F%2Fblivakker.no&b=63b97e44bde85a4bd67be7e1-RL-290869
IP 172.67.74.129:0
GET /ad/tur?a=1995&c=https%3A%2F%2Fblivakker.no&b=63b97e44bde85a4bd67be7e1-RL-290869 HTTP/1.1
Host: as.ad4m.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fnc.contextwidget.tech/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
date: Sat, 07 Jan 2023 14:14:28 GMT
location: https://www.linkbux.com/track?pid=LB00003636&mid=10138&uid=oneidK7dkCRfZfGWjXaVtPcJczCKkZgH7Srt4fqoneid_63b97e44bde85a4bd67be7e1-RL-290869&url=https%3A%2F%2Fwww.blivakker.no%2F
nel: {"failure_fraction":"1.0","max_age":86400,"report_to":"report-endpoint","success_fraction":"0.0","include_subdomains":true}
cross-origin-resource-policy: cross-origin
expires: 0
x-download-options: noopen
referrer-policy: no-referrer-when-downgrade
cross-origin-opener-policy: unsafe-none
x-content-type-options: nosniff
surrogate-control: no-store
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
pragma: no-cache
strict-transport-security: max-age=86400; includeSubDomains; preload
vary: accept-encoding
cross-origin-embedder-policy: unsafe-none
report-to: {"endpoints":[{"url":"/ad/vre"}],"group":"report-endpoint","max_age":86400}
x-xss-protection: 1; mode=block
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 785d4cce3cb60b69-OSL
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lato
IP 142.250.74.74:0
GET /css?family=Lato HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 07 Jan 2023 14:14:29 GMT
date: Sat, 07 Jan 2023 14:14:29 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.mimmis.no/Scripts/kendo/2014.1.318/kendo.window.min.js
172.66.43.134200 OK 0 B URL HTTP/2 www.mimmis.no/Scripts/kendo/2014.1.318/kendo.window.min.js
IP 172.66.43.134:0
GET /Scripts/kendo/2014.1.318/kendo.window.min.js HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: application/javascript
cache-control: max-age=2073600
last-modified: Wed, 20 May 2015 08:58:22 GMT
etag: W/"0cba21fdb92d01:0"
cf-cache-status: HIT
age: 1955401
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cP7SIoxiO%2FN0ysUNquH6wsH1Y%2BMi2ADbIAOzCBfMVDOlY8mzIW6Ux%2BUT32ejUrt3sp3RO3CfMulnrmiikvmcYqGXn58WDCfpZO6PcGmOowSVqCgoDxQiJ5jXTkTCEe4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd45cc1b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
eu-library.klarnaservices.com/lib.js
54.230.111.59200 OK 0 B URL HTTP/2 eu-library.klarnaservices.com/lib.js
IP 54.230.111.59:0
GET /lib.js HTTP/1.1
Host: eu-library.klarnaservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 05 Jan 2023 14:50:19 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 07 Jan 2023 10:37:31 GMT
cache-control: max-age=86400
etag: W/"58ce2d65ba87146dfb5f49a0928b92e7"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yQPyF2SEKlw8XtxmabKBpGiBP2BFw-_uri0Lax8wG_Pif78Qw-dTcw==
age: 13020
X-Firefox-Spdy: h2
cdn.lightwidget.com/widgets/lightwidget.js
104.22.25.150200 OK 0 B URL HTTP/2 cdn.lightwidget.com/widgets/lightwidget.js
IP 104.22.25.150:0
GET /widgets/lightwidget.js HTTP/1.1
Host: cdn.lightwidget.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:30 GMT
content-type: application/javascript
cf-bgj: minify
access-control-allow-origin: *
etag: W/"6377850d-301"
last-modified: Fri, 18 Nov 2022 13:13:49 GMT
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=1382400
cf-cache-status: HIT
age: 1505
server: cloudflare
cf-ray: 785d4cd63ae11c0e-OSL
content-encoding: br
X-Firefox-Spdy: h2
as.ad4m.at/ad/tur?a=1995&c=https%3A%2F%2Fmimmis.no&b=63b97e44bde85a4bd67be7e1-RL-290867
172.67.74.129307 Temporary Redirect 0 B URL HTTP/2 as.ad4m.at/ad/tur?a=1995&c=https%3A%2F%2Fmimmis.no&b=63b97e44bde85a4bd67be7e1-RL-290867
IP 172.67.74.129:0
GET /ad/tur?a=1995&c=https%3A%2F%2Fmimmis.no&b=63b97e44bde85a4bd67be7e1-RL-290867 HTTP/1.1
Host: as.ad4m.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fnc.contextwidget.tech/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
date: Sat, 07 Jan 2023 14:14:28 GMT
location: https://www.smartredirect.de/redir/clickGate.php?u=RkkuMW4M&m=1&p=Fr5xngjWXe&t=iRhdghTT&url=https%3A%2F%2Fwww.mimmis.no&r=https%3A%2F%2Fwww.advancedstore.com&s=oneid18zVcbfKf6zAKfRtRcEcpCrQJc2SVtRfAoneid_63b97e44bde85a4bd67be7e1-RL-290867
x-xss-protection: 1; mode=block
cross-origin-embedder-policy: unsafe-none
surrogate-control: no-store
strict-transport-security: max-age=86400; includeSubDomains; preload
vary: accept-encoding
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
nel: {"failure_fraction":"1.0","max_age":86400,"report_to":"report-endpoint","success_fraction":"0.0","include_subdomains":true}
cross-origin-resource-policy: cross-origin
x-download-options: noopen
expires: 0
report-to: {"endpoints":[{"url":"/ad/vre"}],"group":"report-endpoint","max_age":86400}
x-content-type-options: nosniff
cross-origin-opener-policy: unsafe-none
referrer-policy: no-referrer-when-downgrade
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 785d4cce2ca50b69-OSL
X-Firefox-Spdy: h2
www.mimmis.no/Scripts/jquery-ui-1.10.3.custom.min.js
172.66.43.134200 OK 0 B URL HTTP/2 www.mimmis.no/Scripts/jquery-ui-1.10.3.custom.min.js
IP 172.66.43.134:0
GET /Scripts/jquery-ui-1.10.3.custom.min.js HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: application/javascript
cache-control: max-age=2073600
last-modified: Wed, 20 May 2015 08:57:26 GMT
etag: W/"0df41feda92d01:0"
cf-cache-status: HIT
age: 1301717
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fBUWMzwH85c6BJU%2B9azDRlzE6oM0LKPBFU5XD6UHNcweyLre0XuIjDfDEn4xe1hjZq3tfHW%2FYA1sMTlZ1pmhAZl0VuOBIJJCs4uIUeOSea4hpCRiawBwN4r28PfK0Y4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd43c7db4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.mimmis.no/Plugins/SevenSpikes.Nop.Plugins.AjaxCart/Scripts/AjaxCart.min.js
172.66.43.134200 OK 0 B URL HTTP/2 www.mimmis.no/Plugins/SevenSpikes.Nop.Plugins.AjaxCart/Scripts/AjaxCart.min.js
IP 172.66.43.134:0
GET /Plugins/SevenSpikes.Nop.Plugins.AjaxCart/Scripts/AjaxCart.min.js HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: application/javascript
cache-control: max-age=2073600
last-modified: Thu, 26 Jan 2017 23:47:45 GMT
etag: W/"802656972e78d21:0"
cf-cache-status: HIT
age: 1301327
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4kulJ7ClGiqCLcPw%2FK07%2B85lwWq0IctXmTudeaSK0v9SOcUzWf%2FpUOevCUEjVkfJv8A6%2BmOYKxGIyX6Puj2fkBMG%2BT2fA4UBOwCEFuN9suSVj5WDr%2FXbjDGaDxlKpR0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd45cb8b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.mimmis.no/Themes/Native/Content/CSS/plugins.css?v=1.016
172.66.43.134200 OK 0 B URL HTTP/2 www.mimmis.no/Themes/Native/Content/CSS/plugins.css?v=1.016
IP 172.66.43.134:0
GET /Themes/Native/Content/CSS/plugins.css?v=1.016 HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: text/css
cache-control: max-age=2073600
cf-bgj: minify
cf-polished: origSize=22858
etag: W/"26ef3243eb39d81:0"
last-modified: Thu, 17 Mar 2022 10:39:21 GMT
cf-cache-status: HIT
age: 704016
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2cHqnCCAAZ7nkEemxNJv7ILxZznxq88K3RuD5jM36%2FP89dqcTrAkVoHGNKKVlsJUBm8diUoEZ1kiKgvwzgXeOiz0hLXl%2BfbzJqXah1XMb0tKTMuuCJhkDnapcKlqYOI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd3cc07b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.mimmis.no/Scripts/jquery-1.10.2.min.js
172.66.43.134200 OK 0 B URL HTTP/2 www.mimmis.no/Scripts/jquery-1.10.2.min.js
IP 172.66.43.134:0
GET /Scripts/jquery-1.10.2.min.js HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: application/javascript
cache-control: max-age=2073600
last-modified: Wed, 20 May 2015 08:57:24 GMT
etag: W/"0b210fdda92d01:0"
cf-cache-status: HIT
age: 1958732
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ml9s%2BO812PVdlN1CH0%2FAlxLNM0Hn7izD2PKwYGlr4Yf%2Fp4Ikz7fkJKG3SSBmzt6suieQ%2BG2Z9Pl1Yy%2Bp2uy%2Boya7uzQNw5UMs0l4yaGCPCJYSIjFWxq5%2FzjMe8ninb4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd41c5cb4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.mimmis.no/Plugins/SevenSpikes.Nop.Plugins.AjaxCart/Scripts/jquery.json-2.2.min.js
172.66.43.134200 OK 0 B URL HTTP/2 www.mimmis.no/Plugins/SevenSpikes.Nop.Plugins.AjaxCart/Scripts/jquery.json-2.2.min.js
IP 172.66.43.134:0
GET /Plugins/SevenSpikes.Nop.Plugins.AjaxCart/Scripts/jquery.json-2.2.min.js HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: application/javascript
cache-control: max-age=2073600
last-modified: Mon, 20 Feb 2012 15:10:12 GMT
etag: W/"0e2ecbde1efcc1:0"
cf-cache-status: HIT
age: 1301328
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FCQ%2B7zUvShJUoE9i%2BbvSCeGORBehm2eKsqHM%2BsXtdOJff%2FQtfeN910a8HtfNDvcRQL1WtQk9mK3vmroUN84Ox5Z1yvvjlyQSskVGR0OfCIpCRtR9I9sjJ0Adu%2FqFEz8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd44cb7b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.mimmis.no/Plugins/SevenSpikes.Core/Scripts/footable.js
172.66.43.134200 OK 0 B URL HTTP/2 www.mimmis.no/Plugins/SevenSpikes.Core/Scripts/footable.js
IP 172.66.43.134:0
GET /Plugins/SevenSpikes.Core/Scripts/footable.js HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: application/javascript
cache-control: max-age=2073600
cf-bgj: minify
cf-polished: origSize=16403
etag: W/"07b67547a40d01:0"
last-modified: Wed, 04 Feb 2015 12:58:54 GMT
cf-cache-status: HIT
age: 1301717
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hKISaLuR8qS9diXOx10Mgq%2BkZ%2FuU0rYP2Tm86i1b6NwtAMbl14EH5haqa%2BYcCA44iFOTj4v1b0o5MlqaEZlXWR%2FPycS3MU93nrbuJ%2BUjMZVJY9OGQI%2FpvioYAbe32XU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd45cc9b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.mimmis.no/content/images/thumbs/0101231_ballbasseng_450.png
172.66.43.134200 OK 0 B URL HTTP/2 www.mimmis.no/content/images/thumbs/0101231_ballbasseng_450.png
IP 172.66.43.134:0
GET /content/images/thumbs/0101231_ballbasseng_450.png HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: image/webp
content-length: 193142
cache-control: max-age=2073600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=414395
content-disposition: inline; filename="0101231_ballbasseng_450.webp"
etag: "c13644999f7d81:0"
last-modified: Wed, 12 Jan 2022 10:31:46 GMT
vary: Accept
cf-cache-status: HIT
age: 1951558
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=boVxmhkIe8EPuS3giXtpl12%2BcYgmR%2FiQk1Gb5XxBSMlp2X9nMc%2By3n%2F34yacRyGyIj5QWz5sfrrQZbpwtj1vxqVG0jkX0InKbvlkIqbEK%2Byr4BuygHQnonbaaIWwrbg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 785d4cd4bd33b4ff-OSL
X-Firefox-Spdy: h2
forthglade.com/
23.227.38.65200 OK 0 B IP 23.227.38.65:0
GET / HTTP/1.1
Host: forthglade.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: text/html; charset=utf-8
x-sorting-hat-podid: 159
x-sorting-hat-shopid: 40276852896
x-storefront-renderer-rendered: 1
set-cookie: keep_alive=c8d068db-60c0-4359-b01c-105c63af1657; path=/; expires=Sat, 07 Jan 2023 14:44:29 GMT; HttpOnly; SameSite=Lax
secure_customer_sig=; path=/; expires=Sun, 07 Jan 2024 14:14:29 GMT; secure; HttpOnly; SameSite=Lax
localization=GB; path=/; expires=Sun, 07 Jan 2024 14:14:29 GMT
cart_currency=GBP; path=/; expires=Sat, 21 Jan 2023 14:14:29 GMT
_orig_referrer=; Expires=Sat, 21-Jan-23 14:14:29 GMT; Domain=forthglade.com; Path=/; HttpOnly; SameSite=Lax
_landing_page=%2F; Expires=Sat, 21-Jan-23 14:14:29 GMT; Domain=forthglade.com; Path=/; HttpOnly; SameSite=Lax
_y=0a4bc72d-38a6-4fd0-9a22-6e089fb87517; Expires=Sun, 07-Jan-24 14:14:29 GMT; Domain=forthglade.com; Path=/; SameSite=Lax
_s=ffbc73b0-8f92-43ca-bd6e-4d5bb0080585; Expires=Sat, 07-Jan-23 14:44:29 GMT; Domain=forthglade.com; Path=/; SameSite=Lax
_shopify_y=0a4bc72d-38a6-4fd0-9a22-6e089fb87517; Expires=Sun, 07-Jan-24 14:14:29 GMT; Domain=forthglade.com; Path=/; SameSite=Lax
_shopify_s=ffbc73b0-8f92-43ca-bd6e-4d5bb0080585; Expires=Sat, 07-Jan-23 14:44:29 GMT; Domain=forthglade.com; Path=/; SameSite=Lax
link: <https://cdn.shopify.com>; rel="preconnect", <https://cdn.shopify.com>; rel="preconnect"; crossorigin
x-alternate-cache-key: cacheable:7963bf3481b0b590dc2ab8da9f44d153
x-cache: hit, server
x-frame-options: DENY
content-security-policy: block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
strict-transport-security: max-age=7889238
x-shopid: 40276852896
x-shardid: 159
vary: Accept
content-language: en-gb
x-shopify-stage: production
x-dc: gcp-europe-north1,europe-west1,gcp-europe-west1
x-request-id: 57937555-d99a-4045-8074-16771089bff5
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WLwtncqvTn3qsNxThw7QJ%2B0%2FGMu7QFzdoiqunSVdTh2Yok20MHVFER7TyvCXJhuAGj6Og7YaiZbDoh0t530K%2FlgG1SZm8JCZrclWsqPZqz3MHxjujqZhCspboMngpD9c"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 785d4cd4eeb11c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
server-timing: processing;dur=23, db;dur=10, asn;desc="50304", edge;desc="OSL", country;desc="NO", cfRequestDuration;dur=345.999956, earlyhints
X-Firefox-Spdy: h2
www.mimmis.no/Scripts/kendo/2014.1.318/kendo.core.min.js
172.66.43.134200 OK 0 B URL HTTP/2 www.mimmis.no/Scripts/kendo/2014.1.318/kendo.core.min.js
IP 172.66.43.134:0
GET /Scripts/kendo/2014.1.318/kendo.core.min.js HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: application/javascript
cache-control: max-age=2073600
last-modified: Wed, 20 May 2015 08:57:42 GMT
etag: W/"047cb7db92d01:0"
cf-cache-status: HIT
age: 1955319
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fYnMdvCFtEkiknZBi%2FndhAp7XdTUjE4e%2FNzxzy4gtakRy3LGkzs%2FgNxDL2ZHK%2FDlEEI%2FwIs3pQdkhfxWrRY%2FSdRfTmQUTKQI04v400%2FrrDp2uJSS2RK%2Fn69XlUWZWk0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd44c9eb4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.mimmis.no/Plugins/SevenSpikes.Nop.Plugins.AnywhereSliders/Styles/nivo/nivo-slider.css
172.66.43.134200 OK 0 B URL HTTP/2 www.mimmis.no/Plugins/SevenSpikes.Nop.Plugins.AnywhereSliders/Styles/nivo/nivo-slider.css
IP 172.66.43.134:0
GET /Plugins/SevenSpikes.Nop.Plugins.AnywhereSliders/Styles/nivo/nivo-slider.css HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: text/css
cache-control: max-age=2073600
cf-bgj: minify
cf-polished: origSize=4922
etag: W/"042d8295a75d11:0"
last-modified: Thu, 03 Mar 2016 14:37:08 GMT
cf-cache-status: HIT
age: 1952924
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E3lYNbJ9XIWN1fC61u7eKtxEaGRr1LQM0ZGlvXXNUlaJaPbVhE4PsFMAXF8rh%2FyBszC7BAVZsWzfPuANw3Lu5O9Kb087syaXq02TQzQBaZ6dl8y2z8K1hUb7vVdQ5Gg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd40c51b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.mimmis.no/Scripts/kendo/2014.1.318/kendo.autocomplete.min.js
172.66.43.134200 OK 0 B URL HTTP/2 www.mimmis.no/Scripts/kendo/2014.1.318/kendo.autocomplete.min.js
IP 172.66.43.134:0
GET /Scripts/kendo/2014.1.318/kendo.autocomplete.min.js HTTP/1.1
Host: www.mimmis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mimmis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 07 Jan 2023 14:14:29 GMT
content-type: application/javascript
cache-control: max-age=2073600
last-modified: Wed, 20 May 2015 08:57:38 GMT
etag: W/"0ed685db92d01:0"
cf-cache-status: HIT
age: 1301717
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6jcktslEX4Cs5gUyxoXjZOBlVQmUrE%2FM8n3NxsgoGOm15t3nB9cosZEh6ENQzUc1BT7wXdDbM%2FQtIywSp8H5N7tM%2BUHDH1fn3yVdymZfPO9ZiNArk3Qpsyge0MyBl%2F8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 785d4cd44cb4b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2