andicomedicalsuppliers.com/chromestre/148on892it.exe
200 OK 512 B URL HTTP/1.1 andicomedicalsuppliers.com/chromestre/148on892it.exe
IP
ASN #30633 LEASEWEB-USA-WDC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (512), with no line terminators
Hash b146562fda2ca4a7d16ea4b208329097
582e333e9d4762f8d4967098ae619b579f5daf3d
9e5d10371649587cb0400f20b20c1b1b75b24cf96e0a583a14b6c5a3339a1ed9
Analyzer Verdict Alert fortinet Malware
GET /chromestre/148on892it.exe HTTP/1.1
Host: andicomedicalsuppliers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 512
content-type: text/html; charset=utf-8
date: Sat, 28 Jan 2023 10:08:01 GMT
server: nginx
set-cookie: sid=a69e0a70-9ef3-11ed-a8f4-8b932d6f8b3c; path=/; domain=.andicomedicalsuppliers.com; expires=Thu, 15 Feb 2091 13:22:09 GMT; max-age=2147483647; HttpOnly
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4818
Expires: Sat, 28 Jan 2023 11:28:20 GMT
Date: Sat, 28 Jan 2023 10:08:02 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 81dd5c5cc5b3278876cb44dcb520a60f
c0511a59e9eccdcdda98717b87c89c5d59974808
41736c303afdb3d31e48724b107dcb22883cae02f3562308eb52d9164001a2de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41736C303AFDB3D31E48724B107DCB22883CAE02F3562308EB52D9164001A2DE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7899
Expires: Sat, 28 Jan 2023 12:19:42 GMT
Date: Sat, 28 Jan 2023 10:08:03 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 03092d1a1bc7ac91ee342a1a7ab2a562
52db06ce1fd2c74ddd36b6a0a7aee1b5c891600a
03b8ff2629abac9fc30ebec059c2e2018fcbc41646ad5f71c965ff630fbf1ffd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "03B8FF2629ABAC9FC30EBEC059C2E2018FCBC41646AD5F71C965FF630FBF1FFD"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2185
Expires: Sat, 28 Jan 2023 10:44:28 GMT
Date: Sat, 28 Jan 2023 10:08:03 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 28 Jan 2023 09:43:05 GMT
content-type: application/json
age: 1498
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 5nk/6kNny3Blq0g7wque7CkvJk3CyMt3nIMu6W9P0Gr3hbd7Ccf4RnJLcHrNK2exVcTpxzJ5ydgtjeSMtN3+Vw==
x-amz-request-id: REJ4XSCN1VPF0E0Y
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 28 Jan 2023 09:49:49 GMT
age: 1094
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 10:08:03 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
andicomedicalsuppliers.com/favicon.ico
404 Not Found 9 B URL HTTP/1.1 andicomedicalsuppliers.com/favicon.ico
IP
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with no line terminators
Hash d8f4a1993546cc4b850cde3599e27aec
094b763b4cfcc0b05e5d040581cd513c3ca08067
907ba78b4545338d3539683e63ecb51cf51c10adc9dabd86e92bd52339f298b9
GET /favicon.ico HTTP/1.1
Host: andicomedicalsuppliers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://andicomedicalsuppliers.com/chromestre/148on892it.exe
Cookie: sid=a69e0a70-9ef3-11ed-a8f4-8b932d6f8b3c
HTTP/1.1 404 Not Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 9
date: Sat, 28 Jan 2023 10:08:02 GMT
server: nginx
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 28 Jan 2023 09:41:40 GMT
age: 1583
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5683
Expires: Sat, 28 Jan 2023 11:42:46 GMT
Date: Sat, 28 Jan 2023 10:08:03 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: z2jfhY/hTvOwa37Mkfn24Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: mVhXhcPkZp+ai0/dDZ+uGDpai+8=
andicomedicalsuppliers.com/chromestre/148on892it.exe?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY3NDkwNzY4MiwiaWF0IjoxNjc0OTAwNDgyLCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIyc3Y3Mjdibmpkcm9lbTg1OGs0YzQ0Y2IiLCJuYmYiOjE2NzQ5MDA0ODIsInRzIjoxNjc0OTAwNDgyODAyOTYzfQ.nAcE5HR0Jekh4kCxFX8781EHgSZCdNnRduQXseA7h6c&sid=a69e0a70-9ef3-11ed-a8f4-8b932d6f8b3c
302 Found 11 B URL HTTP/1.1 andicomedicalsuppliers.com/chromestre/148on892it.exe?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY3NDkwNzY4MiwiaWF0IjoxNjc0OTAwNDgyLCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIyc3Y3Mjdibmpkcm9lbTg1OGs0YzQ0Y2IiLCJuYmYiOjE2NzQ5MDA0ODIsInRzIjoxNjc0OTAwNDgyODAyOTYzfQ.nAcE5HR0Jekh4kCxFX8781EHgSZCdNnRduQXseA7h6c&sid=a69e0a70-9ef3-11ed-a8f4-8b932d6f8b3c
IP
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with no line terminators
Hash 32682312d17c7cbf18e73594f5570319
60e22121bdd0bc71cdb2bae2a3aa577006b2eae9
e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47
GET /chromestre/148on892it.exe?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY3NDkwNzY4MiwiaWF0IjoxNjc0OTAwNDgyLCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIyc3Y3Mjdibmpkcm9lbTg1OGs0YzQ0Y2IiLCJuYmYiOjE2NzQ5MDA0ODIsInRzIjoxNjc0OTAwNDgyODAyOTYzfQ.nAcE5HR0Jekh4kCxFX8781EHgSZCdNnRduQXseA7h6c&sid=a69e0a70-9ef3-11ed-a8f4-8b932d6f8b3c HTTP/1.1
Host: andicomedicalsuppliers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://andicomedicalsuppliers.com/chromestre/148on892it.exe
Cookie: sid=a69e0a70-9ef3-11ed-a8f4-8b932d6f8b3c
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 11
date: Sat, 28 Jan 2023 10:08:03 GMT
location: http://r.redirekted.com/redirect?redirect_id=499753c4a122a42fce0a5576399b6317&request_id=ebc1e9072d25e69473753107889100d5
server: nginx
set-cookie: sid=a69e0a70-9ef3-11ed-a8f4-8b932d6f8b3c; path=/; domain=.andicomedicalsuppliers.com; expires=Thu, 15 Feb 2091 13:22:11 GMT; max-age=2147483647; HttpOnly
r.redirekted.com/redirect?redirect_id=499753c4a122a42fce0a5576399b6317&request_id=ebc1e9072d25e69473753107889100d5
200 OK 808 B URL HTTP/1.1 r.redirekted.com/redirect?redirect_id=499753c4a122a42fce0a5576399b6317&request_id=ebc1e9072d25e69473753107889100d5
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (303)
Hash cc62130a0773032ef5b3a5b19873108d
e04cc2ae7ba602de8b78c8c63d086fc4a25fb169
fc135bc5b3f56b801b018913726b9eea88f89cff03f7deab33655ab8d59d0c67
GET /redirect?redirect_id=499753c4a122a42fce0a5576399b6317&request_id=ebc1e9072d25e69473753107889100d5 HTTP/1.1
Host: r.redirekted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://andicomedicalsuppliers.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx/1.23.3
Date: Sat, 28 Jan 2023 10:08:04 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/8.1.13
r.redirekted.com/css/adren.css?n=3241971296
200 OK 243 B URL HTTP/1.1 r.redirekted.com/css/adren.css?n=3241971296
IP
Hash f72acd3fece9f7cf58643616c745b2ea
92bc529a83c5466fbf6b9e702eef1e59644687a1
e2d9fd8b995f146baf54bc35d162d3e8169a5345368058b10a3b3bf4592ed777
GET /css/adren.css?n=3241971296 HTTP/1.1
Host: r.redirekted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://r.redirekted.com/redirect?redirect_id=499753c4a122a42fce0a5576399b6317&request_id=ebc1e9072d25e69473753107889100d5
HTTP/1.1 200 OK
Server: nginx/1.23.3
Date: Sat, 28 Jan 2023 10:08:04 GMT
Content-Type: text/css
Content-Length: 243
Last-Modified: Sat, 03 Jul 2021 05:46:18 GMT
Connection: keep-alive
ETag: "60dff9aa-f3"
Accept-Ranges: bytes
r.redirekted.com/js/adren.min.js?n=3241971296
200 OK 7.5 kB URL HTTP/1.1 r.redirekted.com/js/adren.min.js?n=3241971296
IP
File type ASCII text, with very long lines (7528), with no line terminators
Hash 9a9ec61d7e275f25fe83f0aa93bd2e41
8a3a23c432b601e9f8f8fe2b61f0fedbc341c9ac
55afe8ae4db5b6ca9ec5a3aca1f3a7b482ca51d0914acd250093f1a9ecbfccec
GET /js/adren.min.js?n=3241971296 HTTP/1.1
Host: r.redirekted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://r.redirekted.com/redirect?redirect_id=499753c4a122a42fce0a5576399b6317&request_id=ebc1e9072d25e69473753107889100d5
HTTP/1.1 200 OK
Server: nginx/1.23.3
Date: Sat, 28 Jan 2023 10:08:04 GMT
Content-Type: application/javascript
Content-Length: 7528
Last-Modified: Sat, 03 Jul 2021 05:46:18 GMT
Connection: keep-alive
ETag: "60dff9aa-1d68"
Accept-Ranges: bytes
r.redirekted.com/favicon.ico
200 OK 0 B URL HTTP/1.1 r.redirekted.com/favicon.ico
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: r.redirekted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://r.redirekted.com/redirect?redirect_id=499753c4a122a42fce0a5576399b6317&request_id=ebc1e9072d25e69473753107889100d5
HTTP/1.1 200 OK
Server: nginx/1.23.3
Date: Sat, 28 Jan 2023 10:08:05 GMT
Content-Type: image/x-icon
Content-Length: 0
Last-Modified: Sat, 03 Jul 2021 05:46:18 GMT
Connection: keep-alive
ETag: "60dff9aa-0"
Accept-Ranges: bytes
r.redirekted.com/go?e=NA-pFFutlW6blF11wsyNaL85wVX1UXzRzsyVvL8gRAtk3F0uHsYumL-IPqVkaqvNJr_xUCuHvVx5KW0NTsuk3KdHPqXkaC09Ss-flBeHFp50KWzVJs7jUM-uPruk3F0WJr_xaCutFBsImqjI2rXuJBm4mVOcFLbI0XbZFDdRJqREwLatRA2yHDexFrYgaC9q0ZxpzCmfmKYk3BvxxsyDGF8gQCuyaC9AHVbDTLmLUF-ZmC99SA78IF-ElXSglpafHA3uUn8uvXVgFW9kwXbVPM-IPCV53p89IsbbvL9AUsxglB54mX-HaBeL3X-blFv4QAu1aF1f0KWk3B4tHr_03B04QBb5KW8EJr_VPn1pKrtgvV
200 OK 1.8 kB URL HTTP/1.1 r.redirekted.com/go?e=NA-pFFutlW6blF11wsyNaL85wVX1UXzRzsyVvL8gRAtk3F0uHsYumL-IPqVkaqvNJr_xUCuHvVx5KW0NTsuk3KdHPqXkaC09Ss-flBeHFp50KWzVJs7jUM-uPruk3F0WJr_xaCutFBsImqjI2rXuJBm4mVOcFLbI0XbZFDdRJqREwLatRA2yHDexFrYgaC9q0ZxpzCmfmKYk3BvxxsyDGF8gQCuyaC9AHVbDTLmLUF-ZmC99SA78IF-ElXSglpafHA3uUn8uvXVgFW9kwXbVPM-IPCV53p89IsbbvL9AUsxglB54mX-HaBeL3X-blFv4QAu1aF1f0KWk3B4tHr_03B04QBb5KW8EJr_VPn1pKrtgvV
IP
File type HTML document, ASCII text, with very long lines (484)
Hash 1403670416e3f40da1b04431e51fc74f
318288e695b7f646a56ec3cb62758531e6898a78
f3390a19bba33a8db4516763f580ac02ca57184705b6c1738fa259293a76381a
GET /go?e=NA-pFFutlW6blF11wsyNaL85wVX1UXzRzsyVvL8gRAtk3F0uHsYumL-IPqVkaqvNJr_xUCuHvVx5KW0NTsuk3KdHPqXkaC09Ss-flBeHFp50KWzVJs7jUM-uPruk3F0WJr_xaCutFBsImqjI2rXuJBm4mVOcFLbI0XbZFDdRJqREwLatRA2yHDexFrYgaC9q0ZxpzCmfmKYk3BvxxsyDGF8gQCuyaC9AHVbDTLmLUF-ZmC99SA78IF-ElXSglpafHA3uUn8uvXVgFW9kwXbVPM-IPCV53p89IsbbvL9AUsxglB54mX-HaBeL3X-blFv4QAu1aF1f0KWk3B4tHr_03B04QBb5KW8EJr_VPn1pKrtgvV HTTP/1.1
Host: r.redirekted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://r.redirekted.com/redirect?redirect_id=499753c4a122a42fce0a5576399b6317&request_id=ebc1e9072d25e69473753107889100d5
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx/1.23.3
Date: Sat, 28 Jan 2023 10:08:05 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/8.1.13
Set-Cookie: uuid=71942301887467248; expires=Sun, 29-Jan-2023 10:08:05 GMT; Max-Age=86400
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/1.1 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://r.redirekted.com/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 20085
Date: Sat, 28 Jan 2023 08:24:36 GMT
Expires: Sat, 28 Jan 2023 10:24:36 GMT
Cache-Control: public, max-age=7200
Age: 6209
Last-Modified: Tue, 10 Jan 2023 21:29:14 GMT
Content-Type: text/javascript
www.google-analytics.com/collect?v=1&_v=j99&a=1577204809&t=pageview&_s=2&dl=http%3A%2F%2Fr.redirekted.com%2Fgo%3Fe%3DNA-pFFutlW6blF11wsyNaL85wVX1UXzRzsyVvL8gRAtk3F0uHsYumL-IPqVkaqvNJr_xUCuHvVx5KW0NTsuk3KdHPqXkaC09Ss-flBeHFp50KWzVJs7jUM-uPruk3F0WJr_xaCutFBsImqjI2rXuJBm4mVOcFLbI0XbZFDdRJqREwLatRA2yHDexFrYgaC9q0ZxpzCmfmKYk3BvxxsyDGF8gQCuyaC9AHVbDTLmLUF-ZmC99SA78IF-ElXSglpafHA3uUn8uvXVgFW9kwXbVPM-IPCV53p89IsbbvL9AUsxglB54mX-HaBeL3X-blFv4QAu1aF1f0KWk3B4tHr_03B04QBb5KW8EJr_VPn1pKrtgvV&ul=en-us&de=UTF-8&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=&gjid=&cid=698223273.1674900487&tid=UA-32454353-1&_gid=547443586.1674900487&cd1=oz9lo258n2kesUk8sT5ipz9hsTgfn3k8sUj%3D&z=1464879600
200 OK 35 B URL HTTP/1.1 www.google-analytics.com/collect?v=1&_v=j99&a=1577204809&t=pageview&_s=2&dl=http%3A%2F%2Fr.redirekted.com%2Fgo%3Fe%3DNA-pFFutlW6blF11wsyNaL85wVX1UXzRzsyVvL8gRAtk3F0uHsYumL-IPqVkaqvNJr_xUCuHvVx5KW0NTsuk3KdHPqXkaC09Ss-flBeHFp50KWzVJs7jUM-uPruk3F0WJr_xaCutFBsImqjI2rXuJBm4mVOcFLbI0XbZFDdRJqREwLatRA2yHDexFrYgaC9q0ZxpzCmfmKYk3BvxxsyDGF8gQCuyaC9AHVbDTLmLUF-ZmC99SA78IF-ElXSglpafHA3uUn8uvXVgFW9kwXbVPM-IPCV53p89IsbbvL9AUsxglB54mX-HaBeL3X-blFv4QAu1aF1f0KWk3B4tHr_03B04QBb5KW8EJr_VPn1pKrtgvV&ul=en-us&de=UTF-8&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=&gjid=&cid=698223273.1674900487&tid=UA-32454353-1&_gid=547443586.1674900487&cd1=oz9lo258n2kesUk8sT5ipz9hsTgfn3k8sUj%3D&z=1464879600
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /collect?v=1&_v=j99&a=1577204809&t=pageview&_s=2&dl=http%3A%2F%2Fr.redirekted.com%2Fgo%3Fe%3DNA-pFFutlW6blF11wsyNaL85wVX1UXzRzsyVvL8gRAtk3F0uHsYumL-IPqVkaqvNJr_xUCuHvVx5KW0NTsuk3KdHPqXkaC09Ss-flBeHFp50KWzVJs7jUM-uPruk3F0WJr_xaCutFBsImqjI2rXuJBm4mVOcFLbI0XbZFDdRJqREwLatRA2yHDexFrYgaC9q0ZxpzCmfmKYk3BvxxsyDGF8gQCuyaC9AHVbDTLmLUF-ZmC99SA78IF-ElXSglpafHA3uUn8uvXVgFW9kwXbVPM-IPCV53p89IsbbvL9AUsxglB54mX-HaBeL3X-blFv4QAu1aF1f0KWk3B4tHr_03B04QBb5KW8EJr_VPn1pKrtgvV&ul=en-us&de=UTF-8&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=&gjid=&cid=698223273.1674900487&tid=UA-32454353-1&_gid=547443586.1674900487&cd1=oz9lo258n2kesUk8sT5ipz9hsTgfn3k8sUj%3D&z=1464879600 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://r.redirekted.com/
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Pragma: no-cache
X-Content-Type-Options: nosniff
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 35
Date: Sat, 28 Jan 2023 03:38:45 GMT
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Age: 23360
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
Content-Type: image/gif
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17362
Expires: Sat, 28 Jan 2023 14:57:27 GMT
Date: Sat, 28 Jan 2023 10:08:05 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17362
Expires: Sat, 28 Jan 2023 14:57:27 GMT
Date: Sat, 28 Jan 2023 10:08:05 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17362
Expires: Sat, 28 Jan 2023 14:57:27 GMT
Date: Sat, 28 Jan 2023 10:08:05 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17362
Expires: Sat, 28 Jan 2023 14:57:27 GMT
Date: Sat, 28 Jan 2023 10:08:05 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17362
Expires: Sat, 28 Jan 2023 14:57:27 GMT
Date: Sat, 28 Jan 2023 10:08:05 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg
200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ea24bcba583bd8bd139559448a343e68
b9d37c2b14f890d41983a59f352e8f7caa9c94bb
e5ef5975eec964ae1684deb424f00833f2d217bdc7e6c385320ed3adeb6bc1c4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7585
x-amzn-requestid: bfb52acb-e0d7-482d-8be9-be5db1c16cac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_vkE5roAMF0Hw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d44663-2d38d314177e0ac40d4c8240;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:47:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1WE1zQwrCGVy8HLT9_BFkAr6rQE_ROyttMOByR32KeT0w2Hd_ylvYQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:16:00 GMT
age: 42725
etag: "b9d37c2b14f890d41983a59f352e8f7caa9c94bb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f884785-3b60-4d1a-b7b9-f58e73d6d819.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f884785-3b60-4d1a-b7b9-f58e73d6d819.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b4afa01d2ffe17f8378e4c0b5afd4608
f5c7e2137efa07a207427a6b6fe1df541f85ea25
84fc0c05d25d674b5594b54720017332b86d391f66c7136d76cfce3e884e8e12
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f884785-3b60-4d1a-b7b9-f58e73d6d819.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13375
x-amzn-requestid: 372fcbe8-85a1-4be2-a006-31fb9289c5e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-CxF6BoAMFyGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443ab-4b9860545c612cc416cbe599;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: yEFlWGi3J14JLA0l2h02VlIqV8opHesKP6GOvfoP5Tp0m7dOYDxIGA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:59:32 GMT
age: 43713
etag: "f5c7e2137efa07a207427a6b6fe1df541f85ea25"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b7aa725-5968-4227-af9b-77dd57d6a123.jpeg
200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b7aa725-5968-4227-af9b-77dd57d6a123.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0856916fa7de25bdb308c04d0ae58180
72abe5101dc03c35399e6e5aab02328c206f480a
9b8c3380c842aa6de358def0d56263bafec61e37bc951a06c06e6953419e2804
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b7aa725-5968-4227-af9b-77dd57d6a123.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6733
x-amzn-requestid: cd0cc842-d109-42b4-9104-0cb48a964794
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_vkGupoAMF3Pw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d44663-14b754495bb33b0f5f0cd805;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:47:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Q599noZ2W5oOkldsXrti4Fbu8JlpfKHbLCURsarLwPQP7GlcZSKI-A==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:16:26 GMT
age: 42699
etag: "72abe5101dc03c35399e6e5aab02328c206f480a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:46 GMT
age: 43879
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b7a0759c043594fbe85af422b59b8227
a05cfaad16078f42218dae233da38f6f5dff8487
e898d6ef1b3998fb9322a8fc190069ec5f7b3582bfe8397a2367497d84a27549
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11568
x-amzn-requestid: 2e85f75e-ab9d-4d45-adad-7313950a9647
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSWbxGwnoAMFejw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d117-68f1a9e71a07a0453311fd32;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 06:49:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dbz3wXGNaetf6xvRE98rshyHy-FVfDo8co-4VDL0a4Qe3E4U8A82Og==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 18:36:01 GMT
age: 55924
etag: "a05cfaad16078f42218dae233da38f6f5dff8487"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25c808e0-eda9-4074-b1ed-65637dbd4ba9.jpeg
200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25c808e0-eda9-4074-b1ed-65637dbd4ba9.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 940946e65210c717266c3a64751f1b72
f0e66aeef0c72865d565f48b563f66a184b758a9
1d031b8a530a1e6d84d79fae891f023e1ab7646596c00c57d83cfffce1f6fdf5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25c808e0-eda9-4074-b1ed-65637dbd4ba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5742
x-amzn-requestid: b22fd8a5-eefc-494e-a304-75b69eef069d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPFr2GsdoAMFpqw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf8318-69b5e7c726fa92134d08c775;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:04:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xBpEdVPmvtXlsyGTvZCkIahK7_Ivhq4yswhw23ixIOH1zlgWPyLH9Q==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 01:14:42 GMT
age: 32003
etag: "f0e66aeef0c72865d565f48b563f66a184b758a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
status.thawte.com/
200 OK 471 B IP
Hash e0344c44b03467980735c529ec222084
5a02acb712776b4c0bba6346ec3ea99d4d13226b
fb50323f02dd9e830af11038626f7415845f97dd40e409f3bfc1e6e02f77f921
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2517
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 10:08:05 GMT
Last-Modified: Sat, 28 Jan 2023 09:26:08 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
no-go.kelkoogroup.net/offersearchGo?.ts=1674835113127&.sig=l4c8bqDqFrMyx6SH9lRCLlwXEUk-&affiliationId=96965866&comId=100543285&country=no&offerId=d31e3f5001dba826804ba6adccef3ac0&service=37&tokenId=35e025c3-2943-4e2d-874f-eaee491f9fab&wait=true&addedParams=true&custom1=Ns7VPF-AKAacPXxkwZb03EmtlW8VQX9ymZ31UL0pKpRWQXabRAXE2BmRTLaIPCbqzsyDaE-IPpT13p4MRsyLlK3ZUqVk3pzZTsmuUL&custom2=jKWjuHsyVlF8gQBtqwqSExZvyxEmVJrUAQB
200 OK 32 kB URL HTTP/1.1 no-go.kelkoogroup.net/offersearchGo?.ts=1674835113127&.sig=l4c8bqDqFrMyx6SH9lRCLlwXEUk-&affiliationId=96965866&comId=100543285&country=no&offerId=d31e3f5001dba826804ba6adccef3ac0&service=37&tokenId=35e025c3-2943-4e2d-874f-eaee491f9fab&wait=true&addedParams=true&custom1=Ns7VPF-AKAacPXxkwZb03EmtlW8VQX9ymZ31UL0pKpRWQXabRAXE2BmRTLaIPCbqzsyDaE-IPpT13p4MRsyLlK3ZUqVk3pzZTsmuUL&custom2=jKWjuHsyVlF8gQBtqwqSExZvyxEmVJrUAQB
IP
ASN #60781 LeaseWeb Netherlands B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (12878)
Hash d1866fa410621dbdedec72e05907a7ab
8fcd200fb1445eb5ac31d303a626dea20bc0307f
26fbdaf717db4b0a81e701c7ef826b9cca781c7fcdbb715d3a4d3ecc5375db94
GET /offersearchGo?.ts=1674835113127&.sig=l4c8bqDqFrMyx6SH9lRCLlwXEUk-&affiliationId=96965866&comId=100543285&country=no&offerId=d31e3f5001dba826804ba6adccef3ac0&service=37&tokenId=35e025c3-2943-4e2d-874f-eaee491f9fab&wait=true&addedParams=true&custom1=Ns7VPF-AKAacPXxkwZb03EmtlW8VQX9ymZ31UL0pKpRWQXabRAXE2BmRTLaIPCbqzsyDaE-IPpT13p4MRsyLlK3ZUqVk3pzZTsmuUL&custom2=jKWjuHsyVlF8gQBtqwqSExZvyxEmVJrUAQB HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r.redirekted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
leadId: dc1-kls-prod-ls-02.prod.dc1.kelkoo.net_1674900485581_605116
clickId: 107698149_1674900485575_2488012
country: no
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
Set-Cookie: datadome=5nW6JwIxLNGiTh-CQH1GbNYR0PUR9I20JluwY5ucbXxG1yyihTMFfmOrqLIfe5VuZIy9BREP8wfUlQjIM~XXoxKkeoJviycQv6SHbz9FUmAR~TdgrKHHMOZRRBlO-6jk; Max-Age=31536000; Expires=Sun, 28 Jan 2024 10:08:05 GMT; SameSite=Lax; Path=/; Domain=.kelkoogroup.net; Secure
kelkooID=a4c6295-185f7d935c7-823bd; Max-Age=31536000; Expires=Sun, 28 Jan 2024 10:08:05 GMT; SameSite=None; Path=/; Domain=kelkoogroup.net; Secure; HTTPOnly
X-DataDome: protected
Request-Time: PT0.015524S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Date: Sat, 28 Jan 2023 10:08:05 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 32480
no-go.kelkoogroup.net/assets/images/p.png?country=no&k=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
200 OK 68 B URL HTTP/1.1 no-go.kelkoogroup.net/assets/images/p.png?country=no&k=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
IP
ASN #60781 LeaseWeb Netherlands B.V.
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash 91e42db1c66c0b276abf6234dc50b2eb
c1986af3c26609b8b7d8933f99c51c1a89e9ea6b
63ef318d96b5d0d0ceba6e04a4e622b1158335cdc67c49e27839132c6f655058
GET /assets/images/p.png?country=no&k=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 HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/offersearchGo?.ts=1674835113127&.sig=l4c8bqDqFrMyx6SH9lRCLlwXEUk-&affiliationId=96965866&comId=100543285&country=no&offerId=d31e3f5001dba826804ba6adccef3ac0&service=37&tokenId=35e025c3-2943-4e2d-874f-eaee491f9fab&wait=true&addedParams=true&custom1=Ns7VPF-AKAacPXxkwZb03EmtlW8VQX9ymZ31UL0pKpRWQXabRAXE2BmRTLaIPCbqzsyDaE-IPpT13p4MRsyLlK3ZUqVk3pzZTsmuUL&custom2=jKWjuHsyVlF8gQBtqwqSExZvyxEmVJrUAQB
Connection: keep-alive
Cookie: datadome=5nW6JwIxLNGiTh-CQH1GbNYR0PUR9I20JluwY5ucbXxG1yyihTMFfmOrqLIfe5VuZIy9BREP8wfUlQjIM~XXoxKkeoJviycQv6SHbz9FUmAR~TdgrKHHMOZRRBlO-6jk; kelkooID=a4c6295-185f7d935c7-823bd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
leadId: dc1-kls-prod-ls-02.prod.dc1.kelkoo.net_1674900485581_605116
clickId: 107698149_1674900485575_2488012
country: no
Request-Time: PT0.001368S
X-Robots-Tag: noindex,nofollow
Cache-Control: private, must-revalidate
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Date: Sat, 28 Jan 2023 10:08:05 GMT
Content-Type: image/png
Content-Length: 68
no-go.kelkoogroup.net/fp?country=no&k=612f7a9541cd6ea61eb554c0e4cff437567c460be4e08eedd0acaaa15d56e972c0b609ac95b63cf97719839b73daec322186e0753c08a5ddef6380875dc68e8fe2397601a82e5af63b2c1a0ccd081e8fc2f970ebe3f858f34bebfedbc57785b3101b972362a6edaaf4be89fec4288da1acfb871e31600ca0c5f4cd4f82b0f7175ee17cb778d34838ea47ea22c96d68338de474c7e44419d7ca5042be913e2c220d3319ef8d93b73dd0e4e6a3dba13e0501eb82b3b9d3ed0190e4a40160cfd5da4ea6535d6423b0d42e974f52d8b9b4a24c1660cbbed5f3391406fd012af1e96d619158245efb0d78bd7e65ba9d7d68fa1de182e2d974ba0369ad9f4cf8334d40cae9b09cffa2137110e29ce2a48f3ecd117303490e3a48fc9c94189eaa5cf8edcad736a4d46c75214e8e051f93ee6dc99c6bb629979714b171e79e586f9aa91d3fc08fbe25fc060c19197d8ec13c27f92ced2c2ec83084c1817045ef9680734e7b09b0d68c5c15381ee551a25cdc43abd52901577ff2209db61af6e39ce64bde429614377460bedde8374f658bdc3437cf4cb0289264d8d509b42d446f28a377b35843554ade30aa99e22772ecf09b0af981a74d5a5a24c3
200 OK 0 B URL HTTP/1.1 no-go.kelkoogroup.net/fp?country=no&k=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
IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /fp?country=no&k=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 HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/offersearchGo?.ts=1674835113127&.sig=l4c8bqDqFrMyx6SH9lRCLlwXEUk-&affiliationId=96965866&comId=100543285&country=no&offerId=d31e3f5001dba826804ba6adccef3ac0&service=37&tokenId=35e025c3-2943-4e2d-874f-eaee491f9fab&wait=true&addedParams=true&custom1=Ns7VPF-AKAacPXxkwZb03EmtlW8VQX9ymZ31UL0pKpRWQXabRAXE2BmRTLaIPCbqzsyDaE-IPpT13p4MRsyLlK3ZUqVk3pzZTsmuUL&custom2=jKWjuHsyVlF8gQBtqwqSExZvyxEmVJrUAQB
Content-Type: text/plain;charset=utf-8
Content-Length: 536
Origin: https://no-go.kelkoogroup.net
Connection: keep-alive
Cookie: datadome=5nW6JwIxLNGiTh-CQH1GbNYR0PUR9I20JluwY5ucbXxG1yyihTMFfmOrqLIfe5VuZIy9BREP8wfUlQjIM~XXoxKkeoJviycQv6SHbz9FUmAR~TdgrKHHMOZRRBlO-6jk; kelkooID=a4c6295-185f7d935c7-823bd; _ga=GA1.2.1259661982.1674900487; _gid=GA1.2.1470123250.1674900487
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
leadId: dc1-kls-prod-ls-02.prod.dc1.kelkoo.net_1674900485581_605116
clickId: 107698149_1674900485575_2488012
country: no
Request-Time: PT0.002852S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Date: Sat, 28 Jan 2023 10:08:05 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 0
dd.kelkoogroup.net/tags.js
200 OK 30 kB URL HTTP/2 dd.kelkoogroup.net/tags.js
IP
File type ASCII text, with very long lines (65432)
Hash 0add9cf2baf251589bdb6d0f505f525c
3cf7faea1ce7930df15c69e8290c94f40ba0b781
420a86f368eb2275df2fdc42bc545c7cc28a8e5caba3aa792fd4df75ea03776b
GET /tags.js HTTP/1.1
Host: dd.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/
Connection: keep-alive
Cookie: datadome=5nW6JwIxLNGiTh-CQH1GbNYR0PUR9I20JluwY5ucbXxG1yyihTMFfmOrqLIfe5VuZIy9BREP8wfUlQjIM~XXoxKkeoJviycQv6SHbz9FUmAR~TdgrKHHMOZRRBlO-6jk; kelkooID=a4c6295-185f7d935c7-823bd; _ga=GA1.2.1259661982.1674900487; _gid=GA1.2.1470123250.1674900487
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: text/javascript
content-length: 30111
server: Apache
strict-transport-security: max-age=63072000; includeSubDomains; preload
last-modified: Fri, 27 Jan 2023 08:15:06 GMT
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
via: 1.1 f49c99d2326b14738507e1c2ddcae1dc.cloudfront.net (CloudFront), 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
date: Sat, 28 Jan 2023 09:15:41 GMT
cache-control: max-age=3600, public
expires: Sat, 28 Jan 2023 10:15:21 GMT
etag: "231a0-5f33a7691305c-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA60-P2, OSL50-P1
x-amz-cf-id: YlqqcdKqTwdhGKV8tSWd91Kt5nKEtJh_mmQkM5lcOCn__fBOnFo_Kw==
age: 3164
X-Firefox-Spdy: h2
no-go.kelkoogroup.net/redirect?country=no&k=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&url=https%3A%2F%2Fnipponsport.no%2Fproducts%2Ftraining-elastic-tunturi-textile-resistance-band-set%3Fkk%3Da4c6295-185f7d935c7-823bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTunturi%2BTraining%2BElastic%2B-%2BTunturi%2B-%2B%2527Te&initiator=timeout
303 See Other 0 B URL HTTP/1.1 no-go.kelkoogroup.net/redirect?country=no&k=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&url=https%3A%2F%2Fnipponsport.no%2Fproducts%2Ftraining-elastic-tunturi-textile-resistance-band-set%3Fkk%3Da4c6295-185f7d935c7-823bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTunturi%2BTraining%2BElastic%2B-%2BTunturi%2B-%2B%2527Te&initiator=timeout
IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect?country=no&k=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&url=https%3A%2F%2Fnipponsport.no%2Fproducts%2Ftraining-elastic-tunturi-textile-resistance-band-set%3Fkk%3Da4c6295-185f7d935c7-823bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTunturi%2BTraining%2BElastic%2B-%2BTunturi%2B-%2B%2527Te&initiator=timeout HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/offersearchGo?.ts=1674835113127&.sig=l4c8bqDqFrMyx6SH9lRCLlwXEUk-&affiliationId=96965866&comId=100543285&country=no&offerId=d31e3f5001dba826804ba6adccef3ac0&service=37&tokenId=35e025c3-2943-4e2d-874f-eaee491f9fab&wait=true&addedParams=true&custom1=Ns7VPF-AKAacPXxkwZb03EmtlW8VQX9ymZ31UL0pKpRWQXabRAXE2BmRTLaIPCbqzsyDaE-IPpT13p4MRsyLlK3ZUqVk3pzZTsmuUL&custom2=jKWjuHsyVlF8gQBtqwqSExZvyxEmVJrUAQB
Connection: keep-alive
Cookie: datadome=5nW6JwIxLNGiTh-CQH1GbNYR0PUR9I20JluwY5ucbXxG1yyihTMFfmOrqLIfe5VuZIy9BREP8wfUlQjIM~XXoxKkeoJviycQv6SHbz9FUmAR~TdgrKHHMOZRRBlO-6jk; kelkooID=a4c6295-185f7d935c7-823bd; _ga=GA1.2.1259661982.1674900487; _gid=GA1.2.1470123250.1674900487
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 303 See Other
leadId: dc1-kls-prod-ls-02.prod.dc1.kelkoo.net_1674900485581_605116
clickId: 107698149_1674900485575_2488012
country: no
Location: https://nipponsport.no/products/training-elastic-tunturi-textile-resistance-band-set?kk=a4c6295-185f7d935c7-823bd&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Tunturi+Training+Elastic+-+Tunturi+-+%27Te
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
Set-Cookie: datadome=3aXNkzWK80HS4LaavZ3q~Ozt9KFGQAUvXR3x8vHVvFvWZwEPpyKTFpHFGzJ9GUCrcdZFZZlQYeRz__2H_tjJV34Ezp4IGV7dPiQk3XaHqn2i6AJY5A6GF-2QCI1imoIY; Max-Age=31536000; Expires=Sun, 28 Jan 2024 10:08:05 GMT; SameSite=Lax; Path=/; Domain=.kelkoogroup.net; Secure
X-DataDome: protected
Request-Time: PT0.012286S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Date: Sat, 28 Jan 2023 10:08:05 GMT
Content-Length: 0
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e55093242619b2930bcb1608896bec22
da07c3ae37524839651719d9bc11f4b38d9b29fd
67b1064d3543047c1cea9f0a78cfd5388bf78600f9fdab5ca84f70270a02d616
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "67B1064D3543047C1CEA9F0A78CFD5388BF78600F9FDAB5CA84F70270A02D616"
Last-Modified: Fri, 27 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15454
Expires: Sat, 28 Jan 2023 14:25:39 GMT
Date: Sat, 28 Jan 2023 10:08:05 GMT
Connection: keep-alive
ocsp.usertrust.com/
200 OK 471 B IP
Hash ff795c28e4447eec6b2c7983ba548c0d
f01e8e24e5bd9c35a0c11b2b7c7d9336c43a97d7
92044962246faacf3c78c682916f438476d11eb65adbefff757177667ff93217
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 10:08:05 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 01:51:18 GMT
Expires: Sat, 04 Feb 2023 01:51:17 GMT
Etag: "f01e8e24e5bd9c35a0c11b2b7c7d9336c43a97d7"
Cache-Control: max-age=603675,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 812
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7908ecc55cccb523-OSL
api-js.datadome.co/js/
200 OK 236 B IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 48fccd7c6901aad740573d0fa56f009b
db6e7ddda69384b0ab161fec1e14dda86d930a63
6911571fc8a333bdfa133de4db7c03fa29446e8fd477d96acc4e782b83028d0f
POST /js/ HTTP/1.1
Host: api-js.datadome.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 4569
Origin: https://no-go.kelkoogroup.net
Connection: keep-alive
Referer: https://no-go.kelkoogroup.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:06 GMT
content-type: application/json;charset=utf-8
content-length: 236
server: DataDome
access-control-allow-origin: *
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: 0
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e55093242619b2930bcb1608896bec22
da07c3ae37524839651719d9bc11f4b38d9b29fd
67b1064d3543047c1cea9f0a78cfd5388bf78600f9fdab5ca84f70270a02d616
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "67B1064D3543047C1CEA9F0A78CFD5388BF78600F9FDAB5CA84F70270A02D616"
Last-Modified: Fri, 27 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15453
Expires: Sat, 28 Jan 2023 14:25:39 GMT
Date: Sat, 28 Jan 2023 10:08:06 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e0483b9d25a43b89e03b1f8806e5222e
ee054a7be1fe32c781bb57f4011c99538c322bdf
6eca5f597553f691ed07b2a5eb36d2ed1bab0deb57fdb0b96072eca162804980
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6ECA5F597553F691ED07B2A5EB36D2ED1BAB0DEB57FDB0B96072ECA162804980"
Last-Modified: Thu, 26 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15406
Expires: Sat, 28 Jan 2023 14:24:52 GMT
Date: Sat, 28 Jan 2023 10:08:06 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 36147c185553851c38547798733a9fb2
912ec40237eae2ed558d09103c86c41f87896eca
a4fd9090983c75e1b7faf5ea9439532f51d747faf1853138ac13bdaafa490246
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 10:08:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/collect?v=1&_v=j96&t=pageview&_s=1&dl=https%3A%2F%2Fno-go.kelkoogroup.net%2FoffersearchGo%3F.ts%3D1674835113127%26.sig%3Dl4c8bqDqFrMyx6SH9lRCLlwXEUk-%26affiliationId%3D96965866%26comId%3D100543285%26country%3Dno%26offerId%3Dd31e3f5001dba826804ba6adccef3ac0%26service%3D37%26tokenId%3D35e025c3-2943-4e2d-874f-eaee491f9fab%26wait%3Dtrue%26addedParams%3Dtrue%26custom1%3DNs7VPF-AKAacPXxkwZb03EmtlW8VQX9ymZ31UL0pKpRWQXabRAXE2BmRTLaIPCbqzsyDaE-IPpT13p4MRsyLlK3ZUqVk3pzZTsmuUL%26custom2%3DjKWjuHsyVlF8gQBtqwqSExZvyxEmVJrUAQB&dr=http%3A%2F%2Fr.redirekted.com%2F&dp=%2F96965866%7C100543285%7C&ul=en-us&de=UTF-8&dt=Du%20sendes%20videre%20til%20Nipponsport.no&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=QACAAAABAAAAAC~&cid=1259661982.1674900487&tid=UA-168544891-6&_gid=1470123250.1674900487&_r=1&cd1=96965866&cd2=dc1-kls-prod-ls-02.prod.dc1.kelkoo.net_1674900485581_605116&cd3=100543285&cd4=a4c6295-185f7d935c7-823bd&cd5=&cd6=96965866%7C100543285%7C&z=998104108
200 OK 35 B URL HTTP/2 www.google-analytics.com/collect?v=1&_v=j96&t=pageview&_s=1&dl=https%3A%2F%2Fno-go.kelkoogroup.net%2FoffersearchGo%3F.ts%3D1674835113127%26.sig%3Dl4c8bqDqFrMyx6SH9lRCLlwXEUk-%26affiliationId%3D96965866%26comId%3D100543285%26country%3Dno%26offerId%3Dd31e3f5001dba826804ba6adccef3ac0%26service%3D37%26tokenId%3D35e025c3-2943-4e2d-874f-eaee491f9fab%26wait%3Dtrue%26addedParams%3Dtrue%26custom1%3DNs7VPF-AKAacPXxkwZb03EmtlW8VQX9ymZ31UL0pKpRWQXabRAXE2BmRTLaIPCbqzsyDaE-IPpT13p4MRsyLlK3ZUqVk3pzZTsmuUL%26custom2%3DjKWjuHsyVlF8gQBtqwqSExZvyxEmVJrUAQB&dr=http%3A%2F%2Fr.redirekted.com%2F&dp=%2F96965866%7C100543285%7C&ul=en-us&de=UTF-8&dt=Du%20sendes%20videre%20til%20Nipponsport.no&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=QACAAAABAAAAAC~&cid=1259661982.1674900487&tid=UA-168544891-6&_gid=1470123250.1674900487&_r=1&cd1=96965866&cd2=dc1-kls-prod-ls-02.prod.dc1.kelkoo.net_1674900485581_605116&cd3=100543285&cd4=a4c6295-185f7d935c7-823bd&cd5=&cd6=96965866%7C100543285%7C&z=998104108
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
POST /collect?v=1&_v=j96&t=pageview&_s=1&dl=https%3A%2F%2Fno-go.kelkoogroup.net%2FoffersearchGo%3F.ts%3D1674835113127%26.sig%3Dl4c8bqDqFrMyx6SH9lRCLlwXEUk-%26affiliationId%3D96965866%26comId%3D100543285%26country%3Dno%26offerId%3Dd31e3f5001dba826804ba6adccef3ac0%26service%3D37%26tokenId%3D35e025c3-2943-4e2d-874f-eaee491f9fab%26wait%3Dtrue%26addedParams%3Dtrue%26custom1%3DNs7VPF-AKAacPXxkwZb03EmtlW8VQX9ymZ31UL0pKpRWQXabRAXE2BmRTLaIPCbqzsyDaE-IPpT13p4MRsyLlK3ZUqVk3pzZTsmuUL%26custom2%3DjKWjuHsyVlF8gQBtqwqSExZvyxEmVJrUAQB&dr=http%3A%2F%2Fr.redirekted.com%2F&dp=%2F96965866%7C100543285%7C&ul=en-us&de=UTF-8&dt=Du%20sendes%20videre%20til%20Nipponsport.no&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=QACAAAABAAAAAC~&cid=1259661982.1674900487&tid=UA-168544891-6&_gid=1470123250.1674900487&_r=1&cd1=96965866&cd2=dc1-kls-prod-ls-02.prod.dc1.kelkoo.net_1674900485581_605116&cd3=100543285&cd4=a4c6295-185f7d935c7-823bd&cd5=&cd6=96965866%7C100543285%7C&z=998104108 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://no-go.kelkoogroup.net
Connection: keep-alive
Referer: https://no-go.kelkoogroup.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
access-control-allow-origin: https://no-go.kelkoogroup.net
date: Sat, 28 Jan 2023 10:08:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
x-content-type-options: nosniff
access-control-allow-credentials: true
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 36147c185553851c38547798733a9fb2
912ec40237eae2ed558d09103c86c41f87896eca
a4fd9090983c75e1b7faf5ea9439532f51d747faf1853138ac13bdaafa490246
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 10:08:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e0483b9d25a43b89e03b1f8806e5222e
ee054a7be1fe32c781bb57f4011c99538c322bdf
6eca5f597553f691ed07b2a5eb36d2ed1bab0deb57fdb0b96072eca162804980
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6ECA5F597553F691ED07B2A5EB36D2ED1BAB0DEB57FDB0B96072ECA162804980"
Last-Modified: Thu, 26 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15406
Expires: Sat, 28 Jan 2023 14:24:52 GMT
Date: Sat, 28 Jan 2023 10:08:06 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ceaa4c715c4d6c62d35a446a7506a9f3
98620f65be1dc68cc8d1a5c80a6cea17cb2297e8
676ec4152fd2040377aaf3a65955433a3e2d3067b95bed4af24bcf79d65dec3e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "676EC4152FD2040377AAF3A65955433A3E2D3067B95BED4AF24BCF79D65DEC3E"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5903
Expires: Sat, 28 Jan 2023 11:46:29 GMT
Date: Sat, 28 Jan 2023 10:08:06 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ceaa4c715c4d6c62d35a446a7506a9f3
98620f65be1dc68cc8d1a5c80a6cea17cb2297e8
676ec4152fd2040377aaf3a65955433a3e2d3067b95bed4af24bcf79d65dec3e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "676EC4152FD2040377AAF3A65955433A3E2D3067B95BED4AF24BCF79D65DEC3E"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5903
Expires: Sat, 28 Jan 2023 11:46:29 GMT
Date: Sat, 28 Jan 2023 10:08:06 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ceaa4c715c4d6c62d35a446a7506a9f3
98620f65be1dc68cc8d1a5c80a6cea17cb2297e8
676ec4152fd2040377aaf3a65955433a3e2d3067b95bed4af24bcf79d65dec3e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "676EC4152FD2040377AAF3A65955433A3E2D3067B95BED4AF24BCF79D65DEC3E"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5903
Expires: Sat, 28 Jan 2023 11:46:29 GMT
Date: Sat, 28 Jan 2023 10:08:06 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3506671737a18d4fb6c666698ec812db
dc814e3cad4f27cb9a8604c0a0240b30c4039f68
07ac2af2288456b5d185a075b965dd450a9888ec001587d8c0da6425cbe60b85
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "07AC2AF2288456B5D185A075B965DD450A9888EC001587D8C0DA6425CBE60B85"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4476
Expires: Sat, 28 Jan 2023 11:22:42 GMT
Date: Sat, 28 Jan 2023 10:08:06 GMT
Connection: keep-alive
cdn.shopify.com/s/files/1/0557/9109/1821/files/nippon_white_140x@2x.png?v=1654113022
200 OK 5.1 kB URL HTTP/2 cdn.shopify.com/s/files/1/0557/9109/1821/files/nippon_white_140x@2x.png?v=1654113022
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash 5a4cc1ef5d064ecffcac5cea253e9267
ba25f703a4b87b4f472f38bf5361208655ccd28a
427a6be4f8b3152536073fa7a5fdf9a78c49a0ff30ea258c4b47bf66ac571203
GET /s/files/1/0557/9109/1821/files/nippon_white_140x@2x.png?v=1654113022 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:06 GMT
content-type: image/avif
content-length: 5126
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0557/9109/1821/files/nippon_white_140x@2x.png>; rel="canonical"
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: ee5e1ba1-168b-469c-a91f-fa01a4f54658
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Fri, 26 Aug 2022 04:36:20 GMT
cf-cache-status: HIT
age: 13408645
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CyhBXO8bdUS%2BAjmVm5QOd1dHSUVdMau%2BFqFZxI7PJsmnnDEJXYc50%2FSlAdA3A3laYi0rULE9nkTbmLs7y0rbaQ0LsFP%2FH8QeXNIYxdTij7fQIgzwGCWekqWDj4StpAl1Bw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=492.135, imageryFetch;dur=48.274, imageryProcess;dur=442.621;desc="image", cfRequestDuration;dur=9.000063
server: cloudflare
cf-ray: 7908ecc94b57b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3506671737a18d4fb6c666698ec812db
dc814e3cad4f27cb9a8604c0a0240b30c4039f68
07ac2af2288456b5d185a075b965dd450a9888ec001587d8c0da6425cbe60b85
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "07AC2AF2288456B5D185A075B965DD450A9888EC001587D8C0DA6425CBE60B85"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4476
Expires: Sat, 28 Jan 2023 11:22:42 GMT
Date: Sat, 28 Jan 2023 10:08:06 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ceaa4c715c4d6c62d35a446a7506a9f3
98620f65be1dc68cc8d1a5c80a6cea17cb2297e8
676ec4152fd2040377aaf3a65955433a3e2d3067b95bed4af24bcf79d65dec3e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "676EC4152FD2040377AAF3A65955433A3E2D3067B95BED4AF24BCF79D65DEC3E"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5903
Expires: Sat, 28 Jan 2023 11:46:29 GMT
Date: Sat, 28 Jan 2023 10:08:06 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 36147c185553851c38547798733a9fb2
912ec40237eae2ed558d09103c86c41f87896eca
a4fd9090983c75e1b7faf5ea9439532f51d747faf1853138ac13bdaafa490246
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 10:08:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ceaa4c715c4d6c62d35a446a7506a9f3
98620f65be1dc68cc8d1a5c80a6cea17cb2297e8
676ec4152fd2040377aaf3a65955433a3e2d3067b95bed4af24bcf79d65dec3e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "676EC4152FD2040377AAF3A65955433A3E2D3067B95BED4AF24BCF79D65DEC3E"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5903
Expires: Sat, 28 Jan 2023 11:46:29 GMT
Date: Sat, 28 Jan 2023 10:08:06 GMT
Connection: keep-alive
fonts.shopifycdn.com/avenir_next/avenirnext_n7.8cfc646eab1e39e2d81a26284624600ccae49d55.woff2?h1=bmlwcG9uc3BvcnRuby5hY2NvdW50Lm15c2hvcGlmeS5jb20&h2=bmlwcG9uc3BvcnQubm8&hmac=ff8d5b3d7b1b15c1e29962482f9c720413070e46d46ca0874fd3a8154eebfff8
200 OK 20 kB URL HTTP/2 fonts.shopifycdn.com/avenir_next/avenirnext_n7.8cfc646eab1e39e2d81a26284624600ccae49d55.woff2?h1=bmlwcG9uc3BvcnRuby5hY2NvdW50Lm15c2hvcGlmeS5jb20&h2=bmlwcG9uc3BvcnQubm8&hmac=ff8d5b3d7b1b15c1e29962482f9c720413070e46d46ca0874fd3a8154eebfff8
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), TrueType, length 19904, version 1.0\012- data
Hash f21e55e1d50b92ad1f8b0dd328095e99
8cfc646eab1e39e2d81a26284624600ccae49d55
c370c9b8ccf57929d8ae1e3b24a0c8206523edccfe5d790482be3da3c0df383f
GET /avenir_next/avenirnext_n7.8cfc646eab1e39e2d81a26284624600ccae49d55.woff2?h1=bmlwcG9uc3BvcnRuby5hY2NvdW50Lm15c2hvcGlmeS5jb20&h2=bmlwcG9uc3BvcnQubm8&hmac=ff8d5b3d7b1b15c1e29962482f9c720413070e46d46ca0874fd3a8154eebfff8 HTTP/1.1
Host: fonts.shopifycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.nipponsport.no
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:06 GMT
content-type: font/woff2
content-length: 19904
cf-ray: 7908ecc97dc6b506-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 401292
cache-control: max-age=2629800, immutable
last-modified: Sun, 22 Jan 2023 04:53:51 GMT
link: <https://imagery4-fonts.shopifysvc.com/premium-fonts/avenir_next/avenirnext_n7.8cfc646eab1e39e2d81a26284624600ccae49d55.woff2>; rel="canonical"
strict-transport-security: max-age=15552000; includeSubDomains; preload
cf-cache-status: HIT
timing-allow-origin: *
x-content-type-options: nosniff
x-dc: gcp-us-east1,gcp-us-central1
x-request-id: bd249fe5-2b8b-4628-b868-72d76d7b5c1d
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FQoP0DfH5ASArLljj2nV3ubAPiVoT%2BCD3eGaDJA2XFGEY7ABl6T2Hc1T5vUeMGiDScAww7NKH6zmL0633EewL6bBdliMI4dcynf0gO5tsS8cR5L7Hysdd3GsbhBjRG9Bwe6HXips"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=54.982, imageryFetch;dur=54.588, cfRequestDuration;dur=8.999825, cfRequestDuration;dur=19.999981
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.shopifycdn.com/avenir_next/avenirnext_n5.972a96b7a049f12c89d6d1cd0e1b6c9211f7ba14.woff2?h1=bmlwcG9uc3BvcnRuby5hY2NvdW50Lm15c2hvcGlmeS5jb20&h2=bmlwcG9uc3BvcnQubm8&hmac=6230abf28abeeb09208cc23b2a2cf0f6ef560f7c5f461b71a86fb5210fc97a06
200 OK 20 kB URL HTTP/2 fonts.shopifycdn.com/avenir_next/avenirnext_n5.972a96b7a049f12c89d6d1cd0e1b6c9211f7ba14.woff2?h1=bmlwcG9uc3BvcnRuby5hY2NvdW50Lm15c2hvcGlmeS5jb20&h2=bmlwcG9uc3BvcnQubm8&hmac=6230abf28abeeb09208cc23b2a2cf0f6ef560f7c5f461b71a86fb5210fc97a06
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), TrueType, length 19852, version 1.0\012- data
Hash a86e6e76d05ed7d44b43e7c71ee28168
972a96b7a049f12c89d6d1cd0e1b6c9211f7ba14
b8dc428785cf4b6552754379b1e3d10e1741e11c19518c53834c3fd69688d6f1
GET /avenir_next/avenirnext_n5.972a96b7a049f12c89d6d1cd0e1b6c9211f7ba14.woff2?h1=bmlwcG9uc3BvcnRuby5hY2NvdW50Lm15c2hvcGlmeS5jb20&h2=bmlwcG9uc3BvcnQubm8&hmac=6230abf28abeeb09208cc23b2a2cf0f6ef560f7c5f461b71a86fb5210fc97a06 HTTP/1.1
Host: fonts.shopifycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.nipponsport.no
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:06 GMT
content-type: font/woff2
content-length: 19852
cf-ray: 7908ecc96d86b506-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 401295
cache-control: max-age=2629800, immutable
last-modified: Sun, 22 Jan 2023 08:56:00 GMT
link: <https://imagery4-fonts.shopifysvc.com/premium-fonts/avenir_next/avenirnext_n5.972a96b7a049f12c89d6d1cd0e1b6c9211f7ba14.woff2>; rel="canonical"
strict-transport-security: max-age=15552000; includeSubDomains; preload
cf-cache-status: HIT
timing-allow-origin: *
x-content-type-options: nosniff
x-dc: gcp-us-east1,gcp-us-east1
x-request-id: a00689f5-f1c1-406e-b02f-149a5dde1174
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DuD3lNLNz05p6gRxyPpUJ9zFQnFLt6WDxvrgP3%2B%2FKd82gxNrrHeoRTughyhY4%2FfQL0DIAiJ3EqGGypaVnS%2BX0IVYUFI85mBce7zqVKzRys5raZNRIHxzOXhKgo%2BeZswqweeL0IzV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=35.225, imageryFetch;dur=34.885, cfRequestDuration;dur=7.000208, cfRequestDuration;dur=85.999966
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3506671737a18d4fb6c666698ec812db
dc814e3cad4f27cb9a8604c0a0240b30c4039f68
07ac2af2288456b5d185a075b965dd450a9888ec001587d8c0da6425cbe60b85
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "07AC2AF2288456B5D185A075B965DD450A9888EC001587D8C0DA6425CBE60B85"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4476
Expires: Sat, 28 Jan 2023 11:22:42 GMT
Date: Sat, 28 Jan 2023 10:08:06 GMT
Connection: keep-alive
www.googletagmanager.com/gtm.js?id=GTM-5FDJNRC
200 OK 79 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-5FDJNRC
IP
File type ASCII text, with very long lines (11546)
Hash 281d31b2fd809e13a33f29d963dd147d
ba62d2c10b8e202f9f0d1caa04f8a19f05695615
4595a06b7adf8d6ee71560e33a64316507619b1f2060698eec3a89e37d5ffb74
GET /gtm.js?id=GTM-5FDJNRC HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 28 Jan 2023 10:08:06 GMT
expires: Sat, 28 Jan 2023 10:08:06 GMT
cache-control: private, max-age=900
last-modified: Sat, 28 Jan 2023 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79426
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.shopifycdn.com/avenir_next/avenirnext_n6.08f6a09127d450aa39c74986de08fd8fa84e6a11.woff2?h1=bmlwcG9uc3BvcnRuby5hY2NvdW50Lm15c2hvcGlmeS5jb20&h2=bmlwcG9uc3BvcnQubm8&hmac=f26fe06cadc40eb448168a5f50c3d39b53737500f9c2032eecba43e8e08de3c7
200 OK 20 kB URL HTTP/2 fonts.shopifycdn.com/avenir_next/avenirnext_n6.08f6a09127d450aa39c74986de08fd8fa84e6a11.woff2?h1=bmlwcG9uc3BvcnRuby5hY2NvdW50Lm15c2hvcGlmeS5jb20&h2=bmlwcG9uc3BvcnQubm8&hmac=f26fe06cadc40eb448168a5f50c3d39b53737500f9c2032eecba43e8e08de3c7
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), TrueType, length 19460, version 1.0\012- data
Hash 74bb8c7220bfde72a7554c027407060c
08f6a09127d450aa39c74986de08fd8fa84e6a11
23e61b4741b0806325edb06966908967551992d7521c138c2daba2ff73b0d1bb
GET /avenir_next/avenirnext_n6.08f6a09127d450aa39c74986de08fd8fa84e6a11.woff2?h1=bmlwcG9uc3BvcnRuby5hY2NvdW50Lm15c2hvcGlmeS5jb20&h2=bmlwcG9uc3BvcnQubm8&hmac=f26fe06cadc40eb448168a5f50c3d39b53737500f9c2032eecba43e8e08de3c7 HTTP/1.1
Host: fonts.shopifycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.nipponsport.no
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:06 GMT
content-type: font/woff2
content-length: 19460
cf-ray: 7908ecca2ef1b506-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 401287
cache-control: max-age=2629800, immutable
last-modified: Mon, 23 Jan 2023 18:39:46 GMT
link: <https://imagery4-fonts.shopifysvc.com/premium-fonts/avenir_next/avenirnext_n6.08f6a09127d450aa39c74986de08fd8fa84e6a11.woff2>; rel="canonical"
strict-transport-security: max-age=15552000; includeSubDomains; preload
cf-cache-status: HIT
timing-allow-origin: *
x-content-type-options: nosniff
x-dc: gcp-us-east1,gcp-us-central1
x-request-id: 106a62ac-0a7c-46fc-95b2-986ff2c45a80
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BIKMvD8h%2FkmJmLBZRZGrTWYuysI8sbevbfzzncRCOK6UVzMRqWqNki1iLHQdw82PQyuelZqVX06kt0H0r%2FewSRelT1bB0pFa6hZ1HeMzREpoztOUI3CFb4EQqq%2FTagslwcZ22FdW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=56.441, imageryFetch;dur=56.059, cfRequestDuration;dur=6.999969, cfRequestDuration;dur=17.999887
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0557/9109/1821/t/7/assets/clerk-search.js?v=48265468642278082501670423810
200 OK 61 kB URL HTTP/2 cdn.shopify.com/s/files/1/0557/9109/1821/t/7/assets/clerk-search.js?v=48265468642278082501670423810
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type C++ source, Unicode text, UTF-8 text, with very long lines (588)
Hash a5ee64b273d6000194429a1bc34faba5
558366c5b67c97269259880e82809abbc0954248
efded6055c1d3fb5bc6eca3840b76babc02fbe5569c822c6c13c3be5b1a886d1
GET /s/files/1/0557/9109/1821/t/7/assets/clerk-search.js?v=48265468642278082501670423810 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:06 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0557/9109/1821/t/7/assets/clerk-search.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 7339b3e3-4740-41c8-aaba-a43758f9ffa5
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Wed, 07 Dec 2022 14:54:02 GMT
cf-cache-status: HIT
age: 826282
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K%2BHrioX9KC49weZmIZfSQzhcoh7OfsxoFBmnBPI3Wnj3fRiPbLSV3gDfcB1Fzbs08RO1Jkov4WmR3Vqs%2B5Upm4GCRDzZf03xsM7%2BuIBNZWRnfR%2FE47IzF%2FyjNOzqQr8ePg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=73.504, imageryFetch;dur=70.563, cfRequestDuration;dur=11.999846
server: cloudflare
cf-ray: 7908ecc95b6bb503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 2a3bb21ded1bbb10690b8afe1eac51a8
9e2a927ec284e3f4a0cbf49479942976c405c9f4
a4e760290a8e46f10496a74640351b3634b8c23ef61f62e637e8c25fc8dc8c5e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=115295
Date: Sat, 28 Jan 2023 10:08:06 GMT
Etag: "63d3fae6-1d7"
Expires: Sun, 29 Jan 2023 18:09:41 GMT
Last-Modified: Fri, 27 Jan 2023 16:25:10 GMT
Server: ECS (nyb/1D11)
X-Cache: Miss from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: N_kKqPvhE9_j-HLtbxhQA6COB7LEZls2818_i1jW_rwfTlGxhgfgLA==
Age: 6271
cdn1.profitmetrics.io/E756775D24BF2881/ga4-bundle.js
200 OK 8.7 kB URL HTTP/2 cdn1.profitmetrics.io/E756775D24BF2881/ga4-bundle.js
IP
File type Unicode text, UTF-8 text, with very long lines (22592)
Hash fe0e6fba141561bf1732e726b6755ab9
fb3b19a8129cffa7b8018e190318ddd746a3a34f
34421adcf26b3f3860ccdd2b50b063ec2c13fed8c54f5983be7173a899c82a11
GET /E756775D24BF2881/ga4-bundle.js HTTP/1.1
Host: cdn1.profitmetrics.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:06 GMT
content-type: application/javascript
last-modified: Tue, 06 Sep 2022 11:14:07 GMT
etag: W/"cad1dd01bad3a7c4ba3eab5b2e95e4aa"
cache-control: max-age=120
cf-cache-status: HIT
age: 2977
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v71mYhemxVIFPI3%2FaYcpAutEyOBio2BLA5KTkRLOdffD93eGtPm97%2Bcocmg%2B9yWZ7%2F4yzbo6XtRDHjMQeLd5PQpzcqjSpdNXpGski6L5%2Fzodn0%2FUCBFnUIS90ClHDFEAWT%2BFs6pRvq0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7908ecc929520b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 758b96d3c90b96541e3e000a0c9b0bda
515a0b49217cfeaf380bef9b9a7a048d2f88a479
520190f02606db892823e7efe67ba36fc109639fecb29391db8fc4b405312a23
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "520190F02606DB892823E7EFE67BA36FC109639FECB29391DB8FC4B405312A23"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18722
Expires: Sat, 28 Jan 2023 15:20:09 GMT
Date: Sat, 28 Jan 2023 10:08:07 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 976793efc0294e84737dbf8326e4f8b4
bb922ab5917410303d7c77a92f1b43503848867d
58baef4afef94d1be7e96ad65797d3d0d1cbe4ce152ca2c96f44f8c699c9d276
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58BAEF4AFEF94D1BE7E96AD65797D3D0D1CBE4CE152CA2C96F44F8C699C9D276"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7716
Expires: Sat, 28 Jan 2023 12:16:43 GMT
Date: Sat, 28 Jan 2023 10:08:07 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 1dca4e0737668562818a4360e94e4c15
67ef3274626b4ad24bd5205929a08ae5976b7c08
ad640dfd292d1d35852c429a84fd6b87324f101a0b46be4e51cff167942f613d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 28 Jan 2023 10:08:07 GMT
Etag: "63d40e6c-1d7"
Last-Modified: Sat, 28 Jan 2023 09:44:29 GMT
Server: ECS (bsa/EB13)
X-Cache: Miss from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: utHZZK-tL58_Jx_XpPyN4ULgCjS-kvSqWTNtFHqpo8sAI8DmG2EmIA==
Age: 1418
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e5dad47e90544139f5ffe4462531bd62
5b588021466e60d29512a4e8ef2bc523f1812a55
7cdee7a6dae303d52e66390bcc2d22bd133a8c91379bcccb5cb54f6d90b08c8f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7CDEE7A6DAE303D52E66390BCC2D22BD133A8C91379BCCCB5CB54F6D90B08C8F"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2984
Expires: Sat, 28 Jan 2023 10:57:51 GMT
Date: Sat, 28 Jan 2023 10:08:07 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c4f6881289d48fdde23831f1b8a675b1
9dfc40e6c34db0cebe7915f8af4af3461076f614
016da5c3f8f92ce3845c39a2c3e930925815dca266729deea3c02e616e2577b7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "016DA5C3F8F92CE3845C39A2C3E930925815DCA266729DEEA3C02E616E2577B7"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1818
Expires: Sat, 28 Jan 2023 10:38:25 GMT
Date: Sat, 28 Jan 2023 10:08:07 GMT
Connection: keep-alive
api.reaktion.com/assets/tracking/store.js?s=bNQYQfPcFtdnZV9ni4iiV2fxXG3UbN10
200 OK 25 kB URL HTTP/2 api.reaktion.com/assets/tracking/store.js?s=bNQYQfPcFtdnZV9ni4iiV2fxXG3UbN10
IP
File type Unicode text, UTF-8 text, with very long lines (65467)
Hash d2e282f5e0a4dffdff5163402caa0b72
50923c79fd4fdf257df29e6544b62679510b737e
6b895e938e14d66da8af7bfef2aa5e792286e83aca6ce96e86f706cae37a2017
GET /assets/tracking/store.js?s=bNQYQfPcFtdnZV9ni4iiV2fxXG3UbN10 HTTP/1.1
Host: api.reaktion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:07 GMT
content-type: application/javascript
content-length: 24846
set-cookie: AWSALB=t8cddUTiGaX9l6F2ER0kq5tAh7K3AIeXaTCAmp2KxPSymGbGliAeVHIv7FOFF+ucnIk9CfYSJr8i3uDFGw5eNUAB4YbKJ4zQxEWT5+zFK/KKCV2jHCi6dSdxa+vG; Expires=Sat, 04 Feb 2023 10:08:07 GMT; Path=/
AWSALBCORS=t8cddUTiGaX9l6F2ER0kq5tAh7K3AIeXaTCAmp2KxPSymGbGliAeVHIv7FOFF+ucnIk9CfYSJr8i3uDFGw5eNUAB4YbKJ4zQxEWT5+zFK/KKCV2jHCi6dSdxa+vG; Expires=Sat, 04 Feb 2023 10:08:07 GMT; Path=/; SameSite=None; Secure
server: nginx/1.21.6
last-modified: Fri, 27 Jan 2023 14:35:31 GMT
etag: "63d3e133-610e"
content-encoding: gzip
cache-control: max-age=3600
X-Firefox-Spdy: h2
my.profitmetrics.io/ss/shopify.php?v=1&pid=4E899666D059B854&cart_token=274c05bb066bb0a7edc566b5e44e2b46&t=%7B%22utm_source%22%3A%22kelkoono%22%2C%22utm_campaign%22%3A%22kelkooclick%22%2C%22utm_medium%22%3A%22cpc%22%2C%22http_referrer%22%3A%22https%3A%2F%2Fno-go.kelkoogroup.net%2F%22%2C%22http_referrer_length%22%3A30%2C%22landingpage%22%3A%22%2Fproducts%2Ftraining-elastic-tunturi-textile-resistance-band-set%3Fkk%3Da4c6295-185f7d935c7-823bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTunturi%2BTraining%2BElastic%2B-%2BTunturi%2B-%2B%2527Te%22%2C%22landingpage_length%22%3A203%2C%22time%22%3A1674900488%7D
200 OK 6 B URL HTTP/1.1 my.profitmetrics.io/ss/shopify.php?v=1&pid=4E899666D059B854&cart_token=274c05bb066bb0a7edc566b5e44e2b46&t=%7B%22utm_source%22%3A%22kelkoono%22%2C%22utm_campaign%22%3A%22kelkooclick%22%2C%22utm_medium%22%3A%22cpc%22%2C%22http_referrer%22%3A%22https%3A%2F%2Fno-go.kelkoogroup.net%2F%22%2C%22http_referrer_length%22%3A30%2C%22landingpage%22%3A%22%2Fproducts%2Ftraining-elastic-tunturi-textile-resistance-band-set%3Fkk%3Da4c6295-185f7d935c7-823bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTunturi%2BTraining%2BElastic%2B-%2BTunturi%2B-%2B%2527Te%22%2C%22landingpage_length%22%3A203%2C%22time%22%3A1674900488%7D
IP
ASN #8972 Host Europe GmbH
File type ASCII text, with no line terminators
Hash a796916e5b5f4e39226280bc972e6040
b11dcc7537f20edf3350a048edd28c831fef1936
9aeea378c2204a8769ac47ebdaf8553b88d8d0ae959433b45fa6428c4b58d983
GET /ss/shopify.php?v=1&pid=4E899666D059B854&cart_token=274c05bb066bb0a7edc566b5e44e2b46&t=%7B%22utm_source%22%3A%22kelkoono%22%2C%22utm_campaign%22%3A%22kelkooclick%22%2C%22utm_medium%22%3A%22cpc%22%2C%22http_referrer%22%3A%22https%3A%2F%2Fno-go.kelkoogroup.net%2F%22%2C%22http_referrer_length%22%3A30%2C%22landingpage%22%3A%22%2Fproducts%2Ftraining-elastic-tunturi-textile-resistance-band-set%3Fkk%3Da4c6295-185f7d935c7-823bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTunturi%2BTraining%2BElastic%2B-%2BTunturi%2B-%2B%2527Te%22%2C%22landingpage_length%22%3A203%2C%22time%22%3A1674900488%7D HTTP/1.1
Host: my.profitmetrics.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nipponsport.no/
Origin: https://www.nipponsport.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 10:08:07 GMT
Server: Apache/2.4.38 (Debian)
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept
Access-Control-Max-Age: 86400
Content-Length: 6
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript; charset=UTF-8
godog.shopifycloud.com/v1/event.gif?q=eyJuYW1lIjoic3BiLmluaXQuY2FsbGVkIiwidHlwZSI6ImluY3JlbWVudCIsInRhZ3MiOlsicGFnZVR5cGU6cHJvZHVjdCJdfQ==
200 OK 28 kB URL HTTP/2 godog.shopifycloud.com/v1/event.gif?q=eyJuYW1lIjoic3BiLmluaXQuY2FsbGVkIiwidHlwZSI6ImluY3JlbWVudCIsInRhZ3MiOlsicGFnZVR5cGU6cHJvZHVjdCJdfQ==
IP
Hash 42d30f22acfe82ff8e3f738bacff52d3
2f9654439969f14745a44cf1ed0f45b11e3856a3
1faeba64f94f89e5f699765576efadf8ba468d2f1ce984bbcd27c9325ad2ce21
GET /v1/event.gif?q=eyJuYW1lIjoic3BiLmluaXQuY2FsbGVkIiwidHlwZSI6ImluY3JlbWVudCIsInRhZ3MiOlsicGFnZVR5cGU6cHJvZHVjdCJdfQ== HTTP/1.1
Host: godog.shopifycloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:07 GMT
content-type: image/gif
content-length: 42
cache-control: no-cache, no-store, must-revalidate
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-dc: gcp-us-central1
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 1.0 kB IP
ASN #20940 Akamai International B.V.
Hash d249b1fc8e5ff14528477b8acd970647
777b604c19b84a33faef7de3677c2b756da81ccc
6c7435f93b51ad89a9ca9594fe3156f5151bc77416bfb4bbc2b8ac1d5506592a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "876F880AF48E85FED372DC6E03C99968FAA2DD96DF9C4A74048DA98DD4FCE80C"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2764
Expires: Sat, 28 Jan 2023 10:54:11 GMT
Date: Sat, 28 Jan 2023 10:08:07 GMT
Connection: keep-alive
queue.simpleanalyticscdn.com/simple.gif?version=cdn_latest_10&hostname=www.nipponsport.no&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&https=true&timezone=UTC&page_id=bc8ad56c-8670-4def-8f0a-522d1ccc8393&session_id=7daa6ec9-f3c6-4115-8d47-5d971d3a2557&sri=false&path=%2Fproducts%2Ftraining-elastic-tunturi-textile-resistance-band-set&viewport_width=1280&viewport_height=939&language=en-US&screen_width=1280&screen_height=1024&unique=true&id=bc8ad56c-8670-4def-8f0a-522d1ccc8393&type=pageview&referrer=no-go.kelkoogroup.net%2F&query=utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTunturi%2BTraining%2BElastic%2B-%2BTunturi%2B-%2B%2527Te&time=1674900489810
202 Accepted 702 B URL HTTP/1.1 queue.simpleanalyticscdn.com/simple.gif?version=cdn_latest_10&hostname=www.nipponsport.no&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&https=true&timezone=UTC&page_id=bc8ad56c-8670-4def-8f0a-522d1ccc8393&session_id=7daa6ec9-f3c6-4115-8d47-5d971d3a2557&sri=false&path=%2Fproducts%2Ftraining-elastic-tunturi-textile-resistance-band-set&viewport_width=1280&viewport_height=939&language=en-US&screen_width=1280&screen_height=1024&unique=true&id=bc8ad56c-8670-4def-8f0a-522d1ccc8393&type=pageview&referrer=no-go.kelkoogroup.net%2F&query=utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTunturi%2BTraining%2BElastic%2B-%2BTunturi%2B-%2B%2527Te&time=1674900489810
IP
ASN #49981 WorldStream B.V.
Hash a672a6a6b1d33f2108ef716cfa182878
3785a2358f74bc4fc7cbbbdff9f14a822cf123a5
7b136d0bab0468daffcb170b486d852694cbdbae0c471f42a68150cd35499c84
GET /simple.gif?version=cdn_latest_10&hostname=www.nipponsport.no&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&https=true&timezone=UTC&page_id=bc8ad56c-8670-4def-8f0a-522d1ccc8393&session_id=7daa6ec9-f3c6-4115-8d47-5d971d3a2557&sri=false&path=%2Fproducts%2Ftraining-elastic-tunturi-textile-resistance-band-set&viewport_width=1280&viewport_height=939&language=en-US&screen_width=1280&screen_height=1024&unique=true&id=bc8ad56c-8670-4def-8f0a-522d1ccc8393&type=pageview&referrer=no-go.kelkoogroup.net%2F&query=utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTunturi%2BTraining%2BElastic%2B-%2BTunturi%2B-%2B%2527Te&time=1674900489810 HTTP/1.1
Host: queue.simpleanalyticscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 202 Accepted
Content-Type: image/gif
Access-Control-Allow-Origin: *
Simple-Analytics-Location: not_set
Simple-Analytics-Feedback: Thanks for sending this page view!
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Date: Sat, 28 Jan 2023 10:08:07 GMT
Connection: keep-alive
Keep-Alive: timeout=5
Content-Length: 43
ocsp.digicert.com/
200 OK 471 B IP
Hash 1eb0a2928a5a6445ea2403546c917632
c3174e2243b998ea5850bed5f26f124253a59ea4
6f6125f352a6f2271ac69946dc5985aeef83d623cd7e90bb48bb3d3a62b4bdb3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5872
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 10:08:08 GMT
Last-Modified: Sat, 28 Jan 2023 08:30:16 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
api.reaktion.com/tracking/stores/bNQYQfPcFtdnZV9ni4iiV2fxXG3UbN10
200 OK 732 B URL HTTP/2 api.reaktion.com/tracking/stores/bNQYQfPcFtdnZV9ni4iiV2fxXG3UbN10
IP
Hash f6289e56e189d27a8aeda11dbac242b2
1618b94f0afc4b1850a2e776e44be2d0227515d6
c69cfe691bcbf154120cef1684deff768a7383e79a1787abc388c3dcd75eae77
GET /tracking/stores/bNQYQfPcFtdnZV9ni4iiV2fxXG3UbN10 HTTP/1.1
Host: api.reaktion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.nipponsport.no
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:07 GMT
content-type: application/json
set-cookie: AWSALB=FDgtHIFRH5WwZd+V6cWsHFvCJmjWW1j6QqoZntIxdLWce0ZL1BOgJFPkekwnEZDBCwFVOm/QSubtLEWrWAmd8mGtj8lCsSPRZr56JSxXwq+nXmxADlpl+k+LuKqe; Expires=Sat, 04 Feb 2023 10:08:07 GMT; Path=/
AWSALBCORS=FDgtHIFRH5WwZd+V6cWsHFvCJmjWW1j6QqoZntIxdLWce0ZL1BOgJFPkekwnEZDBCwFVOm/QSubtLEWrWAmd8mGtj8lCsSPRZr56JSxXwq+nXmxADlpl+k+LuKqe; Expires=Sat, 04 Feb 2023 10:08:07 GMT; Path=/; SameSite=None; Secure
server: nginx/1.21.6
x-powered-by: PHP/8.1.14
cache-control: max-age=3600, private
x-ratelimit-limit: 500
x-ratelimit-remaining: 499
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
godog.shopifycloud.com/v1/event.gif?q=eyJuYW1lIjoic3BiLmF2YWlsYWJsZS5pbnN0cnVtZW50IiwidHlwZSI6ImluY3JlbWVudCIsInRhZ3MiOlsiaW5zdHJ1bWVudDpTaG9waWZ5UGF5IiwicGFnZVR5cGU6cHJvZHVjdCJdfQ==
200 OK 42 B URL HTTP/2 godog.shopifycloud.com/v1/event.gif?q=eyJuYW1lIjoic3BiLmF2YWlsYWJsZS5pbnN0cnVtZW50IiwidHlwZSI6ImluY3JlbWVudCIsInRhZ3MiOlsiaW5zdHJ1bWVudDpTaG9waWZ5UGF5IiwicGFnZVR5cGU6cHJvZHVjdCJdfQ==
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /v1/event.gif?q=eyJuYW1lIjoic3BiLmF2YWlsYWJsZS5pbnN0cnVtZW50IiwidHlwZSI6ImluY3JlbWVudCIsInRhZ3MiOlsiaW5zdHJ1bWVudDpTaG9waWZ5UGF5IiwicGFnZVR5cGU6cHJvZHVjdCJdfQ== HTTP/1.1
Host: godog.shopifycloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:07 GMT
content-type: image/gif
content-length: 42
cache-control: no-cache, no-store, must-revalidate
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-dc: gcp-us-central1
X-Firefox-Spdy: h2
godog.shopifycloud.com/v1/event.gif?q=eyJuYW1lIjoic3BiLmluc3RydW1lbnQubG9hZGluZy50aW1lIiwidHlwZSI6Imhpc3RvZ3JhbSIsInZhbHVlIjoxMywidGFncyI6WyJpbnN0cnVtZW50OlBheVBhbEluQ29udGV4dCIsInBhZ2VUeXBlOnByb2R1Y3QiXX0=
200 OK 703 B URL HTTP/2 godog.shopifycloud.com/v1/event.gif?q=eyJuYW1lIjoic3BiLmluc3RydW1lbnQubG9hZGluZy50aW1lIiwidHlwZSI6Imhpc3RvZ3JhbSIsInZhbHVlIjoxMywidGFncyI6WyJpbnN0cnVtZW50OlBheVBhbEluQ29udGV4dCIsInBhZ2VUeXBlOnByb2R1Y3QiXX0=
IP
Hash 82599b7c5b9af14e04dec77f3e8fbcb2
442b3f0a24c2e537affca1b3d0957804da069591
f299899f807a64bf6b0cd93426aafdd42cc7ae35d5260362bbf90c2b944dae5a
GET /v1/event.gif?q=eyJuYW1lIjoic3BiLmluc3RydW1lbnQubG9hZGluZy50aW1lIiwidHlwZSI6Imhpc3RvZ3JhbSIsInZhbHVlIjoxMywidGFncyI6WyJpbnN0cnVtZW50OlBheVBhbEluQ29udGV4dCIsInBhZ2VUeXBlOnByb2R1Y3QiXX0= HTTP/1.1
Host: godog.shopifycloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:07 GMT
content-type: image/gif
content-length: 42
cache-control: no-cache, no-store, must-revalidate
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-dc: gcp-us-central1
X-Firefox-Spdy: h2
godog.shopifycloud.com/v1/event.gif?q=eyJuYW1lIjoic3BiLmF2YWlsYWJsZS5pbnN0cnVtZW50IiwidHlwZSI6ImluY3JlbWVudCIsInRhZ3MiOlsiaW5zdHJ1bWVudDpQYXlQYWxJbkNvbnRleHQiLCJwYWdlVHlwZTpwcm9kdWN0Il19
200 OK 723 B URL HTTP/2 godog.shopifycloud.com/v1/event.gif?q=eyJuYW1lIjoic3BiLmF2YWlsYWJsZS5pbnN0cnVtZW50IiwidHlwZSI6ImluY3JlbWVudCIsInRhZ3MiOlsiaW5zdHJ1bWVudDpQYXlQYWxJbkNvbnRleHQiLCJwYWdlVHlwZTpwcm9kdWN0Il19
IP
Hash 124f99dd37e37ba8fa42971d08384055
59312507f4cdeb17f555c5da78538121d672e060
acfb807da6357abbe9e02daa420b2ca148c03a5ce399ee03d0407c8e48167cca
GET /v1/event.gif?q=eyJuYW1lIjoic3BiLmF2YWlsYWJsZS5pbnN0cnVtZW50IiwidHlwZSI6ImluY3JlbWVudCIsInRhZ3MiOlsiaW5zdHJ1bWVudDpQYXlQYWxJbkNvbnRleHQiLCJwYWdlVHlwZTpwcm9kdWN0Il19 HTTP/1.1
Host: godog.shopifycloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:07 GMT
content-type: image/gif
content-length: 42
cache-control: no-cache, no-store, must-revalidate
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-dc: gcp-us-central1
X-Firefox-Spdy: h2
api.reaktion.com/tracking/stores/bNQYQfPcFtdnZV9ni4iiV2fxXG3UbN10/sessions/5Jfv1BOnOauiokbbuduSqJk7bqevFAMt26iDObTZtMo9q957dXjyuAd6LtUqcKzE/marketing-clicks
204 No Content 0 B URL HTTP/2 api.reaktion.com/tracking/stores/bNQYQfPcFtdnZV9ni4iiV2fxXG3UbN10/sessions/5Jfv1BOnOauiokbbuduSqJk7bqevFAMt26iDObTZtMo9q957dXjyuAd6LtUqcKzE/marketing-clicks
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /tracking/stores/bNQYQfPcFtdnZV9ni4iiV2fxXG3UbN10/sessions/5Jfv1BOnOauiokbbuduSqJk7bqevFAMt26iDObTZtMo9q957dXjyuAd6LtUqcKzE/marketing-clicks HTTP/1.1
Host: api.reaktion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.nipponsport.no/
Origin: https://www.nipponsport.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 28 Jan 2023 10:08:08 GMT
set-cookie: AWSALB=3FcSx88MnyxG/4FLk7Xv61qWBk8ZIT1k0aDvetSQMswnK9yc2SBmpCBqvSNyus24DRdrjG/OIcgW9eO+mCmkjooOYKOr9fnNdkIt5WdDbNOMnJaazg1coa+AQBgj; Expires=Sat, 04 Feb 2023 10:08:08 GMT; Path=/
AWSALBCORS=3FcSx88MnyxG/4FLk7Xv61qWBk8ZIT1k0aDvetSQMswnK9yc2SBmpCBqvSNyus24DRdrjG/OIcgW9eO+mCmkjooOYKOr9fnNdkIt5WdDbNOMnJaazg1coa+AQBgj; Expires=Sat, 04 Feb 2023 10:08:08 GMT; Path=/; SameSite=None; Secure
server: nginx/1.21.6
x-powered-by: PHP/8.1.14
cache-control: no-cache, private
access-control-allow-origin: *
vary: Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-methods: POST
access-control-allow-headers: content-type
access-control-max-age: 0
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c8fa1eca5d0eb3d0ebba88b678881c1b
ab24215c3ec0a7274c55389b444d1b036d384b7f
46927044b2eab80c7976194fdba52a1b3d6ab98a3fd4ce00e94a914d7e99b598
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "46927044B2EAB80C7976194FDBA52A1B3D6AB98A3FD4CE00E94A914D7E99B598"
Last-Modified: Thu, 26 Jan 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18780
Expires: Sat, 28 Jan 2023 15:21:08 GMT
Date: Sat, 28 Jan 2023 10:08:08 GMT
Connection: keep-alive
evnp1.in-endp.profitmetrics.io/in/v1/form?pid=4E899666D059B854&type=GA4EVENTS&v=ac4ad362101705e436dfd49deb2fc94530b8ea54-false-ga4-no-attribution-modern-shopify
200 OK 559 B URL HTTP/1.1 evnp1.in-endp.profitmetrics.io/in/v1/form?pid=4E899666D059B854&type=GA4EVENTS&v=ac4ad362101705e436dfd49deb2fc94530b8ea54-false-ga4-no-attribution-modern-shopify
IP
ASN #8972 Host Europe GmbH
File type JSON data\012- , ASCII text, with very long lines (559), with no line terminators
Hash c8140f2073f418fd6077a4678071de81
4c1f50314e8a107196dc84a13d7717982280fc0f
8705ce4b94526bd6737e8597201080153ac795d4ff3c9e0f920abe65e2085d93
POST /in/v1/form?pid=4E899666D059B854&type=GA4EVENTS&v=ac4ad362101705e436dfd49deb2fc94530b8ea54-false-ga4-no-attribution-modern-shopify HTTP/1.1
Host: evnp1.in-endp.profitmetrics.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 468
Origin: https://www.nipponsport.no
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sat, 28 Jan 2023 10:08:08 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Expires: 0
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
X-XSS-Protection: 1; mode=block
Pragma: no-cache
X-Frame-Options: DENY
Access-Control-Allow-Origin: *
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
godog.shopifycloud.com/v1/event.gif?q=eyJuYW1lIjoic3BiLmFjY2VsZXJhdGlvbi5jaGVjay5iZW5jaG1hcmsiLCJ0eXBlIjoiaGlzdG9ncmFtIiwidmFsdWUiOjI4MiwidGFncyI6WyJpbnN0cnVtZW50OlNob3BpZnlQYXkiLCJwYWdlVHlwZTpwcm9kdWN0Il19
200 OK 741 B URL HTTP/2 godog.shopifycloud.com/v1/event.gif?q=eyJuYW1lIjoic3BiLmFjY2VsZXJhdGlvbi5jaGVjay5iZW5jaG1hcmsiLCJ0eXBlIjoiaGlzdG9ncmFtIiwidmFsdWUiOjI4MiwidGFncyI6WyJpbnN0cnVtZW50OlNob3BpZnlQYXkiLCJwYWdlVHlwZTpwcm9kdWN0Il19
IP
Hash 559fe4245bbd7d689eef76612851ebb9
1fbd0c418095860c9fc8252453bd44ce06e08857
4f8fcc32936434f70331626000905c4d7f54c34b1251f428f31f75957261dee3
GET /v1/event.gif?q=eyJuYW1lIjoic3BiLmFjY2VsZXJhdGlvbi5jaGVjay5iZW5jaG1hcmsiLCJ0eXBlIjoiaGlzdG9ncmFtIiwidmFsdWUiOjI4MiwidGFncyI6WyJpbnN0cnVtZW50OlNob3BpZnlQYXkiLCJwYWdlVHlwZTpwcm9kdWN0Il19 HTTP/1.1
Host: godog.shopifycloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:08 GMT
content-type: image/gif
content-length: 42
cache-control: no-cache, no-store, must-revalidate
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-dc: gcp-us-central1
X-Firefox-Spdy: h2
nipponsport.no/products/training-elastic-tunturi-textile-resistance-band-set?kk=a4c6295-185f7d935c7-823bd&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Tunturi+Training+Elastic+-+Tunturi+-+%27Te
301 Moved Permanently 48 kB URL HTTP/2 nipponsport.no/products/training-elastic-tunturi-textile-resistance-band-set?kk=a4c6295-185f7d935c7-823bd&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Tunturi+Training+Elastic+-+Tunturi+-+%27Te
IP
Hash f50156ffd767b70abd8898e0d086be38
30b9dd875683007b29e40f703cb483c0a58ede5b
85976854b304dffab0d90a301d0884aa969c88b3d115cd53960dcba7fc6ce974
GET /products/training-elastic-tunturi-textile-resistance-band-set?kk=a4c6295-185f7d935c7-823bd&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Tunturi+Training+Elastic+-+Tunturi+-+%27Te HTTP/1.1
Host: nipponsport.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no-go.kelkoogroup.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sat, 28 Jan 2023 10:08:05 GMT
content-type: text/html; charset=utf-8
location: https://www.nipponsport.no/products/training-elastic-tunturi-textile-resistance-band-set?kk=a4c6295-185f7d935c7-823bd&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Tunturi+Training+Elastic+-+Tunturi+-+%27Te
x-sorting-hat-podid: 108
x-sorting-hat-shopid: 55791091821
x-storefront-renderer-rendered: 1
x-redirect-reason: canonical_host_redirection
x-frame-options: DENY
content-security-policy: block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
access-control-allow-origin: *
strict-transport-security: max-age=7889238
x-shopid: 55791091821
x-shardid: 108
vary: Accept
x-shopify-stage: production
x-dc: gcp-europe-north1,gcp-europe-west1,gcp-europe-west1
x-request-id: 154f61c3-a365-4d86-ac72-c89174a974dc
x-content-type-options: nosniff
x-download-options: noopen
x-xss-protection: 1; mode=block
x-permitted-cross-domain-policies: none
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dr7TFuFNF%2BrigbI5bTGkE2urZP1v6V3JRHuuAVB2j0pq77D05Suh%2BTlK8F2f0iAmHdKrmvjpT5kFYpvqCyRPVBYATTiuNyfDE5%2FowcyPpP9Bh%2BBxBX7F326dgCd7frPS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: processing;dur=10, db;dur=4, asn;desc="50304", edge;desc="OSL", country;desc="NO", cfRequestDuration;dur=108.999729
server: cloudflare
cf-ray: 7908ecc4fdcbb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.paypal.com/checkoutnow/remembered?callback=shopifypaypalisrememberedcallback
200 OK 756 B URL HTTP/2 www.paypal.com/checkoutnow/remembered?callback=shopifypaypalisrememberedcallback
IP
File type HTML document, Unicode text, UTF-8 text, with very long lines (645)
Hash 1bcc11cd9a744f191245250f6578e149
429ec1ffecf364efae66c24cd75196a50161cbec
17b38f5cb8cb5b93eebc5a286ea53a782cb8af3b4fb6820b3561ab52c8885a0b
GET /checkoutnow/remembered?callback=shopifypaypalisrememberedcallback HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-security-policy: default-src 'self' https://*.paypal.com https://*.paypal.cn https://*.paypalobjects.com https://objects.paypal.cn 'unsafe-inline'; connect-src 'self' https://*.paypal.com https://*.paypal.cn https://*.paypalobjects.com https://objects.paypal.cn https://nexus.ensighten.com https://connect.facebook.net https://www.facebook.com https://m.facebook.com https://*.qualtrics.com; frame-src 'self' https://*.paypal.com https://*.paypal.cn https://*.paypalobjects.com https://objects.paypal.cn https://*.cardinalcommerce.com https://staticxx.facebook.com https://www.facebook.com https://m.facebook.com https://*.baidu.com https://*.baifubao.com https://*.qualtrics.com; script-src 'self' https://*.paypal.com https://*.paypal.cn https://*.paypalobjects.com https://objects.paypal.cn 'unsafe-inline' 'unsafe-eval'; img-src https: data:; base-uri 'self' https://*.paypal.com https://*.paypal.cn; object-src 'none'; upgrade-insecure-requests;; report-uri https://www.paypal.com/csplog/api/log/csp
content-type: application/javascript; charset=utf-8
etag: W/W/"49-FHKkWnYgBQtmkHTlg06OHZmoo5A"
paypal-debug-id: f7612116684e0
set-cookie: LANG=en_US%3BUS; Max-Age=31556; Domain=.paypal.com; Path=/; Expires=Sat, 28 Jan 2023 18:54:04 GMT; HttpOnly; Secure
enforce_policy=ccpa; Max-Age=31536000; Domain=.paypal.com; Path=/; Expires=Sun, 28 Jan 2024 10:08:08 GMT; Secure
x-pp-s=eyJ0IjoiMTY3NDkwMDQ4ODE1NCIsImwiOiIwIiwibSI6IjAifQ; Domain=.paypal.com; Path=/; HttpOnly; Secure
tsrce=hermesnodeweb; Domain=.paypal.com; Path=/; Expires=Tue, 31 Jan 2023 10:08:08 GMT; HttpOnly; Secure; SameSite=None
x-csrf-jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0b2tlbiI6Im14eWZwcUlEV1lEOEZGRVVORTZ6NkxjM1dST0FTZlV3ZnotMDdoeEFzbjhlSmJkTEo3V2lKcEhMVkJBVXoyLVBhVmFlTUtNWHE2ekh1cjhBbnFVaXl6YmhmU2c4Mk1qNzlxU3V2TzVlUWlqcEt2REpzbVpWaWVMazMtalAzRUoxYnVrZnMzRkRKVjUxRnI3cW43M1d6R3dkbG0tWkJuVWFCSEhiM3hDVzE3SGR2cGx6RnVKYktVREFWdEciLCJpYXQiOjE2NzQ5MDA0ODgsImV4cCI6MTY3NDkwNDA4OH0.Xunv8rL-UHMDBG60cvHnX_6Mjqu8pC_xc3mpaY48rBI; Domain=.paypal.com; Path=/; Expires=Sat, 04 Feb 2023 10:08:08 GMT; HttpOnly; Secure
tsrce=hermesnodeweb; Domain=.paypal.com; Path=/; Expires=Tue, 31 Jan 2023 10:08:08 GMT; HttpOnly; Secure; SameSite=None
nsid=s%3ABrot97kBGP24i7DxSTIAVJ14Zg_D54qS.G5ojJd166ImZUEVYPfhFR5KrwjTvRHGUOHSpWTKGbbE; Path=/; HttpOnly; Secure
l7_az=dcg15.slc; Path=/; Domain=paypal.com; Expires=Sat, 28 Jan 2023 10:38:08 GMT; HttpOnly; Secure
ts=vreXpYrS%3D1769594888%26vteXpYrS%3D1674902288%26vr%3Df7d93fac1850a7a0941314e4ffb30152%26vt%3Df7d93fac1850a7a0941314e4ffb30151%26vtyp%3Dnew; Path=/; Domain=paypal.com; Expires=Tue, 27 Jan 2026 10:08:08 GMT; HttpOnly; Secure
ts_c=vr%3Df7d93fac1850a7a0941314e4ffb30152%26vt%3Df7d93fac1850a7a0941314e4ffb30151; Path=/; Domain=paypal.com; Expires=Tue, 27 Jan 2026 10:08:08 GMT; Secure
traceparent: 00-0000000000000000000f7612116684e0-041b74dea581083e-01
x-content-type-options: nosniff
x-csrf-jwt: eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0b2tlbiI6ImtoaWsyd20wbEpHa2VrdTVUczNOQzItVzJBY3N2NEo4aEIteUxtLTZuUlZlOWlhUVNJVTZhUzVUZF9LWURnTVZTRU9TMkYxNUtmU1J4M2hKMFZEcHhEV01pbG92NklTM0h2LTFKeF92ZUFJeVpPZHpvY2FVRjJqcXFZQk5zaDlJckR3ZzNiMjhKN3FYY21fdXVDM1JzU24tS1d3cGVoeEZXWDVnQmdTRWFtYUFkWE9PNmRJSGlRbVFyNEsiLCJpYXQiOjE2NzQ5MDA0ODgsImV4cCI6MTY3NDkwNDA4OH0.zDY5KxgAKx_6HQu9porD2jLTMRHimxxsJCMG-LzSZkg
x-csrf-jwt-hash: d7f12f84baecfb489b571b7af0dc1fe043caee3ab1ae68e0f09fa6bc54d3b9fb
x-powered-by: Express
x-xss-protection: 1; mode=block
dc: ccg11-origin-www-1.paypal.com
accept-ranges: none
via: 1.1 varnish, 1.1 varnish
content-encoding: br
date: Sat, 28 Jan 2023 10:08:08 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-hhn-etou8220065-HHN, cache-bma1669-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1674900488.027423,VS0,VE220
vary: Accept-Encoding
server-timing: content-encoding;desc="br",x-cdn;desc="fastly"
X-Firefox-Spdy: h2
godog.shopifycloud.com/v1/event.gif?q=eyJuYW1lIjoic3BiLmFjY2VsZXJhdGlvbi5jaGVjay5iZW5jaG1hcmsiLCJ0eXBlIjoiaGlzdG9ncmFtIiwidmFsdWUiOjM2MywidGFncyI6WyJpbnN0cnVtZW50OlBheVBhbFY0IiwicGFnZVR5cGU6cHJvZHVjdCJdfQ==
200 OK 42 B URL HTTP/2 godog.shopifycloud.com/v1/event.gif?q=eyJuYW1lIjoic3BiLmFjY2VsZXJhdGlvbi5jaGVjay5iZW5jaG1hcmsiLCJ0eXBlIjoiaGlzdG9ncmFtIiwidmFsdWUiOjM2MywidGFncyI6WyJpbnN0cnVtZW50OlBheVBhbFY0IiwicGFnZVR5cGU6cHJvZHVjdCJdfQ==
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /v1/event.gif?q=eyJuYW1lIjoic3BiLmFjY2VsZXJhdGlvbi5jaGVjay5iZW5jaG1hcmsiLCJ0eXBlIjoiaGlzdG9ncmFtIiwidmFsdWUiOjM2MywidGFncyI6WyJpbnN0cnVtZW50OlBheVBhbFY0IiwicGFnZVR5cGU6cHJvZHVjdCJdfQ== HTTP/1.1
Host: godog.shopifycloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:08 GMT
content-type: image/gif
content-length: 42
cache-control: no-cache, no-store, must-revalidate
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-dc: gcp-us-central1
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sat, 28 Jan 2023 09:46:59 GMT
expires: Sat, 28 Jan 2023 11:46:59 GMT
cache-control: public, max-age=7200
age: 1269
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash e7ebbff54ced2c07469b302fc6d44078
f59983c844c398bd37705051ca685b2d07d85726
04eb3bd7658c1112bfc1d0098e8d7f5fafdb10459e3290c0d4e6a17e65a5494f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 10:08:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bat.bing.com/bat.js
200 OK 12 kB IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39395), with no line terminators
Hash 4f378a725368a42971cd69e29f75db89
2a1cdf193b346d9281c6e04a9b3775e7fc1ae11e
6a2a9d238501343cb3f25e0f54f4ecc4ec2c4e0fa6b228cc72dc3fff90502078
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11552
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 23 Jan 2023 19:59:24 GMT
accept-ranges: bytes
etag: "076bc30652fd91:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 10BDB10D6BC84AE78E9264986C6123C6 Ref B: OSL30EDGE0511 Ref C: 2023-01-28T10:08:08Z
date: Sat, 28 Jan 2023 10:08:08 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ab04da9bc46246cc0001464e7f6b5e19
01ce4f7004aec7a24d4545a1e742ab6a1e639b48
22e519a39cb2e7e5f6da23d35f4498aa7a2d00e06613fd3bbf8de8a62ed2d354
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 10:08:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash e7ebbff54ced2c07469b302fc6d44078
f59983c844c398bd37705051ca685b2d07d85726
04eb3bd7658c1112bfc1d0098e8d7f5fafdb10459e3290c0d4e6a17e65a5494f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 10:08:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/10872960326/?random=1674900489533&cv=11&fst=1674900489533&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&label=xwCuCLyP68EDEMbq0MAo&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.nipponsport.no%2Fproducts%2Ftraining-elastic-tunturi-textile-resistance-band-set%3Fkk%3Da4c6295-185f7d935c7-823bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTunturi%2BTraining%2BElastic%2B-%2BTunturi%2B-%2B%2527Te&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Training%20Elastic%20-%20Tunturi%20-%20%27Textile%20Resistance%20band%20set%27&auid=2060403803.1674900490&rfmt=3&fmt=4
200 OK 1.1 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/10872960326/?random=1674900489533&cv=11&fst=1674900489533&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&label=xwCuCLyP68EDEMbq0MAo&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.nipponsport.no%2Fproducts%2Ftraining-elastic-tunturi-textile-resistance-band-set%3Fkk%3Da4c6295-185f7d935c7-823bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTunturi%2BTraining%2BElastic%2B-%2BTunturi%2B-%2B%2527Te&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Training%20Elastic%20-%20Tunturi%20-%20%27Textile%20Resistance%20band%20set%27&auid=2060403803.1674900490&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (2566), with no line terminators
Hash cb7364f1a086fbe0da0ac594e4f4ef58
d4d0fc1fb565ae495a7db2d7a97662f04574a3d6
8c98e7dcdee41eb0b906a76de6bd2fb50c564979afe2730b19204997d21ea5d7
GET /pagead/viewthroughconversion/10872960326/?random=1674900489533&cv=11&fst=1674900489533&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&label=xwCuCLyP68EDEMbq0MAo&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.nipponsport.no%2Fproducts%2Ftraining-elastic-tunturi-textile-resistance-band-set%3Fkk%3Da4c6295-185f7d935c7-823bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTunturi%2BTraining%2BElastic%2B-%2BTunturi%2B-%2B%2527Te&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Training%20Elastic%20-%20Tunturi%20-%20%27Textile%20Resistance%20band%20set%27&auid=2060403803.1674900490&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 10:08:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1083
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 28-Jan-2023 10:23:08 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/10872960326/?random=1674900490382&cv=11&fst=1674900490382&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.nipponsport.no%2Fproducts%2Ftraining-elastic-tunturi-textile-resistance-band-set%3Fkk%3Da4c6295-185f7d935c7-823bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTunturi%2BTraining%2BElastic%2B-%2BTunturi%2B-%2B%2527Te&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Training%20Elastic%20-%20Tunturi%20-%20%27Textile%20Resistance%20band%20set%27&auid=2060403803.1674900490&data=event%3Dgtag.config&rfmt=3&fmt=4
200 OK 1.1 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/10872960326/?random=1674900490382&cv=11&fst=1674900490382&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.nipponsport.no%2Fproducts%2Ftraining-elastic-tunturi-textile-resistance-band-set%3Fkk%3Da4c6295-185f7d935c7-823bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTunturi%2BTraining%2BElastic%2B-%2BTunturi%2B-%2B%2527Te&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Training%20Elastic%20-%20Tunturi%20-%20%27Textile%20Resistance%20band%20set%27&auid=2060403803.1674900490&data=event%3Dgtag.config&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (2537), with no line terminators
Hash afbe8f7364b1dd55b6ec546de03d35a9
e77ba28828c9beec7a25d861c289555622cf3f54
8410efec7926200f9f0e22e02169adff0d7e7e321f3e3f8b6bae9798ab592495
GET /pagead/viewthroughconversion/10872960326/?random=1674900490382&cv=11&fst=1674900490382&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.nipponsport.no%2Fproducts%2Ftraining-elastic-tunturi-textile-resistance-band-set%3Fkk%3Da4c6295-185f7d935c7-823bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTunturi%2BTraining%2BElastic%2B-%2BTunturi%2B-%2B%2527Te&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Training%20Elastic%20-%20Tunturi%20-%20%27Textile%20Resistance%20band%20set%27&auid=2060403803.1674900490&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 10:08:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1053
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 28-Jan-2023 10:23:08 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 986086aa202637c16710e03d8f40b6ff
ecc337bedc03fdb45cb206c824e7af77026a90f5
edd36e6b93b6885e977be169fe2a7e2310c839501bb03bc737fea511198099c6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2236
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 10:08:08 GMT
Last-Modified: Sat, 28 Jan 2023 09:30:53 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
cdn.shopify.com/s/files/1/0557/9109/1821/t/7/assets/custom.js?v=11889173135347443071669210589
200 OK 2.3 kB URL HTTP/2 cdn.shopify.com/s/files/1/0557/9109/1821/t/7/assets/custom.js?v=11889173135347443071669210589
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash ef4a54e8d5d28a2c5c378b5bc551d48f
54951001b131dcac39da207b35fcb8695f00e5b7
ad6144db80e15127a99d90f58b6983116f21ffd7dea58d9343ca6533cf992e31
GET /s/files/1/0557/9109/1821/t/7/assets/custom.js?v=11889173135347443071669210589 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:06 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0557/9109/1821/t/7/assets/custom.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: c32cde9e-b5b2-4bbe-bfb8-1ce23ae03e43
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Wed, 23 Nov 2022 13:40:23 GMT
cf-cache-status: HIT
age: 5689269
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3kJLZUFCdcdnNYcdidxgRj7pDNjMhGUylFI4yVjDzhegINagZoHip4FsGJ8V6egCXZbXOTviKFAzPMSksWEfupiah7ygIpm6kwOhAnGGV6%2BRgN7VpXqhv6Z6DbGfEmGi%2FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=37.993, imageryFetch;dur=36.977, cfRequestDuration;dur=92.999935
server: cloudflare
cf-ray: 7908ecc94b55b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP
File type ASCII text, with very long lines (64348)
Hash 541db4f3f0ba067bfb58cdac34cb86f4
20e6883f068568888ce37c6b9ef8f5d12be257c0
83898f3b2da2a11996d2eb3a5115ef301255030fdf231b8bf7971916769bc7be
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: +iUFatIiBXuxcxM991uZKPKUBqIdsA5wrXe5x7wPQt0e4yTzY5BRYz5CsqKM3/zNkoTTWEodM3rYMgp6sRHqgQ==
priority: u=3,i
content-length: 27815
x-fb-trip-id: 1679558926
date: Sat, 28 Jan 2023 10:08:08 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ab04da9bc46246cc0001464e7f6b5e19
01ce4f7004aec7a24d4545a1e742ab6a1e639b48
22e519a39cb2e7e5f6da23d35f4498aa7a2d00e06613fd3bbf8de8a62ed2d354
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 10:08:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-110675399-1&cid=1912114820.1674900490&jid=1824139715&gjid=1931894345&_gid=2124258501.1674900491&_u=YCDAgEIJBAAAAGgCIAB~&z=601808880
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-110675399-1&cid=1912114820.1674900490&jid=1824139715&gjid=1931894345&_gid=2124258501.1674900491&_u=YCDAgEIJBAAAAGgCIAB~&z=601808880
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-110675399-1&cid=1912114820.1674900490&jid=1824139715&gjid=1931894345&_gid=2124258501.1674900491&_u=YCDAgEIJBAAAAGgCIAB~&z=601808880 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.nipponsport.no
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.nipponsport.no
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 28 Jan 2023 10:08:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 986086aa202637c16710e03d8f40b6ff
ecc337bedc03fdb45cb206c824e7af77026a90f5
edd36e6b93b6885e977be169fe2a7e2310c839501bb03bc737fea511198099c6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2236
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 10:08:08 GMT
Last-Modified: Sat, 28 Jan 2023 09:30:53 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-19021926-1&cid=1912114820.1674900490&jid=1503035893&gjid=970536645&_gid=2124258501.1674900491&_u=YADAAEIIAAAAACAAI~&z=1667563605
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-19021926-1&cid=1912114820.1674900490&jid=1503035893&gjid=970536645&_gid=2124258501.1674900491&_u=YADAAEIIAAAAACAAI~&z=1667563605
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-19021926-1&cid=1912114820.1674900490&jid=1503035893&gjid=970536645&_gid=2124258501.1674900491&_u=YADAAEIIAAAAACAAI~&z=1667563605 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.nipponsport.no
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.nipponsport.no
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 28 Jan 2023 10:08:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=25075136&tm=gtm002&Ver=2&mid=58fa138c-1afa-437c-b19f-78bc704f759e&sid=ab7ee3409ef311eda60e394249de75f3&vid=ab7ee5e09ef311ed907c3db289f9986c&vids=1&msclkid=N>m_tag_source=1&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Training%20Elastic%20-%20Tunturi%20-%20%27Textile%20Resistance%20band%20set%27&p=https%3A%2F%2Fwww.nipponsport.no%2Fproducts%2Ftraining-elastic-tunturi-textile-resistance-band-set%3Fkk%3Da4c6295-185f7d935c7-823bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTunturi%2BTraining%2BElastic%2B-%2BTunturi%2B-%2B%2527Te&r=https%3A%2F%2Fno-go.kelkoogroup.net%2F<=1275&evt=pageLoad&sv=1&rn=730578
204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=25075136&tm=gtm002&Ver=2&mid=58fa138c-1afa-437c-b19f-78bc704f759e&sid=ab7ee3409ef311eda60e394249de75f3&vid=ab7ee5e09ef311ed907c3db289f9986c&vids=1&msclkid=N>m_tag_source=1&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Training%20Elastic%20-%20Tunturi%20-%20%27Textile%20Resistance%20band%20set%27&p=https%3A%2F%2Fwww.nipponsport.no%2Fproducts%2Ftraining-elastic-tunturi-textile-resistance-band-set%3Fkk%3Da4c6295-185f7d935c7-823bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTunturi%2BTraining%2BElastic%2B-%2BTunturi%2B-%2B%2527Te&r=https%3A%2F%2Fno-go.kelkoogroup.net%2F<=1275&evt=pageLoad&sv=1&rn=730578
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=25075136&tm=gtm002&Ver=2&mid=58fa138c-1afa-437c-b19f-78bc704f759e&sid=ab7ee3409ef311eda60e394249de75f3&vid=ab7ee5e09ef311ed907c3db289f9986c&vids=1&msclkid=N>m_tag_source=1&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Training%20Elastic%20-%20Tunturi%20-%20%27Textile%20Resistance%20band%20set%27&p=https%3A%2F%2Fwww.nipponsport.no%2Fproducts%2Ftraining-elastic-tunturi-textile-resistance-band-set%3Fkk%3Da4c6295-185f7d935c7-823bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTunturi%2BTraining%2BElastic%2B-%2BTunturi%2B-%2B%2527Te&r=https%3A%2F%2Fno-go.kelkoogroup.net%2F<=1275&evt=pageLoad&sv=1&rn=730578 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=1E36F5E8B247633B25F8E74FB3B262BA; domain=.bing.com; expires=Thu, 22-Feb-2024 10:08:09 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: C1487104639B42779BA4129B57B40A44 Ref B: OSL30EDGE0511 Ref C: 2023-01-28T10:08:09Z
date: Sat, 28 Jan 2023 10:08:08 GMT
X-Firefox-Spdy: h2
api.reaktion.com/tracking/stores/bNQYQfPcFtdnZV9ni4iiV2fxXG3UbN10/sessions/5Jfv1BOnOauiokbbuduSqJk7bqevFAMt26iDObTZtMo9q957dXjyuAd6LtUqcKzE/marketing-clicks
200 OK 71 B URL HTTP/2 api.reaktion.com/tracking/stores/bNQYQfPcFtdnZV9ni4iiV2fxXG3UbN10/sessions/5Jfv1BOnOauiokbbuduSqJk7bqevFAMt26iDObTZtMo9q957dXjyuAd6LtUqcKzE/marketing-clicks
IP
Hash 586d8f444b76dc78ea135093c45e9789
04917af49253e14f4d669d029f83705ee95ddd7b
5783faecb68b734b00b431e32636ff921dee9c8c16445962f2c3456d4d2fcdeb
POST /tracking/stores/bNQYQfPcFtdnZV9ni4iiV2fxXG3UbN10/sessions/5Jfv1BOnOauiokbbuduSqJk7bqevFAMt26iDObTZtMo9q957dXjyuAd6LtUqcKzE/marketing-clicks HTTP/1.1
Host: api.reaktion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 330
Origin: https://www.nipponsport.no
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:08 GMT
content-type: application/json
set-cookie: AWSALB=xOo+KXwMqBotH3vLqHWkLEe3oFK4/suiHczLMI/Fddw3qW/WT8/i32BK19GipXkQmTHVqUgrrW6uCD/CVrl1WjJTqMOgZaeT5w39SH3RzNySN20mzpj/LUCle5xE; Expires=Sat, 04 Feb 2023 10:08:08 GMT; Path=/
AWSALBCORS=xOo+KXwMqBotH3vLqHWkLEe3oFK4/suiHczLMI/Fddw3qW/WT8/i32BK19GipXkQmTHVqUgrrW6uCD/CVrl1WjJTqMOgZaeT5w39SH3RzNySN20mzpj/LUCle5xE; Expires=Sat, 04 Feb 2023 10:08:08 GMT; Path=/; SameSite=None; Secure
server: nginx/1.21.6
x-powered-by: PHP/8.1.14
cache-control: no-cache, private
x-ratelimit-limit: 60
x-ratelimit-remaining: 57
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.clerk.io/clerk.js
200 OK 28 kB IP
Hash f5a34a1c9ded47bd191d2039fbbe62d3
42de67bbcf33e640ec49c09765f8286f2c1991a1
4b0492b63c294c2882bccd16414c5389e1ac9180ba12d3a4c5546a072799489c
GET /clerk.js HTTP/1.1
Host: cdn.clerk.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:06 GMT
content-type: application/javascript
server: nginx
last-modified: Thu, 26 Jan 2023 12:23:32 GMT
vary: Accept-Encoding
etag: W/"63d270c4-1643c"
expires: Sat, 28 Jan 2023 11:08:06 GMT
cache-control: max-age=3600
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash c083fb68af37d6c700a3fa4eb04a29cb
9b3ff3c9c0bd7dc448eb18e74ddc029f7c18dc9a
3ea0d4252ad90ee13a6b23ebd1144639f7bb73e4d96ef2590b21a155809e65e2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 10:08:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api.reaktion.com/tracking/stores/bNQYQfPcFtdnZV9ni4iiV2fxXG3UbN10/sessions/5Jfv1BOnOauiokbbuduSqJk7bqevFAMt26iDObTZtMo9q957dXjyuAd6LtUqcKzE/inspections
204 No Content 0 B URL HTTP/2 api.reaktion.com/tracking/stores/bNQYQfPcFtdnZV9ni4iiV2fxXG3UbN10/sessions/5Jfv1BOnOauiokbbuduSqJk7bqevFAMt26iDObTZtMo9q957dXjyuAd6LtUqcKzE/inspections
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /tracking/stores/bNQYQfPcFtdnZV9ni4iiV2fxXG3UbN10/sessions/5Jfv1BOnOauiokbbuduSqJk7bqevFAMt26iDObTZtMo9q957dXjyuAd6LtUqcKzE/inspections HTTP/1.1
Host: api.reaktion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.nipponsport.no/
Origin: https://www.nipponsport.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 28 Jan 2023 10:08:09 GMT
set-cookie: AWSALB=OdugT6MOWZHe8XDqwQqzzawffAH/2iymsjpJYu1F+XDS0Bpq1p+mIX4p0QKFkdf+eo0vYpo3eONUUr77cHm95tPR2528+yCr0BooYgvXecaW9h+u5Gz4nXpHm1VO; Expires=Sat, 04 Feb 2023 10:08:09 GMT; Path=/
AWSALBCORS=OdugT6MOWZHe8XDqwQqzzawffAH/2iymsjpJYu1F+XDS0Bpq1p+mIX4p0QKFkdf+eo0vYpo3eONUUr77cHm95tPR2528+yCr0BooYgvXecaW9h+u5Gz4nXpHm1VO; Expires=Sat, 04 Feb 2023 10:08:09 GMT; Path=/; SameSite=None; Secure
server: nginx/1.21.6
x-powered-by: PHP/8.1.14
cache-control: no-cache, private
access-control-allow-origin: *
vary: Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-methods: POST
access-control-allow-headers: content-type
access-control-max-age: 0
X-Firefox-Spdy: h2
bat.bing.com/p/action/25075136.js
204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/25075136.js
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/25075136.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: D1C1C8C62FF14D65A738CD6DE0DF7EEE Ref B: OSL30EDGE0511 Ref C: 2023-01-28T10:08:09Z
date: Sat, 28 Jan 2023 10:08:08 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 622311873d3819b9911301b09bc2d43c
9f08d648e40479aa12da033da15b80a15017c739
6138674cec17da8b7bb02bf0686bf3e7aefa2bce6a5f844ebd80e10b665818b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 10:08:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 622311873d3819b9911301b09bc2d43c
9f08d648e40479aa12da033da15b80a15017c739
6138674cec17da8b7bb02bf0686bf3e7aefa2bce6a5f844ebd80e10b665818b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 10:08:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-110675399-1&cid=1912114820.1674900490&jid=1824139715&_u=YCDAgEIJBAAAAGgCIAB~&z=1402407597
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-110675399-1&cid=1912114820.1674900490&jid=1824139715&_u=YCDAgEIJBAAAAGgCIAB~&z=1402407597
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-110675399-1&cid=1912114820.1674900490&jid=1824139715&_u=YCDAgEIJBAAAAGgCIAB~&z=1402407597 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 10:08:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 622311873d3819b9911301b09bc2d43c
9f08d648e40479aa12da033da15b80a15017c739
6138674cec17da8b7bb02bf0686bf3e7aefa2bce6a5f844ebd80e10b665818b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 10:08:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-19021926-1&cid=1912114820.1674900490&jid=1503035893&_u=YADAAEIIAAAAACAAI~&z=2097481972
200 OK 53 kB URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-19021926-1&cid=1912114820.1674900490&jid=1503035893&_u=YADAAEIIAAAAACAAI~&z=2097481972
IP
Hash 855a58db7c4b4059532c9e588019e568
c13dedbb9a188770233cf39e81a3fe98db45d75a
64f5dbf0c998e0a82a2e86a94298930e61e1f992d31890b0a20f075bc6ffb8ff
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-19021926-1&cid=1912114820.1674900490&jid=1503035893&_u=YADAAEIIAAAAACAAI~&z=2097481972 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 10:08:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 622311873d3819b9911301b09bc2d43c
9f08d648e40479aa12da033da15b80a15017c739
6138674cec17da8b7bb02bf0686bf3e7aefa2bce6a5f844ebd80e10b665818b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 10:08:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash c083fb68af37d6c700a3fa4eb04a29cb
9b3ff3c9c0bd7dc448eb18e74ddc029f7c18dc9a
3ea0d4252ad90ee13a6b23ebd1144639f7bb73e4d96ef2590b21a155809e65e2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 10:08:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.shopify.com/s/files/1/0557/9109/1821/t/7/assets/theme.js?v=168674409821953747211664865671
200 OK 68 kB URL HTTP/2 cdn.shopify.com/s/files/1/0557/9109/1821/t/7/assets/theme.js?v=168674409821953747211664865671
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (63132)
Hash 1c289c573e92c4e7042c011a6fb8ae92
f68e7ee948c3e517df4367ae1305fc17552e87ad
66e2e5daf5688eaaabf01b909f3f9b3c41494c2a040f63951bf9e776ad6459f7
GET /s/files/1/0557/9109/1821/t/7/assets/theme.js?v=168674409821953747211664865671 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:06 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0557/9109/1821/t/7/assets/theme.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 10e989d6-1f8c-43d4-b7e9-ea7a263e197d
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Wed, 04 Jan 2023 06:47:52 GMT
cf-cache-status: HIT
age: 794844
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PS1mb3KOQjDwgQjqQeO4jwl2s7ONISJbX9YnR4057IyQPuCroQxnvR50jslhpsODrzmIrrSzPPDK25lkuCZ18PHFKidWyUDOu%2FB163RXYZDGrDlC4GIBFWuau0PW8hK0yg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=172.226, imageryFetch;dur=90.598, cfRequestDuration;dur=9.000063
server: cloudflare
cf-ray: 7908ecc96b72b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/10872960326/?random=1674900489533&cv=11&fst=1674900000000&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&label=xwCuCLyP68EDEMbq0MAo&frm=0&url=https%3A%2F%2Fwww.nipponsport.no%2Fproducts%2Ftraining-elastic-tunturi-textile-resistance-band-set%3Fkk%3Da4c6295-185f7d935c7-823bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTunturi%2BTraining%2BElastic%2B-%2BTunturi%2B-%2B%2527Te&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Training%20Elastic%20-%20Tunturi%20-%20%27Textile%20Resistance%20band%20set%27&fmt=3&is_vtc=1&random=81599227&rmt_tld=0&ipr=y
200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/10872960326/?random=1674900489533&cv=11&fst=1674900000000&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&label=xwCuCLyP68EDEMbq0MAo&frm=0&url=https%3A%2F%2Fwww.nipponsport.no%2Fproducts%2Ftraining-elastic-tunturi-textile-resistance-band-set%3Fkk%3Da4c6295-185f7d935c7-823bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTunturi%2BTraining%2BElastic%2B-%2BTunturi%2B-%2B%2527Te&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Training%20Elastic%20-%20Tunturi%20-%20%27Textile%20Resistance%20band%20set%27&fmt=3&is_vtc=1&random=81599227&rmt_tld=0&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10872960326/?random=1674900489533&cv=11&fst=1674900000000&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&label=xwCuCLyP68EDEMbq0MAo&frm=0&url=https%3A%2F%2Fwww.nipponsport.no%2Fproducts%2Ftraining-elastic-tunturi-textile-resistance-band-set%3Fkk%3Da4c6295-185f7d935c7-823bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTunturi%2BTraining%2BElastic%2B-%2BTunturi%2B-%2B%2527Te&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Training%20Elastic%20-%20Tunturi%20-%20%27Textile%20Resistance%20band%20set%27&fmt=3&is_vtc=1&random=81599227&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 10:08:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash cbe94bc7052911313fffd1cdad964a74
a96a6606f1d20baeeb4040c9ced3ba2f7bd1aada
430d90ac0a39038dbb5336cf29baf6786ac29491c5a8e4dcce04e93d9fceb5e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 10:08:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-19021926-1&cid=1912114820.1674900490&jid=1503035893&_u=YADAAEIIAAAAACAAI~&z=2097481972
200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-19021926-1&cid=1912114820.1674900490&jid=1503035893&_u=YADAAEIIAAAAACAAI~&z=2097481972
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-19021926-1&cid=1912114820.1674900490&jid=1503035893&_u=YADAAEIIAAAAACAAI~&z=2097481972 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 10:08:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/10872960326/?random=1674900490382&cv=11&fst=1674900000000&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.nipponsport.no%2Fproducts%2Ftraining-elastic-tunturi-textile-resistance-band-set%3Fkk%3Da4c6295-185f7d935c7-823bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTunturi%2BTraining%2BElastic%2B-%2BTunturi%2B-%2B%2527Te&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Training%20Elastic%20-%20Tunturi%20-%20%27Textile%20Resistance%20band%20set%27&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=875182570&rmt_tld=0&ipr=y
200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/10872960326/?random=1674900490382&cv=11&fst=1674900000000&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.nipponsport.no%2Fproducts%2Ftraining-elastic-tunturi-textile-resistance-band-set%3Fkk%3Da4c6295-185f7d935c7-823bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTunturi%2BTraining%2BElastic%2B-%2BTunturi%2B-%2B%2527Te&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Training%20Elastic%20-%20Tunturi%20-%20%27Textile%20Resistance%20band%20set%27&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=875182570&rmt_tld=0&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10872960326/?random=1674900490382&cv=11&fst=1674900000000&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.nipponsport.no%2Fproducts%2Ftraining-elastic-tunturi-textile-resistance-band-set%3Fkk%3Da4c6295-185f7d935c7-823bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTunturi%2BTraining%2BElastic%2B-%2BTunturi%2B-%2B%2527Te&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Training%20Elastic%20-%20Tunturi%20-%20%27Textile%20Resistance%20band%20set%27&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=875182570&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 10:08:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-110675399-1&cid=1912114820.1674900490&jid=1824139715&_u=YCDAgEIJBAAAAGgCIAB~&z=1402407597
200 OK 2.4 kB URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-110675399-1&cid=1912114820.1674900490&jid=1824139715&_u=YCDAgEIJBAAAAGgCIAB~&z=1402407597
IP
Hash e1eb1414028149b86ccb0994aebc7f59
bdc1343deae66dc150d7c3a62dacdae4bb60ce1e
4ae2f0b43ce50acf1559b5e2dc3186704e1c596647f3856c8748a791105e2f6c
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-110675399-1&cid=1912114820.1674900490&jid=1824139715&_u=YCDAgEIJBAAAAGgCIAB~&z=1402407597 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 10:08:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
api.clerk.io/v2/format/list?payload=%7B%22key%22%3A%22Zz0KqtyQmkZAQG5SSFEFupSlLJWMNrit%22%2C%22visitor%22%3A%22auto%22%2C%22_%22%3A1674900489%7D&callback=__clerk_cb_1
200 OK 107 B URL HTTP/2 api.clerk.io/v2/format/list?payload=%7B%22key%22%3A%22Zz0KqtyQmkZAQG5SSFEFupSlLJWMNrit%22%2C%22visitor%22%3A%22auto%22%2C%22_%22%3A1674900489%7D&callback=__clerk_cb_1
IP
Hash ac0633e79ecfb6378768da692d5bf648
4f51b511b503edd2aaf519f992c66a6266981335
a551ffa0f9641540c995990527d33b6c5df2242e08a01c070ddc121df9407fe4
GET /v2/format/list?payload=%7B%22key%22%3A%22Zz0KqtyQmkZAQG5SSFEFupSlLJWMNrit%22%2C%22visitor%22%3A%22auto%22%2C%22_%22%3A1674900489%7D&callback=__clerk_cb_1 HTTP/1.1
Host: api.clerk.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:07 GMT
content-type: application/javascript
server: nginx
vary: Accept-Encoding
cache-control: no-cache
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
www.gstatic.com/_/mss/boq-payments-consumer/_/js/k=boq-payments-consumer.InstantbuyFrontendBuyflowPayframeUi.en_US.IkL27SD5GHE.es5.O/am=zAAg/d=1/excm=_b,_r,_tp,payframeview/ed=1/dg=0/wt=2/rs=AMitfrjcgveC2_Q2FLAk5ag-1qibIGVygQ/m=_b,_tp,_r
200 OK 56 kB URL HTTP/2 www.gstatic.com/_/mss/boq-payments-consumer/_/js/k=boq-payments-consumer.InstantbuyFrontendBuyflowPayframeUi.en_US.IkL27SD5GHE.es5.O/am=zAAg/d=1/excm=_b,_r,_tp,payframeview/ed=1/dg=0/wt=2/rs=AMitfrjcgveC2_Q2FLAk5ag-1qibIGVygQ/m=_b,_tp,_r
IP
File type ASCII text, with very long lines (2545)
Hash 70a94cf021dc01bbc5ff0d2970f99a43
4e06b3e690afbdc7e84105e2eab315be8e656808
3c2c95b95876d6903fb7667f750082e99447d86d52df216e8d3bba16c7317dd7
GET /_/mss/boq-payments-consumer/_/js/k=boq-payments-consumer.InstantbuyFrontendBuyflowPayframeUi.en_US.IkL27SD5GHE.es5.O/am=zAAg/d=1/excm=_b,_r,_tp,payframeview/ed=1/dg=0/wt=2/rs=AMitfrjcgveC2_Q2FLAk5ag-1qibIGVygQ/m=_b,_tp,_r HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay.google.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/payments-consumer-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/payments-consumer-boq-js-css-signers"
report-to: {"group":"boq-infra/payments-consumer-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/payments-consumer-boq-js-css-signers"}]}
content-length: 55470
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 17:31:27 GMT
expires: Sat, 27 Jan 2024 17:31:27 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Fri, 27 Jan 2023 03:25:06 GMT
content-type: text/javascript; charset=UTF-8
age: 59802
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash c083fb68af37d6c700a3fa4eb04a29cb
9b3ff3c9c0bd7dc448eb18e74ddc029f7c18dc9a
3ea0d4252ad90ee13a6b23ebd1144639f7bb73e4d96ef2590b21a155809e65e2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 10:08:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash cbe94bc7052911313fffd1cdad964a74
a96a6606f1d20baeeb4040c9ced3ba2f7bd1aada
430d90ac0a39038dbb5336cf29baf6786ac29491c5a8e4dcce04e93d9fceb5e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 10:08:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
play.google.com/log?format=json&hasfast=true&authuser=0
200 OK 0 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://pay.google.com/
Origin: https://pay.google.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://pay.google.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Sat, 28 Jan 2023 10:08:09 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+791; expires=Mon, 27-Jan-2025 10:08:09 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Sat, 28 Jan 2023 10:08:09 GMT
cache-control: private
X-Firefox-Spdy: h2
play.google.com/log?format=json&hasfast=true&authuser=0
200 OK 0 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://pay.google.com/
Origin: https://pay.google.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
access-control-allow-origin: https://pay.google.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Sat, 28 Jan 2023 10:08:09 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+093; expires=Mon, 27-Jan-2025 10:08:09 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Sat, 28 Jan 2023 10:08:09 GMT
cache-control: private
X-Firefox-Spdy: h2
api.reaktion.com/tracking/stores/bNQYQfPcFtdnZV9ni4iiV2fxXG3UbN10/sessions/5Jfv1BOnOauiokbbuduSqJk7bqevFAMt26iDObTZtMo9q957dXjyuAd6LtUqcKzE/inspections
200 OK 36 B URL HTTP/2 api.reaktion.com/tracking/stores/bNQYQfPcFtdnZV9ni4iiV2fxXG3UbN10/sessions/5Jfv1BOnOauiokbbuduSqJk7bqevFAMt26iDObTZtMo9q957dXjyuAd6LtUqcKzE/inspections
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 7cf7714f9983309ab16932347270445d
4da3e1464f79622255eb22eef94574b0f76fbd55
4cb6303777530ddcff9253ab40448f4f9b601e09e67b36cc08de763b0238c279
POST /tracking/stores/bNQYQfPcFtdnZV9ni4iiV2fxXG3UbN10/sessions/5Jfv1BOnOauiokbbuduSqJk7bqevFAMt26iDObTZtMo9q957dXjyuAd6LtUqcKzE/inspections HTTP/1.1
Host: api.reaktion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 126
Origin: https://www.nipponsport.no
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:09 GMT
content-type: application/json
set-cookie: AWSALB=vFFmwyCJ0CB9hP/U+2omhLMaYxp+7OHAr98DWlnUkHHCm8HakMkZBBSVWHv4iFkrsd8wvCIzdDPO/iSnqNYFbL9bSZJFDEuAsLQutTbMmFjT9f2Nyo+cSMPOCdAu; Expires=Sat, 04 Feb 2023 10:08:09 GMT; Path=/
AWSALBCORS=vFFmwyCJ0CB9hP/U+2omhLMaYxp+7OHAr98DWlnUkHHCm8HakMkZBBSVWHv4iFkrsd8wvCIzdDPO/iSnqNYFbL9bSZJFDEuAsLQutTbMmFjT9f2Nyo+cSMPOCdAu; Expires=Sat, 04 Feb 2023 10:08:09 GMT; Path=/; SameSite=None; Secure
server: nginx/1.21.6
x-powered-by: PHP/8.1.14
cache-control: no-cache, private
x-ratelimit-limit: 60
x-ratelimit-remaining: 55
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
play.google.com/log?format=json&hasfast=true&authuser=0
200 OK 0 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://pay.google.com/
Origin: https://pay.google.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://pay.google.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Sat, 28 Jan 2023 10:08:09 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+107; expires=Mon, 27-Jan-2025 10:08:09 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Sat, 28 Jan 2023 10:08:09 GMT
cache-control: private
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=603296671203051&ev=ViewContent&dl=https%3A%2F%2Fwww.nipponsport.no%2Fproducts%2Ftraining-elastic-tunturi-textile-resistance-band-set%3Fkk%3Da4c6295-185f7d935c7-823bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTunturi%2BTraining%2BElastic%2B-%2BTunturi%2B-%2B%2527Te&rl=https%3A%2F%2Fno-go.kelkoogroup.net%2F&if=false&ts=1674900491524&cd[content_ids]=%5B6809142394989%5D&cd[content_type]=product_group&cd[content_name]=Training%20Elastic%20-%20Tunturi%20-%20%27Textile%20Resistance%20band%20set%27&cd[content_category]=Fitness%20elastic&cd[currency]=NOK&cd[value]=247.20&sw=1280&sh=1024&v=2.9.92&r=stable&a=shopify&ec=1&o=30&fbp=fb.1.1674900491517.125208762&it=1674900491121&coo=false&eid=f7d94be4-B39A-4FD6-B3D5-7A5302746D7A&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=603296671203051&ev=ViewContent&dl=https%3A%2F%2Fwww.nipponsport.no%2Fproducts%2Ftraining-elastic-tunturi-textile-resistance-band-set%3Fkk%3Da4c6295-185f7d935c7-823bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTunturi%2BTraining%2BElastic%2B-%2BTunturi%2B-%2B%2527Te&rl=https%3A%2F%2Fno-go.kelkoogroup.net%2F&if=false&ts=1674900491524&cd[content_ids]=%5B6809142394989%5D&cd[content_type]=product_group&cd[content_name]=Training%20Elastic%20-%20Tunturi%20-%20%27Textile%20Resistance%20band%20set%27&cd[content_category]=Fitness%20elastic&cd[currency]=NOK&cd[value]=247.20&sw=1280&sh=1024&v=2.9.92&r=stable&a=shopify&ec=1&o=30&fbp=fb.1.1674900491517.125208762&it=1674900491121&coo=false&eid=f7d94be4-B39A-4FD6-B3D5-7A5302746D7A&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=603296671203051&ev=ViewContent&dl=https%3A%2F%2Fwww.nipponsport.no%2Fproducts%2Ftraining-elastic-tunturi-textile-resistance-band-set%3Fkk%3Da4c6295-185f7d935c7-823bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTunturi%2BTraining%2BElastic%2B-%2BTunturi%2B-%2B%2527Te&rl=https%3A%2F%2Fno-go.kelkoogroup.net%2F&if=false&ts=1674900491524&cd[content_ids]=%5B6809142394989%5D&cd[content_type]=product_group&cd[content_name]=Training%20Elastic%20-%20Tunturi%20-%20%27Textile%20Resistance%20band%20set%27&cd[content_category]=Fitness%20elastic&cd[currency]=NOK&cd[value]=247.20&sw=1280&sh=1024&v=2.9.92&r=stable&a=shopify&ec=1&o=30&fbp=fb.1.1674900491517.125208762&it=1674900491121&coo=false&eid=f7d94be4-B39A-4FD6-B3D5-7A5302746D7A&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 28 Jan 2023 10:08:09 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=603296671203051&ev=PageView&dl=https%3A%2F%2Fwww.nipponsport.no%2Fproducts%2Ftraining-elastic-tunturi-textile-resistance-band-set%3Fkk%3Da4c6295-185f7d935c7-823bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTunturi%2BTraining%2BElastic%2B-%2BTunturi%2B-%2B%2527Te&rl=https%3A%2F%2Fno-go.kelkoogroup.net%2F&if=false&ts=1674900491519&sw=1280&sh=1024&v=2.9.92&r=stable&a=shopify&ec=0&o=30&fbp=fb.1.1674900491517.125208762&it=1674900491121&coo=false&eid=f7d94bde-04DA-459C-DC3B-206FEA58B620&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=603296671203051&ev=PageView&dl=https%3A%2F%2Fwww.nipponsport.no%2Fproducts%2Ftraining-elastic-tunturi-textile-resistance-band-set%3Fkk%3Da4c6295-185f7d935c7-823bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTunturi%2BTraining%2BElastic%2B-%2BTunturi%2B-%2B%2527Te&rl=https%3A%2F%2Fno-go.kelkoogroup.net%2F&if=false&ts=1674900491519&sw=1280&sh=1024&v=2.9.92&r=stable&a=shopify&ec=0&o=30&fbp=fb.1.1674900491517.125208762&it=1674900491121&coo=false&eid=f7d94bde-04DA-459C-DC3B-206FEA58B620&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=603296671203051&ev=PageView&dl=https%3A%2F%2Fwww.nipponsport.no%2Fproducts%2Ftraining-elastic-tunturi-textile-resistance-band-set%3Fkk%3Da4c6295-185f7d935c7-823bd%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DTunturi%2BTraining%2BElastic%2B-%2BTunturi%2B-%2B%2527Te&rl=https%3A%2F%2Fno-go.kelkoogroup.net%2F&if=false&ts=1674900491519&sw=1280&sh=1024&v=2.9.92&r=stable&a=shopify&ec=0&o=30&fbp=fb.1.1674900491517.125208762&it=1674900491121&coo=false&eid=f7d94bde-04DA-459C-DC3B-206FEA58B620&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 28 Jan 2023 10:08:09 GMT
X-Firefox-Spdy: h2
play.google.com/log?format=json&hasfast=true&authuser=0
200 OK 131 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash babb6f090aeebc6f421624475b4aefff
06079b7547949822c118224e51604f4c5ebf80c8
b2fe8b91f31edc7284cc9690e90dd4a38d985598374df68967d917590beb55dd
POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay.google.com/
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 678
Origin: https://pay.google.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://pay.google.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Sat, 28 Jan 2023 10:08:09 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+140; expires=Mon, 27-Jan-2025 10:08:09 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Sat, 28 Jan 2023 10:08:09 GMT
X-Firefox-Spdy: h2
play.google.com/log?format=json&hasfast=true&authuser=0
200 OK 131 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash babb6f090aeebc6f421624475b4aefff
06079b7547949822c118224e51604f4c5ebf80c8
b2fe8b91f31edc7284cc9690e90dd4a38d985598374df68967d917590beb55dd
POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay.google.com/
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 671
Origin: https://pay.google.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://pay.google.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Sat, 28 Jan 2023 10:08:09 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+944; expires=Mon, 27-Jan-2025 10:08:09 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Sat, 28 Jan 2023 10:08:09 GMT
X-Firefox-Spdy: h2
play.google.com/log?format=json&hasfast=true&authuser=0
200 OK 131 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash babb6f090aeebc6f421624475b4aefff
06079b7547949822c118224e51604f4c5ebf80c8
b2fe8b91f31edc7284cc9690e90dd4a38d985598374df68967d917590beb55dd
POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay.google.com/
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 680
Origin: https://pay.google.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://pay.google.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Sat, 28 Jan 2023 10:08:09 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+163; expires=Mon, 27-Jan-2025 10:08:09 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Sat, 28 Jan 2023 10:08:09 GMT
X-Firefox-Spdy: h2
play.google.com/log?format=json&hasfast=true&authuser=0
200 OK 131 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash babb6f090aeebc6f421624475b4aefff
06079b7547949822c118224e51604f4c5ebf80c8
b2fe8b91f31edc7284cc9690e90dd4a38d985598374df68967d917590beb55dd
POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay.google.com/
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 677
Origin: https://pay.google.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://pay.google.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Sat, 28 Jan 2023 10:08:09 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+089; expires=Mon, 27-Jan-2025 10:08:09 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Sat, 28 Jan 2023 10:08:09 GMT
X-Firefox-Spdy: h2
play.google.com/log?format=json&hasfast=true
200 OK 131 B URL HTTP/2 play.google.com/log?format=json&hasfast=true
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash babb6f090aeebc6f421624475b4aefff
06079b7547949822c118224e51604f4c5ebf80c8
b2fe8b91f31edc7284cc9690e90dd4a38d985598374df68967d917590beb55dd
POST /log?format=json&hasfast=true HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay.google.com/
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 1518
Origin: https://pay.google.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
access-control-allow-origin: https://pay.google.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Sat, 28 Jan 2023 10:08:09 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+404; expires=Mon, 27-Jan-2025 10:08:09 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Sat, 28 Jan 2023 10:08:09 GMT
X-Firefox-Spdy: h2
play.google.com/log?format=json&hasfast=true&authuser=0
200 OK 131 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash babb6f090aeebc6f421624475b4aefff
06079b7547949822c118224e51604f4c5ebf80c8
b2fe8b91f31edc7284cc9690e90dd4a38d985598374df68967d917590beb55dd
POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay.google.com/
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 673
Origin: https://pay.google.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://pay.google.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Sat, 28 Jan 2023 10:08:09 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+956; expires=Mon, 27-Jan-2025 10:08:09 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Sat, 28 Jan 2023 10:08:09 GMT
X-Firefox-Spdy: h2
godog.shopifycloud.com/v1/event.gif?q=eyJuYW1lIjoic3BiLmluc3RydW1lbnQubG9hZGluZy50aW1lIiwidHlwZSI6Imhpc3RvZ3JhbSIsInZhbHVlIjoxNzIwLCJ0YWdzIjpbImluc3RydW1lbnQ6R29vZ2xlUGF5IiwicGFnZVR5cGU6cHJvZHVjdCJdfQ==
200 OK 42 B URL HTTP/2 godog.shopifycloud.com/v1/event.gif?q=eyJuYW1lIjoic3BiLmluc3RydW1lbnQubG9hZGluZy50aW1lIiwidHlwZSI6Imhpc3RvZ3JhbSIsInZhbHVlIjoxNzIwLCJ0YWdzIjpbImluc3RydW1lbnQ6R29vZ2xlUGF5IiwicGFnZVR5cGU6cHJvZHVjdCJdfQ==
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /v1/event.gif?q=eyJuYW1lIjoic3BiLmluc3RydW1lbnQubG9hZGluZy50aW1lIiwidHlwZSI6Imhpc3RvZ3JhbSIsInZhbHVlIjoxNzIwLCJ0YWdzIjpbImluc3RydW1lbnQ6R29vZ2xlUGF5IiwicGFnZVR5cGU6cHJvZHVjdCJdfQ== HTTP/1.1
Host: godog.shopifycloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:09 GMT
content-type: image/gif
content-length: 42
cache-control: no-cache, no-store, must-revalidate
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-dc: gcp-us-central1
X-Firefox-Spdy: h2
godog.shopifycloud.com/v1/event.gif?q=eyJuYW1lIjoic3BiLmF2YWlsYWJsZS5pbnN0cnVtZW50IiwidHlwZSI6ImluY3JlbWVudCIsInRhZ3MiOlsiaW5zdHJ1bWVudDpHb29nbGVQYXkiLCJwYWdlVHlwZTpwcm9kdWN0Il19
200 OK 42 B URL HTTP/2 godog.shopifycloud.com/v1/event.gif?q=eyJuYW1lIjoic3BiLmF2YWlsYWJsZS5pbnN0cnVtZW50IiwidHlwZSI6ImluY3JlbWVudCIsInRhZ3MiOlsiaW5zdHJ1bWVudDpHb29nbGVQYXkiLCJwYWdlVHlwZTpwcm9kdWN0Il19
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /v1/event.gif?q=eyJuYW1lIjoic3BiLmF2YWlsYWJsZS5pbnN0cnVtZW50IiwidHlwZSI6ImluY3JlbWVudCIsInRhZ3MiOlsiaW5zdHJ1bWVudDpHb29nbGVQYXkiLCJwYWdlVHlwZTpwcm9kdWN0Il19 HTTP/1.1
Host: godog.shopifycloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:09 GMT
content-type: image/gif
content-length: 42
cache-control: no-cache, no-store, must-revalidate
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-dc: gcp-us-central1
X-Firefox-Spdy: h2
godog.shopifycloud.com/v1/event.gif?q=eyJuYW1lIjoic3BiLmFjY2VsZXJhdGlvbi5jaGVjay5iZW5jaG1hcmsiLCJ0eXBlIjoiaGlzdG9ncmFtIiwidmFsdWUiOjIsInRhZ3MiOlsiaW5zdHJ1bWVudDpHb29nbGVQYXkiLCJwYWdlVHlwZTpwcm9kdWN0Il19
200 OK 42 B URL HTTP/2 godog.shopifycloud.com/v1/event.gif?q=eyJuYW1lIjoic3BiLmFjY2VsZXJhdGlvbi5jaGVjay5iZW5jaG1hcmsiLCJ0eXBlIjoiaGlzdG9ncmFtIiwidmFsdWUiOjIsInRhZ3MiOlsiaW5zdHJ1bWVudDpHb29nbGVQYXkiLCJwYWdlVHlwZTpwcm9kdWN0Il19
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /v1/event.gif?q=eyJuYW1lIjoic3BiLmFjY2VsZXJhdGlvbi5jaGVjay5iZW5jaG1hcmsiLCJ0eXBlIjoiaGlzdG9ncmFtIiwidmFsdWUiOjIsInRhZ3MiOlsiaW5zdHJ1bWVudDpHb29nbGVQYXkiLCJwYWdlVHlwZTpwcm9kdWN0Il19 HTTP/1.1
Host: godog.shopifycloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:09 GMT
content-type: image/gif
content-length: 42
cache-control: no-cache, no-store, must-revalidate
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-dc: gcp-us-central1
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 83aa6ece29a7e0db2f7c372f3b95e1e8
0e71684b1314191ab7c2c927a5a7009a03826349
39dce2856379a45b88e4390b95422e529e9c210f8ef41d9aab9efd5265e541d4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39DCE2856379A45B88E4390B95422E529E9C210F8EF41D9AAB9EFD5265E541D4"
Last-Modified: Thu, 26 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3018
Expires: Sat, 28 Jan 2023 10:58:27 GMT
Date: Sat, 28 Jan 2023 10:08:09 GMT
Connection: keep-alive
godog.shopifycloud.com/v1/event.gif?q=eyJuYW1lIjoic3BiLmFjY2VsZXJhdGVkLmJ1dHRvbi50dGwiLCJ0eXBlIjoiaGlzdG9ncmFtIiwidmFsdWUiOjIzODksInRhZ3MiOlsiaW5zdHJ1bWVudDpTaG9waWZ5UGF5IiwicGFnZVR5cGU6cHJvZHVjdCJdfQ==
200 OK 42 B URL HTTP/2 godog.shopifycloud.com/v1/event.gif?q=eyJuYW1lIjoic3BiLmFjY2VsZXJhdGVkLmJ1dHRvbi50dGwiLCJ0eXBlIjoiaGlzdG9ncmFtIiwidmFsdWUiOjIzODksInRhZ3MiOlsiaW5zdHJ1bWVudDpTaG9waWZ5UGF5IiwicGFnZVR5cGU6cHJvZHVjdCJdfQ==
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /v1/event.gif?q=eyJuYW1lIjoic3BiLmFjY2VsZXJhdGVkLmJ1dHRvbi50dGwiLCJ0eXBlIjoiaGlzdG9ncmFtIiwidmFsdWUiOjIzODksInRhZ3MiOlsiaW5zdHJ1bWVudDpTaG9waWZ5UGF5IiwicGFnZVR5cGU6cHJvZHVjdCJdfQ== HTTP/1.1
Host: godog.shopifycloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:09 GMT
content-type: image/gif
content-length: 42
cache-control: no-cache, no-store, must-revalidate
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-dc: gcp-us-central1
X-Firefox-Spdy: h2
pay.google.com/gp/p/js/pay.js
200 OK 39 kB URL HTTP/2 pay.google.com/gp/p/js/pay.js
IP
Hash 6bb2c76c57d7d3fd6d740eb07cb9f343
c6c3d32a85050e176e658572746aa103a7bd7a20
25beec89d624570bb895c9e8507fca6f093a8a3315978d3c567dd16eb5b310cd
GET /gp/p/js/pay.js HTTP/1.1
Host: pay.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
expires: Sat, 28 Jan 2023 10:08:08 GMT
date: Sat, 28 Jan 2023 10:08:08 GMT
cache-control: private, max-age=600
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
strict-transport-security: max-age=31536000
cross-origin-opener-policy: same-origin; report-to="InstantbuyFrontendHttp"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: script-src 'nonce-X29FcoUIHIO1nlf1fYWjdA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/InstantbuyFrontendHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/InstantbuyFrontendHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/InstantbuyFrontendHttp/cspreport
cross-origin-resource-policy: cross-origin
report-to: {"group":"InstantbuyFrontendHttp","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/InstantbuyFrontendHttp/external"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=l2DlVG4oIWdGEyYrb-9DrmQOAvWfZV5GhF3yFCOKtl_k47Hr4DAepKnASGTOKwdI0e1R3JZ095TqKvGOLnHSWAgDPr_H1L_A9Jje0DqaG7hMerq0DtHIpGKjN-YCMxS0dPt09EvwgJvtOEoB0PikcdXKx6LJBRMw0Tu2E0UceGo; expires=Sun, 30-Jul-2023 10:08:08 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
godog.shopifycloud.com/v1/event.gif?q=eyJuYW1lIjoic3BiLmFjY2VsZXJhdGVkLmluc3RydW1lbnQiLCJ0eXBlIjoiaW5jcmVtZW50IiwidGFncyI6WyJpbnN0cnVtZW50OlNob3BpZnlQYXkiLCJwYWdlVHlwZTpwcm9kdWN0Il19
200 OK 42 B URL HTTP/2 godog.shopifycloud.com/v1/event.gif?q=eyJuYW1lIjoic3BiLmFjY2VsZXJhdGVkLmluc3RydW1lbnQiLCJ0eXBlIjoiaW5jcmVtZW50IiwidGFncyI6WyJpbnN0cnVtZW50OlNob3BpZnlQYXkiLCJwYWdlVHlwZTpwcm9kdWN0Il19
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /v1/event.gif?q=eyJuYW1lIjoic3BiLmFjY2VsZXJhdGVkLmluc3RydW1lbnQiLCJ0eXBlIjoiaW5jcmVtZW50IiwidGFncyI6WyJpbnN0cnVtZW50OlNob3BpZnlQYXkiLCJwYWdlVHlwZTpwcm9kdWN0Il19 HTTP/1.1
Host: godog.shopifycloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:09 GMT
content-type: image/gif
content-length: 42
cache-control: no-cache, no-store, must-revalidate
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-dc: gcp-us-central1
X-Firefox-Spdy: h2
monorail-edge.shopifysvc.com/v1/produce
200 OK 0 B URL HTTP/2 monorail-edge.shopifysvc.com/v1/produce
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1/produce HTTP/1.1
Host: monorail-edge.shopifysvc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-monorail-edge-client-message-id,x-monorail-edge-event-created-at-ms,x-monorail-edge-event-sent-at-ms
Referer: https://www.nipponsport.no/
Origin: https://www.nipponsport.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:09 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: https://www.nipponsport.no
access-control-max-age: 86400
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
x-request-id: b2fc0f62-7ebd-49be-a0da-a4bc8c080b2b
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b%2FNt1B9%2B%2BiNeSzq%2F1y68nxdu5NXQaiOpjCNOBH69h2BkSklAmQYEO%2FIiSNlBm0aPej0zIrvGQHYk7mdZ9PMEYvPqaeJWiJT4xN%2FKe6eoSRJqf2G%2FAGYZYPGDKvSKUrCrman0K%2FjjF8QKX2duJTs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server-timing: cfRequestDuration;dur=145.999908
server: cloudflare
cf-ray: 7908ecdd1bac1c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 30 kB IP
ASN #20940 Akamai International B.V.
Hash a234b400e6bbd5eab6efda403a0dcb1e
a2d2dd3779d60edd8a51c4b0e1f4968aa8096002
5c3821b5d5854a1d4ccb75c0876a439924128f0d8dc189bee15d20254e1275fe
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39DCE2856379A45B88E4390B95422E529E9C210F8EF41D9AAB9EFD5265E541D4"
Last-Modified: Thu, 26 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3018
Expires: Sat, 28 Jan 2023 10:58:27 GMT
Date: Sat, 28 Jan 2023 10:08:09 GMT
Connection: keep-alive
s.kk-resources.com/leadtag.js?shop=nipponsportno.myshopify.com
200 OK 2.6 kB URL HTTP/1.1 s.kk-resources.com/leadtag.js?shop=nipponsportno.myshopify.com
IP
File type C source, ASCII text, with very long lines (6910)
Hash b9c7aa9898d0e7b5d8dfa27c81eda1ac
3e22a4f4ac1fd469128de60e1a80433513242071
980531f0a81016e3a7a4c3fa56f75e7b791f1f4c09296992221bd766b91a53a0
GET /leadtag.js?shop=nipponsportno.myshopify.com HTTP/1.1
Host: s.kk-resources.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
Content-Length: 2595
Connection: keep-alive
X-Gravitee-Transaction-Id: dc86c37c-4dfa-466c-86c3-7c4dfa666c27
X-Gravitee-Request-Id: dc86c37c-4dfa-466c-86c3-7c4dfa666c27
ETag: "4ce868c0fdc969d380979979f635e5c92f06898b"
Request-Time: 6
Accept-Ranges: bytes
Cache-Control: public, max-age=3600
Last-Modified: Thu, 05 Jan 2023 14:36:32 GMT
Content-Encoding: gzip
Date: Sat, 28 Jan 2023 09:34:54 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 42mW6KYxGER_EXinZIC4FPv3WnKucRW2F8z14VNL8Qvsr2Lnn4zQNw==
Age: 1995
monorail-edge.shopifysvc.com/v1/produce
200 OK 0 B URL HTTP/2 monorail-edge.shopifysvc.com/v1/produce
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v1/produce HTTP/1.1
Host: monorail-edge.shopifysvc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nipponsport.no/
Content-Type: application/json; charset=utf-8
X-Monorail-Edge-Event-Created-At-Ms: 1674900492069
X-Monorail-Edge-Event-Sent-At-Ms: 1674900492069
X-Monorail-Edge-Client-Message-Id: 0e7a7e73-89f5-4493-9d85-43ae3b7f425e
Origin: https://www.nipponsport.no
Content-Length: 513
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:10 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: https://www.nipponsport.no
access-control-max-age: 86400
x-request-id: 4f92d044-585a-49b7-b85f-1f486c2a4fa7
x-robots-tag: noindex
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E4u5OWakne2Y%2BR7LTbBgq8ghgxfj%2FjEI6v2aJgcIPBm8ekKrxTWguWpWxeij6crnohY9BJ7%2BQ0TqYexJtXJLslwXUmf%2FjW8FwI4XVaWQJYjTkbIWAcCYPxPejKLpzZT3qCdt8gNdzrhKKt7rf9w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server-timing: cfRequestDuration;dur=120.999813
server: cloudflare
cf-ray: 7908ecde3cad1c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
monorail-edge.shopifysvc.com/v1/produce
200 OK 0 B URL HTTP/2 monorail-edge.shopifysvc.com/v1/produce
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v1/produce HTTP/1.1
Host: monorail-edge.shopifysvc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nipponsport.no/
Content-Type: application/json; charset=utf-8
X-Monorail-Edge-Event-Created-At-Ms: 1674900491848
X-Monorail-Edge-Event-Sent-At-Ms: 1674900491848
X-Monorail-Edge-Client-Message-Id: c9e89fc7-ed58-4ad3-befa-60193d3dac53
Origin: https://www.nipponsport.no
Content-Length: 482
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:10 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Accept,Content-Type,X-Monorail-Edge-Event-Created-At-Ms,X-Monorail-Edge-Event-Sent-At-Ms,X-Monorail-Edge-Client-Message-Id,X-Monorail-Edge-Device-Install-Id,X-Monorail-Edge-Accept-Language,X-Monorail-Edge-Content-Language,X-Forwarded-For
access-control-allow-methods: OPTIONS,POST
access-control-allow-origin: https://www.nipponsport.no
access-control-max-age: 86400
x-request-id: 892fa8b8-a449-4edb-b548-5106b9f210f5
x-robots-tag: noindex
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-central1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WM0F1%2B%2FI51HalFHPSUAzSgMZYCMR9LlA2sEoD2n%2BwYDbKdZiaMIJjPHrILkJ9vHtk%2BCtfgkRf%2F0PwOP0RTKO6nHpsegMa6aM3QKqCn%2FqMtr2ORbG6BfPP9BrLNfImQHAcWaUUYlnsWxvNNXANLI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server-timing: cfRequestDuration;dur=199.999809
server: cloudflare
cf-ray: 7908ecddec6b1c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
status.thawte.com/
200 OK 471 B IP
Hash e0344c44b03467980735c529ec222084
5a02acb712776b4c0bba6346ec3ea99d4d13226b
fb50323f02dd9e830af11038626f7415845f97dd40e409f3bfc1e6e02f77f921
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2522
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 10:08:10 GMT
Last-Modified: Sat, 28 Jan 2023 09:26:08 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
status.thawte.com/
200 OK 471 B IP
Hash e0344c44b03467980735c529ec222084
5a02acb712776b4c0bba6346ec3ea99d4d13226b
fb50323f02dd9e830af11038626f7415845f97dd40e409f3bfc1e6e02f77f921
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1125
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 10:08:10 GMT
Last-Modified: Sat, 28 Jan 2023 09:49:25 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
s.kelkoogroup.net/k.gif
200 OK 0 B IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /k.gif HTTP/1.1
Host: s.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: etag
Referer: https://www.nipponsport.no/
Origin: https://www.nipponsport.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
X-Gravitee-Transaction-Id: f6937bcd-e709-4038-937b-cde709f03840
X-Gravitee-Request-Id: f6937bcd-e709-4038-937b-cde709f03840
Vary: Origin
Access-Control-Max-Age: 3600
Access-Control-Allow-Origin: https://www.nipponsport.no
Access-Control-Allow-Headers: etag
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Sat, 28 Jan 2023 10:08:10 GMT
content-length: 0
s.kelkoogroup.net/k.gif
200 OK 43 B IP
ASN #60781 LeaseWeb Netherlands B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash f837aa60b6fe83458f790db60d529fc9
14af87ccec7f81bb28d53c84da2fd5a9d5925cda
dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b
GET /k.gif HTTP/1.1
Host: s.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
ETag: a2Vsa29vSWQ9YTRjNjI5NS0xODVmN2Q5MzVjNy04MjNiZA==
Origin: https://www.nipponsport.no
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
X-Gravitee-Transaction-Id: e42494cb-b695-4d4b-a494-cbb6952d4b09
X-Gravitee-Request-Id: e42494cb-b695-4d4b-a494-cbb6952d4b09
ETag: a2Vsa29vSWQ9YTRjNjI5NS0xODVmN2Q5MzVjNy04MjNiZA==
Vary: *,Origin
Pragma: no-cache
Expires: 0
Request-Time: 0
Accept-Ranges: bytes
Cache-Control: private, no-cache, no-store, must-revalidate, proxy-revalidate
Last-Modified: Fri, 01 Jan 2010 00:00:00 GMT
Access-Control-Allow-Origin: https://www.nipponsport.no
Access-Control-Expose-Headers: ETag
Access-Control-Allow-Credentials: true
Date: Sat, 28 Jan 2023 10:08:10 GMT
Content-Type: image/gif
content-length: 43
d275fvz7g8rvo.cloudfront.net/nipponsportno.myshopify.com/online_store_script.js?shop=nipponsportno.myshopify.com
200 OK 1.5 kB URL HTTP/2 d275fvz7g8rvo.cloudfront.net/nipponsportno.myshopify.com/online_store_script.js?shop=nipponsportno.myshopify.com
IP
File type ASCII text, with very long lines (320)
Hash 7b535713eb8c9466a5f908a24928f021
8b9254e53878da3612a13ab1c8de19f04061c857
8bd5a38604f14611d5bde72937dcb59f51aea711787c7db6e23ffd5bf5464771
GET /nipponsportno.myshopify.com/online_store_script.js?shop=nipponsportno.myshopify.com HTTP/1.1
Host: d275fvz7g8rvo.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 1490
last-modified: Tue, 20 Sep 2022 13:27:41 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 28 Jan 2023 06:59:00 GMT
etag: "7b535713eb8c9466a5f908a24928f021"
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kbrRAifcPU5ySMdWx_eosMlR66TY4FLdY1mLAhONXUVVUAZNdVxZ9Q==
age: 11351
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/zc8j76yUOh0
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/zc8j76yUOh0
IP
Hash 04f43e738f728b8a026c1de5f9a852ca
6dbfeae057aa18a6d67000886fd07bb0557d6909
94e930e47b340473971fc27b6f459a9b0deea113d541a16fb659acd4cfc5754c
POST /s/gts1d4/zc8j76yUOh0 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 10:08:10 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
utt.impactcdn.com/A3323035-cb62-4c47-bf48-9d6366cfbbf71.js
200 OK 13 kB URL HTTP/2 utt.impactcdn.com/A3323035-cb62-4c47-bf48-9d6366cfbbf71.js
IP
File type C source, ASCII text, with very long lines (42334), with no line terminators
Hash 51f93028e660386f41c508f41cc62288
b83795e6ca26724466c7d874ec875a2784de75d4
4d3b49c15b48c7ca1802798afbf01ef88e3f8f41f7555c1d681d82e55ffe0a60
GET /A3323035-cb62-4c47-bf48-9d6366cfbbf71.js HTTP/1.1
Host: utt.impactcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsSQx56POtw5pCo4Vez3fkjrmlwtWUwLzLwHAnXB1tmfTLVlfg_petFGQ-4QI8J4cd8zO8e7WzEDARnhKaNILf608MGQXAd
vary: Accept-Encoding
x-goog-generation: 1666190651959755
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 13115
content-encoding: gzip
x-goog-hash: crc32c=vfuWGw==, md5=UfkwKOZgOG9BxQj0HMYiiA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 13115
access-control-allow-origin: *
server: UploadServer
date: Sat, 28 Jan 2023 10:03:51 GMT
expires: Sat, 28 Jan 2023 10:08:51 GMT
cache-control: public,max-age=900,s-maxage=300
age: 259
last-modified: Wed, 19 Oct 2022 14:44:12 GMT
etag: "51f93028e660386f41c508f41cc62288"
content-type: text/javascript; charset=utf-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/zc8j76yUOh0
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/zc8j76yUOh0
IP
Hash 04f43e738f728b8a026c1de5f9a852ca
6dbfeae057aa18a6d67000886fd07bb0557d6909
94e930e47b340473971fc27b6f459a9b0deea113d541a16fb659acd4cfc5754c
POST /s/gts1d4/zc8j76yUOh0 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 10:08:10 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
200 OK 472 B IP
Hash 53098a131e15e14ed7c92487e3eb34f9
2493586cd8ec72a134226b6e29cc6b4431da9bb2
90503f03334b44294b3ce4651302938524f101899864bc236bc3a44d7d47751c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 10:08:10 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 26 Jan 2023 02:29:46 GMT
Expires: Thu, 02 Feb 2023 02:29:45 GMT
Etag: "2493586cd8ec72a134226b6e29cc6b4431da9bb2"
Cache-Control: max-age=403894,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7908ece29c43b51b-OSL
ocsp.sectigo.com/
200 OK 472 B IP
Hash 53098a131e15e14ed7c92487e3eb34f9
2493586cd8ec72a134226b6e29cc6b4431da9bb2
90503f03334b44294b3ce4651302938524f101899864bc236bc3a44d7d47751c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 10:08:10 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 26 Jan 2023 02:29:46 GMT
Expires: Thu, 02 Feb 2023 02:29:45 GMT
Etag: "2493586cd8ec72a134226b6e29cc6b4431da9bb2"
Cache-Control: max-age=403894,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7908ece43e5db51b-OSL
cdn.shopify.com/s/files/1/0557/9109/1821/t/7/assets/theme.css?v=148000225493056842961671538098
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0557/9109/1821/t/7/assets/theme.css?v=148000225493056842961671538098
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0557/9109/1821/t/7/assets/theme.css?v=148000225493056842961671538098 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:06 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0557/9109/1821/t/7/assets/theme.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 6b319cc2-cccc-4997-9197-ca0c3d8c32c4
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Tue, 20 Dec 2022 12:09:52 GMT
cf-cache-status: HIT
age: 3362255
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sFA%2BVukMg9tXeWt1FQVD7wmTPRxT8crkajVaWjxm3xfp6GHOnWSAzrJ6iFWqD%2FTx1mOJJ1H2ouJ9%2BVdTP%2BikIXdRv3hb4%2Bf7rud28pF63dVTOQ8YNWvzmrZ5k036P0rakQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=72.168, imageryFetch;dur=47.714, cfRequestDuration;dur=18.999815
server: cloudflare
cf-ray: 7908ecc97b8bb503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
api.clerk.io/v2/recommendations/substituting?payload=%7B%22products%22%3A%5B6809142394989%5D%2C%22key%22%3A%22Zz0KqtyQmkZAQG5SSFEFupSlLJWMNrit%22%2C%22labels%22%3A%5B%22Product%20%2F%20recommendations%2Fsubstituting%22%5D%2C%22limit%22%3A16%2C%22endpoint%22%3A%22recommendations%2Fsubstituting%22%2C%22filter%22%3A%22%22%2C%22attributes%22%3A%5B%22handle%22%2C%22id%22%5D%2C%22visitor%22%3A%22auto%22%2C%22_%22%3A1674900489%7D&callback=__clerk_cb_0
200 OK 0 B URL HTTP/2 api.clerk.io/v2/recommendations/substituting?payload=%7B%22products%22%3A%5B6809142394989%5D%2C%22key%22%3A%22Zz0KqtyQmkZAQG5SSFEFupSlLJWMNrit%22%2C%22labels%22%3A%5B%22Product%20%2F%20recommendations%2Fsubstituting%22%5D%2C%22limit%22%3A16%2C%22endpoint%22%3A%22recommendations%2Fsubstituting%22%2C%22filter%22%3A%22%22%2C%22attributes%22%3A%5B%22handle%22%2C%22id%22%5D%2C%22visitor%22%3A%22auto%22%2C%22_%22%3A1674900489%7D&callback=__clerk_cb_0
IP
GET /v2/recommendations/substituting?payload=%7B%22products%22%3A%5B6809142394989%5D%2C%22key%22%3A%22Zz0KqtyQmkZAQG5SSFEFupSlLJWMNrit%22%2C%22labels%22%3A%5B%22Product%20%2F%20recommendations%2Fsubstituting%22%5D%2C%22limit%22%3A16%2C%22endpoint%22%3A%22recommendations%2Fsubstituting%22%2C%22filter%22%3A%22%22%2C%22attributes%22%3A%5B%22handle%22%2C%22id%22%5D%2C%22visitor%22%3A%22auto%22%2C%22_%22%3A1674900489%7D&callback=__clerk_cb_0 HTTP/1.1
Host: api.clerk.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:07 GMT
content-type: application/javascript
server: nginx
vary: Accept-Encoding
cache-control: no-cache
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
api.clerk.io/v2/log/pageview?payload=%7B%22key%22%3A%22Zz0KqtyQmkZAQG5SSFEFupSlLJWMNrit%22%2C%22visitor%22%3A%22auto%22%2C%22_%22%3A1674900492%7D&callback=__clerk_cb_2
200 OK 0 B URL HTTP/2 api.clerk.io/v2/log/pageview?payload=%7B%22key%22%3A%22Zz0KqtyQmkZAQG5SSFEFupSlLJWMNrit%22%2C%22visitor%22%3A%22auto%22%2C%22_%22%3A1674900492%7D&callback=__clerk_cb_2
IP
GET /v2/log/pageview?payload=%7B%22key%22%3A%22Zz0KqtyQmkZAQG5SSFEFupSlLJWMNrit%22%2C%22visitor%22%3A%22auto%22%2C%22_%22%3A1674900492%7D&callback=__clerk_cb_2 HTTP/1.1
Host: api.clerk.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:09 GMT
content-type: application/javascript
server: nginx
vary: Accept-Encoding
cache-control: no-cache
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js
200 OK 0 B URL HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.nipponsport.no
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:06 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 2db3f6e4-6b63-4f02-8a22-ba52c7a5d61f
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Wed, 04 Jan 2023 20:09:25 GMT
cf-cache-status: HIT
age: 2037521
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BeZmody5fTUXdvlVUXWj1uyvf2oT%2BxjQm%2FgmrEGPBUsM6UaVg5g6sSXOuFlOC24k%2BLSwFrf8Buovv%2BHst1Gk3nDSjpy9f4KuF2U77N5c8BnmLLOHvB2pAeTs3QE1Cbq16A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=33.265, imageryFetch;dur=32.985, cfRequestDuration;dur=88.000059
server: cloudflare
cf-ray: 7908ecc949dcb523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0557/9109/1821/t/7/assets/clerk-slider.js?v=45076466562321535091668437667
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0557/9109/1821/t/7/assets/clerk-slider.js?v=45076466562321535091668437667
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0557/9109/1821/t/7/assets/clerk-slider.js?v=45076466562321535091668437667 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:06 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0557/9109/1821/t/7/assets/clerk-slider.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 11b1a1b4-bce9-40d6-8a81-0a1a64f35aab
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Mon, 14 Nov 2022 14:54:29 GMT
cf-cache-status: HIT
age: 6462817
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BXFsqHxJ1T4saH4DY4BRBXaGiUC3RKm3qt1YQUYAwZO8RvO6gaSVLpgbGaXzkrUWiGIx1gRW6d6Yxvw5ppQXF6p%2BESOnj58c8C3bpfnai%2F8TCm1rj7TaktwQOQGy%2BWY82g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=44.299, imageryFetch;dur=43.057, cfRequestDuration;dur=7.999897
server: cloudflare
cf-ray: 7908ecc95b63b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0557/9109/1821/t/7/assets/custom.css?v=66428296778921345701670423810
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0557/9109/1821/t/7/assets/custom.css?v=66428296778921345701670423810
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0557/9109/1821/t/7/assets/custom.css?v=66428296778921345701670423810 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:06 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0557/9109/1821/t/7/assets/custom.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 8eca5908-a619-4db7-bca2-baf675a36c96
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Wed, 07 Dec 2022 14:54:01 GMT
cf-cache-status: HIT
age: 4475495
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GztLXyFZYV2X612Yd%2B1Z8AeZugzT9qbMv5Mx64qELkta9%2FukJfFpLjzSD0Iq8sJXuFf7fwxK3yfELvgoGjk4a3JZ9rNBgBKmZpHoROr1mWw8FLs418wiaESZj3K8cD5wyg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=52.915, imageryFetch;dur=51.794, cfRequestDuration;dur=11.999846
server: cloudflare
cf-ray: 7908ecc95b5fb503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js
200 OK 0 B URL HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.nipponsport.no
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:06 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: bd64034b-d639-49f0-8edf-5f30908d9190
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Tue, 30 Aug 2022 12:18:33 GMT
cf-cache-status: HIT
age: 13038287
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K3y%2B6KnqgvktXcrrIH9LGJC9UHvNtuw%2F%2BbavHtHFAxa%2Bkv%2FZXXilDa7KPV2aeViQ77p3t%2FgOZjbymhLknBP7YN37XHKTtwyZ4zpgg2AWja80EnbG1zYy%2BVuEX1OgVqeC9w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=18.617, imageryFetch;dur=18.470, cfRequestDuration;dur=19.000053
server: cloudflare
cf-ray: 7908ecc959edb523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
nippon-sport-norge.pxf.io/xur/15960
200 OK 0 B URL HTTP/2 nippon-sport-norge.pxf.io/xur/15960
IP
POST /xur/15960 HTTP/1.1
Host: nippon-sport-norge.pxf.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded;charset=UTF-8
Origin: https://www.nipponsport.no
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
access-control-allow-origin: https://www.nipponsport.no
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
expires: Sat, 28 Jan 2023 10:08:10 GMT
p3p: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT"
set-cookie: brwsr=ab6ea4e4-9ef3-11ed-9794-79010013dcfc; Domain=.pxf.io; Path=/; Secure; Max-Age=62208000; Expires=Fri, 17 Jan 2025 10:08:10 GMT; HttpOnly; SameSite=None
irtps=1; Domain=.pxf.io; Path=/; Secure; Max-Age=86400; Expires=Sun, 29 Jan 2023 10:08:10 GMT; HttpOnly; SameSite=None
content-type: application/json; charset=UTF-8
date: Sat, 28 Jan 2023 10:08:10 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
scripts.simpleanalyticscdn.com/latest.js
200 OK 0 B URL HTTP/2 scripts.simpleanalyticscdn.com/latest.js
IP
ASN #34989 ServeTheWorld AS
GET /latest.js HTTP/1.1
Host: scripts.simpleanalyticscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:07 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 103822
cdn-uid: 621ef7c8-45de-46e4-8237-2eca0c3a2d75
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=604800
etag: W/"63164676-1c7c"
last-modified: Mon, 05 Sep 2022 18:56:54 GMT
cdn-storageserver: DE-51
cdn-fileserver: 68
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 09/05/2022 18:57:54
cdn-edgestorageid: 830
simple-analytics: true
cdn-status: 200
cdn-requestid: c2afd3669bd23a152c43779b17275bc3
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify/assets/shopify_pay/storefront-c31d2fa4962d2ef90b673e945ee33f4f87302b97d0882cd8e83a629b84b30dab.js?v=20220906
200 OK 0 B URL HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/shopify_pay/storefront-c31d2fa4962d2ef90b673e945ee33f4f87302b97d0882cd8e83a629b84b30dab.js?v=20220906
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /shopifycloud/shopify/assets/shopify_pay/storefront-c31d2fa4962d2ef90b673e945ee33f4f87302b97d0882cd8e83a629b84b30dab.js?v=20220906 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.nipponsport.no
Connection: keep-alive
Referer: https://www.nipponsport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 10:08:06 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/shopify_pay/storefront-c31d2fa4962d2ef90b673e945ee33f4f87302b97d0882cd8e83a629b84b30dab.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 62b0663b-a903-4b13-ac4e-99a3e1ff905e
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Tue, 25 Oct 2022 19:58:34 GMT
cf-cache-status: HIT
age: 8172572
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2tpSmA0TBD1A9gMI3OH5K8D7ux0rQW4u%2FM7nKmA4z7A%2FnXh3miDyMKkze3W3YsvBBziPJVBeaZsoq2Pj83W34JQkNABgQ31hRgye3HpMhrIiIgCLv7sb2YQTaIgJNa987A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=34.828, imageryFetch;dur=34.692, cfRequestDuration;dur=7.999897
server: cloudflare
cf-ray: 7908ecc949e1b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pay.google.com/gp/p/ui/payframe?origin=https%3A%2F%2Fwww.nipponsport.no&mid=16708973830884969730
200 OK 0 B URL HTTP/2 pay.google.com/gp/p/ui/payframe?origin=https%3A%2F%2Fwww.nipponsport.no&mid=16708973830884969730
IP
GET /gp/p/ui/payframe?origin=https%3A%2F%2Fwww.nipponsport.no&mid=16708973830884969730 HTTP/1.1
Host: pay.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nipponsport.no/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
x-ua-compatible: IE=edge
expires: Sat, 28 Jan 2023 10:08:09 GMT
date: Sat, 28 Jan 2023 10:08:09 GMT
cache-control: private, max-age=3600
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
strict-transport-security: max-age=31536000
content-security-policy: script-src 'nonce-s2rayj1K8jx3Ez7UO0L4Bg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/InstantbuyFrontendBuyflowPayframeUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/InstantbuyFrontendBuyflowPayframeUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/InstantbuyFrontendBuyflowPayframeUi/cspreport
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: same-site
cross-origin-opener-policy: same-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
set-cookie: NID=511=TFHY1abViMsgxZ5SkUcylkMgf1B0ej1iUVe86YabqOLYjecyETXfKsYylCDawNgTlMAkKddVFsjOdjnvehRiRo0Am2hWfXpNlaIDxkYoGxkelm8ThQDiN9Jqu6hvm7pUjS2YUARADzknI_YtE1ewknx4oHIpjWBSl3T2O5n_UO8; expires=Sun, 30-Jul-2023 10:08:08 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
23.82.12.36
185.132.132.16
185.60.164.26
194.242.11.186
23.227.60.200
157.240.200.35
93.184.220.29
104.18.32.68
13.49.12.70
52.57.57.148