r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c7a8ba48383a0e56baca8c8c41b81a04
b04c1f1e730a71f17ff639c9db697c532d4e5421
7860552382285e6eddddc5226c6f6400caa3f6fc3cb4b8a2d550c6fc653f78bb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7860552382285E6EDDDDC5226C6F6400CAA3F6FC3CB4B8A2D550C6FC653F78BB"
Last-Modified: Sun, 06 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2890
Expires: Tue, 08 Nov 2022 05:25:11 GMT
Date: Tue, 08 Nov 2022 04:37:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d8c32b2fb818533a5b3fe5c69157bde9
93594fd3fc50d9d444c28660eabba1edbe4f0588
df8b8ce7a83d11fbe075c8780103c509654f288b5d757d64b696d861a11f3c7f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF8B8CE7A83D11FBE075C8780103C509654F288B5D757D64B696D861A11F3C7F"
Last-Modified: Sun, 06 Nov 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4827
Expires: Tue, 08 Nov 2022 05:57:28 GMT
Date: Tue, 08 Nov 2022 04:37:01 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9fd081ea88e8b8563986b3e558496d21
60700393dce5eb42c0db0d5feef340f4832e3c65
d92555957857423ed02f0d0435739bcd40a996591c73f40315564b372f6e2395
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4742
Cache-Control: max-age=112399
Content-Type: application/ocsp-response
Date: Tue, 08 Nov 2022 04:37:01 GMT
Etag: "6368de76-1d7"
Expires: Wed, 09 Nov 2022 11:50:20 GMT
Last-Modified: Mon, 07 Nov 2022 10:31:18 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Mi5udMqEN1gwK/iTcfUKM+ufaZY4/5KOi9/Mz+nXkdzH6Bf0MHOMLiwXFdYXJkH7Z/RksyJpCV3C89Jqhn5m1w==
x-amz-request-id: M4YJGG7N25A6VD7G
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 08 Nov 2022 04:11:09 GMT
age: 1552
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
c1.applicationgrabb.com/?step_id=1&installer_id=1840122026540580593&publisher_id=1273&source_id=0&page_id=0&affiliate_id=0&country_code=RU&locale=EN&browser_id=1&download_id=7519506777341755763&external_id=0&session_id=2367124419843569293&hardware_id=1264214150611140887&id=?&&product_name=ninorota-amarcord&ignore_downloader=1&ignore_downloader=1&product_download_url=%3CServerUrl%3E/addons/error.txt&reffer=http://www.mp3olimp.net/&AddToPayload=%22StepReport=%221%22+StepReportUrl=%22r1.downlload.in%22+StepReportUrl1=%22r1.getapplicationmy.info%22%22&filesize=&product_file_name=error.txt
173.239.8.164200 OK 251 B URL HTTP/1.1 c1.applicationgrabb.com/?step_id=1&installer_id=1840122026540580593&publisher_id=1273&source_id=0&page_id=0&affiliate_id=0&country_code=RU&locale=EN&browser_id=1&download_id=7519506777341755763&external_id=0&session_id=2367124419843569293&hardware_id=1264214150611140887&id=?&&product_name=ninorota-amarcord&ignore_downloader=1&ignore_downloader=1&product_download_url=%3CServerUrl%3E/addons/error.txt&reffer=http://www.mp3olimp.net/&AddToPayload=%22StepReport=%221%22+StepReportUrl=%22r1.downlload.in%22+StepReportUrl1=%22r1.getapplicationmy.info%22%22&filesize=&product_file_name=error.txt
IP 173.239.8.164:0
ASN #27257 WEBAIR-INTERNET
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 8af508c68367fa252150433d59391636
ef0db24a657b533ba77ab3f5cf112663b9ce4599
b7537f7e96b8d2fbb56a69c57570f5b02e42aeb15e4a77987be33377076d5651
GET /?step_id=1&installer_id=1840122026540580593&publisher_id=1273&source_id=0&page_id=0&affiliate_id=0&country_code=RU&locale=EN&browser_id=1&download_id=7519506777341755763&external_id=0&session_id=2367124419843569293&hardware_id=1264214150611140887&id=?&&product_name=ninorota-amarcord&ignore_downloader=1&ignore_downloader=1&product_download_url=%3CServerUrl%3E/addons/error.txt&reffer=http://www.mp3olimp.net/&AddToPayload=%22StepReport=%221%22+StepReportUrl=%22r1.downlload.in%22+StepReportUrl1=%22r1.getapplicationmy.info%22%22&filesize=&product_file_name=error.txt HTTP/1.1
Host: c1.applicationgrabb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 08 Nov 2022 04:37:01 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 08 Nov 2022 04:37:01 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
c1.applicationgrabb.com/favicon.ico
173.239.8.164404 Not Found 114 B URL HTTP/1.1 c1.applicationgrabb.com/favicon.ico
IP 173.239.8.164:0
ASN #27257 WEBAIR-INTERNET
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4dda89292ffda632595d8e4040ef07c8
55c26cf87340555b3c09ba932bbabfc066a8d0ea
2615795f2aaccceaee3a5a92bcb488c122aed8a152f042633e41657fff9f7278
GET /favicon.ico HTTP/1.1
Host: c1.applicationgrabb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://c1.applicationgrabb.com/?step_id=1&installer_id=1840122026540580593&publisher_id=1273&source_id=0&page_id=0&affiliate_id=0&country_code=RU&locale=EN&browser_id=1&download_id=7519506777341755763&external_id=0&session_id=2367124419843569293&hardware_id=1264214150611140887&id=?&&product_name=ninorota-amarcord&ignore_downloader=1&ignore_downloader=1&product_download_url=%3CServerUrl%3E/addons/error.txt&reffer=http://www.mp3olimp.net/&AddToPayload=%22StepReport=%221%22+StepReportUrl=%22r1.downlload.in%22+StepReportUrl1=%22r1.getapplicationmy.info%22%22&filesize=&product_file_name=error.txt
HTTP/1.1 404 Not Found
Server: nginx/1.20.1
Date: Tue, 08 Nov 2022 04:37:02 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e6f4643306be10417c47176a6e67306f
940a13818904add9e1cacd12610f37ba1efd7bc5
67e51095b5da59b3eeda8a28c81789e69064a0a19a93347c2fcb05fd4b21e6d0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3820
Cache-Control: max-age=106404
Content-Type: application/ocsp-response
Date: Tue, 08 Nov 2022 04:37:02 GMT
Etag: "6368caa6-1d7"
Expires: Wed, 09 Nov 2022 10:10:26 GMT
Last-Modified: Mon, 07 Nov 2022 09:06:46 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.149.101.24101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.101.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 9qhtjmAkWDRRKVza72ICgQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 4vrO5Txv50KE+CCj26jz3z7shv4=
applicationgrabb.com/
74.206.228.78200 OK 2.6 kB IP 74.206.228.78:0
ASN #27257 WEBAIR-INTERNET
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (3228)
Hash f56f91315aaf4b2b20358f4b6204ce06
560d021d93f6082f8103e0729864adc79eac6785
745e275d33991e74804a979f12b14db5d22c752e3816ab17387e0f114aa16247
Analyzer Verdict Alert fortinet Phishing
POST / HTTP/1.1
Host: applicationgrabb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded
Content-Length: 12
Origin: http://c1.applicationgrabb.com
Connection: keep-alive
Referer: http://c1.applicationgrabb.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Tue, 08 Nov 2022 04:37:03 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: ipc=eyJ2ZXJzaW9uIjoxLCJzdWJJZCI6MywiZm9sZGVySWQiOjEsImZlZWRJZCI6MjEsInRzIjoxNjY3ODgyMjIzLCJoYXNoIjoiOTI3MDFhMWQifQ==;Expires=Tue, 08-Nov-2022 05:37:03 GMT;Max-Age=3600
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Encoding: gzip
applicationgrabb.com/favicon.ico
74.206.228.78404 Not Found 114 B URL HTTP/1.1 applicationgrabb.com/favicon.ico
IP 74.206.228.78:0
ASN #27257 WEBAIR-INTERNET
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 021ffd3b4e081732edb9f2fa096e8ef2
4b0c71d74bf395719f8f91e4903609e37b513046
71dc6b3c545761e64c88967c0f8005939255df258bf60e122b238095d0c9659c
GET /favicon.ico HTTP/1.1
Host: applicationgrabb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://applicationgrabb.com/
Connection: keep-alive
Cookie: ipc=eyJ2ZXJzaW9uIjoxLCJzdWJJZCI6MywiZm9sZGVySWQiOjEsImZlZWRJZCI6MjEsInRzIjoxNjY3ODgyMjIzLCJoYXNoIjoiOTI3MDFhMWQifQ==
HTTP/1.1 404 Not Found
Server: nginx/1.18.0
Date: Tue, 08 Nov 2022 04:37:03 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 1941d73ba356684871d0365b46718ce4
e3373632774a88489062f9999578ce7fac6d1b8d
c4b1f4711ec95f9da50a598f45280f55b7463c4bc525871e598db077adf5ddc5
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 04:37:03 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 06 Nov 2022 19:25:44 GMT
Expires: Sun, 13 Nov 2022 19:25:43 GMT
Etag: "e3373632774a88489062f9999578ce7fac6d1b8d"
Cache-Control: max-age=484719,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 766b9c782c85b506-OSL
mybettermb.com/aS/feedclick?s=HFz5zNIIs96fzq49jFkHXa3dDnCBF-q5pjcTajzqm_R3msEvZgrIOhG_6U4hqQTcO4eq_lgR48_oiQJuDuwoS9gcFc4_-stle8EJ5aQH9iIaU8pl79xrxti6czQKU3WjqWfap4yUt_iPH1TzciB1Qg6AZUDRz9bjOEX4iGGchU3WvWxDEdTlqSeG-yrtYvEbLpKmJ40PmG-_QB3m5tBalNiexe6fvJv-zALTe4PcCSyIJ4C21bMRU8ZNkg9qkKEMlpo_24RTvLHvvw0Y9Xxl0AYwwhRTJaIxElj526WD6KgbaWMmgP795kwhEw1X1bF713JUUEHTWJ_HVBoWGx1F75q0eLIUPfNih_0raciQ53NCfzw6lzHmlA-SlN9R6g7uR-xmMBfrevITwftlOqMpqzWDQ6fHLAt_BxPF3Mk2bCA0ONCIHl2Ws3IyxXVlZqkxZBcz4RNs0j-jws93GK2aHh98Sl84-pvWdWK1ymiGdaXVh0Y4ow7Dh1vvfagazsI8A8PriD1zAPz0HWhX2T1BOMTrcRBRT2fe1MrqF2Ykd1uVU55GlVLkop4L-zGacxTePxw0dNDeltbLTIQVa8Pso3uDWf-1VwzQfcuHIPsBnrOl9u5_ra6D117m2vviHQRqeb_F2dPWxHU8nxM7bq9HuI5Rw7C47luntxGlach4sIhJU-C5fOa0UgysJInOaSYCt7T-fiBc81snvSjfd7WmsrCjo_R9WLvQmlPOI6Sqo_MGHDFlFhYG0_GO7ZIdERm_flGzbcVq18R0Jdfp3_THOBhdYN9MMFZM8NpQtPdFoIPJ_PYNXukssz3aUHk0gEmk7JgTch4YqQlQuwrJplD9SQc4Ur8e4DzApYTc-KcsTtbH0XLotXydvfM8E9o_C2VeJXFdGVxMW8t0APENVNEF9D9T9iAMY5JQ3lX4mSeURVY0IZZk1NTI6I5p-qFYWTtwW3mUHQbcglz47Wof-mdwh4iQSJ_KD9U2FuGWjwCrH4zPiL6QwYKKFP1oBTwsz_rvkaqq1am8nDOcsEBSGHBS7v7qtBszGiTkjl7_tUApbKNeHsXUa9dfZabSWiweNQXL6JUI64SCNnCbL67kQwifzrPBPH58T1OXGzbwOwIoNyjm6YaRZZTTD4nvzHrMNo1Mylc2LmNxCRIcMm_T0sNw_3HWD-mrcY12CQfFqckxJD8vSjwhNgOy3BrSM5ifSb6DWpDmknAYekwDYh2MNytH91d2aQsSS2EuOsvvX-0ABbzU1oRsEWVgB7jTT_Df1hHUbvMSSo8UzS556IuKcITPJVCH94O4mba8KEbqgg48EchK5-_o0F1d2rp3BZ6uzOCaxlK82ShaoxtHFwbeI6H4rGPcJwgUtNG_R12N9nPLh7xD1_6amk3tE2gcL_9S4-YmJkjenKjF8B-cDXdhkY13H4BeeqZyvgclsiuBTFoMHOymTAmAhm_AWwJx4-0MHttj8afc4R1eY8LlvrA2neow70OLboc1tPpt5mKlgFiXT78ljLvoi49jC0xi-JKHC2Uhqc5GoaB-eAEFqmOOzQC4gRvDGfGUzcZ4wez5Hhcz-zxK3qZcP_x_96-dbn0JXJvlf9-S_2FOa07VTBu-pslwunh1Y2fQARHLofLSmVceLvRb5Gyvt3SeOE8E3_PEK7h8ojT16-JsEWwfEt_6CRUcqAGwwNuS-osXK9kKk6i-5owDqBXfGaX91OoQPb-82sIpQvrMG6Zd2uuTBENSMYjcUQ0bB2K52XJyVIWtW7gRSA5ZyHSD3frrXtMsmvoBtXiKn40A_mlPaStHxkQo5JuLQveQNRxBap4KLojhE9e_9naN1AVMu61b5vsd6p89UzMkGofJak0_EhStBK8ODPwqLHCVmJJG0m_kUOUJHJAbTsnqRohXyqCIed6ZTJk1fseIedozOvh8r9KlsereocjznjnlB1bPaUkTLHS3ULRkUc_AOL4Oab4-bPfkywGjs3os38PyaC9QC02SVzyxfHH45Bs7ulaWXAZ1UZlfGCaFHcg3P5BTS1B7GNLWyNNIN2_GNOcEboouiHDKpXu0RNHtw_6jVreAeNlr-COflArKyxTt2ratUD1-a-r0hpjotjEh6IXVyzvoSvEIF2VCieeQC0facLOlU5Bw5bbekPRK1jRYbsQ2nSWLvIWOUjITvS-GHIJ5SbpGXDv1XUQKsXD03i2uvuY85clbOHaMxdY-mtSgf7bQezXUJ17aXoz6vshvOnhY9mandwdHUVgE-cuaYFd3suosEmCGAkrGQfTQbp98atS7j5-v51huxDadJYu8hY5SMhO9L4aap62sfVaGZGlzCQilODVrbK_jB1fEdjMl2-MBzlGJ_WX5dogaoTcgehq9_TnVDg7w_OckqL1mmTr_ytmiqEQA2kNfhUZoHaJUpKgIZV8stNd0NdplN5c6cyJghxyn8LuymKTaLDIu-3iKuknGRbNvTS_MqeaqSDvdDXA3XXmj9A7ynuiIbcsI8hXZ3Dqxf_EgPMVBorgMgCtXD-zpyT1eGp7pFY0JPT2WSrbI_88onrW43LEuDGaHjYG7XnC2V_bJ4YPeIDR0PZN0a6xfBseUvbWw4afHvcnOQhBHV30x27hyrIOdYHqmatv2PLm4wdmYcYi_u8A4lQzo8uD4IPYumVAhMsAwRX5DPlfCv1HHMWnGBqlJRekavgzC2kaxvIJJuTz1NgDwQ19VBdPDZP8PDAWE-2LHRzagrUZiCIjvtvqf7q-NW1tGvwAxfjIALVsuz2VVlteN9ffEIT-yA9HcwAvI7uvtag1wEjCzvPiGynLXvtgL2N7E2iOrm7TFCHRvJ8ixqpfdY4B7gs5N_8eWO__T7ByPNsLFuZqJDC4MIRcEgsM1tGnIzni1TfEcMGk4OAkgLelcDhb16IzWRUGDSBb6aL2k3XiCuS3BZiFPzxtuZa-CInMezHUCjV1phC0mbSS43h61gnAgayVxLPZz5UcxmoBsHfEwpOr30r6Yq89XRDt818JKEu0gAeYkTP84UfOmGA23x_fojLeExqmqOYwwqJPWDKxiwxg3odiyCj5Y5_O6zsOFIdjk7WmqJccy8iJkTI9DReV0tK1UbSEhCpCuSp0El0yugDHBb68X1GWSQsQHXjql
108.168.193.189302 Found 0 B URL HTTP/2 mybettermb.com/aS/feedclick?s=HFz5zNIIs96fzq49jFkHXa3dDnCBF-q5pjcTajzqm_R3msEvZgrIOhG_6U4hqQTcO4eq_lgR48_oiQJuDuwoS9gcFc4_-stle8EJ5aQH9iIaU8pl79xrxti6czQKU3WjqWfap4yUt_iPH1TzciB1Qg6AZUDRz9bjOEX4iGGchU3WvWxDEdTlqSeG-yrtYvEbLpKmJ40PmG-_QB3m5tBalNiexe6fvJv-zALTe4PcCSyIJ4C21bMRU8ZNkg9qkKEMlpo_24RTvLHvvw0Y9Xxl0AYwwhRTJaIxElj526WD6KgbaWMmgP795kwhEw1X1bF713JUUEHTWJ_HVBoWGx1F75q0eLIUPfNih_0raciQ53NCfzw6lzHmlA-SlN9R6g7uR-xmMBfrevITwftlOqMpqzWDQ6fHLAt_BxPF3Mk2bCA0ONCIHl2Ws3IyxXVlZqkxZBcz4RNs0j-jws93GK2aHh98Sl84-pvWdWK1ymiGdaXVh0Y4ow7Dh1vvfagazsI8A8PriD1zAPz0HWhX2T1BOMTrcRBRT2fe1MrqF2Ykd1uVU55GlVLkop4L-zGacxTePxw0dNDeltbLTIQVa8Pso3uDWf-1VwzQfcuHIPsBnrOl9u5_ra6D117m2vviHQRqeb_F2dPWxHU8nxM7bq9HuI5Rw7C47luntxGlach4sIhJU-C5fOa0UgysJInOaSYCt7T-fiBc81snvSjfd7WmsrCjo_R9WLvQmlPOI6Sqo_MGHDFlFhYG0_GO7ZIdERm_flGzbcVq18R0Jdfp3_THOBhdYN9MMFZM8NpQtPdFoIPJ_PYNXukssz3aUHk0gEmk7JgTch4YqQlQuwrJplD9SQc4Ur8e4DzApYTc-KcsTtbH0XLotXydvfM8E9o_C2VeJXFdGVxMW8t0APENVNEF9D9T9iAMY5JQ3lX4mSeURVY0IZZk1NTI6I5p-qFYWTtwW3mUHQbcglz47Wof-mdwh4iQSJ_KD9U2FuGWjwCrH4zPiL6QwYKKFP1oBTwsz_rvkaqq1am8nDOcsEBSGHBS7v7qtBszGiTkjl7_tUApbKNeHsXUa9dfZabSWiweNQXL6JUI64SCNnCbL67kQwifzrPBPH58T1OXGzbwOwIoNyjm6YaRZZTTD4nvzHrMNo1Mylc2LmNxCRIcMm_T0sNw_3HWD-mrcY12CQfFqckxJD8vSjwhNgOy3BrSM5ifSb6DWpDmknAYekwDYh2MNytH91d2aQsSS2EuOsvvX-0ABbzU1oRsEWVgB7jTT_Df1hHUbvMSSo8UzS556IuKcITPJVCH94O4mba8KEbqgg48EchK5-_o0F1d2rp3BZ6uzOCaxlK82ShaoxtHFwbeI6H4rGPcJwgUtNG_R12N9nPLh7xD1_6amk3tE2gcL_9S4-YmJkjenKjF8B-cDXdhkY13H4BeeqZyvgclsiuBTFoMHOymTAmAhm_AWwJx4-0MHttj8afc4R1eY8LlvrA2neow70OLboc1tPpt5mKlgFiXT78ljLvoi49jC0xi-JKHC2Uhqc5GoaB-eAEFqmOOzQC4gRvDGfGUzcZ4wez5Hhcz-zxK3qZcP_x_96-dbn0JXJvlf9-S_2FOa07VTBu-pslwunh1Y2fQARHLofLSmVceLvRb5Gyvt3SeOE8E3_PEK7h8ojT16-JsEWwfEt_6CRUcqAGwwNuS-osXK9kKk6i-5owDqBXfGaX91OoQPb-82sIpQvrMG6Zd2uuTBENSMYjcUQ0bB2K52XJyVIWtW7gRSA5ZyHSD3frrXtMsmvoBtXiKn40A_mlPaStHxkQo5JuLQveQNRxBap4KLojhE9e_9naN1AVMu61b5vsd6p89UzMkGofJak0_EhStBK8ODPwqLHCVmJJG0m_kUOUJHJAbTsnqRohXyqCIed6ZTJk1fseIedozOvh8r9KlsereocjznjnlB1bPaUkTLHS3ULRkUc_AOL4Oab4-bPfkywGjs3os38PyaC9QC02SVzyxfHH45Bs7ulaWXAZ1UZlfGCaFHcg3P5BTS1B7GNLWyNNIN2_GNOcEboouiHDKpXu0RNHtw_6jVreAeNlr-COflArKyxTt2ratUD1-a-r0hpjotjEh6IXVyzvoSvEIF2VCieeQC0facLOlU5Bw5bbekPRK1jRYbsQ2nSWLvIWOUjITvS-GHIJ5SbpGXDv1XUQKsXD03i2uvuY85clbOHaMxdY-mtSgf7bQezXUJ17aXoz6vshvOnhY9mandwdHUVgE-cuaYFd3suosEmCGAkrGQfTQbp98atS7j5-v51huxDadJYu8hY5SMhO9L4aap62sfVaGZGlzCQilODVrbK_jB1fEdjMl2-MBzlGJ_WX5dogaoTcgehq9_TnVDg7w_OckqL1mmTr_ytmiqEQA2kNfhUZoHaJUpKgIZV8stNd0NdplN5c6cyJghxyn8LuymKTaLDIu-3iKuknGRbNvTS_MqeaqSDvdDXA3XXmj9A7ynuiIbcsI8hXZ3Dqxf_EgPMVBorgMgCtXD-zpyT1eGp7pFY0JPT2WSrbI_88onrW43LEuDGaHjYG7XnC2V_bJ4YPeIDR0PZN0a6xfBseUvbWw4afHvcnOQhBHV30x27hyrIOdYHqmatv2PLm4wdmYcYi_u8A4lQzo8uD4IPYumVAhMsAwRX5DPlfCv1HHMWnGBqlJRekavgzC2kaxvIJJuTz1NgDwQ19VBdPDZP8PDAWE-2LHRzagrUZiCIjvtvqf7q-NW1tGvwAxfjIALVsuz2VVlteN9ffEIT-yA9HcwAvI7uvtag1wEjCzvPiGynLXvtgL2N7E2iOrm7TFCHRvJ8ixqpfdY4B7gs5N_8eWO__T7ByPNsLFuZqJDC4MIRcEgsM1tGnIzni1TfEcMGk4OAkgLelcDhb16IzWRUGDSBb6aL2k3XiCuS3BZiFPzxtuZa-CInMezHUCjV1phC0mbSS43h61gnAgayVxLPZz5UcxmoBsHfEwpOr30r6Yq89XRDt818JKEu0gAeYkTP84UfOmGA23x_fojLeExqmqOYwwqJPWDKxiwxg3odiyCj5Y5_O6zsOFIdjk7WmqJccy8iJkTI9DReV0tK1UbSEhCpCuSp0El0yugDHBb68X1GWSQsQHXjql
IP 108.168.193.189:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /aS/feedclick?s=HFz5zNIIs96fzq49jFkHXa3dDnCBF-q5pjcTajzqm_R3msEvZgrIOhG_6U4hqQTcO4eq_lgR48_oiQJuDuwoS9gcFc4_-stle8EJ5aQH9iIaU8pl79xrxti6czQKU3WjqWfap4yUt_iPH1TzciB1Qg6AZUDRz9bjOEX4iGGchU3WvWxDEdTlqSeG-yrtYvEbLpKmJ40PmG-_QB3m5tBalNiexe6fvJv-zALTe4PcCSyIJ4C21bMRU8ZNkg9qkKEMlpo_24RTvLHvvw0Y9Xxl0AYwwhRTJaIxElj526WD6KgbaWMmgP795kwhEw1X1bF713JUUEHTWJ_HVBoWGx1F75q0eLIUPfNih_0raciQ53NCfzw6lzHmlA-SlN9R6g7uR-xmMBfrevITwftlOqMpqzWDQ6fHLAt_BxPF3Mk2bCA0ONCIHl2Ws3IyxXVlZqkxZBcz4RNs0j-jws93GK2aHh98Sl84-pvWdWK1ymiGdaXVh0Y4ow7Dh1vvfagazsI8A8PriD1zAPz0HWhX2T1BOMTrcRBRT2fe1MrqF2Ykd1uVU55GlVLkop4L-zGacxTePxw0dNDeltbLTIQVa8Pso3uDWf-1VwzQfcuHIPsBnrOl9u5_ra6D117m2vviHQRqeb_F2dPWxHU8nxM7bq9HuI5Rw7C47luntxGlach4sIhJU-C5fOa0UgysJInOaSYCt7T-fiBc81snvSjfd7WmsrCjo_R9WLvQmlPOI6Sqo_MGHDFlFhYG0_GO7ZIdERm_flGzbcVq18R0Jdfp3_THOBhdYN9MMFZM8NpQtPdFoIPJ_PYNXukssz3aUHk0gEmk7JgTch4YqQlQuwrJplD9SQc4Ur8e4DzApYTc-KcsTtbH0XLotXydvfM8E9o_C2VeJXFdGVxMW8t0APENVNEF9D9T9iAMY5JQ3lX4mSeURVY0IZZk1NTI6I5p-qFYWTtwW3mUHQbcglz47Wof-mdwh4iQSJ_KD9U2FuGWjwCrH4zPiL6QwYKKFP1oBTwsz_rvkaqq1am8nDOcsEBSGHBS7v7qtBszGiTkjl7_tUApbKNeHsXUa9dfZabSWiweNQXL6JUI64SCNnCbL67kQwifzrPBPH58T1OXGzbwOwIoNyjm6YaRZZTTD4nvzHrMNo1Mylc2LmNxCRIcMm_T0sNw_3HWD-mrcY12CQfFqckxJD8vSjwhNgOy3BrSM5ifSb6DWpDmknAYekwDYh2MNytH91d2aQsSS2EuOsvvX-0ABbzU1oRsEWVgB7jTT_Df1hHUbvMSSo8UzS556IuKcITPJVCH94O4mba8KEbqgg48EchK5-_o0F1d2rp3BZ6uzOCaxlK82ShaoxtHFwbeI6H4rGPcJwgUtNG_R12N9nPLh7xD1_6amk3tE2gcL_9S4-YmJkjenKjF8B-cDXdhkY13H4BeeqZyvgclsiuBTFoMHOymTAmAhm_AWwJx4-0MHttj8afc4R1eY8LlvrA2neow70OLboc1tPpt5mKlgFiXT78ljLvoi49jC0xi-JKHC2Uhqc5GoaB-eAEFqmOOzQC4gRvDGfGUzcZ4wez5Hhcz-zxK3qZcP_x_96-dbn0JXJvlf9-S_2FOa07VTBu-pslwunh1Y2fQARHLofLSmVceLvRb5Gyvt3SeOE8E3_PEK7h8ojT16-JsEWwfEt_6CRUcqAGwwNuS-osXK9kKk6i-5owDqBXfGaX91OoQPb-82sIpQvrMG6Zd2uuTBENSMYjcUQ0bB2K52XJyVIWtW7gRSA5ZyHSD3frrXtMsmvoBtXiKn40A_mlPaStHxkQo5JuLQveQNRxBap4KLojhE9e_9naN1AVMu61b5vsd6p89UzMkGofJak0_EhStBK8ODPwqLHCVmJJG0m_kUOUJHJAbTsnqRohXyqCIed6ZTJk1fseIedozOvh8r9KlsereocjznjnlB1bPaUkTLHS3ULRkUc_AOL4Oab4-bPfkywGjs3os38PyaC9QC02SVzyxfHH45Bs7ulaWXAZ1UZlfGCaFHcg3P5BTS1B7GNLWyNNIN2_GNOcEboouiHDKpXu0RNHtw_6jVreAeNlr-COflArKyxTt2ratUD1-a-r0hpjotjEh6IXVyzvoSvEIF2VCieeQC0facLOlU5Bw5bbekPRK1jRYbsQ2nSWLvIWOUjITvS-GHIJ5SbpGXDv1XUQKsXD03i2uvuY85clbOHaMxdY-mtSgf7bQezXUJ17aXoz6vshvOnhY9mandwdHUVgE-cuaYFd3suosEmCGAkrGQfTQbp98atS7j5-v51huxDadJYu8hY5SMhO9L4aap62sfVaGZGlzCQilODVrbK_jB1fEdjMl2-MBzlGJ_WX5dogaoTcgehq9_TnVDg7w_OckqL1mmTr_ytmiqEQA2kNfhUZoHaJUpKgIZV8stNd0NdplN5c6cyJghxyn8LuymKTaLDIu-3iKuknGRbNvTS_MqeaqSDvdDXA3XXmj9A7ynuiIbcsI8hXZ3Dqxf_EgPMVBorgMgCtXD-zpyT1eGp7pFY0JPT2WSrbI_88onrW43LEuDGaHjYG7XnC2V_bJ4YPeIDR0PZN0a6xfBseUvbWw4afHvcnOQhBHV30x27hyrIOdYHqmatv2PLm4wdmYcYi_u8A4lQzo8uD4IPYumVAhMsAwRX5DPlfCv1HHMWnGBqlJRekavgzC2kaxvIJJuTz1NgDwQ19VBdPDZP8PDAWE-2LHRzagrUZiCIjvtvqf7q-NW1tGvwAxfjIALVsuz2VVlteN9ffEIT-yA9HcwAvI7uvtag1wEjCzvPiGynLXvtgL2N7E2iOrm7TFCHRvJ8ixqpfdY4B7gs5N_8eWO__T7ByPNsLFuZqJDC4MIRcEgsM1tGnIzni1TfEcMGk4OAkgLelcDhb16IzWRUGDSBb6aL2k3XiCuS3BZiFPzxtuZa-CInMezHUCjV1phC0mbSS43h61gnAgayVxLPZz5UcxmoBsHfEwpOr30r6Yq89XRDt818JKEu0gAeYkTP84UfOmGA23x_fojLeExqmqOYwwqJPWDKxiwxg3odiyCj5Y5_O6zsOFIdjk7WmqJccy8iJkTI9DReV0tK1UbSEhCpCuSp0El0yugDHBb68X1GWSQsQHXjql HTTP/1.1
Host: mybettermb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://applicationgrabb.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Tue, 08 Nov 2022 04:37:03 GMT
content-length: 0
set-cookie: rhid=82328810175; Max-Age=15552000; Expires=Sun, 07-May-2023 04:37:03 GMT; Domain=mybettermb.com; Path=/; SameSite=None; secure;
location: https://p226681.mybettermb.com/adServe/domainClick?ai=LyBVgUe5lplnDYVH6EgfSGLDGDeh2LIKPljn87rOw4VolUYUxou7GCNVogP4xVqLabER9mUYfWKF84nK-UE1McvQ9Ydflp_05PxZjKusRbSiVpBRScDu3B5UFm8PDYvoizI-QW5avn9yYcD6VfbcrgpFcqQOuHyWBzsCAd-cQn7F64uF7AWEoZ6N4GofN4O0aXXCukVPxR9VgMHGtAiLVltENCzsnLRKpgtRv6CAmUobU-1KBfqtTuyHpdm9OqUkf5L0SegZvgyLoingfwryO9eMeoMKjpHGnDkPwS_CAVoMe8P0Ajr5nC4ZZtCj6v3_UIRH8I-hsGJxiIilnm6UmggrVocw0jk2s8h1yXVXQpUBEe7hUdeI9jAZcNzy4Bkw3v4DDzgipBFg9vBbyGyytRRQ_dmu_NOqzg2iLpgUqwOMopEfPS-OUff9NOsk8UK_tAarP_RGCEck_EzJGtdKTHAl5r4ZOxyh7sGehCD2ynA7_9PsHI82wlET_g5zHMiVM1QyxuMG9UiHyoK1KKNfu__eFwrir0Eoq4ZEglLGevR__oqAMRSGZj0TRt56jTpVd9JjsN06Uy5q3jdvsI5fUbdNAwNcN4huYauJkYf_7EFvl4y6tD679U-ulzG_phgQDOjy4Pgg9i6hlG3MXW15kGL4S9LP-n3AmtXl4kASDyRjvyohnW0FHu_xyOFFItXCYPbwW8hssrXc6AzY3U8-3MJX3-egBLi7PYbnOnSl3PDldLStVG0hITNYmZJmPf-dIRa_gBfpfzT35MsBo7N6LN_D8mgvUAtNklc8sXxx-OTTazCi4GnyGTj-GPcsoI_bDOd8Ma4TjpmAmBgBE71L85ZaYOBYWX8UjQ9mH6USLMQjeRAqbTvnp9bBOY8lujlWPljn87rOw4Xp3h2PHT0uw_D-j0cqQvw9oyEOp_uQSuYvLd_TDGTPelGw5uDH27dWi0o4kaE8Ich_qCYvh_QGQx2Qa1NZi5E38QGc1TE52rft2hsGublm-iZggkaL9NJRZN_F-zUlvRWh8HfcFb6b2kMb4Do7y-b-De0rL-F5kimWV6YBZNo-eHvK0TihL_ekkvgqc45ggkUpG405w9CXKFq5LhImb3BCguu2D-tqLGlSrIfnXI3KxH-1_GqjSgzASAlEMfER0v0gFfTyOLRiwQ&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukPEjrgDbFhhExSLFNFAEtGMGujCyoaYo5oJoFpfJq49K8YocDyIQA6Jy8p-tcVlU-HV1nX3dLhT1g&si=1&oref=cabb8d0a573855393fc5a8428775192c&optunit=90JrsRmskQmvkaH9PT8uzq0rozPkVpWr&rb=_aNNb9GLoJU&rr=1&abtg=0
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4599ea4ab89bca0461dfc4e86cf90610
d513a3fca97e06dbc1a6cdd02fbdd3c7253c865a
6056ef181a66539dd449318a89c133c3711e3244394126a66b8ebd29cff4692b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6056EF181A66539DD449318A89C133C3711E3244394126A66B8EBD29CFF4692B"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6217
Expires: Tue, 08 Nov 2022 06:20:40 GMT
Date: Tue, 08 Nov 2022 04:37:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4599ea4ab89bca0461dfc4e86cf90610
d513a3fca97e06dbc1a6cdd02fbdd3c7253c865a
6056ef181a66539dd449318a89c133c3711e3244394126a66b8ebd29cff4692b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6056EF181A66539DD449318A89C133C3711E3244394126A66B8EBD29CFF4692B"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6217
Expires: Tue, 08 Nov 2022 06:20:40 GMT
Date: Tue, 08 Nov 2022 04:37:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4599ea4ab89bca0461dfc4e86cf90610
d513a3fca97e06dbc1a6cdd02fbdd3c7253c865a
6056ef181a66539dd449318a89c133c3711e3244394126a66b8ebd29cff4692b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6056EF181A66539DD449318A89C133C3711E3244394126A66B8EBD29CFF4692B"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6217
Expires: Tue, 08 Nov 2022 06:20:40 GMT
Date: Tue, 08 Nov 2022 04:37:03 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e2853cc6ec6223160471401e6871f4b
f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c
bf4b9145ea043d87a30fd3aeeae21a1a0aa27004cd2467e7aa843bc894ae1f60
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10462
x-amzn-requestid: 6dc7dc5c-88e9-4550-abf0-f16965ab7cd3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bF_38GKXoAMFwSA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636579cc-28ea4125437c31cc34683fb7;Sampled=0
x-amzn-remapped-date: Fri, 04 Nov 2022 20:45:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Q0yZmbExDP4tH0n1n2qj_NR2Mv_y_dsO0LJ1RKZoS6Me-NLbhpUWqw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Mon, 07 Nov 2022 09:11:38 GMT
age: 69925
etag: "f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc81ac79a-f46e-4270-95ba-987bb2a21858.webp
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc81ac79a-f46e-4270-95ba-987bb2a21858.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b02d208e82ce7f18bbcad23db84c13bd
fd6ae9b18a53d830c61867ef639021a2bd61ff15
d189bd1214befff7a0c39901568d93486f1c6e9ee235e5a7bc315ba6ed1e32df
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc81ac79a-f46e-4270-95ba-987bb2a21858.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7864
x-amzn-requestid: 0b7a7b57-cd8b-43a7-889a-f59c551f490e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bQALMEexIAMFubQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63697a47-5edc6198447f52d5598c21e6;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 21:36:07 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ejX8AUf5gHXPzux1e3SfqCtYW8HRZ2S_EnWicyNIxFq4I_Tz_ZBf9A==
via: 1.1 76dcc62b68091cc715d50b5017be77fc.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 07 Nov 2022 21:41:14 GMT
age: 24949
etag: "fd6ae9b18a53d830c61867ef639021a2bd61ff15"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04c2a414-09eb-4daf-8bae-fe6a84f6406e.png
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04c2a414-09eb-4daf-8bae-fe6a84f6406e.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b64fcd58491917edfc8ffb57c1382cd0
edf97aab58dacd11fa52924b1382c2bf1ede5e55
a2c60a2f7780085b4643ab7f521fb6c858ca72c3170e6f3acd2250b9c3b14cc5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04c2a414-09eb-4daf-8bae-fe6a84f6406e.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12662
x-amzn-requestid: edaa58fb-c3eb-4af0-ad32-be8c7cf14421
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bQAKLHSBoAMFsxw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63697a40-4c35cd455ff7a829756eeb56;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0hHTn8clg8Vivq9EZIW00ggF69akYfyHcnAgqGkdvydUzPYnQl0jeA==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Mon, 07 Nov 2022 21:40:30 GMT
age: 24993
etag: "edf97aab58dacd11fa52924b1382c2bf1ede5e55"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
p226681.mybettermb.com/adServe/domainClick?ai=LyBVgUe5lplnDYVH6EgfSGLDGDeh2LIKPljn87rOw4VolUYUxou7GCNVogP4xVqLabER9mUYfWKF84nK-UE1McvQ9Ydflp_05PxZjKusRbSiVpBRScDu3B5UFm8PDYvoizI-QW5avn9yYcD6VfbcrgpFcqQOuHyWBzsCAd-cQn7F64uF7AWEoZ6N4GofN4O0aXXCukVPxR9VgMHGtAiLVltENCzsnLRKpgtRv6CAmUobU-1KBfqtTuyHpdm9OqUkf5L0SegZvgyLoingfwryO9eMeoMKjpHGnDkPwS_CAVoMe8P0Ajr5nC4ZZtCj6v3_UIRH8I-hsGJxiIilnm6UmggrVocw0jk2s8h1yXVXQpUBEe7hUdeI9jAZcNzy4Bkw3v4DDzgipBFg9vBbyGyytRRQ_dmu_NOqzg2iLpgUqwOMopEfPS-OUff9NOsk8UK_tAarP_RGCEck_EzJGtdKTHAl5r4ZOxyh7sGehCD2ynA7_9PsHI82wlET_g5zHMiVM1QyxuMG9UiHyoK1KKNfu__eFwrir0Eoq4ZEglLGevR__oqAMRSGZj0TRt56jTpVd9JjsN06Uy5q3jdvsI5fUbdNAwNcN4huYauJkYf_7EFvl4y6tD679U-ulzG_phgQDOjy4Pgg9i6hlG3MXW15kGL4S9LP-n3AmtXl4kASDyRjvyohnW0FHu_xyOFFItXCYPbwW8hssrXc6AzY3U8-3MJX3-egBLi7PYbnOnSl3PDldLStVG0hITNYmZJmPf-dIRa_gBfpfzT35MsBo7N6LN_D8mgvUAtNklc8sXxx-OTTazCi4GnyGTj-GPcsoI_bDOd8Ma4TjpmAmBgBE71L85ZaYOBYWX8UjQ9mH6USLMQjeRAqbTvnp9bBOY8lujlWPljn87rOw4Xp3h2PHT0uw_D-j0cqQvw9oyEOp_uQSuYvLd_TDGTPelGw5uDH27dWi0o4kaE8Ich_qCYvh_QGQx2Qa1NZi5E38QGc1TE52rft2hsGublm-iZggkaL9NJRZN_F-zUlvRWh8HfcFb6b2kMb4Do7y-b-De0rL-F5kimWV6YBZNo-eHvK0TihL_ekkvgqc45ggkUpG405w9CXKFq5LhImb3BCguu2D-tqLGlSrIfnXI3KxH-1_GqjSgzASAlEMfER0v0gFfTyOLRiwQ&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukPEjrgDbFhhExSLFNFAEtGMGujCyoaYo5oJoFpfJq49K8YocDyIQA6Jy8p-tcVlU-HV1nX3dLhT1g&si=1&oref=cabb8d0a573855393fc5a8428775192c&optunit=90JrsRmskQmvkaH9PT8uzq0rozPkVpWr&rb=_aNNb9GLoJU&rr=1&abtg=0
108.168.193.189200 OK 7.8 kB URL HTTP/2 p226681.mybettermb.com/adServe/domainClick?ai=LyBVgUe5lplnDYVH6EgfSGLDGDeh2LIKPljn87rOw4VolUYUxou7GCNVogP4xVqLabER9mUYfWKF84nK-UE1McvQ9Ydflp_05PxZjKusRbSiVpBRScDu3B5UFm8PDYvoizI-QW5avn9yYcD6VfbcrgpFcqQOuHyWBzsCAd-cQn7F64uF7AWEoZ6N4GofN4O0aXXCukVPxR9VgMHGtAiLVltENCzsnLRKpgtRv6CAmUobU-1KBfqtTuyHpdm9OqUkf5L0SegZvgyLoingfwryO9eMeoMKjpHGnDkPwS_CAVoMe8P0Ajr5nC4ZZtCj6v3_UIRH8I-hsGJxiIilnm6UmggrVocw0jk2s8h1yXVXQpUBEe7hUdeI9jAZcNzy4Bkw3v4DDzgipBFg9vBbyGyytRRQ_dmu_NOqzg2iLpgUqwOMopEfPS-OUff9NOsk8UK_tAarP_RGCEck_EzJGtdKTHAl5r4ZOxyh7sGehCD2ynA7_9PsHI82wlET_g5zHMiVM1QyxuMG9UiHyoK1KKNfu__eFwrir0Eoq4ZEglLGevR__oqAMRSGZj0TRt56jTpVd9JjsN06Uy5q3jdvsI5fUbdNAwNcN4huYauJkYf_7EFvl4y6tD679U-ulzG_phgQDOjy4Pgg9i6hlG3MXW15kGL4S9LP-n3AmtXl4kASDyRjvyohnW0FHu_xyOFFItXCYPbwW8hssrXc6AzY3U8-3MJX3-egBLi7PYbnOnSl3PDldLStVG0hITNYmZJmPf-dIRa_gBfpfzT35MsBo7N6LN_D8mgvUAtNklc8sXxx-OTTazCi4GnyGTj-GPcsoI_bDOd8Ma4TjpmAmBgBE71L85ZaYOBYWX8UjQ9mH6USLMQjeRAqbTvnp9bBOY8lujlWPljn87rOw4Xp3h2PHT0uw_D-j0cqQvw9oyEOp_uQSuYvLd_TDGTPelGw5uDH27dWi0o4kaE8Ich_qCYvh_QGQx2Qa1NZi5E38QGc1TE52rft2hsGublm-iZggkaL9NJRZN_F-zUlvRWh8HfcFb6b2kMb4Do7y-b-De0rL-F5kimWV6YBZNo-eHvK0TihL_ekkvgqc45ggkUpG405w9CXKFq5LhImb3BCguu2D-tqLGlSrIfnXI3KxH-1_GqjSgzASAlEMfER0v0gFfTyOLRiwQ&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukPEjrgDbFhhExSLFNFAEtGMGujCyoaYo5oJoFpfJq49K8YocDyIQA6Jy8p-tcVlU-HV1nX3dLhT1g&si=1&oref=cabb8d0a573855393fc5a8428775192c&optunit=90JrsRmskQmvkaH9PT8uzq0rozPkVpWr&rb=_aNNb9GLoJU&rr=1&abtg=0
IP 108.168.193.189:0
Hash 7d9f88d673643f7abe12a98869ae021b
130735fd8513280aa19423d1976ab17e089e3323
6c9b25969cb3bee74338a7850d50f7003d7cd150a93e24899b103c5d21176584
Analyzer Verdict Alert quad9 Sinkholed
GET /adServe/domainClick?ai=LyBVgUe5lplnDYVH6EgfSGLDGDeh2LIKPljn87rOw4VolUYUxou7GCNVogP4xVqLabER9mUYfWKF84nK-UE1McvQ9Ydflp_05PxZjKusRbSiVpBRScDu3B5UFm8PDYvoizI-QW5avn9yYcD6VfbcrgpFcqQOuHyWBzsCAd-cQn7F64uF7AWEoZ6N4GofN4O0aXXCukVPxR9VgMHGtAiLVltENCzsnLRKpgtRv6CAmUobU-1KBfqtTuyHpdm9OqUkf5L0SegZvgyLoingfwryO9eMeoMKjpHGnDkPwS_CAVoMe8P0Ajr5nC4ZZtCj6v3_UIRH8I-hsGJxiIilnm6UmggrVocw0jk2s8h1yXVXQpUBEe7hUdeI9jAZcNzy4Bkw3v4DDzgipBFg9vBbyGyytRRQ_dmu_NOqzg2iLpgUqwOMopEfPS-OUff9NOsk8UK_tAarP_RGCEck_EzJGtdKTHAl5r4ZOxyh7sGehCD2ynA7_9PsHI82wlET_g5zHMiVM1QyxuMG9UiHyoK1KKNfu__eFwrir0Eoq4ZEglLGevR__oqAMRSGZj0TRt56jTpVd9JjsN06Uy5q3jdvsI5fUbdNAwNcN4huYauJkYf_7EFvl4y6tD679U-ulzG_phgQDOjy4Pgg9i6hlG3MXW15kGL4S9LP-n3AmtXl4kASDyRjvyohnW0FHu_xyOFFItXCYPbwW8hssrXc6AzY3U8-3MJX3-egBLi7PYbnOnSl3PDldLStVG0hITNYmZJmPf-dIRa_gBfpfzT35MsBo7N6LN_D8mgvUAtNklc8sXxx-OTTazCi4GnyGTj-GPcsoI_bDOd8Ma4TjpmAmBgBE71L85ZaYOBYWX8UjQ9mH6USLMQjeRAqbTvnp9bBOY8lujlWPljn87rOw4Xp3h2PHT0uw_D-j0cqQvw9oyEOp_uQSuYvLd_TDGTPelGw5uDH27dWi0o4kaE8Ich_qCYvh_QGQx2Qa1NZi5E38QGc1TE52rft2hsGublm-iZggkaL9NJRZN_F-zUlvRWh8HfcFb6b2kMb4Do7y-b-De0rL-F5kimWV6YBZNo-eHvK0TihL_ekkvgqc45ggkUpG405w9CXKFq5LhImb3BCguu2D-tqLGlSrIfnXI3KxH-1_GqjSgzASAlEMfER0v0gFfTyOLRiwQ&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukPEjrgDbFhhExSLFNFAEtGMGujCyoaYo5oJoFpfJq49K8YocDyIQA6Jy8p-tcVlU-HV1nX3dLhT1g&si=1&oref=cabb8d0a573855393fc5a8428775192c&optunit=90JrsRmskQmvkaH9PT8uzq0rozPkVpWr&rb=_aNNb9GLoJU&rr=1&abtg=0 HTTP/1.1
Host: p226681.mybettermb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://applicationgrabb.com/
Connection: keep-alive
Cookie: rhid=82328810175
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 08 Nov 2022 04:37:03 GMT
content-type: text/html;charset=ISO-8859-1
vary: Accept-Encoding
set-cookie: rhid=82328810175; Max-Age=15552000; Expires=Sun, 07-May-2023 04:37:03 GMT; Domain=mybettermb.com; Path=/; SameSite=None; secure;
loi=ad_1312948_off_756142_aff_13719_cid_226681-APPLICATIONGRABB.COM_ts_1667882223; Max-Age=3600; Expires=Tue, 08-Nov-2022 05:37:03 GMT; Domain=mybettermb.com; Path=/; SameSite=None; secure;
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde9b751e-0e32-4ea5-900c-3462f6158d52.jpeg
34.120.237.76200 OK 3.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde9b751e-0e32-4ea5-900c-3462f6158d52.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 72231937a3dcac7e725011cda50e6a5e
13e766c1e33f7d880985a52ad2b8c9a90b63551e
3e5bd9710e41ceff548e4f08a0aacc4ef2f4d790c307b2ab87f38c6ecd72447f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde9b751e-0e32-4ea5-900c-3462f6158d52.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3227
x-amzn-requestid: bfacf4b1-4364-476a-958b-3d3d461fcedc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bQALBHzYIAMFg9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63697a46-5d8c327759b3b17f0ff22c2f;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 21:36:06 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: QOjthemjPimoKV0_te3_qO_TUM8AehFNf_9GUpCIULCzt4EeMrNi5A==
via: 1.1 25b9a991f871f75614e7f92f97b136a4.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Mon, 07 Nov 2022 21:56:07 GMT
age: 24056
etag: "13e766c1e33f7d880985a52ad2b8c9a90b63551e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53771fc6-60e5-4f18-8cc7-e8411e2b99d5.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53771fc6-60e5-4f18-8cc7-e8411e2b99d5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bcff76df653cc2141d328013181ada9e
9343a49b3846f73e34d32a6bc7569a1c67e89894
affab8aead0d38958a7232bb8a866fffdb85b243174968f6b1bea220ae0152d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53771fc6-60e5-4f18-8cc7-e8411e2b99d5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5325
x-amzn-requestid: 6fe63702-6974-4a3d-82ba-9636858f1f7b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bQA1cHPxoAMFjCg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63697b55-593b06387844528377de364d;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 21:40:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: T5totlLjxjd4OgFCxpIYsyz3u5vgI-vJH0qvw7wQ96X_sr8PfMDbbw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Mon, 07 Nov 2022 21:56:33 GMT
etag: "9343a49b3846f73e34d32a6bc7569a1c67e89894"
content-type: image/jpeg
age: 24030
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 96791bd486db22c41012d25318835bdf
b32c813f16b84a6b2660bd527843da5e368af8eb
61a4589c35910af9f8d20ff0c7eca296a77a336ab00730573fe9ce7cf2cc72c5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 08 Nov 2022 04:37:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 96791bd486db22c41012d25318835bdf
b32c813f16b84a6b2660bd527843da5e368af8eb
61a4589c35910af9f8d20ff0c7eca296a77a336ab00730573fe9ce7cf2cc72c5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 08 Nov 2022 04:37:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 03fc468285706210a3ce339d5a223c61
fd32b7fa20b5c53cc2aebc09a3defe4c890f61be
9401d1803a9bac1dd2297405f8cf32dffdc375912ccc1c7bcf884f59a0ed64ab
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 08 Nov 2022 04:37:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Permanent+Marker&display=swap
142.250.74.10200 OK 30 kB URL HTTP/2 fonts.googleapis.com/css?family=Permanent+Marker&display=swap
IP 142.250.74.10:0
Hash 7f5602f6e5ed25c44ba0105c0e07ac3f
485f7f3cc6d9cb9276369cd381de44a39350d1ea
aa90dd143464ed13ac0ff1256cb5379ec77825311d958be04bab655ab88c9f29
GET /css?family=Permanent+Marker&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brilliantsparklers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 08 Nov 2022 04:37:04 GMT
date: Tue, 08 Nov 2022 04:37:04 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 03fc468285706210a3ce339d5a223c61
fd32b7fa20b5c53cc2aebc09a3defe4c890f61be
9401d1803a9bac1dd2297405f8cf32dffdc375912ccc1c7bcf884f59a0ed64ab
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 08 Nov 2022 04:37:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 8d4d3fa5e31d2e3c5a488269c9b7889b
ad3bdf670de75ebb970cb592301bfb4dc95aa479
3412f9b25ba1ef6a9f129ee38b7828e6de50f25e9f9ea224fedf8007bd150303
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 08 Nov 2022 04:37:04 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 07 Nov 2022 21:03:15 GMT
Expires: Tue, 08 Nov 2022 21:03:15 GMT
ETag: "ad3bdf670de75ebb970cb592301bfb4dc95aa479"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
r.srvtrck.com/v1/redirect?type=linkId&id=51274171261f4127893f606d331eeb96&api_key=5ed14daaa1c0329648dece1d45476aae&site_id=e8163aa776dd41118af791b3cddacb52&dch=feed&ad_t=advertiser&yk_tag=-no--
104.19.168.96302 Found 0 B URL HTTP/2 r.srvtrck.com/v1/redirect?type=linkId&id=51274171261f4127893f606d331eeb96&api_key=5ed14daaa1c0329648dece1d45476aae&site_id=e8163aa776dd41118af791b3cddacb52&dch=feed&ad_t=advertiser&yk_tag=-no--
IP 104.19.168.96:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v1/redirect?type=linkId&id=51274171261f4127893f606d331eeb96&api_key=5ed14daaa1c0329648dece1d45476aae&site_id=e8163aa776dd41118af791b3cddacb52&dch=feed&ad_t=advertiser&yk_tag=-no-- HTTP/1.1
Host: r.srvtrck.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 08 Nov 2022 04:37:04 GMT
content-length: 0
location: http://www.golfsenteret.no
p3p: CP="CAO PSA OUR"
set-cookie: ykuid=afc2e0c266104f90b6d22fe0db73cdcd; Domain=.srvtrck.com; Expires=Wed, 08-Nov-2023 04:37:04 GMT; Path=/
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 766b9c7e8e05b50f-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 8d4d3fa5e31d2e3c5a488269c9b7889b
ad3bdf670de75ebb970cb592301bfb4dc95aa479
3412f9b25ba1ef6a9f129ee38b7828e6de50f25e9f9ea224fedf8007bd150303
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 08 Nov 2022 04:37:04 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 07 Nov 2022 21:03:15 GMT
Expires: Tue, 08 Nov 2022 21:03:15 GMT
ETag: "ad3bdf670de75ebb970cb592301bfb4dc95aa479"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
www.golfsenteret.no/
23.227.38.65301 Moved Permanently 90 B IP 23.227.38.65:0
File type HTML document text\012- HTML document, ASCII text, with no line terminators
Hash b676df2ba3704d4fa03d1ca320a3abe7
076973952b6c7ade920764ea824881829afde7aa
3d4e9245b1870c49ccc62dcdeebcfe18de49d633404302e6ac2d8a5a84e00fc9
GET / HTTP/1.1
Host: www.golfsenteret.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 08 Nov 2022 04:37:04 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Sorting-Hat-PodId: 199
X-Sorting-Hat-ShopId: 50682036424
X-Storefront-Renderer-Rendered: 1
Location: https://golfsenteret.no/
X-Redirect-Reason: https_required
X-Frame-Options: DENY
Content-Security-Policy: frame-ancestors 'none';
X-ShopId: 50682036424
X-ShardId: 199
Vary: Accept
Server-Timing: processing;dur=15, db;dur=5, asn;desc="50304", edge;desc="OSL", country;desc="NO"
X-Shopify-Stage: production
X-Dc: gcp-europe-north1,europe-west1,gcp-europe-west1
X-Request-ID: ab343d06-2b49-4c31-aee2-a527d8fa38a9
X-Download-Options: noopen
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-XSS-Protection: 1; mode=block
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fHnq2wWeAVEvGYton%2BovQcr7hhnSRMWy0VnivliZxABWWrICkDqVrKVo0w43M7phQwm4fmG4F7hPR0IOOUVT8v0lZlpjmJ2LtiE0%2Bx5VtW09UQK%2B15NxnuAlgM4hfcrjLZkD4BQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 766b9c7f0989b50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2ce148be17e2500a5ec16f832c10c5c1
dbb604cb06275e3544e448ffaa70f91e9ca936ad
d568236d6496146d272d230336b17656759ec9970b36f8e5acfbc269e6cd4232
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D568236D6496146D272D230336B17656759EC9970B36F8E5ACFBC269E6CD4232"
Last-Modified: Sat, 05 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 08 Nov 2022 10:37:04 GMT
Date: Tue, 08 Nov 2022 04:37:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2ce148be17e2500a5ec16f832c10c5c1
dbb604cb06275e3544e448ffaa70f91e9ca936ad
d568236d6496146d272d230336b17656759ec9970b36f8e5acfbc269e6cd4232
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D568236D6496146D272D230336B17656759EC9970B36F8E5ACFBC269E6CD4232"
Last-Modified: Sat, 05 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 08 Nov 2022 10:37:04 GMT
Date: Tue, 08 Nov 2022 04:37:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b1a4c43886143e47a7c2e691c27249b
be12806a83e4deb6d1390f1aa781ae3e2cf95124
33e5f3ff41511e2a1d2b5ce11df348c8a6c0e78900fdef20755d32b15bd6ce31
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "33E5F3FF41511E2A1D2B5CE11DF348C8A6C0E78900FDEF20755D32B15BD6CE31"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10914
Expires: Tue, 08 Nov 2022 07:38:58 GMT
Date: Tue, 08 Nov 2022 04:37:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2c68a2459b28331fb5edab8a80d16430
3bc0e31f191a03d7a895e9c4bffac5467ff2511b
53d6c7bbfe4c697062d01c4c785e81181003379bf0614aae0f8f5639d9ffd2df
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "53D6C7BBFE4C697062D01C4C785E81181003379BF0614AAE0F8F5639D9FFD2DF"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6490
Expires: Tue, 08 Nov 2022 06:25:14 GMT
Date: Tue, 08 Nov 2022 04:37:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b1a4c43886143e47a7c2e691c27249b
be12806a83e4deb6d1390f1aa781ae3e2cf95124
33e5f3ff41511e2a1d2b5ce11df348c8a6c0e78900fdef20755d32b15bd6ce31
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "33E5F3FF41511E2A1D2B5CE11DF348C8A6C0E78900FDEF20755D32B15BD6CE31"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10914
Expires: Tue, 08 Nov 2022 07:38:58 GMT
Date: Tue, 08 Nov 2022 04:37:04 GMT
Connection: keep-alive
cdn.shopify.com/s/files/1/0506/8203/6424/files/GF-Logo-Stor_300x300.png?v=1642489588
162.159.135.68200 OK 5.1 kB URL HTTP/2 cdn.shopify.com/s/files/1/0506/8203/6424/files/GF-Logo-Stor_300x300.png?v=1642489588
IP 162.159.135.68:0
File type ISO Media, AVIF Image\012- data
Hash 339724119e611d66ab614f7d77a7ea05
602d3298b75dffb23f71bc55c1818f3f231a46b1
76da9c6d5322b29701f2e4ab3c646c8bb3b6f67d05bd03da8335f5c1ebb00665
GET /s/files/1/0506/8203/6424/files/GF-Logo-Stor_300x300.png?v=1642489588 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 08 Nov 2022 04:37:04 GMT
content-type: image/avif
content-length: 5130
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0506/8203/6424/files/GF-Logo-Stor_300x300.png>; rel="canonical"
server-timing: imagery;dur=669.583, imageryFetch;dur=117.603, imageryProcess;dur=550.719;desc="image"
source-length: 66090
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: a9d23827-312f-4233-b44d-d477b1d3a2e9
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Sat, 29 Oct 2022 02:07:44 GMT
cf-cache-status: HIT
age: 461597
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Wntrkm%2Bpzxq6s1SmvZnwBXDVqA0zeBbuT3JUzAte9LukuOKmVk38vJV6kfu2Ul7%2Fm8NbUpvFxXF8Bx6ti%2FgIn65nQvzmqCY4d4n5PRtI5wXDes%2BXerVVVWSWHBl5l84tOg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 766b9c820f4db523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.shopifycdn.com/oswald/oswald_n4.a5ee385bde39969d807f7f1297bf51d73fbf3c1e.woff2?h1=Z29sZnNlbnRlcmV0Lm5v&hmac=2ba0585dad79a179eaeee18ad0a6d666e2c637a94b518b7b811f0beae5c2442d
162.159.129.71200 OK 18 kB URL HTTP/2 fonts.shopifycdn.com/oswald/oswald_n4.a5ee385bde39969d807f7f1297bf51d73fbf3c1e.woff2?h1=Z29sZnNlbnRlcmV0Lm5v&hmac=2ba0585dad79a179eaeee18ad0a6d666e2c637a94b518b7b811f0beae5c2442d
IP 162.159.129.71:0
File type Web Open Font Format (Version 2), TrueType, length 18500, version 4.6553\012- data
Hash 888735abae3f16e2958a0830b030a091
a5ee385bde39969d807f7f1297bf51d73fbf3c1e
9c3944b769ddf44d71901f79e6c659631ac29553689e0fde093be7e0636625fd
GET /oswald/oswald_n4.a5ee385bde39969d807f7f1297bf51d73fbf3c1e.woff2?h1=Z29sZnNlbnRlcmV0Lm5v&hmac=2ba0585dad79a179eaeee18ad0a6d666e2c637a94b518b7b811f0beae5c2442d HTTP/1.1
Host: fonts.shopifycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://golfsenteret.no
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 08 Nov 2022 04:37:04 GMT
content-type: font/woff2
content-length: 18500
cf-ray: 766b9c820ae60b55-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 1123652
cache-control: max-age=2629800, immutable
last-modified: Thu, 20 Oct 2022 22:19:17 GMT
link: <https://imagery4-fonts.shopifysvc.com/premium-fonts/oswald/oswald_n4.a5ee385bde39969d807f7f1297bf51d73fbf3c1e.woff2>; rel="canonical"
strict-transport-security: max-age=15552000; includeSubDomains; preload
cf-cache-status: HIT
server-timing: imagery;dur=28.483, imageryFetch;dur=28.180
timing-allow-origin: *
x-content-type-options: nosniff
x-dc: gcp-us-east1,us-east1
x-request-id: 7047da68-472e-492b-af0e-c16aec20a0da
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ezyOkyCLiiy9cjQG9AqVdMGr3o%2BIHPD1tRfg3YJXtLZEnXm96IjHI0Gi17x1Gw3aheK%2FA1uYvof5662t%2BYTc0AdKzYoKPSqlwkm4QyVidwNdrvPFm%2Bdr9l2O1ZJ0P%2BA%2FoxUK%2FlQL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2c68a2459b28331fb5edab8a80d16430
3bc0e31f191a03d7a895e9c4bffac5467ff2511b
53d6c7bbfe4c697062d01c4c785e81181003379bf0614aae0f8f5639d9ffd2df
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "53D6C7BBFE4C697062D01C4C785E81181003379BF0614AAE0F8F5639D9FFD2DF"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6490
Expires: Tue, 08 Nov 2022 06:25:14 GMT
Date: Tue, 08 Nov 2022 04:37:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2c68a2459b28331fb5edab8a80d16430
3bc0e31f191a03d7a895e9c4bffac5467ff2511b
53d6c7bbfe4c697062d01c4c785e81181003379bf0614aae0f8f5639d9ffd2df
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "53D6C7BBFE4C697062D01C4C785E81181003379BF0614AAE0F8F5639D9FFD2DF"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6490
Expires: Tue, 08 Nov 2022 06:25:14 GMT
Date: Tue, 08 Nov 2022 04:37:04 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d6dbaa7f1a697305cfaabdc859cdb9d3
680fa363852fb33b9b76b83d3ba5c0a4c51499cb
2ccc20d4d484d91da7e9fb07056d62a620af07b21f495be49f54e7e83c988dda
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 08 Nov 2022 04:37:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.shopifycdn.com/oswald/oswald_n7.f71e68b857a7b8128a7629452b9c6bf9468356a7.woff2?h1=Z29sZnNlbnRlcmV0Lm5v&hmac=3bcc2b6ff406c72211e13328a78022212bd284c669851fd6a1be447ac1948cc8
162.159.129.71200 OK 19 kB URL HTTP/2 fonts.shopifycdn.com/oswald/oswald_n7.f71e68b857a7b8128a7629452b9c6bf9468356a7.woff2?h1=Z29sZnNlbnRlcmV0Lm5v&hmac=3bcc2b6ff406c72211e13328a78022212bd284c669851fd6a1be447ac1948cc8
IP 162.159.129.71:0
File type Web Open Font Format (Version 2), TrueType, length 19080, version 4.6553\012- data
Hash a00f503ce2b5c30a4f74198fde864012
f71e68b857a7b8128a7629452b9c6bf9468356a7
fbe5c6d5f501249b3a91381155a58a017883450ea5483688a98014a16963066a
GET /oswald/oswald_n7.f71e68b857a7b8128a7629452b9c6bf9468356a7.woff2?h1=Z29sZnNlbnRlcmV0Lm5v&hmac=3bcc2b6ff406c72211e13328a78022212bd284c669851fd6a1be447ac1948cc8 HTTP/1.1
Host: fonts.shopifycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://golfsenteret.no
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 08 Nov 2022 04:37:05 GMT
content-type: font/woff2
content-length: 19080
cf-ray: 766b9c822aef0b55-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 1150934
cache-control: max-age=2629800, immutable
last-modified: Fri, 14 Oct 2022 05:01:03 GMT
link: <https://imagery4-fonts.shopifysvc.com/premium-fonts/oswald/oswald_n7.f71e68b857a7b8128a7629452b9c6bf9468356a7.woff2>; rel="canonical"
strict-transport-security: max-age=15552000; includeSubDomains; preload
cf-cache-status: HIT
server-timing: imagery;dur=19.166, imageryFetch;dur=18.808
timing-allow-origin: *
x-content-type-options: nosniff
x-dc: gcp-us-east1,us-east1
x-request-id: e386f7c4-421e-4f12-a1b5-1695c2c214d7
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oEMiyVV7GLNibjtQXGdqMH33qX5Qzha79qf%2BZ3imIUqxhITKNeDK5C0MHjO2lApmdo7%2FHbcJ41dblHkJytND6xUbH9ojztcbM2%2BNcnNDRgSlK0JB%2FccM4bmvCDbzqmgwF5rgT%2FEP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2c68a2459b28331fb5edab8a80d16430
3bc0e31f191a03d7a895e9c4bffac5467ff2511b
53d6c7bbfe4c697062d01c4c785e81181003379bf0614aae0f8f5639d9ffd2df
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "53D6C7BBFE4C697062D01C4C785E81181003379BF0614AAE0F8F5639D9FFD2DF"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6489
Expires: Tue, 08 Nov 2022 06:25:14 GMT
Date: Tue, 08 Nov 2022 04:37:05 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d6dbaa7f1a697305cfaabdc859cdb9d3
680fa363852fb33b9b76b83d3ba5c0a4c51499cb
2ccc20d4d484d91da7e9fb07056d62a620af07b21f495be49f54e7e83c988dda
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 08 Nov 2022 04:37:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b1a4c43886143e47a7c2e691c27249b
be12806a83e4deb6d1390f1aa781ae3e2cf95124
33e5f3ff41511e2a1d2b5ce11df348c8a6c0e78900fdef20755d32b15bd6ce31
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "33E5F3FF41511E2A1D2B5CE11DF348C8A6C0E78900FDEF20755D32B15BD6CE31"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10913
Expires: Tue, 08 Nov 2022 07:38:58 GMT
Date: Tue, 08 Nov 2022 04:37:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a16fb2a600d987015406807f458a65d0
88ba788fbd8483e5ea27248481977fb086145288
e9396ba16a5151d416b5d1832bd112a21e9149aa1e6313de4c1a33610126ea41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E9396BA16A5151D416B5D1832BD112A21E9149AA1E6313DE4C1A33610126EA41"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5817
Expires: Tue, 08 Nov 2022 06:14:02 GMT
Date: Tue, 08 Nov 2022 04:37:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a16fb2a600d987015406807f458a65d0
88ba788fbd8483e5ea27248481977fb086145288
e9396ba16a5151d416b5d1832bd112a21e9149aa1e6313de4c1a33610126ea41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E9396BA16A5151D416B5D1832BD112A21E9149AA1E6313DE4C1A33610126EA41"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5817
Expires: Tue, 08 Nov 2022 06:14:02 GMT
Date: Tue, 08 Nov 2022 04:37:05 GMT
Connection: keep-alive
golfsenteret.no/
23.227.38.65200 OK 108 kB IP 23.227.38.65:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8203)
Size 108 kB (108307 bytes)
Hash 3efb7a6775367c14fa996943ec53f003
053228398928ff8053c52ea581aab035e6514c1c
93167daeb3adc8fd48bb046945bb606427c45bee0469f0ec8d248db3546c1634
GET / HTTP/1.1
Host: golfsenteret.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 08 Nov 2022 04:37:04 GMT
content-type: text/html; charset=utf-8
x-sorting-hat-podid: 199
x-sorting-hat-shopid: 50682036424
x-storefront-renderer-rendered: 1
set-cookie: keep_alive=f18bc009-0470-4a20-863b-9a1e7d77d024; path=/; expires=Tue, 08 Nov 2022 05:07:04 GMT; HttpOnly; SameSite=Lax
secure_customer_sig=; path=/; expires=Wed, 08 Nov 2023 04:37:04 GMT; secure; HttpOnly; SameSite=Lax
localization=NO; path=/; expires=Wed, 08 Nov 2023 04:37:04 GMT
_orig_referrer=; Expires=Tue, 22-Nov-22 04:37:04 GMT; Domain=golfsenteret.no; Path=/; HttpOnly; SameSite=Lax
_landing_page=%2F; Expires=Tue, 22-Nov-22 04:37:04 GMT; Domain=golfsenteret.no; Path=/; HttpOnly; SameSite=Lax
_y=8a08a587-49fe-45c3-b362-9624ed057190; Expires=Wed, 08-Nov-23 04:37:04 GMT; Domain=golfsenteret.no; Path=/; SameSite=Lax
_s=72444ea0-e286-4793-b4c8-d46dfe5f01e3; Expires=Tue, 08-Nov-22 05:07:04 GMT; Domain=golfsenteret.no; Path=/; SameSite=Lax
_shopify_y=8a08a587-49fe-45c3-b362-9624ed057190; Expires=Wed, 08-Nov-23 04:37:04 GMT; Domain=golfsenteret.no; Path=/; SameSite=Lax
_shopify_s=72444ea0-e286-4793-b4c8-d46dfe5f01e3; Expires=Tue, 08-Nov-22 05:07:04 GMT; Domain=golfsenteret.no; Path=/; SameSite=Lax
link: <https://cdn.shopify.com>; rel="preconnect", <https://cdn.shopify.com>; rel="preconnect"; crossorigin
x-alternate-cache-key: cacheable:481af9c9d2fe918db18c05a652298706
x-cache: hit, server
x-frame-options: DENY
content-security-policy: block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
strict-transport-security: max-age=7889238
x-shopid: 50682036424
x-shardid: 199
vary: Accept
content-language: nb
server-timing: processing;dur=18, db;dur=7, asn;desc="50304", edge;desc="OSL", country;desc="NO"
x-shopify-stage: production
x-dc: gcp-europe-north1,europe-west1,gcp-europe-west1
x-request-id: 9622bfad-a17e-40a5-968a-ba9a7d4a3566
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FmhkmhodDhnY6kFnoIJu9mCJCnuZEWIa26Drb5%2F%2BIxYHMyjST8TrE1O96vZEtM7%2Fj9Ga1H7anr8AKCHdD7HoMSxvupBZYkmCGUJBr%2Bd0bfVBi1NZ0QKihLYZhbktn5ZQmg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 766b9c80bd0b0b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-587LB3J
142.250.74.168200 OK 63 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-587LB3J
IP 142.250.74.168:0
File type ASCII text, with very long lines (3895)
Hash 0aa1a3354cfa23f06dcc22ca4ae28c50
8656075a6d1e13c167654a8d9794b231249c5127
0c312eda7f7f29041d678116fba0785811e247aaca4a2cf46d073c7341f24f86
GET /gtm.js?id=GTM-587LB3J HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 08 Nov 2022 04:37:05 GMT
expires: Tue, 08 Nov 2022 04:37:05 GMT
cache-control: private, max-age=900
last-modified: Tue, 08 Nov 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 63180
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d6dbaa7f1a697305cfaabdc859cdb9d3
680fa363852fb33b9b76b83d3ba5c0a4c51499cb
2ccc20d4d484d91da7e9fb07056d62a620af07b21f495be49f54e7e83c988dda
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 08 Nov 2022 04:37:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
monorail-edge.shopifysvc.com/unstable/produce_batch
162.159.129.71200 OK 0 B URL HTTP/2 monorail-edge.shopifysvc.com/unstable/produce_batch
IP 162.159.129.71:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /unstable/produce_batch HTTP/1.1
Host: monorail-edge.shopifysvc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 219
Origin: https://golfsenteret.no
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 08 Nov 2022 04:37:05 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: https://golfsenteret.no
access-control-max-age: 86400
x-request-id: b60a2705-d27b-43e6-8602-465e6ebe6049
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=67vBY%2FgQnKVRuYzie44A22dpGk6tyZLl4WIfn8B0e02oNuVUaVBj0YAEqgJOSzgRNGpyZY2YHNqCCBhTe8fq3AAAeYZye5a8b2bPJeZpqSgxfEJpAC2nXyGBMN%2B4X%2BRzCb%2BChiVJ%2FO8nvhpk%2B0w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 766b9c827c09b4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a16fb2a600d987015406807f458a65d0
88ba788fbd8483e5ea27248481977fb086145288
e9396ba16a5151d416b5d1832bd112a21e9149aa1e6313de4c1a33610126ea41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E9396BA16A5151D416B5D1832BD112A21E9149AA1E6313DE4C1A33610126EA41"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5817
Expires: Tue, 08 Nov 2022 06:14:02 GMT
Date: Tue, 08 Nov 2022 04:37:05 GMT
Connection: keep-alive
cdn.shopify.com/s/trekkie.storefront.9d90693308bbb917b858b289003f7503005076ae.min.js
162.159.135.68200 OK 75 kB URL HTTP/2 cdn.shopify.com/s/trekkie.storefront.9d90693308bbb917b858b289003f7503005076ae.min.js
IP 162.159.135.68:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 943f48181a3cf64ed2fdc80e2295040e
37eaa384ae357084c37c3ca4e17ff76f7d4261ba
1160a4416d21578bb5bb3f1ba40b35cb43cac213d45d19535eaab0136d89145d
GET /s/trekkie.storefront.9d90693308bbb917b858b289003f7503005076ae.min.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 08 Nov 2022 04:37:04 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31536000
link: <https://cdn.shopify.com/s/trekkie.storefront.9d90693308bbb917b858b289003f7503005076ae.min.js>; rel="canonical"
server-timing: imagery;dur=78.846, imageryFetch;dur=78.700
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 0c255297-fc28-4cd6-aeb7-0463cbd5a13f
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Thu, 03 Nov 2022 14:24:45 GMT
cf-cache-status: HIT
age: 396738
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3%2F%2BkDxiJB0%2BFPZrf3y5vXQm5xL0n5Y2fIcpdh7qbERzpSDsN22y0jznpyCpOsiSFUduVYaS26ZIe1SH8seOi32Tz1Lr%2Fp7%2FfE732dNBtWxC75mZGvM4tQiLO3QOikQEhxQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 766b9c820f54b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
monorail-edge.shopifysvc.com/unstable/produce_batch
162.159.129.71200 OK 0 B URL HTTP/2 monorail-edge.shopifysvc.com/unstable/produce_batch
IP 162.159.129.71:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /unstable/produce_batch HTTP/1.1
Host: monorail-edge.shopifysvc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 479
Origin: https://golfsenteret.no
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 08 Nov 2022 04:37:05 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: https://golfsenteret.no
access-control-max-age: 86400
x-request-id: e5827382-88b1-4f12-812e-ec68b1f15e6d
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=goB9wNoooOzBOk3Czjg4spVN%2BugAQwHPD4QzgZL36akAIHH68hgd84QY4XwUe0VhrWT6ZPNElQauUk3OUiblpIdt%2F7v83%2FCWWduFS0683LipRWVgv0%2BQKRVfREPnhRW9HF13ukAsPayuWdGeGtY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 766b9c827c07b4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s.kk-resources.com/leadtag.js?shop=golfsenteret-vestfold-as.myshopify.com
143.204.55.57200 OK 2.6 kB URL HTTP/1.1 s.kk-resources.com/leadtag.js?shop=golfsenteret-vestfold-as.myshopify.com
IP 143.204.55.57:0
File type C source, ASCII text, with very long lines (6910)
Hash b9c7aa9898d0e7b5d8dfa27c81eda1ac
3e22a4f4ac1fd469128de60e1a80433513242071
980531f0a81016e3a7a4c3fa56f75e7b791f1f4c09296992221bd766b91a53a0
GET /leadtag.js?shop=golfsenteret-vestfold-as.myshopify.com HTTP/1.1
Host: s.kk-resources.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
Content-Length: 2595
Connection: keep-alive
X-Gravitee-Transaction-Id: 20e3cbb4-c75f-46a0-a3cb-b4c75f66a029
X-Gravitee-Request-Id: 20e3cbb4-c75f-46a0-a3cb-b4c75f66a029
ETag: "05e089e0c08fd98ee6b4f6497ec87752b123fc2f"
Request-Time: 4
Accept-Ranges: bytes
Cache-Control: public, max-age=3600
Last-Modified: Tue, 12 Jul 2022 13:51:05 GMT
Content-Encoding: gzip
Date: Tue, 08 Nov 2022 04:34:08 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: DjjeA8epudNLjq-gulYqS3bkLazI69VWXyXOX96QRfGo49jTTIvsFA==
Age: 177
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 31b623d9ac7204ce2c473719ee1ce2a2
d716adc21e960a96ca6a1beb8c9c8aa7e6b5fd95
f364d39c6f4d62052814b69f75d2f6dfb335d1cc35b87ec0b6743333bc24e274
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 08 Nov 2022 04:37:05 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 05 Nov 2022 17:02:00 GMT
Expires: Sat, 12 Nov 2022 17:01:59 GMT
Etag: "d716adc21e960a96ca6a1beb8c9c8aa7e6b5fd95"
Cache-Control: max-age=389693,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 766b9c83fae6b506-OSL
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash e2bd54956d0f98ba9a9869c73d0b6e81
1c48b21a07487715b246bb3d523a851dc8caa8ec
4dad8015a397e2813bb122e39152fa89bffc34ddbb4896812c53ca73a972f003
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=106246
Date: Tue, 08 Nov 2022 04:37:05 GMT
Etag: "6368c7ce-1d7"
Expires: Wed, 09 Nov 2022 10:07:51 GMT
Last-Modified: Mon, 07 Nov 2022 08:54:38 GMT
Server: ECS (bsa/EB11)
X-Cache: Miss from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 8tzSjUWJuv6BjMRrvO_itdbkuyqLE-5IolrpwgwraSG7-YKCV5kehw==
Age: 4393
cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-ab38017af3cf759db0af0bbd1e75229f6a189f5bf1f2db42169630998b969021.js
162.159.135.68200 OK 3.4 kB URL HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-ab38017af3cf759db0af0bbd1e75229f6a189f5bf1f2db42169630998b969021.js
IP 162.159.135.68:0
File type ASCII text, with very long lines (10175), with no line terminators
Hash 702c4c48cd3b6daad9356c15c0df6d6c
4f3c44b98faa6b19bd02004af50b4de92ba108e7
2613838bc42d73b11d16c04fb3e6d46c97621f5226e6988b22bf2caf8d0c7196
GET /shopifycloud/shopify/assets/storefront/load_feature-ab38017af3cf759db0af0bbd1e75229f6a189f5bf1f2db42169630998b969021.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://golfsenteret.no
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 08 Nov 2022 04:37:05 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-ab38017af3cf759db0af0bbd1e75229f6a189f5bf1f2db42169630998b969021.js>; rel="canonical"
server-timing: imagery;dur=17.044, imageryFetch;dur=16.902
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: b2d97619-3457-4e38-a7be-d1e4c5a5edb5
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Fri, 26 Aug 2022 04:30:43 GMT
cf-cache-status: HIT
age: 6393982
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ufq8Y4F9mvEYd76DaPy5cjy996LzLLPNg4imUvMzCt8mYRAMwIUYYsSqjwiB0ILXZAzSCQdtsH6eSCJombKFuA8cRdTR3vWV5DdasR3i2SXY6AfTaweqRGDChJgZ625Asg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 766b9c825ef2b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s3.eu-west-1.amazonaws.com/production-klarna-il-shopify-osm/ffcb34645ba24ad723d6bc0f63fc78fc8b45d14b/golfsenteret-vestfold-as.myshopify.com-1663747035788.js?shop=golfsenteret-vestfold-as.myshopify.com
52.218.30.203200 OK 2.1 kB URL HTTP/1.1 s3.eu-west-1.amazonaws.com/production-klarna-il-shopify-osm/ffcb34645ba24ad723d6bc0f63fc78fc8b45d14b/golfsenteret-vestfold-as.myshopify.com-1663747035788.js?shop=golfsenteret-vestfold-as.myshopify.com
IP 52.218.30.203:0
File type ASCII text, with very long lines (2942)
Hash f02328919a93bbd935e99cc7912b4c0e
56471256c94609585affb93e27b9a01f94485e22
10e839f50a0de66328a69bfe69e08e1cc3ac38ada288fbaf28ab74f0b439adcc
GET /production-klarna-il-shopify-osm/ffcb34645ba24ad723d6bc0f63fc78fc8b45d14b/golfsenteret-vestfold-as.myshopify.com-1663747035788.js?shop=golfsenteret-vestfold-as.myshopify.com HTTP/1.1
Host: s3.eu-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: VKx4m36gVCeD9WX9k+ZofJD9kN0jrvemgsJ+qMZTLTOGU2GgvYpkSxcxG6fbckjVsYNRWsFtNwg=
x-amz-request-id: 9JX1TCPV2EBMKSFM
Date: Tue, 08 Nov 2022 04:37:06 GMT
Last-Modified: Wed, 21 Sep 2022 07:57:16 GMT
x-amz-expiration: expiry-date="Fri, 22 Sep 2023 00:00:00 GMT", rule-id="NDY0MzI3NGQtNzIyMS00MjYwLWJkM2YtZmI5NzBiMjU2ZDAy"
ETag: "f02328919a93bbd935e99cc7912b4c0e"
x-amz-server-side-encryption: AES256
Content-Encoding: gzip
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 2110
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash f1d43c522de372631c708dff98234e53
50063683e331450da226b749728706f525b6b29e
c1533f962d5342fd9755ccc0d9dcac5ed4ef5493fede5066608e43f830314678
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=137152
Content-Type: application/ocsp-response
Date: Tue, 08 Nov 2022 04:37:05 GMT
Etag: "636951b1-116"
Expires: Wed, 09 Nov 2022 18:42:57 GMT
Last-Modified: Mon, 07 Nov 2022 18:42:57 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d9e23a9bac6355d898d29c56c76a7b00
7cb358d9beb843c88c86b5c642a06ea5f5130229
e65a19ba171586388a4c1260cd602e4938f4a0de1fbe4cb622976d11a0615954
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3740
Cache-Control: max-age=96632
Content-Type: application/ocsp-response
Date: Tue, 08 Nov 2022 04:37:05 GMT
Etag: "6368a4cd-1d7"
Expires: Wed, 09 Nov 2022 07:27:37 GMT
Last-Modified: Mon, 07 Nov 2022 06:25:17 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Tue, 08 Nov 2022 02:41:09 GMT
expires: Tue, 08 Nov 2022 04:41:09 GMT
cache-control: public, max-age=7200
age: 6956
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 0ac10debd3a9ea8147a26d045bb93e6e
ff45f3442508e8695f2303701682ebdb6e016464
5dee7b453b2c72c07ff1d62432493a044507835a8031ea62edf2fa7cc26219b9
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: /I++HzSHTvD4XTdAtLan7WkutRSiaPXw6GINrmKhBAjo5mAAIRnTSytOkL5G1NkZhOS5pGXTGG4EX7UMWKWM1A==
content-length: 27337
x-fb-trip-id: 1904183273
date: Tue, 08 Nov 2022 04:37:05 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d9e23a9bac6355d898d29c56c76a7b00
7cb358d9beb843c88c86b5c642a06ea5f5130229
e65a19ba171586388a4c1260cd602e4938f4a0de1fbe4cb622976d11a0615954
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3740
Cache-Control: max-age=96632
Content-Type: application/ocsp-response
Date: Tue, 08 Nov 2022 04:37:05 GMT
Etag: "6368a4cd-1d7"
Expires: Wed, 09 Nov 2022 07:27:37 GMT
Last-Modified: Mon, 07 Nov 2022 06:25:17 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
cdn.shopify.com/shopifycloud/web-pixels-manager/0.0.172/browser.modern.js
162.159.135.68200 OK 12 kB URL HTTP/2 cdn.shopify.com/shopifycloud/web-pixels-manager/0.0.172/browser.modern.js
IP 162.159.135.68:0
File type Unicode text, UTF-8 text, with very long lines (31466), with no line terminators
Hash 0250f6682949c77efe7d4c8a7d8dd0f6
b7ca530b18737ece089fcd4af95841e9d3d165b9
f56afb55bf52256e17b71fa3f61602a7400e0e0fd9bc7cbf158713112b0af38a
GET /shopifycloud/web-pixels-manager/0.0.172/browser.modern.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 08 Nov 2022 04:37:04 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31536000
link: <https://cdn.shopify.com/shopifycloud/web-pixels-manager/0.0.172/browser.modern.js>; rel="canonical"
server-timing: imagery;dur=72.068, imageryFetch;dur=71.839
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: d7537449-398e-482e-a67d-8f3b869be92a
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Fri, 04 Nov 2022 16:43:50 GMT
cf-cache-status: HIT
age: 301994
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KTvxFfEB02arGknwwZADIDEZrgmXgZBPPBVRurVMqLT18xYD8JlZGS2VjDMmZ%2F%2FMSOtl93seHPzyCEjuvmDFk0csdR8ZSu1NQyJNTPhM%2FvsK06aLKrbl%2BFT1tT699e5zuQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 766b9c820f4bb523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
production-klarna-il-shopify-osm.s3.eu-west-1.amazonaws.com/ffcb34645ba24ad723d6bc0f63fc78fc8b45d14b/906.index.js
52.218.56.200200 OK 5.9 kB URL HTTP/1.1 production-klarna-il-shopify-osm.s3.eu-west-1.amazonaws.com/ffcb34645ba24ad723d6bc0f63fc78fc8b45d14b/906.index.js
IP 52.218.56.200:0
File type ASCII text, with very long lines (17513), with no line terminators
Hash 00f0f61c70fdfbb9cfe2d8cf0a235430
33e51dfbc2273017b21c1c2db0be1b0bd2f70085
2c58b69ff2d06e18b9e49140c1c51efa339ab71f4cc0b54fd27642f5a5490561
GET /ffcb34645ba24ad723d6bc0f63fc78fc8b45d14b/906.index.js HTTP/1.1
Host: production-klarna-il-shopify-osm.s3.eu-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: V91SCP/hqDLo/6iqdq7OpSlOdGlNrlJ2+jbc0/s4NOsZG1P8ZRocjMJGF7SOnG287oKXITBhKE0=
x-amz-request-id: 9JXBC860RWN8FR57
Date: Tue, 08 Nov 2022 04:37:06 GMT
Last-Modified: Mon, 05 Sep 2022 08:42:20 GMT
x-amz-expiration: expiry-date="Wed, 06 Sep 2023 00:00:00 GMT", rule-id="NDY0MzI3NGQtNzIyMS00MjYwLWJkM2YtZmI5NzBiMjU2ZDAy"
ETag: "00f0f61c70fdfbb9cfe2d8cf0a235430"
x-amz-server-side-encryption: AES256
Content-Encoding: gzip
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 5903
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-219320156-1&cid=957519029.1667882222&jid=157364781&gjid=1404315661&_gid=1374303614.1667882223&_u=YCDAgEABBAAAAGgCIAB~&z=1633477291
64.233.165.154200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-219320156-1&cid=957519029.1667882222&jid=157364781&gjid=1404315661&_gid=1374303614.1667882223&_u=YCDAgEABBAAAAGgCIAB~&z=1633477291
IP 64.233.165.154:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-219320156-1&cid=957519029.1667882222&jid=157364781&gjid=1404315661&_gid=1374303614.1667882223&_u=YCDAgEABBAAAAGgCIAB~&z=1633477291 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://golfsenteret.no
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://golfsenteret.no
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 08 Nov 2022 04:37:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-219320156-1&cid=957519029.1667882222&jid=964507001&gjid=1490474955&_gid=1374303614.1667882223&_u=YCDAAEAAAAAAACAAIAB~&z=1689749870
64.233.165.154200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-219320156-1&cid=957519029.1667882222&jid=964507001&gjid=1490474955&_gid=1374303614.1667882223&_u=YCDAAEAAAAAAACAAIAB~&z=1689749870
IP 64.233.165.154:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-219320156-1&cid=957519029.1667882222&jid=964507001&gjid=1490474955&_gid=1374303614.1667882223&_u=YCDAAEAAAAAAACAAIAB~&z=1689749870 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://golfsenteret.no
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://golfsenteret.no
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 08 Nov 2022 04:37:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-219320156-1&cid=957519029.1667882222&jid=1213105557&gjid=1675573529&_gid=1374303614.1667882223&_u=YCDAAUABBAAAAGgCIAB~&z=365383797
64.233.165.154200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-219320156-1&cid=957519029.1667882222&jid=1213105557&gjid=1675573529&_gid=1374303614.1667882223&_u=YCDAAUABBAAAAGgCIAB~&z=365383797
IP 64.233.165.154:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-219320156-1&cid=957519029.1667882222&jid=1213105557&gjid=1675573529&_gid=1374303614.1667882223&_u=YCDAAUABBAAAAGgCIAB~&z=365383797 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://golfsenteret.no
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://golfsenteret.no
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 08 Nov 2022 04:37:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
production-klarna-il-shopify-osm.s3.eu-west-1.amazonaws.com/ffcb34645ba24ad723d6bc0f63fc78fc8b45d14b/258.index.js
52.218.56.200200 OK 7.3 kB URL HTTP/1.1 production-klarna-il-shopify-osm.s3.eu-west-1.amazonaws.com/ffcb34645ba24ad723d6bc0f63fc78fc8b45d14b/258.index.js
IP 52.218.56.200:0
File type ASCII text, with very long lines (27997)
Hash b7c0eb5dbc0c7e9f220f476edc2caf97
caedc46a175d4d35a490b7850a695fcdbce712bc
177f65b0fd0791cdad43324cf967f6e4cf525b73b48cf0587152b6bcf902ba1a
GET /ffcb34645ba24ad723d6bc0f63fc78fc8b45d14b/258.index.js HTTP/1.1
Host: production-klarna-il-shopify-osm.s3.eu-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 9rnqYatBmSTaZOdB+SOYTi35IeavOYHbE4tQqfvR7SjMRJ+bZYUt+RjXZ4e1QvKBdggF/ZWi3Ss=
x-amz-request-id: 9JXAACYYXFW5XVYY
Date: Tue, 08 Nov 2022 04:37:06 GMT
Last-Modified: Mon, 05 Sep 2022 08:42:20 GMT
x-amz-expiration: expiry-date="Wed, 06 Sep 2023 00:00:00 GMT", rule-id="NDY0MzI3NGQtNzIyMS00MjYwLWJkM2YtZmI5NzBiMjU2ZDAy"
ETag: "b7c0eb5dbc0c7e9f220f476edc2caf97"
x-amz-server-side-encryption: AES256
Content-Encoding: gzip
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 7290
easygdpr.b-cdn.net/v/1553540745/gdpr.min.js?shop=golfsenteret-vestfold-as.myshopify.com
89.187.169.39403 Forbidden 926 B URL HTTP/2 easygdpr.b-cdn.net/v/1553540745/gdpr.min.js?shop=golfsenteret-vestfold-as.myshopify.com
IP 89.187.169.39:0
ASN #60068 Datacamp Limited
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (711)
Hash 12f3cc34b69eb7ee8f2d81f4cd7b8e58
ebc446513741ca075f419918b56d6001acf7ad09
f7a3345d29ea376d1e022250139b0b772ae1376ecdabe5a7b7647222446a72ec
GET /v/1553540745/gdpr.min.js?shop=golfsenteret-vestfold-as.myshopify.com HTTP/1.1
Host: easygdpr.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Tue, 08 Nov 2022 04:37:05 GMT
content-type: text/html
vary: Accept-Encoding
server: BunnyCDN-DE-755
cdn-requestid: aae3d36d8abd172cec9b6c1e13b4c56b
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash a9374206851834987bb6f42fdbde6965
1e7632ba7b83a2258cb88662d2fb2783d400dec3
854af7f8daaf516b72c709bf1c9e6ba2637431efac48d977c520440cb3b99dca
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 08 Nov 2022 04:37:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 3549d49ec9ef3b66f2f3da1f6172ef93
54fa67ac88099ed2d4cdf7e24c8b301c7a098d0b
0af6a29f343dcbc612e18ab821ae8555975e27c363d72205366a3c5bb85b7211
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 08 Nov 2022 04:37:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 01c1a1367e530a799bcaee7de89eefee
19d2450df87f1f3bb1c94e6e0bafbd60c7aead00
79cce6506b30bd3c699a700851db3254c2b909e559c54408b7d254b8e50003e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 08 Nov 2022 04:37:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 3549d49ec9ef3b66f2f3da1f6172ef93
54fa67ac88099ed2d4cdf7e24c8b301c7a098d0b
0af6a29f343dcbc612e18ab821ae8555975e27c363d72205366a3c5bb85b7211
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 08 Nov 2022 04:37:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 3549d49ec9ef3b66f2f3da1f6172ef93
54fa67ac88099ed2d4cdf7e24c8b301c7a098d0b
0af6a29f343dcbc612e18ab821ae8555975e27c363d72205366a3c5bb85b7211
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 08 Nov 2022 04:37:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-219320156-1&cid=957519029.1667882222&jid=1213105557&_u=YCDAAUABBAAAAGgCIAB~&z=2116803795
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-219320156-1&cid=957519029.1667882222&jid=1213105557&_u=YCDAAUABBAAAAGgCIAB~&z=2116803795
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-219320156-1&cid=957519029.1667882222&jid=1213105557&_u=YCDAAUABBAAAAGgCIAB~&z=2116803795 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 08 Nov 2022 04:37:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-219320156-1&cid=957519029.1667882222&jid=157364781&_u=YCDAgEABBAAAAGgCIAB~&z=350554016
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-219320156-1&cid=957519029.1667882222&jid=157364781&_u=YCDAgEABBAAAAGgCIAB~&z=350554016
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-219320156-1&cid=957519029.1667882222&jid=157364781&_u=YCDAgEABBAAAAGgCIAB~&z=350554016 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 08 Nov 2022 04:37:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-219320156-1&cid=957519029.1667882222&jid=964507001&_u=YCDAAEAAAAAAACAAIAB~&z=634096670
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-219320156-1&cid=957519029.1667882222&jid=964507001&_u=YCDAAEAAAAAAACAAIAB~&z=634096670
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-219320156-1&cid=957519029.1667882222&jid=964507001&_u=YCDAAEAAAAAAACAAIAB~&z=634096670 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 08 Nov 2022 04:37:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-219320156-1&cid=957519029.1667882222&jid=157364781&_u=YCDAgEABBAAAAGgCIAB~&z=350554016
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-219320156-1&cid=957519029.1667882222&jid=157364781&_u=YCDAgEABBAAAAGgCIAB~&z=350554016
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-219320156-1&cid=957519029.1667882222&jid=157364781&_u=YCDAgEABBAAAAGgCIAB~&z=350554016 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 08 Nov 2022 04:37:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-219320156-1&cid=957519029.1667882222&jid=964507001&_u=YCDAAEAAAAAAACAAIAB~&z=634096670
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-219320156-1&cid=957519029.1667882222&jid=964507001&_u=YCDAAEAAAAAAACAAIAB~&z=634096670
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-219320156-1&cid=957519029.1667882222&jid=964507001&_u=YCDAAEAAAAAAACAAIAB~&z=634096670 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 08 Nov 2022 04:37:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-219320156-1&cid=957519029.1667882222&jid=1213105557&_u=YCDAAUABBAAAAGgCIAB~&z=2116803795
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-219320156-1&cid=957519029.1667882222&jid=1213105557&_u=YCDAAUABBAAAAGgCIAB~&z=2116803795
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-219320156-1&cid=957519029.1667882222&jid=1213105557&_u=YCDAAUABBAAAAGgCIAB~&z=2116803795 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 08 Nov 2022 04:37:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 01c1a1367e530a799bcaee7de89eefee
19d2450df87f1f3bb1c94e6e0bafbd60c7aead00
79cce6506b30bd3c699a700851db3254c2b909e559c54408b7d254b8e50003e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 08 Nov 2022 04:37:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 6e8ee97ec58f7d2991905f88bd3a463f
b87a69e7b938d01a4ac7d74ec69bffb4051695f0
1fe031e258c6a541e040de89c4ebcdfd9ddf78d391f77e858b44aef18469373d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 08 Nov 2022 04:37:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.google-analytics.com/g/collect?v=2&tid=G-CQKCKP0F9E>m=2oeb20&_p=363261118&cid=957519029.1667882222&ul=en-us&sr=1280x1024&_s=1&sid=1667882222&sct=1&seg=0&dl=https%3A%2F%2Fgolfsenteret.no%2F&dt=GOLFSENTERET.NO%20%7C%20Golfutstyr%20p%C3%A5%20nett&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-CQKCKP0F9E>m=2oeb20&_p=363261118&cid=957519029.1667882222&ul=en-us&sr=1280x1024&_s=1&sid=1667882222&sct=1&seg=0&dl=https%3A%2F%2Fgolfsenteret.no%2F&dt=GOLFSENTERET.NO%20%7C%20Golfutstyr%20p%C3%A5%20nett&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-CQKCKP0F9E>m=2oeb20&_p=363261118&cid=957519029.1667882222&ul=en-us&sr=1280x1024&_s=1&sid=1667882222&sct=1&seg=0&dl=https%3A%2F%2Fgolfsenteret.no%2F&dt=GOLFSENTERET.NO%20%7C%20Golfutstyr%20p%C3%A5%20nett&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://golfsenteret.no
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://golfsenteret.no
date: Tue, 08 Nov 2022 04:37:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
x.klarnacdn.net/ui/fonts/v1.3/fonts.css
143.204.55.101200 OK 434 B URL HTTP/2 x.klarnacdn.net/ui/fonts/v1.3/fonts.css
IP 143.204.55.101:0
File type CSV text\012- , ASCII text
Hash 0cf10aea13750fb947c16b931d9fdbeb
f69682bf25e2ea847ea2572682c79d7315a49df2
593712c5ec3d219f5bb73d8fc229568856b40b07e47901e13ba369be3b8c1a95
GET /ui/fonts/v1.3/fonts.css HTTP/1.1
Host: x.klarnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
date: Thu, 01 Sep 2022 01:52:23 GMT
x-amz-replication-status: COMPLETED
last-modified: Fri, 30 Apr 2021 10:01:44 GMT
etag: W/"c992228f869c757b2b0a2f8ecb17fa21"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000
x-amz-meta-ui: ui
x-amz-version-id: t6YqdT7IzEDnLlEXrdYp2k7IY4qR3s8G
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: m-fjQ412foiHRys1KWIMMOHeu9XA5nSN02mcaFcMNCiajgALAh3SXw==
age: 5885083
X-Firefox-Spdy: h2
x.klarnacdn.net/ui/fonts/v1.3/KlarnaHeadline-Bold.woff2
143.204.55.101200 OK 21 kB URL HTTP/2 x.klarnacdn.net/ui/fonts/v1.3/KlarnaHeadline-Bold.woff2
IP 143.204.55.101:0
File type Web Open Font Format (Version 2), TrueType, length 20860, version 1.0\012- data
Hash e934031557d0c1b8904d2d0dd4584614
0aa2a5b830a5a6add80045b9816c0c7a35c6a504
6fa9b909ad56404a9024bf64eb4fdd303ac3872310460aaa6e8ae0c6f7093448
GET /ui/fonts/v1.3/KlarnaHeadline-Bold.woff2 HTTP/1.1
Host: x.klarnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://golfsenteret.no
Connection: keep-alive
Referer: https://x.klarnacdn.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: font/woff2
content-length: 20860
date: Sat, 05 Nov 2022 17:09:27 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 86400
x-amz-replication-status: COMPLETED
last-modified: Fri, 30 Apr 2021 10:01:44 GMT
etag: "e934031557d0c1b8904d2d0dd4584614"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000
x-amz-meta-ui: ui
x-amz-version-id: FnFe7S43tQvuoAoiPn5yrVkdL3FZK045
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: tH6G0YILc0KlR0Y5iBCPa--u8_TNWTbM3o50WBTV5TNzh9Rl3xS8sw==
age: 214060
X-Firefox-Spdy: h2
x.klarnacdn.net/ui/fonts/v1.3/KlarnaText-Regular.woff2
143.204.55.101200 OK 26 kB URL HTTP/2 x.klarnacdn.net/ui/fonts/v1.3/KlarnaText-Regular.woff2
IP 143.204.55.101:0
File type Web Open Font Format (Version 2), TrueType, length 25736, version 1.131\012- data
Hash 0e74f166fdd7e8260ace31c022ec9189
b1d29fda38e4f3ee7f87755c60a0c8a851857c83
a6ee689f1d122f7a4b4b8a5a6edd61f3ef8e235048faa80f8ec9f80a6986b269
GET /ui/fonts/v1.3/KlarnaText-Regular.woff2 HTTP/1.1
Host: x.klarnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://golfsenteret.no
Connection: keep-alive
Referer: https://x.klarnacdn.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: font/woff2
content-length: 25736
date: Sat, 05 Nov 2022 17:09:27 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 86400
x-amz-replication-status: COMPLETED
last-modified: Fri, 30 Apr 2021 10:01:45 GMT
etag: "0e74f166fdd7e8260ace31c022ec9189"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000
x-amz-meta-ui: ui
x-amz-version-id: 6SPNQdJjmtxHl650JVBb7OhzG94IzfZ.
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: sHbPETeMOXF9pFnsx1x5rMMNJGP9py10PrATgHxFnEaDu3zOy0I3vw==
age: 214060
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify/assets/shop_events_listener-65cd0ba3fcd81a1df33f2510ec5bcf8c0e0958653b50e3965ec972dd638ee13f.js
162.159.135.68200 OK 0 B URL HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/shop_events_listener-65cd0ba3fcd81a1df33f2510ec5bcf8c0e0958653b50e3965ec972dd638ee13f.js
IP 162.159.135.68:0
GET /shopifycloud/shopify/assets/shop_events_listener-65cd0ba3fcd81a1df33f2510ec5bcf8c0e0958653b50e3965ec972dd638ee13f.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 08 Nov 2022 04:37:04 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/shop_events_listener-65cd0ba3fcd81a1df33f2510ec5bcf8c0e0958653b50e3965ec972dd638ee13f.js>; rel="canonical"
server-timing: imagery;dur=22.599, imageryFetch;dur=22.430
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 08b69fc1-ba0b-40f7-a067-ccd68aa642c3
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Fri, 26 Aug 2022 02:13:50 GMT
cf-cache-status: HIT
age: 6402193
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t7gTNo7ZnaUuXIucEVG9VA8ooA%2FPsqBF%2F6JXE7Ou2VIkQ5R8Jxxk2hme1Z4D9%2BeeE38Rpfp4kvLeT7S6ZXEOaeOWxn50H244UokkfwHZ6DwPAsaEsYJHdIRgPG%2FQkK9chw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 766b9c822f64b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
app.shippingratescalculator.com/js/core/main.min.js?timestamp=1652346460&shop=golfsenteret-vestfold-as.myshopify.com
104.21.88.99200 OK 0 B URL HTTP/2 app.shippingratescalculator.com/js/core/main.min.js?timestamp=1652346460&shop=golfsenteret-vestfold-as.myshopify.com
IP 104.21.88.99:0
GET /js/core/main.min.js?timestamp=1652346460&shop=golfsenteret-vestfold-as.myshopify.com HTTP/1.1
Host: app.shippingratescalculator.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 08 Nov 2022 04:37:05 GMT
content-type: application/javascript;charset=UTF-8
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Thu, 20 Oct 2022 08:04:46 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 1249248
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PgxucpleIujv9AwDDNtO7FCQLTdQLJ4ZXseiFMnPbJSePxZW3R0S5V%2Fbve9JCmGAmXV5iz99zt9Caxwe13ni%2FjXq%2ByLidYvg79t6peeGCXV2Gb04SgEW3xliE3WKnS1KCf25Wz%2BzRPKHv%2F9Err8LTMKR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 766b9c84d9991bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0506/8203/6424/t/1/assets/theme.js?v=107772646391336992031603697345
162.159.135.68200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0506/8203/6424/t/1/assets/theme.js?v=107772646391336992031603697345
IP 162.159.135.68:0
GET /s/files/1/0506/8203/6424/t/1/assets/theme.js?v=107772646391336992031603697345 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 08 Nov 2022 04:37:05 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0506/8203/6424/t/1/assets/theme.js>; rel="canonical"
server-timing: imagery;dur=84.339, imageryFetch;dur=58.924
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 29a66fab-64c1-4480-8cc9-9138ba663739
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Fri, 26 Aug 2022 01:15:57 GMT
cf-cache-status: HIT
age: 6393982
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bl8y5qm69avKtI01jz0CaME5xyu0iEOzd9eN5mOvEOCmZg4pSyPq%2F4N0REGc5Br43qXO54zM%2B965Zmv%2BonKVVvgTKrcn7Wh%2Bf9Apcdcyimp84UTMrzd8kLHIFWOLiyN5kA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 766b9c824f70b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
rcgmal4n.klarnaservices.com/v3/s?ver=2.13.26&d=homepage-promotion-wide&e=no-NO&g=22862b6e-901a-5932-b2bb-07a44cad29e2&purchase_amount=0
143.204.55.88200 OK 0 B URL HTTP/2 rcgmal4n.klarnaservices.com/v3/s?ver=2.13.26&d=homepage-promotion-wide&e=no-NO&g=22862b6e-901a-5932-b2bb-07a44cad29e2&purchase_amount=0
IP 143.204.55.88:0
GET /v3/s?ver=2.13.26&d=homepage-promotion-wide&e=no-NO&g=22862b6e-901a-5932-b2bb-07a44cad29e2&purchase_amount=0 HTTP/1.1
Host: rcgmal4n.klarnaservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golfsenteret.no/
Origin: https://golfsenteret.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Tue, 08 Nov 2022 04:37:05 GMT
access-control-allow-origin: https://golfsenteret.no
vary: Accept-Encoding, Origin
access-control-allow-credentials: true
klarna-correlation-id: 82a60a96-4404-4c1e-be94-6cdf88dbf3b0
timing-allow-origin: *
cache-control: public, max-age=86400
etag: W/"1682-1LGwHPG/54MnmWBAUNNxeZag2SM"
x-envoy-upstream-service-time: 12
server: envoy
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: gmzohx9nfr4WsKtkiuxt-UgKTIPugXabZ5xzkHhTNGkWsymEGuGO3A==
X-Firefox-Spdy: h2
eu-library.klarnaservices.com/lib.js
54.230.111.116200 OK 0 B URL HTTP/2 eu-library.klarnaservices.com/lib.js
IP 54.230.111.116:0
GET /lib.js HTTP/1.1
Host: eu-library.klarnaservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 07 Nov 2022 17:56:24 GMT
last-modified: Fri, 04 Nov 2022 11:35:56 GMT
x-amz-server-side-encryption: AES256
cache-control: max-age=86400
server: AmazonS3
content-encoding: br
etag: W/"169574dcc56359a18573ac6b56a7eedd"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: c9Rn6kIjtDI7Qg1_oTx5OA9Z1TTWYihjfP7vNvG8XyDfzeLq9UoTxQ==
age: 38442
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0506/8203/6424/t/1/assets/lazysizes.js?v=63098554868324070131603697344
162.159.135.68200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0506/8203/6424/t/1/assets/lazysizes.js?v=63098554868324070131603697344
IP 162.159.135.68:0
GET /s/files/1/0506/8203/6424/t/1/assets/lazysizes.js?v=63098554868324070131603697344 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 08 Nov 2022 04:37:04 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0506/8203/6424/t/1/assets/lazysizes.js>; rel="canonical"
server-timing: imagery;dur=86.642, imageryFetch;dur=81.109
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: a387edb3-f80f-4d29-843c-3820e2aa305b
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Fri, 26 Aug 2022 00:59:32 GMT
cf-cache-status: HIT
age: 6393981
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Oen1brUwA%2BLVDdbQloq0xzwFYcSgVjTyfIU8c3JUz4qcSE4TRaiQ%2BfOx25MYaoRmsDBuskTj2dl5uWITYP1qcWhnvOMxeBhFM%2B6Hlu5pG4RxdlsXbepzuh%2FOJE%2FYirPqvA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 766b9c820f4ab523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0506/8203/6424/t/1/assets/theme.css?v=34283493002253190091648728442
162.159.135.68200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0506/8203/6424/t/1/assets/theme.css?v=34283493002253190091648728442
IP 162.159.135.68:0
GET /s/files/1/0506/8203/6424/t/1/assets/theme.css?v=34283493002253190091648728442 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 08 Nov 2022 04:37:04 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0506/8203/6424/t/1/assets/theme.css>; rel="canonical"
server-timing: imagery;dur=76.309, imageryFetch;dur=63.651
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 0386a4bc-e739-4881-babb-6171fc8b948b
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Sat, 09 Jul 2022 15:33:05 GMT
cf-cache-status: HIT
age: 6411352
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q9qy9j%2Fuy%2FVHTFSSy1AMKCW%2ByXgl3nVTJTy2mJ35VLfeZl4JI7EzVxnE085Ycj7ln%2F7QH823Ta6aqF4uEZ1f9QdZCg8NHXp0t4Rd1lZGL2e1ohrs1fIs3WNZZ6opqC7HOw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 766b9c821f59b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/boomerang/shopify-boomerang-1.0.0.min.js
162.159.135.68200 OK 0 B URL HTTP/2 cdn.shopify.com/shopifycloud/boomerang/shopify-boomerang-1.0.0.min.js
IP 162.159.135.68:0
GET /shopifycloud/boomerang/shopify-boomerang-1.0.0.min.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 08 Nov 2022 04:37:04 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, s-maxage=31536000, max-age=3600, must-revalidate
link: <https://cdn.shopify.com/shopifycloud/boomerang/shopify-boomerang-1.0.0.min.js>; rel="canonical"
server-timing: imagery;dur=72.954, imageryFetch;dur=66.306
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 757b0671-68e4-4b36-8f0c-9b4805aee7de
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Fri, 21 Oct 2022 19:07:49 GMT
cf-cache-status: HIT
age: 1502955
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9sferN3oDnmpg%2BuURSDd0Cc8x33IcvweDuPIi9cwNXWxdyuccOy97VZjWwmZv4GTyt8gsHgaKHU73WXUtPrE9AqGk%2BMLUUAsjT45AqZZHBsLzjMUShwiRa7lSAohdPh%2B2A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 766b9c822f65b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js
162.159.135.68200 OK 0 B URL HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js
IP 162.159.135.68:0
GET /shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://golfsenteret.no
Connection: keep-alive
Referer: https://golfsenteret.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 08 Nov 2022 04:37:05 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js>; rel="canonical"
server-timing: imagery;dur=18.373, imageryFetch;dur=18.173
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: db3256dc-a867-4b50-ba3b-464a1aed3c28
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Fri, 26 Aug 2022 04:30:43 GMT
cf-cache-status: HIT
age: 6393981
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L%2BQQoo2ZRFVCoc1a%2FWzOPuDUIzrcqzDusbDwf8TErxb13N0t0aR5L%2FFKXqvMPaw5OPhyVpF6dg91PBcl6R%2By8LnPjU4IaOKlkcTrVI0rWJWpxcfoC6RuP5JI20MHicpmFw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 766b9c823ee5b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
brilliantsparklers.com/redirect-simple?ci=208&c=no&m_c_r=best
137.74.65.6200 OK 0 B URL HTTP/2 brilliantsparklers.com/redirect-simple?ci=208&c=no&m_c_r=best
IP 137.74.65.6:0
GET /redirect-simple?ci=208&c=no&m_c_r=best HTTP/1.1
Host: brilliantsparklers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.14.2
date: Tue, 08 Nov 2022 04:37:04 GMT
content-type: text/html; charset=UTF-8
x-frame-options: *
content-encoding: gzip
X-Firefox-Spdy: h2
brilliantsparklers.com/favicon.ico
137.74.65.6404 Not Found 0 B URL HTTP/2 brilliantsparklers.com/favicon.ico
IP 137.74.65.6:0
GET /favicon.ico HTTP/1.1
Host: brilliantsparklers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brilliantsparklers.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx/1.14.2
date: Tue, 08 Nov 2022 04:37:04 GMT
content-type: text/html
content-encoding: gzip
X-Firefox-Spdy: h2