Overview

URL itsallbreaksoft.net/tds/in.cgi?2&seoref&parameter=$keyword&se=$se&ur=1&http_referer=file://c:usersvirtualappdatalocaltemp57578831583d51d0e132d5b5a843f4237bea2aca16238e8b36ae1df265077c5b.html&default_keyword=notdefine
IP46.8.8.100
ASNGransy s.r.o.
Location Czechia
Report completed2022-09-21 15:19:16 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-21 2 ww62.itsallbreaksoft.net/ Phishing
2022-09-21 2 ww62.itsallbreaksoft.net/ls.php Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (31)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS r3.o.lencr.org (7) 344 2020-12-02 08:52:13 UTC 2022-09-21 04:18:22 UTC 23.36.76.226
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-21 04:20:37 UTC 54.148.228.200
mnemonic passive DNS d38psrni17bvxu.cloudfront.net (1) 0 2022-09-21 10:47:40 UTC 2022-09-21 15:03:15 UTC 54.230.245.8 Unknown ranking
mnemonic passive DNS balor-ghn.com (3) 0 2022-08-26 15:31:19 UTC 2022-09-21 11:48:38 UTC 34.194.66.161 Unknown ranking
mnemonic passive DNS us.pushnow.net (2) 0 2022-04-27 19:14:21 UTC 2022-09-21 12:58:11 UTC 38.100.129.136 Unknown ranking
mnemonic passive DNS api.usercentrics.eu (4) 11845 2018-04-17 08:09:01 UTC 2022-09-21 08:05:16 UTC 35.241.3.184
mnemonic passive DNS ww62.itsallbreaksoft.net (5) 0 2013-11-15 23:00:50 UTC 2022-09-11 10:59:00 UTC 75.2.120.224 Unknown ranking
mnemonic passive DNS ocsp.pki.goog (8) 175 2017-06-14 07:23:31 UTC 2022-09-21 04:20:12 UTC 142.250.74.3
mnemonic passive DNS cdn.optimizely.com (1) 694 2018-03-19 19:09:21 UTC 2022-09-21 08:13:56 UTC 23.38.200.155
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-21 04:18:32 UTC 143.204.55.49
mnemonic passive DNS www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-09-21 09:49:55 UTC 142.250.74.174
mnemonic passive DNS ocsp.sca1b.amazontrust.com (1) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.165
mnemonic passive DNS app.usercentrics.eu (1) 12624 2018-08-08 09:42:22 UTC 2022-09-21 08:05:16 UTC 35.190.14.188
mnemonic passive DNS sc-static.net (1) 1183 2022-01-24 20:13:30 UTC 2022-09-21 10:25:07 UTC 54.230.82.240
mnemonic passive DNS cdn.mouseflow.com (1) 6644 2012-07-27 09:45:11 UTC 2022-09-21 06:51:46 UTC 151.139.128.11
mnemonic passive DNS www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-09-21 08:23:34 UTC 142.250.74.164
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-21 04:20:37 UTC 34.117.237.239
mnemonic passive DNS vht.tradedoubler.com (1) 99799 2014-12-22 20:47:00 UTC 2022-09-21 11:27:14 UTC 54.230.111.56
mnemonic passive DNS na-kd.com (1) 96197 2015-10-31 18:29:14 UTC 2022-09-21 03:30:31 UTC 217.114.94.2
mnemonic passive DNS www.na-kd.com (276) 99353 2015-09-22 12:49:09 UTC 2022-09-21 11:50:33 UTC 104.18.37.30
mnemonic passive DNS use.typekit.net (4) 494 2012-07-05 01:42:39 UTC 2022-09-21 04:39:02 UTC 23.36.76.186
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-09-21 04:18:29 UTC 142.250.74.72
mnemonic passive DNS tr.snapchat.com (4) 978 2017-04-26 06:25:03 UTC 2022-09-21 04:31:23 UTC 35.190.43.134
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-21 10:25:05 UTC 143.204.55.27
mnemonic passive DNS itsallbreaksoft.net (1) 0 2012-07-21 13:11:59 UTC 2022-09-21 15:10:11 UTC 46.8.8.100 Unknown ranking
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-21 14:38:57 UTC 34.120.237.76
mnemonic passive DNS www.dwin1.com (1) 4572 2019-09-28 13:55:19 UTC 2022-09-21 08:10:53 UTC 143.204.55.56
mnemonic passive DNS analytics.tradedoubler.com (2) 125638 2018-02-20 12:25:07 UTC 2022-09-21 11:01:10 UTC 188.165.150.177
mnemonic passive DNS ocsp.digicert.com (4) 86 2012-05-21 07:02:23 UTC 2022-09-21 10:02:25 UTC 93.184.220.29
mnemonic passive DNS clkuk.tradedoubler.com (3) 396192 2016-07-21 12:32:19 UTC 2022-09-21 12:14:26 UTC 35.186.231.97
mnemonic passive DNS redirects.tradedoubler.com (1) 0 2017-01-30 06:32:56 UTC 2022-09-21 12:14:27 UTC 34.254.127.97 Domain (tradedoubler.com) ranked at: 16610


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 46.8.8.100

Date UQ / IDS / BL URL IP
2022-12-01 05:28:55 +0000
0 - 0 - 5 beautybilo.com/ 46.8.8.100
2022-11-28 08:52:08 +0000
0 - 0 - 5 styleparts.net/ 46.8.8.100
2022-11-28 04:19:07 +0000
0 - 0 - 13 kidpeesthemselvewhe.com/ 46.8.8.100
2022-11-27 23:44:22 +0000
0 - 0 - 5 franctucworld.com/ 46.8.8.100
2022-11-27 17:14:20 +0000
0 - 0 - 5 ahorrodelocod.com/ 46.8.8.100

Last 5 reports on ASN: Gransy s.r.o.

Date UQ / IDS / BL URL IP
2022-12-01 05:28:55 +0000
0 - 0 - 5 beautybilo.com/ 46.8.8.100
2022-11-28 13:09:25 +0000
0 - 0 - 1 terebox.com/ 185.38.110.121
2022-11-28 11:50:58 +0000
0 - 0 - 1 www.p30up.com/dl3/2010/3/Stripes-[www.TakTemp (...) 185.38.110.121
2022-11-28 08:52:08 +0000
0 - 0 - 5 styleparts.net/ 46.8.8.100
2022-11-28 04:19:07 +0000
0 - 0 - 13 kidpeesthemselvewhe.com/ 46.8.8.100

Last 5 reports on domain: itsallbreaksoft.net

Date UQ / IDS / BL URL IP
2022-09-21 15:19:16 +0000
0 - 0 - 2 itsallbreaksoft.net/tds/in.cgi?2&seoref&param (...) 46.8.8.100
2022-09-10 02:13:55 +0000
0 - 0 - 2 itsallbreaksoft.net/tds/in.cgi?3&seoref=&para (...) 46.8.8.100
2022-09-06 04:50:23 +0000
0 - 0 - 3 itsallbreaksoft.net/tds/in.cgi?3&seoref=&para (...) 46.8.8.100
2022-09-06 01:24:07 +0000
0 - 0 - 3 itsallbreaksoft.net/tds/in.cgi?3&seoref=&para (...) 46.8.8.100
2022-09-05 21:45:33 +0000
0 - 0 - 3 itsallbreaksoft.net/tds/in.cgi?2&seoref=&para (...) 46.8.8.100

No other reports with similar screenshot



JavaScript

Executed Scripts (50)


Executed Evals (44)

#1 JavaScript::Eval (size: 25, repeated: 1) - SHA256: 63d0de96ffe6e24d709e64517f883a6e6a72e3629aea379ee43b727541794c64

                                        navigator.browserLanguage
                                    

#2 JavaScript::Eval (size: 17, repeated: 1) - SHA256: 13871edf9ac7e58046d0f0d03811464e388c3f2323eebc6b61954c79dc883459

                                        screen.deviceXDPI
                                    

#3 JavaScript::Eval (size: 13, repeated: 1) - SHA256: 56e57af29d4af8b1fb7008dbfdf84a764970a6673f1f19165f1a8498ce903d93

                                        screen.height
                                    

#4 JavaScript::Eval (size: 24, repeated: 1) - SHA256: 3d561ada4bc2a17cbbb45d350ba529b23eba26a7792aca9b77aeaf48b75c1f08

                                        window.screen.availWidth
                                    

#5 JavaScript::Eval (size: 25, repeated: 1) - SHA256: 0d104b78124bc9cede335899791af4e0c98eb238bbefa13e7a7738c5f37db74a

                                        window.screen.availHeight
                                    

#6 JavaScript::Eval (size: 71, repeated: 1) - SHA256: 838a7321b3eb018fc0941405f8909eb3392abbc96d57b1650e90d97eb8857263

                                        (function() {
    return google_tag_manager["GTM-W9RJXK5"].macro(10) ? 1 : 0
})();
                                    

#7 JavaScript::Eval (size: 938, repeated: 1) - SHA256: 6557649f7a997fc00209d9ed9939088c9d0e6c7e8ecbe4c36e05f1dd66412b27

                                        (function() {
    var c = {
            keyName: "_transaction_ids",
            cookieExpiresDays: 365
        },
        n = function(a) {
            if (window.Storage) return window.localStorage.getItem(a);
            var b = "; " + document.cookie;
            a = b.split("; " + a + "\x3d");
            if (2 === a.length) return a.pop().split(";").shift()
        },
        e = "_ga_originalSendHitTask";
    return function(a) {
        window[e] = window[e] || a.get("sendHitTask");
        a.set("sendHitTask", function(b) {
            var p = b,
                h = window[e],
                k = !0;
            try {
                if ("object" === typeof c && c.hasOwnProperty("keyName") && c.hasOwnProperty("cookieExpiresDays") && "undefined" !== typeof b.get("\x26ti")) {
                    var f =
                        b.get("\x26ti"),
                        d = JSON.parse(n(c.keyName) || "[]");
                    if (-1 < d.indexOf(f) && -1 === ["transaction", "item"].indexOf(b.get("hitType"))) k = !1;
                    else if (-1 === d.indexOf(f)) {
                        d.push(f);
                        var l = c.keyName,
                            m = JSON.stringify(d),
                            q = c.cookieExpiresDays;
                        if (window.Storage) window.localStorage.setItem(l, m);
                        else {
                            var g = new Date;
                            g.setDate(g.getDate() + q);
                            document.cookie = l + "\x3d" + m + ";expires\x3d" + g.toUTCString()
                        }
                    }
                }
                k && h(b)
            } catch (r) {
                h(p)
            }
        })
    }
})();
                                    

#8 JavaScript::Eval (size: 103, repeated: 1) - SHA256: 001ed316c86a4069d8ae81240631b28dc2962754042555dd9c9e42de877996ca

                                        (function() {
    var a = google_tag_manager["GTM-W9RJXK5"].macro(24),
        b = a.indexOf("-");
    return a.slice(b + 1)
})();
                                    

#9 JavaScript::Eval (size: 20, repeated: 1) - SHA256: 1b0f9a28e673c21b9a668e2973157b075ac420eda7f39fd5727a77bb32b45ffe

                                        navigator.appVersion
                                    

#10 JavaScript::Eval (size: 23, repeated: 1) - SHA256: c5d184acbefde172c402f1100cb756d11e8a1c83484977f1d5975bc65a79a7c5

                                        navigator.cookieEnabled
                                    

#11 JavaScript::Eval (size: 16, repeated: 1) - SHA256: d6b5ca1760fc8b29e007efc9c8d2cf7e8a2395825f6f77dada95483fc3171bdf

                                        navigator.onLine
                                    

#12 JavaScript::Eval (size: 19, repeated: 1) - SHA256: 9b078b8e24e4655c21a5876570daac97f2ddc241bfdb259644582b6a7a60930b

                                        navigator.userAgent
                                    

#13 JavaScript::Eval (size: 22, repeated: 1) - SHA256: 0e77155223e60580c4e3b388b9fbb7758704064b4000b90d97d0f13ec4d35873

                                        window.screen.availTop
                                    

#14 JavaScript::Eval (size: 189, repeated: 1) - SHA256: 9e869d8760c8bc2fc02f3801188e492443c3784febd1580ae986f72a2c819305

                                        (function() {
    var a = google_tag_manager["GTM-W9RJXK5"].macro(16);
    "undefined" !== typeof google_tag_manager["GTM-W9RJXK5"].macro(17) && (a = google_tag_manager["GTM-W9RJXK5"].macro(18));
    return a
})();
                                    

#15 JavaScript::Eval (size: 103, repeated: 1) - SHA256: fa62b30721feb924929a2c4b31473b3816a9c0b5c63df36263885bfa62cf5f23

                                        (function() {
    var a = google_tag_manager["GTM-W9RJXK5"].macro(41),
        b = a.indexOf("-");
    return a.slice(b + 1)
})();
                                    

#16 JavaScript::Eval (size: 24, repeated: 1) - SHA256: 893fe12669f916947d99616b788aa245f8b45c5b8b34544df4114a6a789217ab

                                        navigator.systemLanguage
                                    

#17 JavaScript::Eval (size: 18, repeated: 1) - SHA256: 318e5db431b7c9515f38ae97da21d7c4e75ec281aea96271c0d0f4e22b35df92

                                        navigator.language
                                    

#18 JavaScript::Eval (size: 15, repeated: 1) - SHA256: c5f766beae5e4d0b9caf36bddbe59c0117a8c0aef0bde7ad9ec993cc3802e780

                                        document.domain
                                    

#19 JavaScript::Eval (size: 27, repeated: 1) - SHA256: fa6b78337563233074f15e53bdcdbae480a646eb546aa625d0bcdb46a7800e89

                                        screen.fontSmoothingEnabled
                                    

#20 JavaScript::Eval (size: 75, repeated: 1) - SHA256: 77e3db49b60a10907a46e4e5b9407df87619e3c8f5764f3e70c5f5f26f9b0b16

                                        (function() {
    return document.location.pathname + document.location.search
})();
                                    

#21 JavaScript::Eval (size: 186, repeated: 1) - SHA256: 76c36cc28a64cf9219bf08ce162ca3815ff0dcd12aa731c2899f4e920c24df8d

                                        (function() {
    var a = google_tag_manager["GTM-W9RJXK5"].macro(7);
    "undefined" !== typeof google_tag_manager["GTM-W9RJXK5"].macro(8) && (a = google_tag_manager["GTM-W9RJXK5"].macro(9));
    return a
})();
                                    

#22 JavaScript::Eval (size: 71, repeated: 1) - SHA256: 173a2e1786bdf9d8dd062c87313fb08ee47722491622c266e02a3d17c5ff5e89

                                        (function() {
    return google_tag_manager["GTM-W9RJXK5"].macro(23) ? 1 : 0
})();
                                    

#23 JavaScript::Eval (size: 21, repeated: 1) - SHA256: 023250096bcba5a18a624685884b3126896db722289f3281cea8ec5cc63476e7

                                        navigator.appCodeName
                                    

#24 JavaScript::Eval (size: 17, repeated: 1) - SHA256: 031688cb60b9631e34bc623cf81a9eeef73de67ca290d15cccfaa65399420932

                                        screen.colorDepth
                                    

#25 JavaScript::Eval (size: 71, repeated: 1) - SHA256: 4bf11b48536215fa7f613006874eb4ac2990861d62cb7195ee08a1c7178633da

                                        (function() {
    return google_tag_manager["GTM-W9RJXK5"].macro(40) ? 1 : 0
})();
                                    

#26 JavaScript::Eval (size: 126, repeated: 1) - SHA256: 03e7d8b4be049ac9eaf7c802bd6783ca0214384fa8067d49f3fe8a6f087e1634

                                        (function() {
    var a = window.APP_SHELL_DATA.currentCountryCode;
    "NOR" === a ? a = "NO" : "SWE" === a ? a = "SE" : "DNK" === a && (a = "DK");
    return a
})();
                                    

#27 JavaScript::Eval (size: 83, repeated: 1) - SHA256: 3b0c78fd30cb03bee9e84c11b0ed4bf4c5b6474483ee0dc5b7acc01c7ada47b8

                                        (function() {
    var a = google_tag_manager["GTM-W9RJXK5"].macro(19);
    return a ? "1" : "2"
})();
                                    

#28 JavaScript::Eval (size: 189, repeated: 1) - SHA256: 4b9178fe752f4e65e5e1ae625180e70a25cbc56ceb31d64ff58aa990131ab288

                                        (function() {
    var a = google_tag_manager["GTM-W9RJXK5"].macro(20);
    "undefined" !== typeof google_tag_manager["GTM-W9RJXK5"].macro(21) && (a = google_tag_manager["GTM-W9RJXK5"].macro(22));
    return a
})();
                                    

#29 JavaScript::Eval (size: 64, repeated: 1) - SHA256: 0c0faad0df05f9a072f80c4bbe0a272d3a0170439d792c59f1baac65808c4af3

                                        (function() {
    return document.location.pathname.split("/")[1]
})();
                                    

#30 JavaScript::Eval (size: 23, repeated: 1) - SHA256: 0760792b4e735e7355617de4c55c95cb45c25144f3fdafdd45b7d6a066248eba

                                        window.screen.availLeft
                                    

#31 JavaScript::Eval (size: 15, repeated: 1) - SHA256: de7f7b137340e1d218833d7afef73ea711325f139a4428eed317ca0374f67c91

                                        navigator.oscpu
                                    

#32 JavaScript::Eval (size: 23, repeated: 1) - SHA256: 1a9d9f6f27079dbe69941d2ddb78833abca526aabda35d93bfc77c08005b8ec0

                                        document.defaultCharset
                                    

#33 JavaScript::Eval (size: 21, repeated: 1) - SHA256: b4887f555ad7da62f55c2ae807f3baafc0a421d134751743dd0336954d5a02ac

                                        screen.updateInterval
                                    

#34 JavaScript::Eval (size: 12, repeated: 1) - SHA256: bc1a6bd7f4ddbcd78987ea609d4595bdf2422cb1be9e85af5d6c199f62000d6c

                                        screen.width
                                    

#35 JavaScript::Eval (size: 189, repeated: 1) - SHA256: 93bcfe5512b555ee1609a559c67124425bdb5e85d18eeca3b0c58243aabc0f4c

                                        (function() {
    var a = google_tag_manager["GTM-W9RJXK5"].macro(12);
    "undefined" !== typeof google_tag_manager["GTM-W9RJXK5"].macro(13) && (a = google_tag_manager["GTM-W9RJXK5"].macro(14));
    return a
})();
                                    

#36 JavaScript::Eval (size: 83, repeated: 1) - SHA256: 82b1c35ccc891b39d1ee01ec7bc9a8200d0cd25b11f29c74b1f92fc662810474

                                        (function() {
    var a = google_tag_manager["GTM-W9RJXK5"].macro(36);
    return a ? "1" : "2"
})();
                                    

#37 JavaScript::Eval (size: 189, repeated: 1) - SHA256: d7f1f7283d4bc1f37c4e88aab75218f80be5b61293c274d2f1f5095486c82793

                                        (function() {
    var a = google_tag_manager["GTM-W9RJXK5"].macro(37);
    "undefined" !== typeof google_tag_manager["GTM-W9RJXK5"].macro(38) && (a = google_tag_manager["GTM-W9RJXK5"].macro(39));
    return a
})();
                                    

#38 JavaScript::Eval (size: 17, repeated: 1) - SHA256: 512cd32f64ec1e7adec9996902a58e18dcac185384dcc9280b1d4cff5f71aad0

                                        navigator.appName
                                    

#39 JavaScript::Eval (size: 20, repeated: 1) - SHA256: 6b612f597a0ed972ce30182713c197e510528ac68ff1711b560641d5f47afefa

                                        navigator.productSub
                                    

#40 JavaScript::Eval (size: 18, repeated: 1) - SHA256: addd231a2f2807fb0b4ebdadd2bc23ae2a1cb93a92b07fa6e20ee9af832a8b47

                                        navigator.platform
                                    

#41 JavaScript::Eval (size: 17, repeated: 1) - SHA256: c03ab22471edc55763f012b82b8d32f981b31ca921a55cc4a663b8bd953b96e7

                                        screen.deviceYDPI
                                    

#42 JavaScript::Eval (size: 17, repeated: 1) - SHA256: 0df9a681956d3517ba546fb467fb16450db50fbe22a87f318e12789161f3b78f

                                        (function() {})();
                                    

#43 JavaScript::Eval (size: 46, repeated: 1) - SHA256: 95a811fabacab403d292581c1491b390c21f3c619a9139e1aa4a7e107ebfe10e

                                        (function() {
    return window.CURRENT_VERSION
})();
                                    

#44 JavaScript::Eval (size: 189, repeated: 1) - SHA256: 16e357610d162a8cb08d508d73dac22c7768e2a8db0850e7c9bb82b0c0316497

                                        (function() {
    var a = google_tag_manager["GTM-W9RJXK5"].macro(33);
    "undefined" !== typeof google_tag_manager["GTM-W9RJXK5"].macro(34) && (a = google_tag_manager["GTM-W9RJXK5"].macro(35));
    return a
})();
                                    

Executed Writes (0)



HTTP Transactions (347)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10779
Expires: Wed, 21 Sep 2022 18:18:44 GMT
Date: Wed, 21 Sep 2022 15:19:05 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Retry-After, Content-Type, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 21 Sep 2022 15:13:36 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: DxKV1WgkfKSngHjnZVPeTjY0737FCILT06NzlHM4X4Yf8AcvDm9AMQ==
Age: 329


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    1b3053fa528e28810f8a2cc9284cc921
Sha1:   cca9eb471d941881a6b9a1793aecb6c281908f6a
Sha256: a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.49
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 21 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: aVre-YShD6V9J2QkGRSAfmQJgjDcGukm9bU1zhv73JeAuseQaw9J_Q==
age: 38632
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 21 Sep 2022 15:19:05 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 21 Sep 2022 15:03:22 GMT
Cache-Control: max-age=3600
Expires: Wed, 21 Sep 2022 15:50:33 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: j7sLXhjtDUPa_Z_wzxVAUIkHZv471aQ2zsBNauz-Dp8KeJnL8mHJSw==
Age: 943


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6590
Cache-Control: 'max-age=158059'
Date: Wed, 21 Sep 2022 15:19:05 GMT
Last-Modified: Wed, 21 Sep 2022 13:29:15 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /tds/in.cgi?2&seoref&parameter=$keyword&se=$se&ur=1&http_referer=file://c:usersvirtualappdatalocaltemp57578831583d51d0e132d5b5a843f4237bea2aca16238e8b36ae1df265077c5b.html&default_keyword=notdefine HTTP/1.1 
Host: itsallbreaksoft.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         46.8.8.100
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=utf-8
                                        
Location: http://ww62.itsallbreaksoft.net/
Set-Cookie: sv=1; Domain=itsallbreaksoft.net; Expires=Thu, 21 Sep 2023 15:19:06 GMT; Max-Age=300
Date: Wed, 21 Sep 2022 15:19:06 GMT
Content-Length: 67


--- Additional Info ---
Magic:  HTML document, ASCII text
Size:   67
Md5:    26003bd1e3ed30722ed6cb77a593e120
Sha1:   49475edeb73c5b4a9d9ece811afcd56b17b7a5e6
Sha256: 71feaa5f8da3cfc960cecdf1607806d52f1356ced464ace364745fb7879c2e22
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: S02gG5nPjHwiS3a/URdeOw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         54.148.228.200
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: rp6bh+n5KSbhryGB2GmQ9PikeEE=

                                        
                                            GET / HTTP/1.1 
Host: ww62.itsallbreaksoft.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         75.2.120.224
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 21 Sep 2022 15:19:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Redirect: zeropark_zeroclick
X-Template: tpl_CleanPeppermintBlack_twoclick
X-Language: norwegian
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2182)
Size:   2425
Md5:    18c8fa9a9b1e3fa084dfb130f7d6267a
Sha1:   ea645a81ee71d014def980378bbe34fdffa31e8e
Sha256: 5b6a0df49ffe7a03dc1e22557d802c0eb28cb966884910a0467e664d7782171f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /scripts/js3.js HTTP/1.1 
Host: d38psrni17bvxu.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww62.itsallbreaksoft.net/

                                         
                                         54.230.245.8
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 1134
Connection: keep-alive
Server: nginx
Date: Wed, 21 Sep 2022 09:14:27 GMT
Last-Modified: Tue, 17 Aug 2021 09:17:22 GMT
Accept-Ranges: bytes
ETag: "611b7ea2-46e"
X-Cache: Hit from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: kkvWyhuQ39-hNJ0NB50AZKH3HPZR4PjsazjBmWNUj4BpKMVhJqudjw==
Age: 21879


--- Additional Info ---
Magic:  ASCII text, with very long lines (506)
Size:   1134
Md5:    64b79b43df8fbf2c5d082964b9116a68
Sha1:   dc3c763519baf0f4c32bb60bfc429651a491ea01
Sha256: c57e9feec209e3ea5eb1d75a1ba6fa277242a3df250055be8446052b51e58637
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20521
Expires: Wed, 21 Sep 2022 21:01:08 GMT
Date: Wed, 21 Sep 2022 15:19:07 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20521
Expires: Wed, 21 Sep 2022 21:01:08 GMT
Date: Wed, 21 Sep 2022 15:19:07 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20521
Expires: Wed, 21 Sep 2022 21:01:08 GMT
Date: Wed, 21 Sep 2022 15:19:07 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20521
Expires: Wed, 21 Sep 2022 21:01:08 GMT
Date: Wed, 21 Sep 2022 15:19:07 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20521
Expires: Wed, 21 Sep 2022 21:01:08 GMT
Date: Wed, 21 Sep 2022 15:19:07 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12048
x-amzn-requestid: 59e98571-f927-44b3-b088-29ec1e4cc3bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYxD-FnIIAMF5Eg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63202ee6-14e47d9a3ae47d0f607033a8;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 07:19:02 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 55e0txtcytlUpcNWSLrHWN3FC1t4dMHGTrHGhNV7YFIhOz6c45UcCQ==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 12:43:54 GMT
age: 9313
etag: "37222a70df5d9a69073b4b32ebc3a5da60006001"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12048
Md5:    c2db94039cb675cb250519fe57b2b3c9
Sha1:   37222a70df5d9a69073b4b32ebc3a5da60006001
Sha256: 444f4359ac25747e7c5d7e09202f195d407bc94a4933ac7ebbbaf9839bf59aff
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11832
x-amzn-requestid: 75065a71-5f2d-4987-915b-9bddc772c76a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugI_EsLIAMFdmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09f-1248d25405209da3353d4a4a;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: gLh2EBTPdXvFtZuYKH1NVZebvnz4Rhs-f_rZPtfJpIWNemEk0upeOQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 22:07:08 GMT
age: 61919
etag: "8b91bc3069a3217bc719c27959d578b353b5d9dc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11832
Md5:    2ed7323b395e757f7766ea0045efdaca
Sha1:   8b91bc3069a3217bc719c27959d578b353b5d9dc
Sha256: 8daf8cb1464daa5f72bc4f1049adb4aba00b2c2dec11cb3ade3454ec2ebbfb63
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1874c3ef-e614-4fd9-9d88-b87eac5ea0e6.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9201
x-amzn-requestid: 6dbfae76-f9ab-4f31-9b62-bcf5d9ce4515
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YxzxlEYcoAMFaQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a333d-7d147481402cc46a751b72ed;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:40:13 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JEb0g486u6AjYFbf8rSbreKjh0m1GsAGbvykHl0oahmVN2ciqe5FOw==
via: 1.1 7dcaa43cd0535d889b549e6a30a57aa0.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 22:14:57 GMT
etag: "1eef1ab0099d09d1cf965b6e7b55fe2aa4e18e54"
age: 61450
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9201
Md5:    a692964324dbb9c460a1b855808d02e6
Sha1:   1eef1ab0099d09d1cf965b6e7b55fe2aa4e18e54
Sha256: 3fa9e780d62fffb635064aeed542c8e04923ff943c6080476836fab6c24e2426
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f06ad5e-83fd-449e-b227-1b9d5389e57d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10244
x-amzn-requestid: 71f08b9e-e977-48de-ad60-5192a43db517
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYwBkGqjIAMFz0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63202d3d-0af3334d085ca4a764e31bb5;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 07:11:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: e3MMA-NVstIsR7M9_JGH05i1e8pK17RsjyERrSMlC3uoHsWw_7ABtA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 19:18:32 GMT
age: 72035
etag: "b1cd04a66852694284eeef16a1cde38896e33c03"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10244
Md5:    14e6ddceb639a5f4875aecb796f95c79
Sha1:   b1cd04a66852694284eeef16a1cde38896e33c03
Sha256: 4c0657a00d7fb4caefa64c28340cad94a306cc393cffe692fcc69c65a80f2391
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecaa9082-610c-41c1-ae9a-e453d87828ab.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10038
x-amzn-requestid: 4cf38a70-a706-4e6a-b854-9404727c599d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yxy1mHDCIAMF5-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a31bd-5aba5b0640221b302a19781b;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:33:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NzOpixfxr2pFiDhF5WUGmjD8r2CTn1grSkCEyWvthxRq0djbDKjknA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 22:15:05 GMT
age: 61442
etag: "54ed14436a75ba2aeb8459bad2ce70229aff4203"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10038
Md5:    dab1f2cd68979d2004ba4449d759a341
Sha1:   54ed14436a75ba2aeb8459bad2ce70229aff4203
Sha256: e782fb5ede547e1b167719068c6821c62414dcb0991bf9ac38285cb3ce8894e3
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0be442b0-65b4-4d6f-bdd3-b9f3847359a1.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9227
x-amzn-requestid: 26d977d3-f4d2-4218-a8f4-a56c873e6a26
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YiFzKG2zIAMFoDw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6323e9ad-0bfac6c453e6ea5a311a28a8;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 03:12:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: pHepBEdMttNsKHcCRBHNSilQTcZLBjRGUkwzCvgzXLmiASW9UKo3Mw==
via: 1.1 33d72803ad26b392c1b578a2b1276580.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 05:24:55 GMT
age: 35652
etag: "cb328d0f66f4c2779bc64342ef89735636ae5ded"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9227
Md5:    9556616ca10eb4383b1e15f360fbf6d4
Sha1:   cb328d0f66f4c2779bc64342ef89735636ae5ded
Sha256: 4f945ab342352aea3f4b2242d084d527bb517cf7c6efd0c10a828f0bee9f5d3f
                                        
                                            GET /track.php?domain=itsallbreaksoft.net&toggle=browserjs&uid=MTY2Mzc3MzU0Ni41MTU5OmU2OThjOGExOTg0YjlkYzM4ZjkzZmNlNjZjMWRkZjRkOGIyZDQxYTA2NGQ5MWZjOTE1NmI4NWQwMTUwODU2Y2M6NjMyYjJiNmE3ZGYzNw%3D%3D HTTP/1.1 
Host: ww62.itsallbreaksoft.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww62.itsallbreaksoft.net/

                                         
                                         75.2.120.224
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 21 Sep 2022 15:19:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Custom-Track: browserjs
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Access-Control-Allow-Origin: *
Content-Encoding: gzip

                                        
                                            POST /ls.php HTTP/1.1 
Host: ww62.itsallbreaksoft.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 2134
Origin: http://ww62.itsallbreaksoft.net
Connection: keep-alive
Referer: http://ww62.itsallbreaksoft.net/

                                         
                                         75.2.120.224
HTTP/1.1 201 Created
Content-Type: text/javascript;charset=UTF-8
                                        
Date: Wed, 21 Sep 2022 15:19:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
X-Log-Success: 632b2b6b216a82119e74baa8
Charset: utf-8
Access-Control-Allow-Origin: http://ww62.itsallbreaksoft.net
Access-Control-Allow-Methods: POST, OPTIONS
Access-Control-Max-Age: 86400
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_bN5wsFnU4lu+QHihW6g9sfHErwX7jxf8WJqOpGYaHWYyl0NkzPCcbi++wjis4YAaHdkeJAKqeuECJWZ+cqYFwA==


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: ww62.itsallbreaksoft.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww62.itsallbreaksoft.net/

                                         
                                         75.2.120.224
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Date: Wed, 21 Sep 2022 15:19:07 GMT
Content-Length: 0
Connection: keep-alive
Server: nginx
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
ETag: "5ebab1f0-0"
Accept-Ranges: bytes

                                        
                                            GET /track.php?click=7734c042495d131ef4c95617c4712d5c9f446293&domain=itsallbreaksoft.net&uid=MTY2Mzc3MzU0Ni41MTU5OmU2OThjOGExOTg0YjlkYzM4ZjkzZmNlNjZjMWRkZjRkOGIyZDQxYTA2NGQ5MWZjOTE1NmI4NWQwMTUwODU2Y2M6NjMyYjJiNmE3ZGYzNw%3D%3D&ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTF8fHx8fHw2MzJiMmI2YTdkZjIxfHx8MTY2Mzc3MzU0Ni44NDk1fDgxYjEzN2Q5MjRmNGYyNmJlMTZjYjY1YzVmYWNjNmJlYWIxZTFhYjl8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyYzQ1NTNjNTE4ZGU0NzhhMWM2N2NmMTFjODg1NzdiYTliMjQ2ZThmfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MA%3D%3D&kw=&search=&pcat=&rxid=&bucket=&clientID=&adtest=off HTTP/1.1 
Host: ww62.itsallbreaksoft.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww62.itsallbreaksoft.net/

                                         
                                         75.2.120.224
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 21 Sep 2022 15:19:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-View-Match: true
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Access-Control-Allow-Origin: *
Content-Encoding: gzip

                                        
                                            GET /zcvisitor/bbde1035-39c0-11ed-b7a8-126dca3580f9/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=bbf0fbf5-39c0-11ed-b7a8-126dca3580f9 HTTP/1.1 
Host: balor-ghn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww62.itsallbreaksoft.net/
Upgrade-Insecure-Requests: 1

                                         
                                         34.194.66.161
HTTP/1.1 200
Content-Type: text/html;charset=UTF-8
                                        
Date: Wed, 21 Sep 2022 15:19:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Server: YehsFefw


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   996
Md5:    5e77512544f3deb0ce45e69f402b4625
Sha1:   65f8a33038a031151023b9e8620442b807f720d5
Sha256: ef581479776df94152d2499b347f7db94db940fd304e48f3681a61114573681e
                                        
                                            GET /zcredirect?visitid=bbde1035-39c0-11ed-b7a8-126dca3580f9&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false HTTP/1.1 
Host: balor-ghn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://balor-ghn.com/zcvisitor/bbde1035-39c0-11ed-b7a8-126dca3580f9/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=bbf0fbf5-39c0-11ed-b7a8-126dca3580f9
Upgrade-Insecure-Requests: 1

                                         
                                         34.194.66.161
HTTP/1.1 200
Content-Type: text/html;charset=UTF-8
                                        
Date: Wed, 21 Sep 2022 15:19:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
redirected: JS
Server: PkYFOZRS


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   402
Md5:    af2ca3614bc62fd66ff9c7c3622fbefa
Sha1:   f8d8d4dc56f84c6e1db6038821e141720ed9821c
Sha256: 711ab51d9acab6ceba2f819e1a641557e8999e845c7802b17c725f8f87385413
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: balor-ghn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://balor-ghn.com/zcredirect?visitid=bbde1035-39c0-11ed-b7a8-126dca3580f9&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false

                                         
                                         34.194.66.161
HTTP/1.1 404
Content-Type: text/html;charset=utf-8
                                        
Date: Wed, 21 Sep 2022 15:19:08 GMT
Content-Length: 653
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Content-Language: en
Server: PkYFOZRS


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (649), with no line terminators
Size:   653
Md5:    ba2732b1b2fa2626ffaa15f62f9e7d66
Sha1:   203d4e7fbb1d80449d6e4e1f3ae7a9bf8625debe
Sha256: 879861cb72fe9fbb476dab246021c4c83b4066327de2529e05ec54d3afb0a1c8
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "9BF7641363246C8B768119FD6C958A95F465B17C4F75795D5C867069AA1C76B4"
Last-Modified: Wed, 21 Sep 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7309
Expires: Wed, 21 Sep 2022 17:20:57 GMT
Date: Wed, 21 Sep 2022 15:19:08 GMT
Connection: keep-alive

                                        
                                            GET /postback/click?key=v2-1663773546783-4-8763-1175894-4228e9cb-19dd-a63a-92e5-e07823ac5eb3 HTTP/1.1 
Host: us.pushnow.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://balor-ghn.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         38.100.129.136
HTTP/2 200 OK
content-type: text/html;charset=UTF-8
                                        
server: openresty/1.15.8.3
date: Wed, 21 Sep 2022 15:19:09 GMT
content-length: 2091
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   2091
Md5:    2cbd5b21200d254eb7122fc168c61900
Sha1:   adb72d1f2793ac261a47db0d4ae4d1ec27ea63a1
Sha256: 8d990f21c8ac990e3e48e337bcbfbc52891373b2b1d783aa7a852052d47118e3
                                        
                                            GET /postback/click?key=v2-1663773546783-4-8763-1175894-4228e9cb-19dd-a63a-92e5-e07823ac5eb3&token=a2adcf6fde25c5b50e505f79a11ecc71&timezone=0&iframe_test=false&webdriver_test=false HTTP/1.1 
Host: us.pushnow.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us.pushnow.net/postback/click?key=v2-1663773546783-4-8763-1175894-4228e9cb-19dd-a63a-92e5-e07823ac5eb3
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         38.100.129.136
HTTP/2 302 Found
                                        
server: openresty/1.15.8.3
date: Wed, 21 Sep 2022 15:19:09 GMT
content-length: 0
set-cookie: platform_user_id=desktop:7980a459be274bf511db30c901634a36 platform_user_id_3rd_party=desktop:7980a459be274bf511db30c901634a36; SameSite=None; Secure; Max-Age=31556952
location: http://clkuk.tradedoubler.com/click?p=270160&a=3213260&g=23120180&epi=transaction_id&epi2=1055
X-Firefox-Spdy: h2

                                        
                                            GET /click?p=270160&a=3213260&g=23120180&epi=transaction_id&epi2=1055 HTTP/1.1 
Host: clkuk.tradedoubler.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         35.186.231.97
HTTP/1.1 200 OK
Content-Type: text/html; charset=ISO-8859-1
                                        
Server: TXServerHttp
Access-Control-Allow-Origin: *
Cache-Control: private, max-age=0
Pragma: no-cache
P3P: policyref="http://tracker.tradedoubler.com/w3c/p3p.xml",CP="NOI DSP COR NID CUR OUR NOR"
Referrer-Policy: origin
Date: Wed, 21 Sep 2022 15:19:09 GMT
Content-Length: 902
Via: 1.1 google


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (348)
Size:   902
Md5:    153d04da81210cd532e1ebcb8844be18
Sha1:   3899d7bf53d072d19205e05fe0796666b9fa478b
Sha256: e35066c77e9aacf3d2d73a04160f7e75e28fa50bf2cb05252ed8960e25bf6887
                                        
                                            GET /fp/prefs.js HTTP/1.1 
Host: vht.tradedoubler.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://clkuk.tradedoubler.com/
Connection: keep-alive
Cookie: EH_0=1z11z1zwCz1VybNWz1WKDyZnaHCSYyERroQOOdi_.sRXc8fepqiY%79m7IekN9vlYS8EKO4lg2YZHNAwSD01CD4; GUID=1z11zzwCz1ZQQjZz78829043b4e7cb87d320a6360b76eae7; TradeDoublerGUID=78829043b4e7cb87d320a6360b76eae7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.56
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 3705
Connection: keep-alive
Server: Apache
Strict-Transport-Security: max-age=15552000; includeSubDomains
Last-Modified: Mon, 15 Oct 2018 09:28:46 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Date: Sun, 18 Sep 2022 04:31:37 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: _yz05NIv3ONuk9upQANv_maBNEsPkQsBNEUKK5vH_N7C6okz8cRlSA==
Age: 298078
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Referrer-Policy: strict-origin-when-cross-origin
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  ASCII text, with very long lines (764)
Size:   3705
Md5:    9042aeefa6b50fd89dafd065aee87148
Sha1:   0903b60da6faa7a16b30fe42a0974ae20c0e09bf
Sha256: dcde81d721f2b5f9e932b434eff9f39b07ce0803a772c991296ddd4e9e8e0b30
                                        
                                            POST / HTTP/1.1 
Host: analytics.tradedoubler.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://clkuk.tradedoubler.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 177
Origin: http://clkuk.tradedoubler.com
Connection: keep-alive

                                         
                                         188.165.150.177
HTTP/1.1 301 Moved Permanently
                                        
content-length: 0
location: https://analytics.tradedoubler.com/
connection: close

                                        
                                            POST /click?p=270160&a=3213260&g=23120180&epi=transaction_id&epi2=1055 HTTP/1.1 
Host: clkuk.tradedoubler.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://clkuk.tradedoubler.com/
Content-Type: application/x-www-form-urlencoded
Content-Length: 326
Origin: http://clkuk.tradedoubler.com
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         35.186.231.97
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html; charset=ISO-8859-1
                                        
Location: https://redirects.tradedoubler.com/projectr/?utm_source=tradedoubler_dk*_td_*KEEP_NEWEST&utm_medium=affiliate*_td_*KEEP_NEWEST&utm_campaign=Affnet+Media-+DK*_td_*KEEP_NEWEST&_td_deeplink=https://na-kd.com/dk
Set-Cookie: EH_0=1z11z1zwCz1uE4Pkz1F2eyZkHZJJfyER2un9RqrflmM8WRqEB4gKBopXq_vIg0udeLdJGvU0mrV5IFkmJHT8dxVkTMv7XL%7acaZiaoCcT4.FtPgDCBtO%7aJ6;expires=Thu, 21-Sep-2023 15:19:09 GMT;path=/;domain=.tradedoubler.com GUID=1z11zzwCzxquF3z68f117b349fa2d6d2fafcfbdf0e9d76e;expires=Thu, 21-Sep-2023 15:19:09 GMT;path=/;domain=.tradedoubler.com TradeDoublerGUID=68f117b349fa2d6d2fafcfbdf0e9d76e;expires=Thu, 21-Sep-2023 15:19:09 GMT;path=/;domain=.tradedoubler.com
Server: TXServerHttp
Access-Control-Allow-Origin: *
Cache-Control: private, max-age=0
Pragma: no-cache
P3P: policyref="http://tracker.tradedoubler.com/w3c/p3p.xml",CP="NOI DSP COR NID CUR OUR NOR"
Referrer-Policy: origin
Date: Wed, 21 Sep 2022 15:19:09 GMT
Content-Length: 412
Via: 1.1 google


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (412), with no line terminators
Size:   412
Md5:    f20503b8e6d40a52dff61f3f63abde75
Sha1:   3542d06b9077135a7efc66bb0cc076c14288894e
Sha256: 957c9f7097933b6d781bab83dd6d2e53b292e86fcb7dcc005546b96395b31ec7
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: clkuk.tradedoubler.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://clkuk.tradedoubler.com/
Connection: keep-alive

                                         
                                         35.186.231.97
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=ISO-8859-1
                                        
Date: Wed, 21 Sep 2022 15:19:09 GMT
Content-Length: 193
Via: 1.1 google


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Size:   193
Md5:    523cbcb278f348bbe64563fe4cc9f435
Sha1:   5a436481b66ccb6dff53c5e1a14c08ef0b4a8e4b
Sha256: 37b6ca25983f4126bd10c135684bc8f421c8b48a5bdb75b5ad69c849035a84f4
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.165
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 21 Sep 2022 15:19:09 GMT
Last-Modified: Wed, 21 Sep 2022 14:12:11 GMT
Server: ECS (nyb/1D13)
X-Cache: Miss from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: tZMOb8ub5DMXsgmfibU0smzX-aYtThxXtELySiLw-anhhGuJKAIvcQ==
Age: 4018

                                        
                                            GET /projectr/?utm_source=tradedoubler_dk*_td_*KEEP_NEWEST&utm_medium=affiliate*_td_*KEEP_NEWEST&utm_campaign=Affnet+Media-+DK*_td_*KEEP_NEWEST&_td_deeplink=https://na-kd.com/dk HTTP/1.1 
Host: redirects.tradedoubler.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://clkuk.tradedoubler.com/
Connection: keep-alive
Cookie: EH_0=1z11z1zwCz1uE4Pkz1F2eyZkHZJJfyER2un9RqrflmM8WRqEB4gKBopXq_vIg0udeLdJGvU0mrV5IFkmJHT8dxVkTMv7XL%7acaZiaoCcT4.FtPgDCBtO%7aJ6; GUID=1z11zzwCzxquF3z68f117b349fa2d6d2fafcfbdf0e9d76e; TradeDoublerGUID=68f117b349fa2d6d2fafcfbdf0e9d76e
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         34.254.127.97
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Cache-control: no-cache="set-cookie"
Date: Wed, 21 Sep 2022 15:19:09 GMT
Location: https://na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Server: Apache/2.4.53 () OpenSSL/1.0.2k-fips
Set-Cookie: AWSELB=FF1BFB8F1C42D3E6A4BF4A0B044EDED4042A192C92448B5DC41B6DF8F1BB665B74D1DBC44C6D7EBC787BD0F6BE79D5AC5A5888F948C1BA03E231E71D15DBA2CF9A7C59ACA2;PATH=/;MAX-AGE=30 AWSELBCORS=FF1BFB8F1C42D3E6A4BF4A0B044EDED4042A192C92448B5DC41B6DF8F1BB665B74D1DBC44C6D7EBC787BD0F6BE79D5AC5A5888F948C1BA03E231E71D15DBA2CF9A7C59ACA2;PATH=/;MAX-AGE=30;SECURE;SAMESITE=None
X-Powered-By: PHP/7.3.33
Content-Length: 1
Connection: keep-alive


--- Additional Info ---
Magic:  very short file (no magic)
Size:   1
Md5:    7215ee9c7d9dc229d2921a40e899ec5f
Sha1:   b858cb282617fb0956d960215c8e84d1ccf909c6
Sha256: 36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068
                                        
                                            GET / HTTP/1.1 
Host: analytics.tradedoubler.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://clkuk.tradedoubler.com/
Connection: keep-alive
Cookie: EH_0=1z11z1zwCz1VybNWz1WKDyZnaHCSYyERroQOOdi_.sRXc8fepqiY%79m7IekN9vlYS8EKO4lg2YZHNAwSD01CD4; GUID=1z11zzwCz1ZQQjZz78829043b4e7cb87d320a6360b76eae7; TradeDoublerGUID=78829043b4e7cb87d320a6360b76eae7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         188.165.150.177
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
server: nginx
date: Wed, 21 Sep 2022 15:19:09 GMT
vary: Accept-Encoding
x-via-popn: primary
content-encoding: gzip
x-via-poph: primary
X-Firefox-Spdy: h2

                                        
                                            GET /dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK HTTP/1.1 
Host: na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://clkuk.tradedoubler.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         217.114.94.2
HTTP/2 301 Moved Permanently
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
content-length: 0
location: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
vary: Accept-Encoding
server: cloudflare
cf-ray: 74e3c70fce540b3d-OSL
X-Firefox-Spdy: h2

                                        
                                            GET /siteassets/startfeed/2021/css/animation-js.js?ref=52EA2C835C HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
content-length: 451
cache-control: public, max-age=12966080
content-encoding: gzip
expires: Sat, 18 Feb 2023 17:00:30 GMT
last-modified: Mon, 28 Dec 2020 14:40:33 GMT
etag: "1D6DD27657A8680"
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
x-actual-url: /siteassets/startfeed/2021/css/animation-js.js?ref=52EA2C835C
x-server-version: 55.1538.7285
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
access-control-allow-origin: *
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
cf-cache-status: HIT
age: 9217819
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c7112ceab509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   451
Md5:    26673ffdc29827c26fe79288fde7b152
Sha1:   d7e081c0f6e66f6b778d0092e5474364a1f80abd
Sha256: f575c49413c132d61a0dafc0515994a97c4f6d60213e6d8c13cdfa339643cbd6
                                        
                                            GET /siteassets/startfeed/js/sf_mp4_player.js?ref=51B2CDB86C HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
content-length: 612
cache-control: public, max-age=11549483
content-encoding: gzip
expires: Thu, 02 Feb 2023 07:30:33 GMT
last-modified: Tue, 01 Feb 2022 08:27:57 GMT
etag: "1D817459D7FA480"
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
x-actual-url: /siteassets/startfeed/js/sf_mp4_player.js?ref=51B2CDB86C
x-server-version: 54.1521.7236
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
access-control-allow-origin: *
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
cf-cache-status: HIT
age: 9220219
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c7113cf4b509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   612
Md5:    ae5a7d3a90f98b1ea28e941cbdc14180
Sha1:   0d36604c8822c6b77003f4c259d1fd62235e8520
Sha256: ad052b7d6743e056cb646fc8fd7f102aff37b3fb80ce27fb18755d0e89e29a8a
                                        
                                            GET /siteassets/banners/2022/august/klarna/responsive.css?ref=4C0A6031AF HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
content-length: 766
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
cache-control: public, max-age=27719414
content-encoding: gzip
etag: "1D8AB0C06D4DB80"
expires: Tue, 08 Aug 2023 11:09:24 GMT
last-modified: Mon, 08 Aug 2022 09:48:35 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
x-actual-url: /siteassets/banners/2022/august/klarna/responsive.css?ref=4C0A6031AF
x-server-version: 75.1694.7818
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 3812188
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c7113cf5b509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   766
Md5:    52f2835ad9bab5e560548b5998c35510
Sha1:   18ca1ce321239b169a7054500f779d8e9fc85371
Sha256: afcadaf652323659e40eb093b02326e46e74ed5819ae2c661507ce4591026cbf
                                        
                                            GET /siteassets/startfeed/2022/september/20.09/responsive-update.min.css?ref=7321384DC9 HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
content-length: 2190
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
cache-control: public, max-age=31431158
content-encoding: gzip
etag: "1D8CCD848929D80"
expires: Wed, 20 Sep 2023 10:11:48 GMT
last-modified: Tue, 20 Sep 2022 10:03:51 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
x-actual-url: %2fsiteassets%2fstartfeed%2f2022%2fseptember%2f20.09%2fresponsive-update.min.css%3fref%3d7321384DC9
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 89324
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c7112ce8b509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11531), with no line terminators
Size:   2190
Md5:    55981f3aa5ad64c80504811f0d823101
Sha1:   8a037ab037d8b9958058fd1efab8e51bf6e8d0a5
Sha256: 98b3deb06dc64c21f65e13222d789f10ed30eeed828d43797861fb0a0fa8f05a
                                        
                                            GET /siteassets/banners/2022/september/mfw-and-cargo/responsive.min.css?ref=F1D3689938 HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
content-length: 3820
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
cache-control: public, max-age=31249457
content-encoding: gzip
etag: "1D8CB32527A9C00"
expires: Mon, 18 Sep 2023 07:43:27 GMT
last-modified: Sun, 18 Sep 2022 07:43:20 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
x-actual-url: %2fsiteassets%2fbanners%2f2022%2fseptember%2fmfw-and-cargo%2fresponsive.min.css%3fref%3dF1D3689938
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 286469
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c7113cf6b509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18015), with no line terminators
Size:   3820
Md5:    69861932ac5a453f25d3cd5051ed4085
Sha1:   5e441369ed8c51dcd8c512359f3d8282e346d2d3
Sha256: 02a36ff25eb9d29e8225c3a456e4a3afb4240ce3ba1809268d21c7a775ad0727
                                        
                                            GET /assets/104.chunk.23792466481c01ccd42e.css HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
content-length: 9108
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
x-actual-url: %2fassets%2f104.chunk.23792466481c01ccd42e.css
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638504
cache-control: public, max-age=2407135250
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c7113d00b509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (45181), with CRLF, LF line terminators
Size:   9108
Md5:    e3b3e5f8f6824ced12d3646485789889
Sha1:   78acb3e9eba429a2f86d847eb8262863e08dae9e
Sha256: db5a74da3f5c6875bf98fb70b300531c479aecc041988b821b6927df230c8d27
                                        
                                            GET /assets/browser.bundle.1d6d47760614a03699b9.css HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
content-length: 1989
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
x-actual-url: %2fassets%2fbrowser.bundle.1d6d47760614a03699b9.css
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638517
cache-control: public, max-age=2407135250
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c7113cfeb509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4772)
Size:   1989
Md5:    dc5b613ea786d6d692529655d28fd05e
Sha1:   7070e2c7666630c1dea162270debaee9d07143bd
Sha256: a52e6e8bd7422ac415b4ea8cc26945b3bf447af6403c70bb84de8a0346309a4a
                                        
                                            GET /assets/116.chunk.6aee581f77c8b28b93df.css HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
content-length: 303
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
x-actual-url: %2fassets%2f116.chunk.6aee581f77c8b28b93df.css
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638517
cache-control: public, max-age=2407135250
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c7113d01b509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   303
Md5:    19be7358f1088eb86bbddc1a2376a04e
Sha1:   83ac191681c10d4a6dc12da81d92b5bd2a7d9840
Sha256: b22b39828d7bf1fc2b39a0489c782061a8a1460bd708816731e443b8a1111b33
                                        
                                            GET /assets/139.chunk.b34d7948fcce67de3d78.css HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
content-length: 230
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
x-actual-url: %2fassets%2f139.chunk.b34d7948fcce67de3d78.css
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638517
cache-control: public, max-age=2407135250
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c7113d06b509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (357)
Size:   230
Md5:    ddac6e4a8ce70cf39767db93f19131b7
Sha1:   123fb27e30420a4cb440c828927be1d34eccde3b
Sha256: 4814a370f4b9b2052e2ebbbcd912af105f7724bb9fa324437bc0157f8642527f
                                        
                                            GET /pyf7mlb.css HTTP/1.1 
Host: use.typekit.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.186
HTTP/2 200 OK
content-type: text/css;charset=utf-8
                                        
server: nginx
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 897
date: Wed, 21 Sep 2022 15:19:10 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (516)
Size:   897
Md5:    65cafed1283b8cca4b1fe50d21ae408a
Sha1:   9ee1f44f75f137e945c5f4ed046e3d27956db07a
Sha256: 960e0a1335530ec4aae5325f94796ad517968cc02b9291dbab603157c3637818
                                        
                                            GET /assets/browser.bundle.ee586680dc0c54115f76.js HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2fbrowser.bundle.ee586680dc0c54115f76.js
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638504
cache-control: public, max-age=2407135250
server: cloudflare
cf-ray: 74e3c7113d08b509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   429281
Md5:    a04705045a0280e2daca910544bf393c
Sha1:   2f540ca06e3522e851a0348f239c2989953cd8cc
Sha256: bf146bef54ddd9cb0ef83f71b068136e4a32de5b18879af723fe58ef2da1b62e
                                        
                                            GET /browser-ui/latest/loader.js HTTP/1.1 
Host: app.usercentrics.eu
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         35.190.14.188
HTTP/2 200 OK
content-type: application/javascript
                                        
x-guploader-uploadid: ADPycduHs_n5s2h_jGr-yoL8mdbiO_hTxylF7uJWyVEg6siR_icqxOfanwQdAHl2520KWp_MIOS6KXehKn6l1lSUpjrwAg
x-goog-generation: 1663060518203216
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 20266
content-encoding: gzip
x-goog-hash: crc32c=wZXJ6A==, md5=31SG+cZD4khLySnra/pPsg==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 20266
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Transfer-Encoding
server: UploadServer
date: Wed, 21 Sep 2022 14:39:08 GMT
expires: Wed, 21 Sep 2022 15:39:08 GMT
cache-control: public, max-age=3600, no-transform
age: 2402
last-modified: Tue, 13 Sep 2022 09:15:18 GMT
etag: "df5486f9c643e2484bc929eb6bfa4fb2"
strict-transport-security: max-age=7776000
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (60846)
Size:   20266
Md5:    df5486f9c643e2484bc929eb6bfa4fb2
Sha1:   515c5199080490722382c7a274218c5d774ff29d
Sha256: 1fa3a7151c9e6e0b6d8dedfdc7f2f235b01194e805b6bb75d757f4b8c3be1a53
                                        
                                            GET /assets/vendor.chunk.26bfb09423203e3b2c39.js HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2fvendor.chunk.26bfb09423203e3b2c39.js
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638522
cache-control: public, max-age=2407135250
server: cloudflare
cf-ray: 74e3c7113d0ab509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   105116
Md5:    cf73873a55add4dbdf7361f04a571780
Sha1:   678c1eacb3a85844be7ff44d14a1695ded611a41
Sha256: 4bbfd47228324a5ecceebde41c08dc58a282ff10a367796bfec31a1e6f2fa301
                                        
                                            POST /s/gts1d4/tkhg_zkCU7U HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 15:19:10 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 15:19:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /gtm.js?id=GTM-W9RJXK5 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 21 Sep 2022 15:19:10 GMT
expires: Wed, 21 Sep 2022 15:19:10 GMT
cache-control: private, max-age=900
last-modified: Wed, 21 Sep 2022 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 114379
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (56527)
Size:   114379
Md5:    f96cacfb6c5f5cce957e58aa5f95ea0c
Sha1:   3ac995153cd5790bc4da1ba71309c70ec674e59c
Sha256: bcce75748d86d0ef4a9fa505b4bd2e93306e106f9e02812af651be73b1599784
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 15:19:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /favicons/na-kd/favicon-512x512.png?ref=2 HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: image/webp
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
content-length: 2548
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
arr-disable-session-affinity: true
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=13523
content-disposition: inline; filename="favicon-512x512.webp"
etag: "0f4d7423db1d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 16 Aug 2022 06:56:08 GMT
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept
x-actual-url: /favicons/na-kd/favicon-512x512.png?ref=2
x-frame-options: SAMEORIGIN
x-server-version: 80.1721.7924
cf-cache-status: HIT
age: 2488891
cache-control: public, max-age=2407135250
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c7131846b509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   2548
Md5:    69600b1c38fd8ffaef6464cd392e1382
Sha1:   4bb6b99bef74d0ec9fcbc13f6ee7e7b53ba13228
Sha256: d7f1a33336c091ac710750c96f6ffd5643cb822a2682405aed822c6030b3b5a5
                                        
                                            GET /favicons/na-kd/favicon-16x16.png?ref=2 HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: image/webp
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
content-length: 162
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
arr-disable-session-affinity: true
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=370
content-disposition: inline; filename="favicon-16x16.webp"
etag: "0a1a1e9209cd81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Wed, 20 Jul 2022 10:10:18 GMT
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept
x-actual-url: /favicons/na-kd/favicon-16x16.png?ref=2
x-frame-options: SAMEORIGIN
x-server-version: 75.1694.7818
cf-cache-status: HIT
age: 1116587
cache-control: public, max-age=2407135250
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c7131848b509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   162
Md5:    c0c9396b7d77dfd680f5c7d698ab2f4f
Sha1:   5c6d840d7a0cdfb09d1f9b6bec69b015bae4a5f9
Sha256: 585d04ec33a569ee7a728bb0765cf47fb9eb8ccc7505e29c1ed49e8e7d189029
                                        
                                            GET /assets/0.chunk.c13065d8e0b90fcf37d4.js HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
content-length: 619
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f0.chunk.c13065d8e0b90fcf37d4.js
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638503
cache-control: public, max-age=2407135250
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c71368b8b509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (938), with no line terminators
Size:   619
Md5:    a536d6879b51c71e52df745dc6ad3b42
Sha1:   fec6c22681ffa3ad4ed6c2e5ef1325b094c41a6e
Sha256: b9ea597ea4466038ae1193bc4c4e88aa1cb79f0e6f5f92a46b35c34da469ba53
                                        
                                            GET /assets/18.chunk.dcbff74b55aaf6388726.js HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
content-length: 1103
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f18.chunk.dcbff74b55aaf6388726.js
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638503
cache-control: public, max-age=2407135250
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c71368c8b509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2240), with no line terminators
Size:   1103
Md5:    a07d2a741353d5b0a1daf8bdc41074a3
Sha1:   d0f743cb1e9e0b6d4f5dc7d0fcca54326c9520e5
Sha256: 566e4c392e8dd8f70e900842c357555493a41c873772fc9ba1f958941fadd58f
                                        
                                            GET /assets/260.chunk.096fecf9b21412dc98fd.js HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
content-length: 2234
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f260.chunk.096fecf9b21412dc98fd.js
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638503
cache-control: public, max-age=2407135250
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c71378d2b509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4672), with no line terminators
Size:   2234
Md5:    37d32ab4fee819301cf2a86c191ca661
Sha1:   4150a55adddb3a18a5441a1b893f0829fce28309
Sha256: 379565ad446149ea2e3316efd12ca9e32abea0bd8c7eb16c5899b78422b5a4d0
                                        
                                            GET /assets/1.chunk.56f515180e9dbc7eac27.js HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
content-length: 3844
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f1.chunk.56f515180e9dbc7eac27.js
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638503
cache-control: public, max-age=2407135250
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c71368c3b509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (8836), with no line terminators
Size:   3844
Md5:    ed582b2c88f67a2995f08b6404a97f6f
Sha1:   38be84d9673c799e8811b1ef1cfbefdb39030acb
Sha256: 53b2d00607666115ef42bef6502914a984bc80bde58fd9a505d87176feb15c16
                                        
                                            GET /assets/66.chunk.913983ee83f612ebb1f5.js HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
content-length: 1955
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f66.chunk.913983ee83f612ebb1f5.js
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638503
cache-control: public, max-age=2407135250
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c71378dbb509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4113), with no line terminators
Size:   1955
Md5:    e153444443e68bcd340e7a41b97ba71e
Sha1:   8292b16a0ac37d2be1170daed42086345c1e2855
Sha256: 8384302c283a54a22ebbd7ceec2e71b4575cc427c6730cdc862d3cb012a8b47e
                                        
                                            GET /assets/270.chunk.555b58750656f304988a.js HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
content-length: 526
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f270.chunk.555b58750656f304988a.js
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638501
cache-control: public, max-age=2407135250
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c71378dcb509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (579), with no line terminators
Size:   526
Md5:    62738449b806a3378d7f3acf11fdd32c
Sha1:   61b0d1fd09548e070c726f01ce45f6824c85a3a2
Sha256: 7f9a90d819ff108aa9330292d27f44facb889a7c6763a1a5f3c0d162ec3374c7
                                        
                                            GET /assets/34.chunk.31e5fc99d06479eaca4d.js HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
content-length: 733
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f34.chunk.31e5fc99d06479eaca4d.js
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638503
cache-control: public, max-age=2407135250
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c71378dab509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1085), with no line terminators
Size:   733
Md5:    a9ef780f7376d9a8ca6cb55aa5665690
Sha1:   caea1f50b6079057103693715acf08a8aac56d05
Sha256: 64010fec62432cad87cf92d065bdb129c197428bbd035c9ad58c9dd760abcc3b
                                        
                                            GET /assets/60.chunk.897b31bfe606c8c4d52c.js HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
content-length: 1619
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f60.chunk.897b31bfe606c8c4d52c.js
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638503
cache-control: public, max-age=2407135250
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c71388eab509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3602), with no line terminators
Size:   1619
Md5:    70e19a9be35f065167dc5553cdcb467e
Sha1:   cc3021e99a6707ac5ee7ad852006efab99920bc3
Sha256: 7c383db4e66da198e3d5557c09eb5d58ffe4eb2f9e04e1e42f6d651955d3bf36
                                        
                                            GET /siteassets/startfeed/css/sf-styles-0107-2022.css?ref=D0D131D3A6 HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
cache-control: public, max-age=24595884
content-encoding: gzip
etag: "1D88D2127E22980"
expires: Mon, 03 Jul 2023 07:30:34 GMT
last-modified: Fri, 01 Jul 2022 08:04:15 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-actual-url: /siteassets/startfeed/css/sf-styles-0107-2022.css?ref=D0D131D3A6
x-server-version: 72.1672.7730
arr-disable-session-affinity: true
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 6940114
server: cloudflare
cf-ray: 74e3c7112ce3b509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text
Size:   11467
Md5:    08cfeae86436cf5017457d3f486a0174
Sha1:   fd69872ed732fc218630314b5ee9277970a743f8
Sha256: c27804b7c49813109b29c30addc9580129daa58abde1b273e502e3a7edcdea03
                                        
                                            GET /assets/255.chunk.b5df95096c6aa738c962.js HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
content-length: 716
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f255.chunk.b5df95096c6aa738c962.js
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638503
cache-control: public, max-age=2407135250
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c71388f6b509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1021), with no line terminators
Size:   716
Md5:    ee0b19a668f3873f7ad089c62cf32001
Sha1:   cf8d1125d8bb35df2108be54c62a81e1b2a211db
Sha256: de69aa69efe233e6dea62a49fe3edae870b481a2ce21f4bc94f5794e8ed06a83
                                        
                                            GET /assets/61.chunk.f6fd4f6f563818eacf1a.js HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
content-length: 234
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f61.chunk.f6fd4f6f563818eacf1a.js
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638503
cache-control: public, max-age=2407135250
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c71388f3b509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   234
Md5:    b2ee50fcf5a36da4e073dd8276d347ec
Sha1:   34bece19439930d7f8cab63b12aaad6a495110a5
Sha256: 98093a58cb30fe9598b6351aaf6d9ae4aa6e5974b1f6e6caef1621fc5d16a3f2
                                        
                                            POST /s/gts1d4/Q8kpYatjYYI HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 15:19:10 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /s/gts1d4/Q8kpYatjYYI HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 15:19:10 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://clkuk.tradedoubler.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
expires: -1
pragma: no-cache
set-cookie: Culture=da-DK; expires=Mon, 21-Sep-2037 15:19:10 GMT; path=/; secure; SameSite=None .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; expires=Wed, 30-Nov-2022 01:59:10 GMT; path=/; secure; HttpOnly; SameSite=None EPi:StateMarker=true; path=/ OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; expires=Thu, 21-Sep-2023 15:19:10 GMT; path=/; SameSite=Lax CountryCode=DNK; expires=Mon, 21-Sep-2037 15:19:10 GMT; path=/; secure; SameSite=None __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; path=/; secure; HttpOnly; SameSite=None
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
x-actual-url: %2fdk%3futm_source%3dtradedoubler_dk%26utm_medium%3daffiliate%26utm_campaign%3dAffnet%2bMedia-%2bDK
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74e3c7103b6eb509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   50406
Md5:    a1db7ac320da3be086e5c4e1f19a8827
Sha1:   77b135e411740a97aba6c3995ce93fe7637f9a12
Sha256: 025d15093828b8e3388c364e48fd4d58e7c28d2072ebe3c513077c80a7f02b90
                                        
                                            GET /scevent.min.js HTTP/1.1 
Host: sc-static.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.82.240
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
content-length: 7961
server: CloudFront
date: Wed, 21 Sep 2022 15:19:10 GMT
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Content-Type
cache-control: private, s-maxage=0, max-age=600
set-cookie: X-AB=0d6e407936704bd380072f5891d28b0e;max-age=86400;expires=Thu, 22 Sep 2022 14:19:41 GMT;Path=/scevent.min.js; Secure; SameSite=None
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ysv5AlP-gDv9nLEezIDUkcgBuS-K5XGpC8UXiem1YxPvCH5I3sGBYA==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (23033), with no line terminators
Size:   7961
Md5:    0f16280f78683c4dcb392b7df7a5ddc0
Sha1:   379551a0ea6b3b2d1ecbf40be1b15fc575dfc00c
Sha256: 6866325a547f2dbee73e122e987dba0e1a0277769d6e9525a3765a7100d041e7
                                        
                                            OPTIONS /settings/Jq_Vycyzq/latest/dps-da.json HTTP/1.1 
Host: api.usercentrics.eu
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.na-kd.com/
Origin: https://www.na-kd.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         35.241.3.184
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
x-guploader-uploadid: ADPycdsnZAFKoJYSxHWQmA4d9PTy_C0ziwxfmD6xE80nrxZACuHcN3SpuUtHgQCA0g8EZWIdwsuHbHaGw6ZwaXcS5OS66LCkP18b
access-control-allow-origin: *
access-control-max-age: 3600
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE
access-control-allow-headers: content-type
date: Wed, 21 Sep 2022 15:19:10 GMT
expires: Wed, 21 Sep 2022 15:19:10 GMT
cache-control: private, max-age=0
content-length: 0
server: UploadServer
strict-transport-security: max-age=7776000
x-client-geo-location: NO,NO03
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

                                        
                                            GET /settings/Jq_Vycyzq/latest/dps-da.json HTTP/1.1 
Host: api.usercentrics.eu
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.na-kd.com/
content-type: application/json
Origin: https://www.na-kd.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         35.241.3.184
HTTP/2 403 Forbidden
content-type: application/xml; charset=UTF-8
                                        
x-guploader-uploadid: ADPycdtMXcNd1aDgZbXBnVSa2zDdRb63PFUlFGAfTkpzN4nMXzUwazz2d7wrLn5bMAPMoUw1vJ45jaK_VP-4WZE9vQ6Sdw
content-length: 111
access-control-allow-origin: *
access-control-expose-headers: *, Cache-Control, Content-Length, Date, Expires, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
date: Wed, 21 Sep 2022 15:19:10 GMT
expires: Wed, 21 Sep 2022 15:19:10 GMT
cache-control: private, max-age=0
server: UploadServer
strict-transport-security: max-age=7776000
x-client-geo-location: NO,NO03
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  XML 1.0 document text\012- XML document, ASCII text, with no line terminators
Size:   111
Md5:    e7a9350210b4dba641f6020447c96045
Sha1:   581accef4a8b7fbed97291fe7dd4e113f794ec80
Sha256: 08142330655deb1526dcc56795c92eb5c13012f75b599d5ac68db4027953ed80
                                        
                                            POST /s/gts1d4/Q8kpYatjYYI HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 15:19:10 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /appshell/template?cacheBust=0.20683460534706377 HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.na-kd.com/assets/serviceworker.bundle.js
Connection: keep-alive
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
content-length: 4634
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
expires: -1
pragma: no-cache
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
x-currentlanguage: da-DK
x-languageurlprefixes: {"en-US":"en","de-DE":"de","pl-PL":"pl","fr-FR":"fr","sv-SE":"sv","nl-NL":"nl","da-DK":"dk","nb-NO":"no","fi-FI":"fi","es-ES":"es","it-IT":"it","pt-PT":"pt"}
x-actual-url: %2fappshell%2ftemplate%3fcacheBust%3d0.20683460534706377
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74e3c7148a8fb509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (985), with CRLF, LF line terminators
Size:   4634
Md5:    1273d44a1b7baff011289fa7dced71a0
Sha1:   b041976d47eafa585e393eb2d17fbf3f46862a99
Sha256: daeb3020373089536e851c7dd9c57cf0a0368aec449218ee9110ae6aaaea1a3c
                                        
                                            GET /datafiles/67F5vTbrSZcuFkAdYZMZ7.json HTTP/1.1 
Host: cdn.optimizely.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.na-kd.com
Connection: keep-alive
Referer: https://www.na-kd.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         23.38.200.155
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
x-amz-id-2: iXTgnSMeesias+Y1rJJCaK10DO+2Ix7S5AeNeqIDDaLStTxv2Vroh8IgLuQcWipyG5JRi+rMswo=
x-amz-request-id: CZPXF7Y422TB12F2
access-control-expose-headers: Access-Control-Allow-Origin, Content-Length
x-amz-replication-status: COMPLETED
last-modified: Wed, 21 Sep 2022 14:48:09 GMT
etag: "9251fa9fdadc2ff9385e9410c0ec0f49"
x-amz-server-side-encryption: AES256
x-amz-meta-revision: 6235
x-amz-meta-pci_enabled: False
content-encoding: gzip
x-amz-version-id: gVveX5D.kC_n.kEcSiuXl4eKnDkSv0Lu
accept-ranges: bytes
server: AmazonS3
content-length: 9460
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
cache-control: max-age=118
date: Wed, 21 Sep 2022 15:19:10 GMT
server-timing: cdn;desc="AkamaiION";dur=0,rtt;desc="1";dur=0,cdnip;desc="23.38.200.155";dur=0,cdnmap;desc="a5048.dsca.akamaiedge.net";dur=0,proto;desc="h2";dur=0
access-control-max-age: 604800
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-origin: *
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size:   9460
Md5:    9251fa9fdadc2ff9385e9410c0ec0f49
Sha1:   52da7bbfcdf2b9a0447f81f338633a37ce5b0876
Sha256: 7b058969df76f66db4f2bfb6f631072970f64b078e9a3e4a55133be2ddea8429
                                        
                                            GET /images/flags/DNK.png?ref=1 HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 301 Moved Permanently
content-type: text/html; charset=utf-8
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
content-length: 169
location: https://www.na-kd.com:443/images/flags/dnk.png?ref=1
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
cache-control: public, max-age=14400
expires: Wed, 21 Sep 2022 19:19:10 GMT
x-actual-url: %2fimages%2fflags%2fDNK.png%3fref%3d1
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
x-frame-options: SAMEORIGIN
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 74e3c7151bb4b509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   169
Md5:    cc771508db836f63334de090cc9eab11
Sha1:   e7a5f1625fba351e126cb111d43affd9f326eee7
Sha256: 9e870335b36c3e57b95bd9e8e83291a95109fc2a5024a8b12377ed40ecbf34fa
                                        
                                            GET /resize/siteassets/dropdown/2022/09-september/dropdown-c-dk.jpg?ref=61508F1456&width=1280 HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: image/webp
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
content-length: 52846
cf-ray: 74e3c7156c59b509-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: "cfS5a90c3rwKhz-lqfNtqUtw:1D8C84292940300"
last-modified: Wed, 14 Sep 2022 14:02:06 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=101 c=96 v=2022.9.3 l=52846
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 757x399, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   52846
Md5:    c6e025fa836b99d38a2220527f390739
Sha1:   a08cbc5052991c2a6228590b28c58224b1c6f085
Sha256: c845c5c9f2b08ffe2514f1b22dd1196f77bccaceea6dbc14793c46a030c2c9ab
                                        
                                            GET /resize/siteassets/dropdown/2022/09-september/dropdown-d-dk.jpg?ref=E326339DDC&width=1280 HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: image/webp
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
content-length: 55070
cf-ray: 74e3c7157c5eb509-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: "cfA5S44mLPvvjQtIZhRUdqZA:1D8C841CE7A9880"
last-modified: Wed, 14 Sep 2022 13:56:37 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=467 c=53 v=2022.9.3 l=55070
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 757x399, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   55070
Md5:    ea224fcbbcb97b9d90420b7c4a06dda2
Sha1:   ce5b85c6a09eb9c27f8358a753c50b525fb9662e
Sha256: e4dd7195de17f13d007b2d4a2b8b9f6e56cb68ae52ded4741d5434ddbe520a8d
                                        
                                            GET /resize/siteassets/dropdown/2022/09-september/dropdown-b-dk.jpg?ref=4670A45FB1&width=1280 HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: image/webp
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
content-length: 36484
cf-ray: 74e3c7156c58b509-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: "cfQDTV2i3oTBR-nSW9KLVCmA:1D8C843F8CD5580"
last-modified: Wed, 14 Sep 2022 14:12:07 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=79 c=91 v=2022.9.3 l=36484
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 757x399, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   36484
Md5:    ceeb8fe6665a7b567b85115bbfd5c359
Sha1:   ea6c99eb60a2c28b352b6e2f36125fc8a1b86114
Sha256: 1eb89e5b37e6d60e41c20178e3fd33c1db6b83ac4aba6e8ca4ee36148165c8ab
                                        
                                            GET /resize/siteassets/banners/2019/klarna-logo.png?ref=92607447BD&width=1280 HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: image/webp
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
content-length: 1784
cf-ray: 74e3c7157c6ab509-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=31498995
etag: "cf1MZovrh0T2HJtj5WFkvx2w:1D551B973267F00"
last-modified: Tue, 13 Aug 2019 09:28:22 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:100,h2pri
cf-resized: internal=ok/h q=0 n=21 c=5 v=2022.2.2 l=1784
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   1784
Md5:    761d9761ff7c7bff75ace980d48b7f65
Sha1:   2b47654e552f99968b57465663ed9f067204203d
Sha256: c1307ae064c91e07b9f550a50e1a29c8f2b7e603a96413f91d6cea3dfcfe9711
                                        
                                            GET /contentassets/08c254bb930a44a882cf78b2bdb38274/co2-2.svg?ref=94AC7B71F5&width=1280 HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
cache-control: public, max-age=14400
etag: W/"1D593EC99407180"
expires: Wed, 21 Sep 2022 19:19:10 GMT
last-modified: Tue, 05 Nov 2019 15:20:47 GMT
strict-transport-security: max-age=3600; includeSubDomains
x-actual-url: %2fcontentassets%2f08c254bb930a44a882cf78b2bdb38274%2fco2-2.svg%3fref%3d94AC7B71F5%26width%3d1280
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 40303
vary: Accept-Encoding
server: cloudflare
cf-ray: 74e3c7154c0ab509-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   94791
Md5:    29fb289e30ebc5e08e64865a36e47276
Sha1:   5c911d1e854f1a887e81961c68a2f2feeba57587
Sha256: f6acf9e1106ddb49ed59c25545882deeeb1822fbc02d7b8baa54c730b59f1352
                                        
                                            GET /resize/siteassets/banners/2022/september/mfw-and-cargo/bg-banner-desktop.jpg?ref=0CA067B938&width=1280 HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: image/webp
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
content-length: 1540
cf-ray: 74e3c7159ca0b509-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: "cfCq51v7IXhoPSr1oOPMhyKw:1D8C9ACA78CA580"
last-modified: Fri, 16 Sep 2022 09:13:59 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=84 c=42 v=2022.9.5 l=1540
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x84, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   1540
Md5:    8b299db1f603e9e82465aa0b4e6f7e62
Sha1:   7ce97bfad54a2b57124d2906e726742e25bfdbd9
Sha256: a6e8f72c52c55c9358d49bf30bb40c8199701e85e0fff9563c07007076fd7c6c
                                        
                                            GET /resize/siteassets/banners/2022/september/mfw-and-cargo/bg-banner2-mobile.jpg?ref=9FDB34EDF6&width=1280 HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: image/webp
                                        
date: Wed, 21 Sep 2022 15:19:10 GMT
content-length: 502
cf-ray: 74e3c715aca7b509-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: "cfDIEIEcVt2HugFoPolK8I1g:1D8C9ACA196C480"
last-modified: Fri, 16 Sep 2022 09:13:49 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=83 c=17 v=2022.9.5 l=502
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 1125x164, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   502
Md5:    d9987337f7dea7951a33dbb362a9433e
Sha1:   e44649c4fecbbe0817227a30c072e3100dfa9b8a
Sha256: 07f9b8cd4a77a8e7b6ae74d6b705aafb06fa1fecd6327a1c05014807bf469f8e
                                        
                                            GET /resize/siteassets/startfeed/2022/september/20.09/mimi-a.r-logo-desktop.png?ref=94595BB959&width=1280 HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: image/webp
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 17590
cf-ray: 74e3c715acc0b509-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=31535999
etag: "cf6tI3JDwt8dQ8vUCzF5F5Gg:1D8CC0C8DE99900"
last-modified: Mon, 19 Sep 2022 09:45:30 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:100,h2pri
cf-resized: internal=ok/h q=0 n=10 c=13 v=2022.9.5 l=17590
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   17590
Md5:    684680e430239cefa457de1dc6369cba
Sha1:   8ec88ffa712b7bd07c3ebad04654e974e59ba83b
Sha256: 68ade8fe71221fa67cac73a4439b8565aac35944878b45bf9e3c2f8eb6d1f4a7
                                        
                                            GET /resize/siteassets/banners/2022/september/mfw-and-cargo/bg-banner-mobile.jpg?ref=28675A350D&width=1280 HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: image/webp
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 2740
cf-ray: 74e3c715acabb509-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: "cf_QnSWF1hLT9ECMG4qrtzkQ:1D8C9ACA196C480"
last-modified: Fri, 16 Sep 2022 09:13:49 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=75 c=24 v=2022.9.5 l=2740
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 1125x164, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   2740
Md5:    4a72e5f4d89f628c8ccf56cfa53cc6ab
Sha1:   0239653da8a16f658f04e754ac0f01bcc22fa9c9
Sha256: 81092402039dfd1e7227aea3dd372f3139199140aa4eecaf9738f7ca56e42069
                                        
                                            GET /resize/siteassets/startfeed/2021/january/01.01/desktop/trendedit-logo-white.png?ref=4B3CE6BB6F&width=1280 HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: image/webp
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 5342
cf-ray: 74e3c715dcffb509-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=31500370
etag: "cfQPy_ZTojALHgB36qgnrT0g:1D6DDC454338780"
last-modified: Tue, 29 Dec 2020 09:23:55 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:100,h2pri
cf-resized: internal=ok/h q=0 n=23 c=10 v=2022.2.2 l=5342
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   5342
Md5:    dfd1d462f8dfe0e83e7004d5c687476f
Sha1:   839e1875c17da0245094a2d7461c21f1b8301d71
Sha256: 8755ef0ea380025aadbd84cc37d8f88018bd3f060c35c7b561576e63f25ca70f
                                        
                                            GET /siteassets/banners/2022/august/klarna/responsive.css?ref=4C0A6031A HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 766
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
cache-control: public, max-age=27714607
content-encoding: gzip
etag: "1D8AB0C06D4DB80"
expires: Tue, 08 Aug 2023 09:49:18 GMT
last-modified: Mon, 08 Aug 2022 09:48:35 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
x-actual-url: /siteassets/banners/2022/august/klarna/responsive.css?ref=4C0A6031A
x-server-version: 75.1694.7818
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 3812599
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c7169e22b509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   766
Md5:    52f2835ad9bab5e560548b5998c35510
Sha1:   18ca1ce321239b169a7054500f779d8e9fc85371
Sha256: afcadaf652323659e40eb093b02326e46e74ed5819ae2c661507ce4591026cbf
                                        
                                            GET /siteassets/banners/2022/september/mfw-and-cargo/responsive.min.css?ref=85sACB9 HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 3820
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
cache-control: public, max-age=31249456
content-encoding: gzip
etag: "1D8CB32527A9C00"
expires: Mon, 18 Sep 2023 07:43:27 GMT
last-modified: Sun, 18 Sep 2022 07:43:20 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
x-actual-url: %2fsiteassets%2fbanners%2f2022%2fseptember%2fmfw-and-cargo%2fresponsive.min.css%3fref%3d85sACB9
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 286540
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c7169e25b509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18015), with no line terminators
Size:   3820
Md5:    69861932ac5a453f25d3cd5051ed4085
Sha1:   5e441369ed8c51dcd8c512359f3d8282e346d2d3
Sha256: 02a36ff25eb9d29e8225c3a456e4a3afb4240ce3ba1809268d21c7a775ad0727
                                        
                                            GET /assets/return-policy-flyout.chunk.03d33c3c3786ecdbb4a8.js HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 1074
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2freturn-policy-flyout.chunk.03d33c3c3786ecdbb4a8.js
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638504
cache-control: public, max-age=2407135249
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c716be58b509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1777), with no line terminators
Size:   1074
Md5:    013158ca01e64b7ad3e803524db53680
Sha1:   c79aaa6cfa2f954e54528f5e63da29d85e8409c2
Sha256: f9a0541ed85008128e65aeef2ee17ac2fcf4f682b7b08afc4358248081106ddd
                                        
                                            GET /assets/10.chunk.5c60c4496c1810366a00.js HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 358
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f10.chunk.5c60c4496c1810366a00.js
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638504
cache-control: public, max-age=2407135249
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c716be60b509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (306), with no line terminators
Size:   358
Md5:    46a2cc71fee270889407a830df1ce2ae
Sha1:   88952fbe61332b8585b658a49d34ede55016fad5
Sha256: 39c93b4a137228d70542e35b5daf9cb18039224eb18e74cf0f1d65f089415409
                                        
                                            GET /assets/2.chunk.9ccdf63a59220a896aa1.js HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 2710
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f2.chunk.9ccdf63a59220a896aa1.js
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638504
cache-control: public, max-age=2407135249
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c716be5db509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (6450), with no line terminators
Size:   2710
Md5:    8dc14d611132f65d5f3b9190160102f3
Sha1:   9aaed980f6f0c3025e5e669b9496fa22a5ce8f0f
Sha256: 0eb37e59d74bbd382b12270bd89453fd16c51164bf196b68b78b70146fb3ca66
                                        
                                            GET /assets/54.chunk.b6e7d359d87e778513fe.js HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 3736
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f54.chunk.b6e7d359d87e778513fe.js
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638504
cache-control: public, max-age=2407135249
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c716be67b509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (13130), with no line terminators
Size:   3736
Md5:    e4d9c07cfaa8f744d7eb4d4691b2e4df
Sha1:   e39b1a73449f6480448e1010328466bfbe64f766
Sha256: 65d4897ec83e822c0ebb1d2fda9ad0dae050cd1a671692cca8d8ac5ef8414f04
                                        
                                            GET /assets/login-container.chunk.55c4008cf2d84fe9e8a9.js HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 3687
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2flogin-container.chunk.55c4008cf2d84fe9e8a9.js
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638504
cache-control: public, max-age=2407135249
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c716ce6ab509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11550), with no line terminators
Size:   3687
Md5:    0f5120727657e5a38af99d285bc483e5
Sha1:   825c497db8435a902f09619bc08476a238df4ddf
Sha256: 96df28b26b79eea48cae5f38251fcc73e87ed60f6e09bfda3f91c1108ca99a85
                                        
                                            GET /assets/50.chunk.d8b103391fc18bef4d7f.js HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 2830
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f50.chunk.d8b103391fc18bef4d7f.js
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638504
cache-control: public, max-age=2407135249
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c716ce69b509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7486), with no line terminators
Size:   2830
Md5:    3311ab6ffd31f02abef7aa6e03013894
Sha1:   a69b4030d8e3eb5f2d23c26220accdcd4ba79e7e
Sha256: 6cbf0870c63997661eb5fc929f815897c3c5c3964e2d2de89d70d76cb7a41d15
                                        
                                            GET /af/2555e1/00000000000000007735e603/30/l?primer=3569ea2f7b7e0cfe53d24d1a326acf279d1b715ca67e789775350bc602cbb2ab&fvd=n7&v=3 HTTP/1.1 
Host: use.typekit.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.na-kd.com
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.76.186
HTTP/2 200 OK
content-type: application/font-woff2
                                        
server: nginx
content-length: 31216
etag: "1a9bb0e9ef9f4612dbfd194281f15ba36005b2c3"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 21 Sep 2022 15:19:11 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), CFF, length 31216, version 1.0\012- data
Size:   31216
Md5:    7baf570a2e01af403ad49431fc482bb0
Sha1:   034b0921cc2467a6ab362ea340f2bd3acbf181a0
Sha256: 22d7ccae4d7a65a5024282da9af0b70e4cdd6bf2335a95606675587cf2798100
                                        
                                            GET /af/78aca8/00000000000000007735e60d/30/l?primer=3569ea2f7b7e0cfe53d24d1a326acf279d1b715ca67e789775350bc602cbb2ab&fvd=n6&v=3 HTTP/1.1 
Host: use.typekit.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.na-kd.com
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.76.186
HTTP/2 200 OK
content-type: application/font-woff2
                                        
server: nginx
content-length: 30276
etag: "b1a13f6c2589f3ae380acecdceca87435c589346"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 21 Sep 2022 15:19:11 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), CFF, length 30276, version 1.0\012- data
Size:   30276
Md5:    631952abed5fd4941f417b9dc1df2cd8
Sha1:   43db9fc31a6cc230fc0803766790c1d17173f66c
Sha256: d953be327e07dc9229e3116008b568a167e320ac0cb791565693eee7c793895b
                                        
                                            GET /resize/siteassets/startfeed/2022/september/20.09/desktop/category-dresses-a-desktop.jpg?ref=4BDBDE1172&quality=80&sharpen=0.3&width=310 HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: image/webp
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 29166
cf-ray: 74e3c7174f0db509-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=31535992
etag: "cfectsceYrcI4P9gQnv95QMw:1D8CC0C364B2D80"
last-modified: Mon, 19 Sep 2022 09:43:03 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:81,h2pri
cf-resized: internal=ok/h q=0 n=14 c=51 v=2022.9.5 l=29166
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 310x445, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   29166
Md5:    ddcd3b5635878d26c564511a7c43daf7
Sha1:   2a91b765cfd8bf8cc7c3ff45bc9fe4aa9ed60feb
Sha256: ca25d248f2bb91f0e2c28358a19bf8fbdf62616d8e787617c62ed39df77cb739
                                        
                                            GET /resize/siteassets/startfeed/2022/september/20.09/desktop/category-shoesbags-a-desktop.jpg?ref=5A2F64EE90&quality=80&sharpen=0.3&width=310 HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: image/webp
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 4518
cf-ray: 74e3c7174f1bb509-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=31466306
etag: "cfRnCUxg3Vg2drPFACEVxcLw:1D8CC0C364B2D80"
last-modified: Mon, 19 Sep 2022 09:43:03 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:81,h2pri
cf-resized: internal=ok/h q=0 n=20 c=54 v=2022.9.5 l=4518
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 310x445, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   4518
Md5:    45a5201bfd28cf186313150538224f13
Sha1:   99f5861de3c69d412ef783ee33d5a6fbef4de301
Sha256: 0689d9caf51a32730ecd42f4805ce49886c10114196fca77de6931db8e864614
                                        
                                            GET /resize/siteassets/startfeed/2022/september/20.09/desktop/category-sweaters-a-desktop.jpg?ref=1DB128BAF0&quality=80&sharpen=0.3&width=310 HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: image/webp
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 22170
cf-ray: 74e3c7174f1eb509-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=31466306
etag: "cfKmg_maRORSJrQuzeaNN0ng:1D8CC0C364B2D80"
last-modified: Mon, 19 Sep 2022 09:43:03 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:81,h2pri
cf-resized: internal=ok/h q=0 n=11 c=67 v=2022.9.5 l=22170
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 310x445, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   22170
Md5:    41b27128c27245eec12566ce5f3ff754
Sha1:   ea49206512043c327e44231f267de8d403b520c1
Sha256: 8c9dd4e6badb31239341f533f156424ac16290a526547161b1d64daf23fd1cc0
                                        
                                            GET /resize/siteassets/startfeed/2022/september/20.09/desktop/category-dresses-b-desktop.jpg?ref=BA74298C0B&quality=80&sharpen=0.3&width=310 HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: image/webp
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 33152
cf-ray: 74e3c7174f11b509-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=31535992
etag: "cfCfuZFDm39BPz1Kux4A-keA:1D8CC0C364B2D80"
last-modified: Mon, 19 Sep 2022 09:43:03 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:81,h2pri
cf-resized: internal=ok/h q=0 n=9 c=49 v=2022.9.5 l=33152
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 310x445, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   33152
Md5:    df148d0265a1ed398a1c056bff76ea2f
Sha1:   abd412330dcc0df21f317786bf748a1b0324a434
Sha256: 8490abfc350bec32f40799d18849b41855257b6cb215153ce3280307f78d1b94
                                        
                                            GET /resize/siteassets/startfeed/2022/september/20.09/desktop/category-shoesbags-b-desktop.jpg?ref=FFB5398FCB&quality=80&sharpen=0.3&width=310 HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: image/webp
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 8694
cf-ray: 74e3c7174f1db509-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=31535992
etag: "cf2QjttMlx0lBvu3iokG-OGA:1D8CC0C364B2D80"
last-modified: Mon, 19 Sep 2022 09:43:03 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:81,h2pri
cf-resized: internal=ok/h q=0 n=11 c=55 v=2022.9.5 l=8694
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 310x445, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   8694
Md5:    3832310aae8a65bc5030172241515d7d
Sha1:   de1e3b70c2e0fe86876ce09a8ca184be0a981e08
Sha256: b5898e8aa0f90486c98f92eca9cb46b15070e2343c98fa29a44cb06aeff3745b
                                        
                                            GET /resize/siteassets/startfeed/2022/september/20.09/desktop/category-jeans-a-desktop.jpg?ref=D26882582C&quality=80&sharpen=0.3&width=310 HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: image/webp
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 9274
cf-ray: 74e3c7175f2eb509-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=31466306
etag: "cflIxGFHaOOUGi-kxFtUTTsA:1D8CC0C364B2D80"
last-modified: Mon, 19 Sep 2022 09:43:03 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:81,h2pri
cf-resized: internal=ok/h q=0 n=11 c=53 v=2022.9.5 l=9274
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 310x445, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   9274
Md5:    a05cf82227de05fc6420a205bf5b3ed8
Sha1:   13dbbf6cac98c6131f0d4843ee90616b51efb6ee
Sha256: 62d4d52b487a21cb9e70e82b1c1c65b825968ab2758005c68706b403130d21d0
                                        
                                            GET /resize/siteassets/startfeed/2022/september/20.09/desktop/category-jeans-b-desktop.jpg?ref=3000C04B21&quality=80&sharpen=0.3&width=310 HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: image/webp
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 10660
cf-ray: 74e3c7175f3db509-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=31535992
etag: "cfBKXdcTE-yYT9ch_9EHGjlg:1D8CC0C364B2D80"
last-modified: Mon, 19 Sep 2022 09:43:03 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:81,h2pri
cf-resized: internal=ok/h q=0 n=12 c=38 v=2022.9.5 l=10660
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 310x445, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   10660
Md5:    d73352cf4fbe547b6fae1d3bef0e09b9
Sha1:   dbe604bc2fa92d01da152b75c05be2105a8e7a58
Sha256: 391f7fff30e14b313cb13454e5a8b78d49c4a6e88b9e74e83b94fb4cf37ea38a
                                        
                                            GET /resize/siteassets/startfeed/2022/september/20.09/desktop/category-sweaters-b-desktop.jpg?ref=0EF3C9AD33&quality=80&sharpen=0.3&width=310 HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: image/webp
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 20378
cf-ray: 74e3c7175f24b509-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=31535992
etag: "cfW75p913ruvWuTCL3sTijzg:1D8CC0C364B2D80"
last-modified: Mon, 19 Sep 2022 09:43:03 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:81,h2pri
cf-resized: internal=ok/h q=0 n=14 c=68 v=2022.9.5 l=20378
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 310x445, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   20378
Md5:    46b3248f1c1dfaab9c2fddeff4c7708c
Sha1:   0520539b293e725b070b73d83d5d31542d38aa5d
Sha256: abfe9b182346224d668ae01cc2f9c3aa17a9c1c5453a5b87cdaacddf9275bed9
                                        
                                            GET /resize/siteassets/startfeed/2022/september/06.09/mimi-ar.png?ref=D8E5423D7B&quality=80&sharpen=0.3&width=310 HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.na-kd.com/dk?utm_source=tradedoubler_dk&utm_medium=affiliate&utm_campaign=Affnet+Media-+DK
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: image/webp
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 17824
cf-ray: 74e3c7176f3fb509-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=31533959
etag: "cfjc-1Ja-9mEpIcYvkvNoiRg:1D8C102C4022580"
last-modified: Mon, 05 Sep 2022 08:37:43 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:81,h2pri
cf-resized: internal=ok/h q=0 n=14 c=66 v=2022.8.4 l=17824
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   17824
Md5:    0515ea929a12ccbb9fb3742d291d9d7f
Sha1:   d95480de45ddce614b9788d94bb52af1d6404316
Sha256: 20e9cfa4853209976fc7e142a094e8af2dd8d5cc40aef6a248d27d2b64fadfa7
                                        
                                            GET /assets/0.chunk.9c47b9a5c228d473f711.js HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.na-kd.com/assets/serviceworker.bundle.js
Connection: keep-alive
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 6479
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f0.chunk.9c47b9a5c228d473f711.js
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638526
cache-control: public, max-age=2407135249
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c7177f51b509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (19141), with no line terminators
Size:   6479
Md5:    7123042b257b4f53269d2026d1c1100a
Sha1:   ba2036a8eca826b6bc19b2a49b95347b3b67cad4
Sha256: 8f89be98576ba6b263d04afb7e0fd666c60f327b8cdf7c3f623c7b3469cfc815
                                        
                                            GET /assets/sin-sustainability-carousel.chunk.fb8566e7571a37659bc3.js HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.na-kd.com/assets/serviceworker.bundle.js
Connection: keep-alive
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 2420
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2fsin-sustainability-carousel.chunk.fb8566e7571a37659bc3.js
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638520
cache-control: public, max-age=2407135249
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c7177f59b509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6131), with no line terminators
Size:   2420
Md5:    f7566cc2ded3b0473a7cad3ed3a9eda4
Sha1:   3ca69fc07e2f6aa62999d646ed083a531b7d261c
Sha256: 88bea9fe47e73f19a8a2718e5eadade0f1403bb5542e72418756963e87e35cfb
                                        
                                            GET /assets/sin-sustainability-columns.chunk.9157e77b2796442998bf.js HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.na-kd.com/assets/serviceworker.bundle.js
Connection: keep-alive
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 954
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2fsin-sustainability-columns.chunk.9157e77b2796442998bf.js
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638520
cache-control: public, max-age=2407135249
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c7178f65b509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1608), with no line terminators
Size:   954
Md5:    28190659fceb771fbfb8d24a0c8bf572
Sha1:   eea9586f7ac388bb38cf7819a54e7cf6c97c2173
Sha256: 77a84644826560d25b73df98c4a23ad11f04fa02c41f223d6d26028d9911477e
                                        
                                            GET /assets/4.chunk.47aa478f00ce5aa1d224.js HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.na-kd.com/assets/serviceworker.bundle.js
Connection: keep-alive
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 4757
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f4.chunk.47aa478f00ce5aa1d224.js
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638520
cache-control: public, max-age=2407135249
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c7178f6fb509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11746), with no line terminators
Size:   4757
Md5:    479b292dbf1d96e886cff030c0791aea
Sha1:   64705b75435448badf17f0d8334aadec817ba266
Sha256: 02c927483963b88aa73e83f6c033c3a53f8db41e223ebca5f532ed622ab96ff3
                                        
                                            GET /assets/5.chunk.7bd9baae8e5bc3fedd49.js HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.na-kd.com/assets/serviceworker.bundle.js
Connection: keep-alive
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 4737
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f5.chunk.7bd9baae8e5bc3fedd49.js
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638520
cache-control: public, max-age=2407135249
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c7178f72b509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (13766), with no line terminators
Size:   4737
Md5:    e1ef36e2f6068009f28a948353d015fd
Sha1:   00966ee151a9b24aaaf12f321197283c6f69c1dd
Sha256: f1fe0b69302b7f482dfe58a8997a90b4ed6dd8efe29a21472094e08a1a41880e
                                        
                                            GET /assets/3.chunk.8fcfc1c172771c1af885.js HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.na-kd.com/assets/serviceworker.bundle.js
Connection: keep-alive
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 6853
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f3.chunk.8fcfc1c172771c1af885.js
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638526
cache-control: public, max-age=2407135249
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c7178f6ab509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (20610), with no line terminators
Size:   6853
Md5:    acea674433d20f88554bd6ac220c44f1
Sha1:   7752bcbcf9f2e0b551826967a280f39d9360664c
Sha256: ba932e7b34994f7adf28534d71ec7855d7ccd481633500e8846a9c8805a5b861
                                        
                                            GET /assets/6.chunk.430b9c1d3ebcf7b17c58.js HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.na-kd.com/assets/serviceworker.bundle.js
Connection: keep-alive
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 6486
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f6.chunk.430b9c1d3ebcf7b17c58.js
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638520
cache-control: public, max-age=2407135249
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c7179f8bb509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (19738), with no line terminators
Size:   6486
Md5:    c016744462b59a3f9133bc5a5fd8fb25
Sha1:   20170ff47789d6732a2d322914554d5bf2c83b15
Sha256: ce0320ea70b4de1cd247dc40e85d8834948cabc4f49faf4f3e8ce25e32c6b3bc
                                        
                                            GET /assets/bundle-products.chunk.f803b54335195d411152.js HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.na-kd.com/assets/serviceworker.bundle.js
Connection: keep-alive
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 1530
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2fbundle-products.chunk.f803b54335195d411152.js
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638520
cache-control: public, max-age=2407135249
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c717afcdb509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2792), with no line terminators
Size:   1530
Md5:    742dc0c532b4dd2825ea574882fdfa1a
Sha1:   f1f2cb61c948029265d57d7eb542bd8d63da2c20
Sha256: 8fa5cb327cae431a7753da6ea4faf886a654a33dec31d60406757143d821ff78
                                        
                                            GET /assets/7.chunk.464b9ad0e5feb2b0710e.js HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.na-kd.com/assets/serviceworker.bundle.js
Connection: keep-alive
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 6430
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f7.chunk.464b9ad0e5feb2b0710e.js
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638520
cache-control: public, max-age=2407135249
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c7179f8eb509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (17684), with no line terminators
Size:   6430
Md5:    e5c0b01ffcbd61f400eca28c7e08f992
Sha1:   6e39b5fa9daa96e33aa79ad54948c01e3a1bd011
Sha256: 5369d56535adbdb57665d8cc27ade0fc4d5fdac941f2efcb29f05e3b3cb1a8d2
                                        
                                            GET /assets/blocked-identifier-modal.chunk.22fa8b9b8b9e2e5220f9.js HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.na-kd.com/assets/serviceworker.bundle.js
Connection: keep-alive
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 1769
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2fblocked-identifier-modal.chunk.22fa8b9b8b9e2e5220f9.js
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638525
cache-control: public, max-age=2407135249
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c717afc4b509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3245), with no line terminators
Size:   1769
Md5:    bb2c540ba4f6ec91738a834fc919f1ae
Sha1:   f47fd1f6e94d22a1f13a73ec7a2bf546523c24f7
Sha256: 0354de7f5a07700d6228238480d02b0c8625091a8ee5fcad5e850137d5bc7bb6
                                        
                                            GET /assets/circle-tooltip.chunk.6703d5812f5d3a2cf0cb.js HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.na-kd.com/assets/serviceworker.bundle.js
Connection: keep-alive
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 478
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2fcircle-tooltip.chunk.6703d5812f5d3a2cf0cb.js
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638520
cache-control: public, max-age=2407135249
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c717b822b509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (448), with no line terminators
Size:   478
Md5:    b922314d448bb68649ea9b80ffe82b14
Sha1:   5bf688782588a95cd8695806773c7c371637ff85
Sha256: 9e815227d6284424a2e6c8728f700f7a1cb4dbfe16be0ea52a2cc598eeb486fa
                                        
                                            GET /assets/circle-options.chunk.da92a9cc7d08e46e3896.js HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.na-kd.com/assets/serviceworker.bundle.js
Connection: keep-alive
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 678
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2fcircle-options.chunk.da92a9cc7d08e46e3896.js
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638525
cache-control: public, max-age=2407135249
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c717a80bb509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1134), with no line terminators
Size:   678
Md5:    a3860f05d20f56011b4bc16b92c14101
Sha1:   b4e01c401ac4b7520606c2126b54c53feaf34181
Sha256: 35d7469c8d0b00fccd3c0e0749a611af2fe4e6b25eb0590cbec57f278b4fb064
                                        
                                            GET /assets/9.chunk.7fb151d95aea58c5a1e9.js HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.na-kd.com/assets/serviceworker.bundle.js
Connection: keep-alive
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 6467
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f9.chunk.7fb151d95aea58c5a1e9.js
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638525
cache-control: public, max-age=2407135249
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c7179fadb509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12524), with no line terminators
Size:   6467
Md5:    d44e2b5e3a14a0f08c110e4a3256d3f7
Sha1:   5197d2e4fa9e13ac635cb1aadab355ce6f793897
Sha256: 7a309b8a9cd8f7492bc28cdaea063ba62883a6aded1f08990abf20bbe14e48df
                                        
                                            GET /assets/8.chunk.8788521b9baaa2202582.js HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.na-kd.com/assets/serviceworker.bundle.js
Connection: keep-alive
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 2603
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 12 Sep 2022 15:00:24 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f8.chunk.8788521b9baaa2202582.js
x-server-version: 82.1748.8050
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 638525
cache-control: public, max-age=2407135249
accept-ranges: bytes
server: cloudflare
cf-ray: 74e3c7179fa9b509-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4900), with no line terminators
Size:   2603
Md5:    49d649a0972b7f4958636783013cc64a
Sha1:   b55cc6608a502cd002aced175f457406e6f013e0
Sha256: fb8855c1d78ee5abfbae88f23a12d26983ec435d1ad59ae6ae5237d34e7c8c51
                                        
                                            GET /assets/circle-tabs.chunk.20de0a5b945f74bc1cc4.js HTTP/1.1 
Host: www.na-kd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.na-kd.com/assets/serviceworker.bundle.js
Connection: keep-alive
Cookie: Culture=da-DK; .ASPXANONYMOUS=gOVfoLn2hi60mFJoHPiDoyyG6lKBvCmYHyXsplC7rxfNSNIFgf5qZQ3cga4XMXkHXTyji0MCUe7qcjuZ0E0cqMmUNCjuIaEIR1NuMvEbj-Olm1OirLkUjvjTKkLTFUdXVEClKA2; EPi:StateMarker=true; OptimizelyUserKey=515244c4-aa5c-49af-8943-f1230d3aa071; CountryCode=DNK; __XSRF2=c5hrTY57pcDdKL416T3OeT1cusFpqAnQpYtyGM6sMeY=; ai_user=UE8TCYwYGS4SRIBEX2XCTS|2022-09-21T15:19:10.638Z
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.37.30
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 21 Sep 2022 15:19:11 GMT
content-length: 1901
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0f4b862b8c6d81:0"
expires: Thu, 01 Jan 2099 00:00:0