www.c9ikptk.com/48HP5T/BP658/?__rpt=0&__po=30&__ptid=242d27e3e36740e6b89004ba8dfe4543&__rpa=0&__rc=1&sub1=&sub2=&sub3=&sub4=&sub5=&source_id=&__pcd=9
34.107.199.247302 Found 57 B URL HTTP/1.1 www.c9ikptk.com/48HP5T/BP658/?__rpt=0&__po=30&__ptid=242d27e3e36740e6b89004ba8dfe4543&__rpa=0&__rc=1&sub1=&sub2=&sub3=&sub4=&sub5=&source_id=&__pcd=9
IP 34.107.199.247:0
File type HTML document, ASCII text
Hash fac34a702735ac79294c0ff2645951dc
bb025946516e373af1fb36abe2e300af88fda6be
a4cbd7e80e4d2c050331282c60cd52fb8af96d7f86f71c61a0da55d6d1a4e9f6
GET /48HP5T/BP658/?__rpt=0&__po=30&__ptid=242d27e3e36740e6b89004ba8dfe4543&__rpa=0&__rc=1&sub1=&sub2=&sub3=&sub4=&sub5=&source_id=&__pcd=9 HTTP/1.1
Host: www.c9ikptk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
server: nginx
date: Sat, 14 Jan 2023 07:44:31 GMT
content-type: text/html; charset=utf-8
content-length: 57
location: http://p.npcad.com/go/89517/482729
set-cookie: uniqueClick_BP658=f372d470-6362-4220-9aed-f23d746067b3:1673682271; Path=/; Expires=Sat, 21 Jan 2023 07:44:31 GMT; SameSite=None
transaction_id=e70421749e6f49ee8d33c17f6e982e1c; Path=/; Expires=Fri, 14 Apr 2023 07:44:31 GMT; SameSite=None
vary: Origin
x-eflow-request-id: bbbe6a3e-0f05-4095-b0b8-100ba719b36d
Via: 1.1 google
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a8b4f1afb0e830b797238d34ab9254aa
e011acef3d05c959a65205d53b651ecd18a889fe
f7ceff5b4fda083c7449b7298c232224cf48a632dcb87233b646790de207d49c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7CEFF5B4FDA083C7449B7298C232224CF48A632DCB87233B646790DE207D49C"
Last-Modified: Thu, 12 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8570
Expires: Sat, 14 Jan 2023 10:07:21 GMT
Date: Sat, 14 Jan 2023 07:44:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cab5b63e128895128726181aff42e42e
d39c36237554fcd41addec0664d7fe7f7d157c06
18e82a5b82eb8f2d8b49df824c336015f19367c5a05467ad139a56db59f88852
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "18E82A5B82EB8F2D8B49DF824C336015F19367C5A05467AD139A56DB59F88852"
Last-Modified: Wed, 11 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4184
Expires: Sat, 14 Jan 2023 08:54:15 GMT
Date: Sat, 14 Jan 2023 07:44:31 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 14 Jan 2023 06:48:53 GMT
content-type: application/json
age: 3338
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0f4ecf4f26be1ba09e61135b1b488bf4
f16b8277e00033bc990a8bcce54b693cb3c87d62
3018c2a228f0a894d217e8e8b0b8dd060527f06879cd2f469bac6c8766acbbf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3018C2A228F0A894D217E8E8B0B8DD060527F06879CD2F469BAC6C8766ACBBF8"
Last-Modified: Wed, 11 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10220
Expires: Sat, 14 Jan 2023 10:34:51 GMT
Date: Sat, 14 Jan 2023 07:44:31 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: rETz3D9K3/E/EeQTlbciaTRJY0rFV1ZkKbdQWlSPOq5w+Oh0GYtbGLttV7Jrpoun0SPc2Sh3zvU=
x-amz-request-id: C2ZJ5P2X6SJ21VER
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 14 Jan 2023 07:43:39 GMT
age: 52
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 07:44:31 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
p.npcad.com/go/89517/482729
52.20.154.189200 OK 270 B URL HTTP/1.1 p.npcad.com/go/89517/482729
IP 52.20.154.189:0
File type HTML document, ASCII text
Hash 20d6faab3dc47a0589dfa07d4ea42586
1218fc2b6cfd9989dbd09f18bc90ed802b47617d
365cd97050611c62ebcbfaddba258ed1c54a93fd1819abc7ab7f965ed125d8bd
Analyzer Verdict Alert fortinet Phishing
GET /go/89517/482729 HTTP/1.1
Host: p.npcad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Encoding: gzip
Content-Type: text/html
Date: Sat, 14 Jan 2023 07:44:32 GMT
Server: nginx
Vary: Accept-Encoding
Content-Length: 270
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 14 Jan 2023 07:33:45 GMT
age: 647
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
p.npcad.com/ad/ad?p=89517&w=482729&t=d1cbd18333de1c9c&r=&vw=1280&vh=0
52.20.154.189303 See Other 0 B URL HTTP/1.1 p.npcad.com/ad/ad?p=89517&w=482729&t=d1cbd18333de1c9c&r=&vw=1280&vh=0
IP 52.20.154.189:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ad/ad?p=89517&w=482729&t=d1cbd18333de1c9c&r=&vw=1280&vh=0 HTTP/1.1
Host: p.npcad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://p.npcad.com/go/89517/482729
Upgrade-Insecure-Requests: 1
HTTP/1.1 303 See Other
Date: Sat, 14 Jan 2023 07:44:32 GMT
Location: http://xml.poprtb.pro/click?i=COF66f6c*tE_0#pc224398
Server: nginx
Content-Length: 0
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b1e3535cab3c1ac295b1412126a9325c
d1bdf1b8663817ae34b6182db29d6b20666779e7
90c4ecd4b0782647fd78110b5bacfb73d2b05aae4de789a90318574407dfb565
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6012
Cache-Control: max-age=97346
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 07:44:32 GMT
Etag: "63c11f26-1d7"
Expires: Sun, 15 Jan 2023 10:46:58 GMT
Last-Modified: Fri, 13 Jan 2023 09:06:46 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
xml.poprtb.pro/click?i=COF66f6c*tE_0
174.137.133.18302 Found 0 B URL HTTP/1.1 xml.poprtb.pro/click?i=COF66f6c*tE_0
IP 174.137.133.18:0
ASN #27257 WEBAIR-INTERNET
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?i=COF66f6c*tE_0 HTTP/1.1
Host: xml.poprtb.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://p.npcad.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Cache-Control: no-store
Content-Length: 0
Age: 0
Connection: keep-alive
Location: http://c.srvpcn.com/click?id=cf15qo68o38k6igcjcfg&e=bd94f406-befa-4fb6-8c84-e4e9eb9a2b67&px=135
Pragma: no-cache
push.services.mozilla.com/
100.20.114.179101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 100.20.114.179:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JZUDJ2vzX7dzwqbUzshODA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 57E7q1cO2IKB/XLk8BJslPK+VJE=
c.srvpcn.com/click?id=cf15qo68o38k6igcjcfg&e=bd94f406-befa-4fb6-8c84-e4e9eb9a2b67&px=135
3.221.137.176303 See Other 0 B URL HTTP/1.1 c.srvpcn.com/click?id=cf15qo68o38k6igcjcfg&e=bd94f406-befa-4fb6-8c84-e4e9eb9a2b67&px=135
IP 3.221.137.176:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?id=cf15qo68o38k6igcjcfg&e=bd94f406-befa-4fb6-8c84-e4e9eb9a2b67&px=135 HTTP/1.1
Host: c.srvpcn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://p.npcad.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 303 See Other
Date: Sat, 14 Jan 2023 07:44:33 GMT
Content-Length: 0
Connection: keep-alive
Location: https://us.justtoo.net/postback/click?key=v2-1673682272421-4-2645-999800-4d7d922c-cc5c-aedd-4169-f49654df3de5
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash acfd931550ab8318de9779adc8215909
022f98b6d083093773caaf9ef4f7e5712aa6880c
e88adf23381d824bf29eaa771fd479d3b8bb89ae24809d66c1ecb4b9144861d9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E88ADF23381D824BF29EAA771FD479D3B8BB89AE24809D66C1ECB4B9144861D9"
Last-Modified: Sat, 14 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1934
Expires: Sat, 14 Jan 2023 08:16:47 GMT
Date: Sat, 14 Jan 2023 07:44:33 GMT
Connection: keep-alive
us.justtoo.net/postback/click?key=v2-1673682272421-4-2645-999800-4d7d922c-cc5c-aedd-4169-f49654df3de5
38.100.129.136302 Found 0 B URL HTTP/2 us.justtoo.net/postback/click?key=v2-1673682272421-4-2645-999800-4d7d922c-cc5c-aedd-4169-f49654df3de5
IP 38.100.129.136:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /postback/click?key=v2-1673682272421-4-2645-999800-4d7d922c-cc5c-aedd-4169-f49654df3de5 HTTP/1.1
Host: us.justtoo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://p.npcad.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: openresty/1.15.8.3
date: Sat, 14 Jan 2023 07:44:33 GMT
content-length: 0
set-cookie: platform_user_id=desktop:b9ce734ea0955fdbdaef46d4d37c6039
platform_user_id_3rd_party=desktop:b9ce734ea0955fdbdaef46d4d37c6039; SameSite=None; Secure; Max-Age=31556952
platform_user_id_from_ssp=platform:628bcdb125465b19473b9a4f635652eb
platform_user_id_from_ssp_3rd_party=platform:628bcdb125465b19473b9a4f635652eb; SameSite=None; Secure; Max-Age=31556952
location: https://media.bigbasketshop.com/track?q=y9mVqLVe3evR
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3190
Expires: Sat, 14 Jan 2023 08:37:44 GMT
Date: Sat, 14 Jan 2023 07:44:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3190
Expires: Sat, 14 Jan 2023 08:37:44 GMT
Date: Sat, 14 Jan 2023 07:44:34 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F198805f8-79dd-4ac3-8fb7-22c15cbb9cb9.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F198805f8-79dd-4ac3-8fb7-22c15cbb9cb9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cb8fb3720ec05dd59482cb49e4bffd5c
99b1ea4060e5332b23fdfdc679f61be5af1a7bf7
c44e3c07c1fb842a741c22862afa738e3fbdda05947e9de59267791357f9f09a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F198805f8-79dd-4ac3-8fb7-22c15cbb9cb9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5918
x-amzn-requestid: f1786e4a-9ab0-45bd-8f45-ce687f9568d9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: enAczGTJIAMFaCA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bf7ab8-4d96e5b066d83750238865b8;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 03:12:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BTkp5sUcYhIw7VTnWpTCwdQ_MERqCzJNulldrmcIZHZHTMhXJn1ZRw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 03:36:19 GMT
age: 14895
etag: "99b1ea4060e5332b23fdfdc679f61be5af1a7bf7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F917985a1-aa8d-4c0a-860c-0b16c203387e.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F917985a1-aa8d-4c0a-860c-0b16c203387e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d24ea1f095f492934a1f1c63f5d8590c
dade37148c9b9a941f93a8535d8ddc5de3952623
2d8e3f90eb347eb3479a6c5d20a1c2ca6a0560f335a6c6800948db2640e4c878
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F917985a1-aa8d-4c0a-860c-0b16c203387e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8181
x-amzn-requestid: 7ada8fbd-58e6-4433-a532-b4a4ef93ac9c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: es0paH-OIAMFg5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c1ce3c-582529522dbb67ee728484f8;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 21:33:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AHjOmYxva5avyA3gt9DvYLas_B2ACimer5QRQOi919HDtSjnKq22lw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Fri, 13 Jan 2023 21:36:45 GMT
age: 36469
etag: "dade37148c9b9a941f93a8535d8ddc5de3952623"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash afcc8f4875f4b74ca0640829b689731e
584d0e11665ae89f9a294baf1e9bb4f0e4e9a4df
3e487396389c4330abc99bc99053eecc6aaf56f7afa398d70c30e1f4709577a0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13626
x-amzn-requestid: 4769eaeb-0c78-4054-ad47-eefdd6ab2d03
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eWHMZErbIAMF6sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b8b8b5-4c7bacfe060899044e361f70;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 00:11:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JRzc2Mcl4EasyH6_1kFh7sr-57f1HNDu-YN8YptDe_kcTET9x8P9LA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Fri, 13 Jan 2023 14:03:21 GMT
age: 63673
etag: "584d0e11665ae89f9a294baf1e9bb4f0e4e9a4df"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2ecf6b3-8443-4b47-96b6-2695fa885f0d.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2ecf6b3-8443-4b47-96b6-2695fa885f0d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d3c35722c1c8a0b7a17b5a48a352aa64
4a939794eb33d9fb1b2cc56ca92f683a7d28e407
073d355bfc201c7feb4af2d1fac623fe7803f081c28467fa72b363074b0446a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2ecf6b3-8443-4b47-96b6-2695fa885f0d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7437
x-amzn-requestid: 0efc1457-5919-4244-9837-6e75d03ef1d6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: enAd0F0poAMF6PA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bf7abe-24df70ad7e1811a744a7c9de;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 03:13:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: GHOHtSwiU15cNal3kPt8BOKwjvozSDeXZ2zxhuGQcBjN6FYXAdjMDw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 03:59:23 GMT
age: 13511
etag: "4a939794eb33d9fb1b2cc56ca92f683a7d28e407"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b0d4bc-9eea-491e-9fed-be68e71088e5.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b0d4bc-9eea-491e-9fed-be68e71088e5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 64ba27a2f0a3bc61bd325f1fb317b755
c65c58476b66cbb6269ba1d8412d270a0a003ae3
5f7f03752f8a7c8c08d92512ae93b193ea37f59354503c3129d33fd2910f87e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b0d4bc-9eea-491e-9fed-be68e71088e5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9135
x-amzn-requestid: 2c5e9de0-9244-43ac-b7c4-712cbcf7038c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: enAnoG6roAMFzgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bf7afd-7fb640b30bab63bc1979a173;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 03:14:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RnAGo4OuBl5UjyOlUOJqu2nlFLHTOe0ETxokWtbI4frbpkNVnIBSew==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 01:41:40 GMT
age: 21774
etag: "c65c58476b66cbb6269ba1d8412d270a0a003ae3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4885191c-7ccc-4801-bef2-6d6bbb61cdb1.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4885191c-7ccc-4801-bef2-6d6bbb61cdb1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d9c918c3f0569cbf09fdcd8998e2fc00
ad06e348d49e8ae0550d922b50bc2a1d4905457a
8f96e49cf0dbbad59d260d0f991d79eb72ea25dcc0caa5ba4480056bd918d07d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4885191c-7ccc-4801-bef2-6d6bbb61cdb1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5371
x-amzn-requestid: fcbafc8b-5b89-49e6-8ebd-157cb3b24a55
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: es0qnERXoAMFsZQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c1ce43-3eb3b4d84dbf415a3dec1308;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 21:33:55 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AbaES_6874zaabJY_z0_FOZfJx86Zsv-osNxWqzef8DDNyelo0HRtQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Fri, 13 Jan 2023 21:49:01 GMT
age: 35733
etag: "ad06e348d49e8ae0550d922b50bc2a1d4905457a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash 084780cae2af37e5b2edd6869e56cfeb
5418480506f09d1f91309064e115fdcc9f84ce1b
ee7bbde42d754467e33a74f2092d4c6de1de7daa080f4ab3d7a1aa543aa60f5e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 14 Jan 2023 07:44:34 GMT
Last-Modified: Sat, 14 Jan 2023 06:22:46 GMT
Server: ECS (bsa/EB23)
X-Cache: Miss from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: TiwT9X0ybd4kzwlbkkCWKRb8FMJXrn4xOBjaTxGQarkuJar0KeqSJQ==
Age: 4908
celis.no/
193.107.30.42200 OK 15 kB IP 193.107.30.42:0
File type C++ source text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2917), with CRLF, LF line terminators
Hash f32fbbf9e46a785d03762e22cf6c21e9
fb07f0cf2b1b7818693036485a6e5387f9902836
70efe184c553900a3a6fa38a8db9d5a98b02a9a8e5f22e78dc1b81be9b77e5f1
GET / HTTP/1.1
Host: celis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://media.bigbasketshop.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Sat, 14 Jan 2023 07:44:34 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-UA-Compatible: IE=edge
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: 24nb=eyJpdiI6IjRRTXdFWHVaNU5qSURNWDMrOHFKXC93PT0iLCJ2YWx1ZSI6IlBcL3l0TTlUdjNBcHVWdUVHaUR0NEhPQkdMZ3VTbkZncFNMQTB1N25ZcERnT3lxc09vVG1BVUl3WFwvcmQyalJuYkNCUm55QUxLQVNrM2lQbDIzcDlFM1E9PSIsIm1hYyI6Ijc0ZTkwMGMxNjc0ODFmODdjNzg4MjI5MjY4NzAxY2I3OGE3OWM1OGQwMTQ3ZTliN2M4OGY3ZWQwMTllZGExZjEifQ%3D%3D; expires=Sat, 14-Jan-2023 15:44:34 GMT; Max-Age=28800; path=/
24db790=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%224e1faa857f8eb070013fad3d94f9a767%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%22193.107.30.42%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A80%3A%22Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1673682274%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7Da9e58baba7b63297e508506d30285a9d; path=/
24db790=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%224e1faa857f8eb070013fad3d94f9a767%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%22193.107.30.42%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A80%3A%22Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1673682274%3B%7D060c28d534cccff36657f6fea712453d; path=/
24db790=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%224e1faa857f8eb070013fad3d94f9a767%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%22193.107.30.42%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A80%3A%22Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1673682274%3B%7D060c28d534cccff36657f6fea712453d; path=/
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
celis.no/assets/themes/afterburner/css/afterburner.compiled.css?ver=1575982250
193.107.30.42200 OK 39 kB URL HTTP/1.1 celis.no/assets/themes/afterburner/css/afterburner.compiled.css?ver=1575982250
IP 193.107.30.42:0
File type ASCII text, with very long lines (65425)
Hash 59a2ce90ebfbdad3a756b517c0f88ba8
718d9f2514203722d8aad597f5866ce85663399d
7805eb72e4e6ddc49c65a24f4f3d0882889ac0332ef987ccc990081366f3e0b4
GET /assets/themes/afterburner/css/afterburner.compiled.css?ver=1575982250 HTTP/1.1
Host: celis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Cookie: 24nb=eyJpdiI6IjRRTXdFWHVaNU5qSURNWDMrOHFKXC93PT0iLCJ2YWx1ZSI6IlBcL3l0TTlUdjNBcHVWdUVHaUR0NEhPQkdMZ3VTbkZncFNMQTB1N25ZcERnT3lxc09vVG1BVUl3WFwvcmQyalJuYkNCUm55QUxLQVNrM2lQbDIzcDlFM1E9PSIsIm1hYyI6Ijc0ZTkwMGMxNjc0ODFmODdjNzg4MjI5MjY4NzAxY2I3OGE3OWM1OGQwMTQ3ZTliN2M4OGY3ZWQwMTllZGExZjEifQ%3D%3D; 24db790=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%224e1faa857f8eb070013fad3d94f9a767%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%22193.107.30.42%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A80%3A%22Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1673682274%3B%7D060c28d534cccff36657f6fea712453d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Sat, 14 Jan 2023 07:44:34 GMT
Content-Type: text/css
Content-Length: 38985
Connection: keep-alive
Last-Modified: Tue, 10 Dec 2019 12:50:50 GMT
ETag: "42584-59958f63ddd3a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
celis.no/assets/js/modernizr.min-dev.js
193.107.30.42200 OK 4.8 kB URL HTTP/1.1 celis.no/assets/js/modernizr.min-dev.js
IP 193.107.30.42:0
File type HTML document, ASCII text, with very long lines (10835)
Hash b1455783dc6934fc9da050919f63e7b2
e1e7a7a08e141c0ddcbb8a50bae5fc845352515b
f16bfb5663df5cd6d55463eb801edbf74c2acc5375d199ecc21664e757efe3ab
GET /assets/js/modernizr.min-dev.js HTTP/1.1
Host: celis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Cookie: 24nb=eyJpdiI6IjRRTXdFWHVaNU5qSURNWDMrOHFKXC93PT0iLCJ2YWx1ZSI6IlBcL3l0TTlUdjNBcHVWdUVHaUR0NEhPQkdMZ3VTbkZncFNMQTB1N25ZcERnT3lxc09vVG1BVUl3WFwvcmQyalJuYkNCUm55QUxLQVNrM2lQbDIzcDlFM1E9PSIsIm1hYyI6Ijc0ZTkwMGMxNjc0ODFmODdjNzg4MjI5MjY4NzAxY2I3OGE3OWM1OGQwMTQ3ZTliN2M4OGY3ZWQwMTllZGExZjEifQ%3D%3D; 24db790=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%224e1faa857f8eb070013fad3d94f9a767%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%22193.107.30.42%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A80%3A%22Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1673682274%3B%7D060c28d534cccff36657f6fea712453d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Sat, 14 Jan 2023 07:44:34 GMT
Content-Type: application/javascript
Content-Length: 4844
Connection: keep-alive
Expires: Sat, 14 Jan 2023 07:44:34 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
celis.no/bilder_diverse/1540589626.png
193.107.30.42200 OK 45 kB URL HTTP/1.1 celis.no/bilder_diverse/1540589626.png
IP 193.107.30.42:0
File type PNG image data, 450 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash b64491f7df2b869702a502b225a07e0e
5228403f00878b1ff1a2cb26fb572f7620183c10
5c51f468680f9ce41b25e59cb9602dbc16ad62cdef5468b27f251c8e7bbc6c16
GET /bilder_diverse/1540589626.png HTTP/1.1
Host: celis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Cookie: 24nb=eyJpdiI6IjRRTXdFWHVaNU5qSURNWDMrOHFKXC93PT0iLCJ2YWx1ZSI6IlBcL3l0TTlUdjNBcHVWdUVHaUR0NEhPQkdMZ3VTbkZncFNMQTB1N25ZcERnT3lxc09vVG1BVUl3WFwvcmQyalJuYkNCUm55QUxLQVNrM2lQbDIzcDlFM1E9PSIsIm1hYyI6Ijc0ZTkwMGMxNjc0ODFmODdjNzg4MjI5MjY4NzAxY2I3OGE3OWM1OGQwMTQ3ZTliN2M4OGY3ZWQwMTllZGExZjEifQ%3D%3D; 24db790=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%224e1faa857f8eb070013fad3d94f9a767%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%22193.107.30.42%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A80%3A%22Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1673682274%3B%7D060c28d534cccff36657f6fea712453d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Sat, 14 Jan 2023 07:44:34 GMT
Content-Type: image/png
Content-Length: 45051
Connection: keep-alive
Last-Modified: Fri, 26 Oct 2018 21:33:46 GMT
ETag: "affb-57928796a1581"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
celis.no/images_hovedside/24/icons/shop.png
193.107.30.42200 OK 13 kB URL HTTP/1.1 celis.no/images_hovedside/24/icons/shop.png
IP 193.107.30.42:0
File type PNG image data, 134 x 113, 8-bit/color RGBA, non-interlaced\012- data
Hash db0af4837acf35603da0d5218581bb3a
63fab402cafc21499e7ba03021a3930e3c0a047c
81b79f832d24e0b319bbf0f9520062b6ad262109f70de7e5406aefc09f308705
GET /images_hovedside/24/icons/shop.png HTTP/1.1
Host: celis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Cookie: 24nb=eyJpdiI6IjRRTXdFWHVaNU5qSURNWDMrOHFKXC93PT0iLCJ2YWx1ZSI6IlBcL3l0TTlUdjNBcHVWdUVHaUR0NEhPQkdMZ3VTbkZncFNMQTB1N25ZcERnT3lxc09vVG1BVUl3WFwvcmQyalJuYkNCUm55QUxLQVNrM2lQbDIzcDlFM1E9PSIsIm1hYyI6Ijc0ZTkwMGMxNjc0ODFmODdjNzg4MjI5MjY4NzAxY2I3OGE3OWM1OGQwMTQ3ZTliN2M4OGY3ZWQwMTllZGExZjEifQ%3D%3D; 24db790=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%224e1faa857f8eb070013fad3d94f9a767%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%22193.107.30.42%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A80%3A%22Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1673682274%3B%7D060c28d534cccff36657f6fea712453d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Sat, 14 Jan 2023 07:44:34 GMT
Content-Type: image/png
Content-Length: 13159
Connection: keep-alive
Last-Modified: Mon, 13 Jan 2020 09:43:04 GMT
ETag: "3367-59c024d54e1f8"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
celis.no/js/slider-cart.js?v=20967ad1081194fae86fd753d9601fe3
193.107.30.42200 OK 144 kB URL HTTP/1.1 celis.no/js/slider-cart.js?v=20967ad1081194fae86fd753d9601fe3
IP 193.107.30.42:0
File type Unicode text, UTF-8 text, with very long lines (54822)
Size 144 kB (144278 bytes)
Hash b4f321dea9ee9d0dec44efc87b3f27a8
e042a9c862a22ec3361bcd2f3af64c7380cea93f
d5fa6cad74c067348bb2e88d272cbbb5216d417e39c56d0ba00d0911ef85e263
GET /js/slider-cart.js?v=20967ad1081194fae86fd753d9601fe3 HTTP/1.1
Host: celis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Cookie: 24nb=eyJpdiI6IjRRTXdFWHVaNU5qSURNWDMrOHFKXC93PT0iLCJ2YWx1ZSI6IlBcL3l0TTlUdjNBcHVWdUVHaUR0NEhPQkdMZ3VTbkZncFNMQTB1N25ZcERnT3lxc09vVG1BVUl3WFwvcmQyalJuYkNCUm55QUxLQVNrM2lQbDIzcDlFM1E9PSIsIm1hYyI6Ijc0ZTkwMGMxNjc0ODFmODdjNzg4MjI5MjY4NzAxY2I3OGE3OWM1OGQwMTQ3ZTliN2M4OGY3ZWQwMTllZGExZjEifQ%3D%3D; 24db790=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%224e1faa857f8eb070013fad3d94f9a767%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%22193.107.30.42%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A80%3A%22Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1673682274%3B%7D060c28d534cccff36657f6fea712453d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Sat, 14 Jan 2023 07:44:34 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 26 Oct 2022 21:24:28 GMT
ETag: "671c3-5ebf6a655b7d2-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
celis.no/css/cookie_consent.css
193.107.30.42200 OK 4.4 kB URL HTTP/1.1 celis.no/css/cookie_consent.css
IP 193.107.30.42:0
File type ASCII text, with very long lines (18698), with no line terminators
Hash 166166356a197dc79d7abf95aef97e66
dae0b9bc69625ccf4469b8bcfd45088c712f6cb7
217049ace8de69b61ff92d668ab19c1354716d3c10e7519f415bbd6f694c0900
GET /css/cookie_consent.css HTTP/1.1
Host: celis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Cookie: 24nb=eyJpdiI6IjRRTXdFWHVaNU5qSURNWDMrOHFKXC93PT0iLCJ2YWx1ZSI6IlBcL3l0TTlUdjNBcHVWdUVHaUR0NEhPQkdMZ3VTbkZncFNMQTB1N25ZcERnT3lxc09vVG1BVUl3WFwvcmQyalJuYkNCUm55QUxLQVNrM2lQbDIzcDlFM1E9PSIsIm1hYyI6Ijc0ZTkwMGMxNjc0ODFmODdjNzg4MjI5MjY4NzAxY2I3OGE3OWM1OGQwMTQ3ZTliN2M4OGY3ZWQwMTllZGExZjEifQ%3D%3D; 24db790=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%224e1faa857f8eb070013fad3d94f9a767%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%22193.107.30.42%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A80%3A%22Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1673682274%3B%7D060c28d534cccff36657f6fea712453d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Sat, 14 Jan 2023 07:44:34 GMT
Content-Type: text/css
Content-Length: 4431
Connection: keep-alive
Last-Modified: Wed, 26 Oct 2022 21:24:28 GMT
ETag: "490a-5ebf6a65569b2-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
celis.no/js/cookie_consent.js
193.107.30.42200 OK 6.8 kB URL HTTP/1.1 celis.no/js/cookie_consent.js
IP 193.107.30.42:0
File type ASCII text, with very long lines (1022)
Hash fe0290e5cd3f7b65a629e4207915b7c0
2d3f28169abd3a0faa5fa8a749431a42a33aea83
c5bc71256e67080a533aa8e191e9b377b629406ab12f5c786ba1f523bdd59180
GET /js/cookie_consent.js HTTP/1.1
Host: celis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Cookie: 24nb=eyJpdiI6IjRRTXdFWHVaNU5qSURNWDMrOHFKXC93PT0iLCJ2YWx1ZSI6IlBcL3l0TTlUdjNBcHVWdUVHaUR0NEhPQkdMZ3VTbkZncFNMQTB1N25ZcERnT3lxc09vVG1BVUl3WFwvcmQyalJuYkNCUm55QUxLQVNrM2lQbDIzcDlFM1E9PSIsIm1hYyI6Ijc0ZTkwMGMxNjc0ODFmODdjNzg4MjI5MjY4NzAxY2I3OGE3OWM1OGQwMTQ3ZTliN2M4OGY3ZWQwMTllZGExZjEifQ%3D%3D; 24db790=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%224e1faa857f8eb070013fad3d94f9a767%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%22193.107.30.42%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A80%3A%22Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1673682274%3B%7D060c28d534cccff36657f6fea712453d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Sat, 14 Jan 2023 07:44:34 GMT
Content-Type: application/javascript
Content-Length: 6816
Connection: keep-alive
Last-Modified: Wed, 26 Oct 2022 21:24:28 GMT
ETag: "4de8-5ebf6a655a832-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
celis.no/assets/js/vendor.js?m=1666701888
193.107.30.42200 OK 100 kB URL HTTP/1.1 celis.no/assets/js/vendor.js?m=1666701888
IP 193.107.30.42:0
File type ASCII text, with very long lines (559)
Hash 838ed85ac65d7222122159a9f13e0c21
3de4c539610ae94aded34f5f8f76473bc359dc37
dd89b3d0bb32594c1bcb77f3f2c96c14454b102aa245d202592120e76b1d84fd
GET /assets/js/vendor.js?m=1666701888 HTTP/1.1
Host: celis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Cookie: 24nb=eyJpdiI6IjRRTXdFWHVaNU5qSURNWDMrOHFKXC93PT0iLCJ2YWx1ZSI6IlBcL3l0TTlUdjNBcHVWdUVHaUR0NEhPQkdMZ3VTbkZncFNMQTB1N25ZcERnT3lxc09vVG1BVUl3WFwvcmQyalJuYkNCUm55QUxLQVNrM2lQbDIzcDlFM1E9PSIsIm1hYyI6Ijc0ZTkwMGMxNjc0ODFmODdjNzg4MjI5MjY4NzAxY2I3OGE3OWM1OGQwMTQ3ZTliN2M4OGY3ZWQwMTllZGExZjEifQ%3D%3D; 24db790=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%224e1faa857f8eb070013fad3d94f9a767%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%22193.107.30.42%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A80%3A%22Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1673682274%3B%7D060c28d534cccff36657f6fea712453d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Sat, 14 Jan 2023 07:44:34 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 25 Oct 2022 12:44:48 GMT
ETag: "58774-5ebdb45fb1000-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js
143.204.55.80200 OK 6.1 kB URL HTTP/2 widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js
IP 143.204.55.80:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (19239)
Hash 5add60196e5f96a414fb4b9586764e5d
633f471b3c2fcedeef9cad90cb5bf56f5fe55588
5370f4ba91dda790c7cae92817b812fcbd1ab367cbb4862f5669960ae4e2c9e0
GET /bootstrap/v5/tp.widget.bootstrap.min.js HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 6124
last-modified: Mon, 30 May 2022 14:38:02 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Sat, 14 Jan 2023 04:04:58 GMT
cache-control: max-age=86400
etag: "5add60196e5f96a414fb4b9586764e5d"
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: l0Yhn3VVqjxjge_fm4Y8cRIbovqtU4r8KucapnxNtRLDNJcro5TEMw==
age: 13177
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c16b1530bbcd3d9226362c0a6100f014
a49685aa2869a3674bc4c8fc58acd47f655c2111
ff063e27670433897ba82fdf8048fc228587ab2f01c21e2970f03b3df9093539
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 07:44:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=AW-871076749
142.250.74.168200 OK 54 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=AW-871076749
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 68e8c8e68371c1847b7ee98cf877fdbb
d4f677ff032122d49cbc636386f04f21f882372c
bab839a3e7f32fcd8c505a22ca1ff2baa54fd3873e2b21fe58c8dfd2e024c3ef
GET /gtag/js?id=AW-871076749 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 14 Jan 2023 07:44:35 GMT
expires: Sat, 14 Jan 2023 07:44:35 GMT
cache-control: private, max-age=900
last-modified: Sat, 14 Jan 2023 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 53741
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b5628887325331ad3d660f7208e1995c
9e4bf04468a7aed126488ccb5552a8e02610f6dd
5cd181d6728fc5f0f4d88407b97af61db39c5a38feebdeb2c21335cf4402fca4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 07:44:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-0VEB93L6P3
142.250.74.168200 OK 78 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-0VEB93L6P3
IP 142.250.74.168:0
File type ASCII text, with very long lines (22462)
Hash 4fea4d4dd6232a7528c697a85e87303d
389a6df418da947f4b9d9db816be41867fb8bd3d
64dad8d9d3fa4b7dec094a0dd4825563bf30a8d1bd37478431ecea3571ea9ee9
GET /gtag/js?id=G-0VEB93L6P3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 14 Jan 2023 07:44:35 GMT
expires: Sat, 14 Jan 2023 07:44:35 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77955
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
assets2.24nettbutikk.no/logos/vipps_logo_rgb_trimmed.png
193.107.29.107200 OK 3.5 kB URL HTTP/1.1 assets2.24nettbutikk.no/logos/vipps_logo_rgb_trimmed.png
IP 193.107.29.107:0
File type PNG image data, 126 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 08304e6043314b994d728592a20b16f2
898d1c320db91722a7d15f99719716fe5db71715
5ab5c4baf539e790f3e49b4a250599e8854363714f38a7f060b19c7bb845d9e9
GET /logos/vipps_logo_rgb_trimmed.png HTTP/1.1
Host: assets2.24nettbutikk.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.4.6 (Ubuntu)
Date: Sat, 14 Jan 2023 07:43:34 GMT
Content-Type: image/png
Content-Length: 3507
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubdomains;
Last-Modified: Thu, 30 Aug 2018 13:57:05 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sun, 14 Jan 2024 07:44:35 GMT
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
assets2.24nettbutikk.no/24960style/images/logo/klarna_konto.png
193.107.29.107200 OK 3.4 kB URL HTTP/1.1 assets2.24nettbutikk.no/24960style/images/logo/klarna_konto.png
IP 193.107.29.107:0
File type PNG image data, 100 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 73e27a9ea2473b3e22ea7eb69f6abc76
9d9aee22ddd75749035cc78c3e43a7c5aa573ed3
a47bbeff0e3361638a73c958087cd2eab0d49bb90abb47680bd8c747e68d51aa
GET /24960style/images/logo/klarna_konto.png HTTP/1.1
Host: assets2.24nettbutikk.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.4.6 (Ubuntu)
Date: Sat, 14 Jan 2023 07:43:34 GMT
Content-Type: image/png
Content-Length: 3424
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubdomains;
Last-Modified: Thu, 15 Dec 2016 17:46:08 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sun, 14 Jan 2024 07:44:35 GMT
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
assets2.24nettbutikk.no/24960style/images/logo/posten_bring.png
193.107.29.107200 OK 7.9 kB URL HTTP/1.1 assets2.24nettbutikk.no/24960style/images/logo/posten_bring.png
IP 193.107.29.107:0
File type PNG image data, 155 x 84, 8-bit/color RGBA, non-interlaced\012- data
Hash 39649c575ee9031d6088b5d32fcab958
69afe59a8e08e4fa29841450ae7b3729c60cffd2
d0ee72c420fee38cbba66da4b21fa3f8670faa8619e79ee1e48f1f98573ef31d
GET /24960style/images/logo/posten_bring.png HTTP/1.1
Host: assets2.24nettbutikk.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.4.6 (Ubuntu)
Date: Sat, 14 Jan 2023 07:43:34 GMT
Content-Type: image/png
Content-Length: 7860
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubdomains;
Last-Modified: Wed, 24 Apr 2019 12:59:31 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Sun, 14 Jan 2024 07:44:35 GMT
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c16b1530bbcd3d9226362c0a6100f014
a49685aa2869a3674bc4c8fc58acd47f655c2111
ff063e27670433897ba82fdf8048fc228587ab2f01c21e2970f03b3df9093539
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 07:44:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
celis.no/images_hovedside/15_1.png?1671925435163
193.107.30.42200 OK 533 kB URL HTTP/1.1 celis.no/images_hovedside/15_1.png?1671925435163
IP 193.107.30.42:0
File type PNG image data, 650 x 500, 8-bit/color RGBA, non-interlaced\012- data
Size 533 kB (533377 bytes)
Hash e71b88b1e66b3f3dfe6ae773091c69f4
75893351146da95ab74e5a0f195afaaaf0ef22c1
9aa948820a3bbf097203bdcff786b72c491f44f10575f175054efd9a2565c2d0
GET /images_hovedside/15_1.png?1671925435163 HTTP/1.1
Host: celis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Cookie: 24nb=eyJpdiI6IjRRTXdFWHVaNU5qSURNWDMrOHFKXC93PT0iLCJ2YWx1ZSI6IlBcL3l0TTlUdjNBcHVWdUVHaUR0NEhPQkdMZ3VTbkZncFNMQTB1N25ZcERnT3lxc09vVG1BVUl3WFwvcmQyalJuYkNCUm55QUxLQVNrM2lQbDIzcDlFM1E9PSIsIm1hYyI6Ijc0ZTkwMGMxNjc0ODFmODdjNzg4MjI5MjY4NzAxY2I3OGE3OWM1OGQwMTQ3ZTliN2M4OGY3ZWQwMTllZGExZjEifQ%3D%3D; 24db790=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%224e1faa857f8eb070013fad3d94f9a767%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%22193.107.30.42%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A80%3A%22Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1673682274%3B%7D060c28d534cccff36657f6fea712453d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Sat, 14 Jan 2023 07:44:35 GMT
Content-Type: image/png
Content-Length: 533377
Connection: keep-alive
Last-Modified: Sat, 24 Dec 2022 23:43:51 GMT
ETag: "82381-5f09b79749fa7"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
celis.no/images_hovedside/24/jul2022/2.jpg?1666962302380
193.107.30.42200 OK 287 kB URL HTTP/1.1 celis.no/images_hovedside/24/jul2022/2.jpg?1666962302380
IP 193.107.30.42:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1250x550, components 3\012- data
Size 287 kB (286982 bytes)
Hash 01fe79b4e7460073bc8f94e7f03dd53d
dc79e614b8e605935fc936d99b78f475389e8f20
d77530220a34524d6a9e1a303cd074827616e5d5f2e363afa21262637c9b57a8
GET /images_hovedside/24/jul2022/2.jpg?1666962302380 HTTP/1.1
Host: celis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Cookie: 24nb=eyJpdiI6IjRRTXdFWHVaNU5qSURNWDMrOHFKXC93PT0iLCJ2YWx1ZSI6IlBcL3l0TTlUdjNBcHVWdUVHaUR0NEhPQkdMZ3VTbkZncFNMQTB1N25ZcERnT3lxc09vVG1BVUl3WFwvcmQyalJuYkNCUm55QUxLQVNrM2lQbDIzcDlFM1E9PSIsIm1hYyI6Ijc0ZTkwMGMxNjc0ODFmODdjNzg4MjI5MjY4NzAxY2I3OGE3OWM1OGQwMTQ3ZTliN2M4OGY3ZWQwMTllZGExZjEifQ%3D%3D; 24db790=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%224e1faa857f8eb070013fad3d94f9a767%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%22193.107.30.42%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A80%3A%22Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1673682274%3B%7D060c28d534cccff36657f6fea712453d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Sat, 14 Jan 2023 07:44:35 GMT
Content-Type: image/jpeg
Content-Length: 286982
Connection: keep-alive
Last-Modified: Fri, 28 Oct 2022 12:57:02 GMT
ETag: "46106-5ec17cb443cfd"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
celis.no/images_hovedside/Legg%20til%20en%20overskrift%20(650%20%C3%97%20500%C2%A0px)%20(17).png?1671926149666
193.107.30.42200 OK 483 kB URL HTTP/1.1 celis.no/images_hovedside/Legg%20til%20en%20overskrift%20(650%20%C3%97%20500%C2%A0px)%20(17).png?1671926149666
IP 193.107.30.42:0
File type PNG image data, 650 x 500, 8-bit/color RGBA, non-interlaced\012- data
Size 483 kB (482734 bytes)
Hash 8faad8fdca8792576d0eafaaec7c146d
237f4d127f5be3eba58f0f0d86a34b819921a110
6cd9a470818e75f0f28bdc3e9a866e1b5a82ba188778f73bc3d34a64858f699b
GET /images_hovedside/Legg%20til%20en%20overskrift%20(650%20%C3%97%20500%C2%A0px)%20(17).png?1671926149666 HTTP/1.1
Host: celis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Cookie: 24nb=eyJpdiI6IjRRTXdFWHVaNU5qSURNWDMrOHFKXC93PT0iLCJ2YWx1ZSI6IlBcL3l0TTlUdjNBcHVWdUVHaUR0NEhPQkdMZ3VTbkZncFNMQTB1N25ZcERnT3lxc09vVG1BVUl3WFwvcmQyalJuYkNCUm55QUxLQVNrM2lQbDIzcDlFM1E9PSIsIm1hYyI6Ijc0ZTkwMGMxNjc0ODFmODdjNzg4MjI5MjY4NzAxY2I3OGE3OWM1OGQwMTQ3ZTliN2M4OGY3ZWQwMTllZGExZjEifQ%3D%3D; 24db790=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%224e1faa857f8eb070013fad3d94f9a767%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%22193.107.30.42%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A80%3A%22Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1673682274%3B%7D060c28d534cccff36657f6fea712453d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Sat, 14 Jan 2023 07:44:35 GMT
Content-Type: image/png
Content-Length: 482734
Connection: keep-alive
Last-Modified: Sat, 24 Dec 2022 23:55:46 GMT
ETag: "75dae-5f09ba41360b9"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Noto+Sans:400,700|Bitter:400,700,400italic
142.250.74.106200 OK 1.3 kB URL HTTP/2 fonts.googleapis.com/css?family=Noto+Sans:400,700|Bitter:400,700,400italic
IP 142.250.74.106:0
Hash 5131ba0942dbb0fd1c2a0d557b6dc3e1
4b6b4e63cc320b1ff5ccf24783b00b9b8f83fd4e
f349769e7795ba82c7d89d30e8b76396385edef63d404bf4fd263a3089418ffd
GET /css?family=Noto+Sans:400,700|Bitter:400,700,400italic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 14 Jan 2023 07:44:35 GMT
date: Sat, 14 Jan 2023 07:44:35 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
celis.no/images_hovedside/Legg%20til%20en%20overskrift%20(650%20%C3%97%20500%C2%A0px)%20(25)_1.png?1671969470308
193.107.30.42200 OK 485 kB URL HTTP/1.1 celis.no/images_hovedside/Legg%20til%20en%20overskrift%20(650%20%C3%97%20500%C2%A0px)%20(25)_1.png?1671969470308
IP 193.107.30.42:0
File type PNG image data, 650 x 500, 8-bit/color RGBA, non-interlaced\012- data
Size 485 kB (484655 bytes)
Hash bf3bb44569d62d4ad20d127303878e3a
bf7458c2c00b5f9b6ae5e81bbcd30944b066e988
ef5173561c17900d511c40bcdc70c470441978d667b10dd5317bdeac58d64a9a
GET /images_hovedside/Legg%20til%20en%20overskrift%20(650%20%C3%97%20500%C2%A0px)%20(25)_1.png?1671969470308 HTTP/1.1
Host: celis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Cookie: 24nb=eyJpdiI6IjRRTXdFWHVaNU5qSURNWDMrOHFKXC93PT0iLCJ2YWx1ZSI6IlBcL3l0TTlUdjNBcHVWdUVHaUR0NEhPQkdMZ3VTbkZncFNMQTB1N25ZcERnT3lxc09vVG1BVUl3WFwvcmQyalJuYkNCUm55QUxLQVNrM2lQbDIzcDlFM1E9PSIsIm1hYyI6Ijc0ZTkwMGMxNjc0ODFmODdjNzg4MjI5MjY4NzAxY2I3OGE3OWM1OGQwMTQ3ZTliN2M4OGY3ZWQwMTllZGExZjEifQ%3D%3D; 24db790=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%224e1faa857f8eb070013fad3d94f9a767%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%22193.107.30.42%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A80%3A%22Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1673682274%3B%7D060c28d534cccff36657f6fea712453d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Sat, 14 Jan 2023 07:44:35 GMT
Content-Type: image/png
Content-Length: 484655
Connection: keep-alive
Last-Modified: Sun, 25 Dec 2022 11:57:50 GMT
ETag: "7652f-5f0a5ba59f3fa"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
celis.no/bilder_diverse/slide_1672587605.png
193.107.30.42200 OK 1.5 MB URL HTTP/1.1 celis.no/bilder_diverse/slide_1672587605.png
IP 193.107.30.42:0
File type PNG image data, 1564 x 864, 8-bit/color RGBA, non-interlaced\012- data
Size 1.5 MB (1517077 bytes)
Hash 07b16d8dc19000fbb6265a375b1dd4f4
55fe78750aeed2c6f415d56b699d8f109b24f9ee
2156e2cded76e8e4ae97d878cb482c3d22f705be7bf67f1cfae96c4750dbf164
GET /bilder_diverse/slide_1672587605.png HTTP/1.1
Host: celis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Cookie: 24nb=eyJpdiI6IjRRTXdFWHVaNU5qSURNWDMrOHFKXC93PT0iLCJ2YWx1ZSI6IlBcL3l0TTlUdjNBcHVWdUVHaUR0NEhPQkdMZ3VTbkZncFNMQTB1N25ZcERnT3lxc09vVG1BVUl3WFwvcmQyalJuYkNCUm55QUxLQVNrM2lQbDIzcDlFM1E9PSIsIm1hYyI6Ijc0ZTkwMGMxNjc0ODFmODdjNzg4MjI5MjY4NzAxY2I3OGE3OWM1OGQwMTQ3ZTliN2M4OGY3ZWQwMTllZGExZjEifQ%3D%3D; 24db790=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%224e1faa857f8eb070013fad3d94f9a767%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%22193.107.30.42%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A80%3A%22Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1673682274%3B%7D060c28d534cccff36657f6fea712453d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Sat, 14 Jan 2023 07:44:35 GMT
Content-Type: image/png
Content-Length: 1517077
Connection: keep-alive
Last-Modified: Sun, 01 Jan 2023 15:40:05 GMT
ETag: "172615-5f135a6108d4d"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
celis.no/images_hovedside/24/icons/truck.png
193.107.30.42200 OK 9.1 kB URL HTTP/1.1 celis.no/images_hovedside/24/icons/truck.png
IP 193.107.30.42:0
File type PNG image data, 134 x 98, 8-bit/color RGBA, non-interlaced\012- data
Hash 735b3622549953e0ced0e06f3ac49ef8
ae55158915ef4a74a5de8fa8954c5e146d37caf1
32686c27465c3115e14a079f94efddeca2d6de009bcacd06b6028b37ba758148
GET /images_hovedside/24/icons/truck.png HTTP/1.1
Host: celis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Cookie: 24nb=eyJpdiI6IjRRTXdFWHVaNU5qSURNWDMrOHFKXC93PT0iLCJ2YWx1ZSI6IlBcL3l0TTlUdjNBcHVWdUVHaUR0NEhPQkdMZ3VTbkZncFNMQTB1N25ZcERnT3lxc09vVG1BVUl3WFwvcmQyalJuYkNCUm55QUxLQVNrM2lQbDIzcDlFM1E9PSIsIm1hYyI6Ijc0ZTkwMGMxNjc0ODFmODdjNzg4MjI5MjY4NzAxY2I3OGE3OWM1OGQwMTQ3ZTliN2M4OGY3ZWQwMTllZGExZjEifQ%3D%3D; 24db790=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%224e1faa857f8eb070013fad3d94f9a767%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%22193.107.30.42%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A80%3A%22Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1673682274%3B%7D060c28d534cccff36657f6fea712453d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Sat, 14 Jan 2023 07:44:35 GMT
Content-Type: image/png
Content-Length: 9131
Connection: keep-alive
Last-Modified: Mon, 13 Jan 2020 09:43:05 GMT
ETag: "23ab-59c024d5e38ac"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
celis.no/images_hovedside/24/icons/people.png
193.107.30.42200 OK 18 kB URL HTTP/1.1 celis.no/images_hovedside/24/icons/people.png
IP 193.107.30.42:0
File type PNG image data, 134 x 134, 8-bit/color RGBA, non-interlaced\012- data
Hash d7cd7d1c2173d39fd896413750b0107c
c17f3ad2cc49fffd6f026f55f67657890547e5f7
29b4446f96a73aa06b88e1dffc78c792555b0a5da786b20e933e01e0ee585069
GET /images_hovedside/24/icons/people.png HTTP/1.1
Host: celis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Cookie: 24nb=eyJpdiI6IjRRTXdFWHVaNU5qSURNWDMrOHFKXC93PT0iLCJ2YWx1ZSI6IlBcL3l0TTlUdjNBcHVWdUVHaUR0NEhPQkdMZ3VTbkZncFNMQTB1N25ZcERnT3lxc09vVG1BVUl3WFwvcmQyalJuYkNCUm55QUxLQVNrM2lQbDIzcDlFM1E9PSIsIm1hYyI6Ijc0ZTkwMGMxNjc0ODFmODdjNzg4MjI5MjY4NzAxY2I3OGE3OWM1OGQwMTQ3ZTliN2M4OGY3ZWQwMTllZGExZjEifQ%3D%3D; 24db790=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%224e1faa857f8eb070013fad3d94f9a767%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%22193.107.30.42%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A80%3A%22Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1673682274%3B%7D060c28d534cccff36657f6fea712453d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Sat, 14 Jan 2023 07:44:35 GMT
Content-Type: image/png
Content-Length: 17921
Connection: keep-alive
Last-Modified: Mon, 13 Jan 2020 09:43:04 GMT
ETag: "4601-59c024d49685a"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
celis.no/images_hovedside/Legg%20til%20en%20overskrift%20(650%20%C3%97%20500%C2%A0px)%20(1564%20%C3%97%20864%C2%A0px)%20(5).png?1672172290424
193.107.30.42200 OK 1.2 MB URL HTTP/1.1 celis.no/images_hovedside/Legg%20til%20en%20overskrift%20(650%20%C3%97%20500%C2%A0px)%20(1564%20%C3%97%20864%C2%A0px)%20(5).png?1672172290424
IP 193.107.30.42:0
File type PNG image data, 1564 x 864, 8-bit/color RGBA, non-interlaced\012- data
Size 1.2 MB (1178698 bytes)
Hash c51a0be0fce52a67d9e19a0b924582a0
b0bd8a01cbaabc0cb3291436d4c92e9d9a649674
0c3a9cd5545254db5c9e12ff642f59a528397f9ae939965cc8bf88d90d48e0f0
GET /images_hovedside/Legg%20til%20en%20overskrift%20(650%20%C3%97%20500%C2%A0px)%20(1564%20%C3%97%20864%C2%A0px)%20(5).png?1672172290424 HTTP/1.1
Host: celis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Cookie: 24nb=eyJpdiI6IjRRTXdFWHVaNU5qSURNWDMrOHFKXC93PT0iLCJ2YWx1ZSI6IlBcL3l0TTlUdjNBcHVWdUVHaUR0NEhPQkdMZ3VTbkZncFNMQTB1N25ZcERnT3lxc09vVG1BVUl3WFwvcmQyalJuYkNCUm55QUxLQVNrM2lQbDIzcDlFM1E9PSIsIm1hYyI6Ijc0ZTkwMGMxNjc0ODFmODdjNzg4MjI5MjY4NzAxY2I3OGE3OWM1OGQwMTQ3ZTliN2M4OGY3ZWQwMTllZGExZjEifQ%3D%3D; 24db790=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%224e1faa857f8eb070013fad3d94f9a767%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%22193.107.30.42%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A80%3A%22Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1673682274%3B%7D060c28d534cccff36657f6fea712453d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Sat, 14 Jan 2023 07:44:35 GMT
Content-Type: image/png
Content-Length: 1178698
Connection: keep-alive
Last-Modified: Tue, 27 Dec 2022 20:18:09 GMT
ETag: "11fc4a-5f0d4f3558e41"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
celis.no/assets/js/fbremarketing.js?4b8a936472fbca5bed11
193.107.30.42200 OK 754 B URL HTTP/1.1 celis.no/assets/js/fbremarketing.js?4b8a936472fbca5bed11
IP 193.107.30.42:0
Hash e76c45545671cece5ad7531d3832c50d
f26e0e3b80d30486b6ffaa5f54a0187da8fd352f
1085896e2ed2470bb080f0824199227b33b5f531ab7472ce1f9c8f742513f118
GET /assets/js/fbremarketing.js?4b8a936472fbca5bed11 HTTP/1.1
Host: celis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Cookie: 24nb=eyJpdiI6IjRRTXdFWHVaNU5qSURNWDMrOHFKXC93PT0iLCJ2YWx1ZSI6IlBcL3l0TTlUdjNBcHVWdUVHaUR0NEhPQkdMZ3VTbkZncFNMQTB1N25ZcERnT3lxc09vVG1BVUl3WFwvcmQyalJuYkNCUm55QUxLQVNrM2lQbDIzcDlFM1E9PSIsIm1hYyI6Ijc0ZTkwMGMxNjc0ODFmODdjNzg4MjI5MjY4NzAxY2I3OGE3OWM1OGQwMTQ3ZTliN2M4OGY3ZWQwMTllZGExZjEifQ%3D%3D; 24db790=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%224e1faa857f8eb070013fad3d94f9a767%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%22193.107.30.42%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A80%3A%22Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1673682274%3B%7D060c28d534cccff36657f6fea712453d; javascript=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Sat, 14 Jan 2023 07:44:35 GMT
Content-Type: application/javascript
Content-Length: 754
Connection: keep-alive
Last-Modified: Tue, 25 Oct 2022 12:44:48 GMT
ETag: "6a8-5ebdb45fb1000-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
celis.no/assets2/fonts/pioneer/pioneer.ttf?tl2cf7
193.107.30.42200 OK 7.2 kB URL HTTP/1.1 celis.no/assets2/fonts/pioneer/pioneer.ttf?tl2cf7
IP 193.107.30.42:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, pioneer \012- data
Hash c17564efd9d2cffc62799399f8ce99d8
43fa0947a23e3f276500d27bda03f9e280c550bf
524b61f6b815524da2899a33ed926a242e1df31a9d8ddc0a46482f61d3bc92b7
GET /assets2/fonts/pioneer/pioneer.ttf?tl2cf7 HTTP/1.1
Host: celis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/assets/themes/afterburner/css/afterburner.compiled.css?ver=1575982250
Cookie: 24nb=eyJpdiI6IjRRTXdFWHVaNU5qSURNWDMrOHFKXC93PT0iLCJ2YWx1ZSI6IlBcL3l0TTlUdjNBcHVWdUVHaUR0NEhPQkdMZ3VTbkZncFNMQTB1N25ZcERnT3lxc09vVG1BVUl3WFwvcmQyalJuYkNCUm55QUxLQVNrM2lQbDIzcDlFM1E9PSIsIm1hYyI6Ijc0ZTkwMGMxNjc0ODFmODdjNzg4MjI5MjY4NzAxY2I3OGE3OWM1OGQwMTQ3ZTliN2M4OGY3ZWQwMTllZGExZjEifQ%3D%3D; 24db790=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%224e1faa857f8eb070013fad3d94f9a767%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%22193.107.30.42%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A80%3A%22Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1673682274%3B%7D060c28d534cccff36657f6fea712453d; javascript=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Sat, 14 Jan 2023 07:44:35 GMT
Content-Length: 7236
Connection: keep-alive
Last-Modified: Wed, 26 Oct 2022 21:24:28 GMT
ETag: "1c44-5ebf6a655c772"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
celis.no/images_hovedside/Legg%20til%20en%20overskrift%20(650%20%C3%97%20500%C2%A0px)%20(23).png?1671969549651
193.107.30.42200 OK 509 kB URL HTTP/1.1 celis.no/images_hovedside/Legg%20til%20en%20overskrift%20(650%20%C3%97%20500%C2%A0px)%20(23).png?1671969549651
IP 193.107.30.42:0
File type PNG image data, 650 x 500, 8-bit/color RGBA, non-interlaced\012- data
Size 509 kB (509268 bytes)
Hash 5146ebae383e82887b54ee938428fe95
3509146042edd596a1977b07b4e8c9f586cef2b8
deace0747f780f3792635de7f23732805481e641cc64c68c7f1a87fda222d7eb
GET /images_hovedside/Legg%20til%20en%20overskrift%20(650%20%C3%97%20500%C2%A0px)%20(23).png?1671969549651 HTTP/1.1
Host: celis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Cookie: 24nb=eyJpdiI6IjRRTXdFWHVaNU5qSURNWDMrOHFKXC93PT0iLCJ2YWx1ZSI6IlBcL3l0TTlUdjNBcHVWdUVHaUR0NEhPQkdMZ3VTbkZncFNMQTB1N25ZcERnT3lxc09vVG1BVUl3WFwvcmQyalJuYkNCUm55QUxLQVNrM2lQbDIzcDlFM1E9PSIsIm1hYyI6Ijc0ZTkwMGMxNjc0ODFmODdjNzg4MjI5MjY4NzAxY2I3OGE3OWM1OGQwMTQ3ZTliN2M4OGY3ZWQwMTllZGExZjEifQ%3D%3D; 24db790=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%224e1faa857f8eb070013fad3d94f9a767%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%22193.107.30.42%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A80%3A%22Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1673682274%3B%7D060c28d534cccff36657f6fea712453d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Sat, 14 Jan 2023 07:44:35 GMT
Content-Type: image/png
Content-Length: 509268
Connection: keep-alive
Last-Modified: Sun, 25 Dec 2022 11:59:09 GMT
ETag: "7c554-5f0a5bf0ffc70"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
celis.no/images_hovedside/16_2.png?1671925547539
193.107.30.42200 OK 513 kB URL HTTP/1.1 celis.no/images_hovedside/16_2.png?1671925547539
IP 193.107.30.42:0
File type PNG image data, 650 x 500, 8-bit/color RGBA, non-interlaced\012- data
Size 513 kB (513057 bytes)
Hash ff210e757cf9a440cead6b91fb4775a1
fc14459574f3885a79c322af9a140c34786c1dd3
98dc114dd9cb7fe2918b3f09c2b73e4e84e3fab2ae582a32568581e7f4a3bdb4
GET /images_hovedside/16_2.png?1671925547539 HTTP/1.1
Host: celis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Cookie: 24nb=eyJpdiI6IjRRTXdFWHVaNU5qSURNWDMrOHFKXC93PT0iLCJ2YWx1ZSI6IlBcL3l0TTlUdjNBcHVWdUVHaUR0NEhPQkdMZ3VTbkZncFNMQTB1N25ZcERnT3lxc09vVG1BVUl3WFwvcmQyalJuYkNCUm55QUxLQVNrM2lQbDIzcDlFM1E9PSIsIm1hYyI6Ijc0ZTkwMGMxNjc0ODFmODdjNzg4MjI5MjY4NzAxY2I3OGE3OWM1OGQwMTQ3ZTliN2M4OGY3ZWQwMTllZGExZjEifQ%3D%3D; 24db790=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%224e1faa857f8eb070013fad3d94f9a767%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%22193.107.30.42%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A80%3A%22Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1673682274%3B%7D060c28d534cccff36657f6fea712453d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Sat, 14 Jan 2023 07:44:35 GMT
Content-Type: image/png
Content-Length: 513057
Connection: keep-alive
Last-Modified: Sat, 24 Dec 2022 23:45:44 GMT
ETag: "7d421-5f09b802dc8c3"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash df489559868985b8815baa1cfaaff191
cb804ae84a7d8c2b6580c97caa484cfb515c1435
ecfca9383aa4ff0bc88dc975918610d1406ac9198e68d26a731a589b073b3ead
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 07:44:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
celis.no/images_hovedside/Legg%20til%20en%20overskrift%20(650%20%C3%97%20500%C2%A0px)%20(1564%20%C3%97%20684%C2%A0px).png?1671927331594
193.107.30.42200 OK 490 kB URL HTTP/1.1 celis.no/images_hovedside/Legg%20til%20en%20overskrift%20(650%20%C3%97%20500%C2%A0px)%20(1564%20%C3%97%20684%C2%A0px).png?1671927331594
IP 193.107.30.42:0
File type PNG image data, 1564 x 684, 8-bit/color RGBA, non-interlaced\012- data
Size 490 kB (489527 bytes)
Hash c172f2b02a3867ec9e32468df31b108e
c37fca188203550f04e96e7cf6da9b797c120812
b206b7bab0f26595f50c6649ccf1a87e63a9ddd15329e0b398099285a6df15c0
GET /images_hovedside/Legg%20til%20en%20overskrift%20(650%20%C3%97%20500%C2%A0px)%20(1564%20%C3%97%20684%C2%A0px).png?1671927331594 HTTP/1.1
Host: celis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Cookie: 24nb=eyJpdiI6IjRRTXdFWHVaNU5qSURNWDMrOHFKXC93PT0iLCJ2YWx1ZSI6IlBcL3l0TTlUdjNBcHVWdUVHaUR0NEhPQkdMZ3VTbkZncFNMQTB1N25ZcERnT3lxc09vVG1BVUl3WFwvcmQyalJuYkNCUm55QUxLQVNrM2lQbDIzcDlFM1E9PSIsIm1hYyI6Ijc0ZTkwMGMxNjc0ODFmODdjNzg4MjI5MjY4NzAxY2I3OGE3OWM1OGQwMTQ3ZTliN2M4OGY3ZWQwMTllZGExZjEifQ%3D%3D; 24db790=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%224e1faa857f8eb070013fad3d94f9a767%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%22193.107.30.42%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A80%3A%22Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1673682274%3B%7D060c28d534cccff36657f6fea712453d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Sat, 14 Jan 2023 07:44:35 GMT
Content-Type: image/png
Content-Length: 489527
Connection: keep-alive
Last-Modified: Sun, 25 Dec 2022 00:15:30 GMT
ETag: "77837-5f09beaa5d376"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.gstatic.com/s/bitter/v32/rax8HiqOu8IVPmn7f4xp.woff2
142.250.74.35200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/bitter/v32/rax8HiqOu8IVPmn7f4xp.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 30892, version 1.0\012- data
Hash c912960f49f3f9c15e37161e40937b44
5c27fb92ff5bd3996d00b565f259c484a2601a43
ee034a6cfa166960dac8b3faed99d2f0393468053f3e32d1c80c677d549f38a5
GET /s/bitter/v32/rax8HiqOu8IVPmn7f4xp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://celis.no
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30892
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 11 Jan 2023 20:32:01 GMT
expires: Thu, 11 Jan 2024 20:32:01 GMT
cache-control: public, max-age=31536000
age: 213154
last-modified: Wed, 07 Dec 2022 17:46:21 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
celis.no/images_hovedside/Legg%20til%20en%20overskrift%20(650%20%C3%97%20500%C2%A0px)%20(16).png?1671926123552
193.107.30.42200 OK 514 kB URL HTTP/1.1 celis.no/images_hovedside/Legg%20til%20en%20overskrift%20(650%20%C3%97%20500%C2%A0px)%20(16).png?1671926123552
IP 193.107.30.42:0
File type PNG image data, 650 x 500, 8-bit/color RGBA, non-interlaced\012- data
Size 514 kB (514118 bytes)
Hash a69d86f8697074df2997c03864f54a2c
1bdb0216986cebde9a1d1557a1f5d92f187baf72
2be9b497b9e9ebd6c275a03356da14bb9dbfc14d23003ddb3fb07c6f8943b546
GET /images_hovedside/Legg%20til%20en%20overskrift%20(650%20%C3%97%20500%C2%A0px)%20(16).png?1671926123552 HTTP/1.1
Host: celis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Cookie: 24nb=eyJpdiI6IjRRTXdFWHVaNU5qSURNWDMrOHFKXC93PT0iLCJ2YWx1ZSI6IlBcL3l0TTlUdjNBcHVWdUVHaUR0NEhPQkdMZ3VTbkZncFNMQTB1N25ZcERnT3lxc09vVG1BVUl3WFwvcmQyalJuYkNCUm55QUxLQVNrM2lQbDIzcDlFM1E9PSIsIm1hYyI6Ijc0ZTkwMGMxNjc0ODFmODdjNzg4MjI5MjY4NzAxY2I3OGE3OWM1OGQwMTQ3ZTliN2M4OGY3ZWQwMTllZGExZjEifQ%3D%3D; 24db790=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%224e1faa857f8eb070013fad3d94f9a767%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%22193.107.30.42%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A80%3A%22Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1673682274%3B%7D060c28d534cccff36657f6fea712453d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Sat, 14 Jan 2023 07:44:35 GMT
Content-Type: image/png
Content-Length: 514118
Connection: keep-alive
Last-Modified: Sat, 24 Dec 2022 23:55:20 GMT
ETag: "7d846-5f09ba2856f8c"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
celis.no/images_hovedside/Legg%20til%20en%20overskrift%20(650%20%C3%97%20500%C2%A0px)%20(1564%20%C3%97%20684%C2%A0px)%20(3).png?1672043719605
193.107.30.42200 OK 1.6 MB URL HTTP/1.1 celis.no/images_hovedside/Legg%20til%20en%20overskrift%20(650%20%C3%97%20500%C2%A0px)%20(1564%20%C3%97%20684%C2%A0px)%20(3).png?1672043719605
IP 193.107.30.42:0
File type PNG image data, 1564 x 684, 8-bit/color RGBA, non-interlaced\012- data
Size 1.6 MB (1584552 bytes)
Hash 633842be46bcf3472bf00d3b033e8277
f6f04086c37501b15df34c2ac7bd2bd68d1059f0
688a04af7466e26562f171cd05fdbf0511197ba5849e153772f7593f0a1f731c
GET /images_hovedside/Legg%20til%20en%20overskrift%20(650%20%C3%97%20500%C2%A0px)%20(1564%20%C3%97%20684%C2%A0px)%20(3).png?1672043719605 HTTP/1.1
Host: celis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Cookie: 24nb=eyJpdiI6IjRRTXdFWHVaNU5qSURNWDMrOHFKXC93PT0iLCJ2YWx1ZSI6IlBcL3l0TTlUdjNBcHVWdUVHaUR0NEhPQkdMZ3VTbkZncFNMQTB1N25ZcERnT3lxc09vVG1BVUl3WFwvcmQyalJuYkNCUm55QUxLQVNrM2lQbDIzcDlFM1E9PSIsIm1hYyI6Ijc0ZTkwMGMxNjc0ODFmODdjNzg4MjI5MjY4NzAxY2I3OGE3OWM1OGQwMTQ3ZTliN2M4OGY3ZWQwMTllZGExZjEifQ%3D%3D; 24db790=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%224e1faa857f8eb070013fad3d94f9a767%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%22193.107.30.42%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A80%3A%22Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1673682274%3B%7D060c28d534cccff36657f6fea712453d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Sat, 14 Jan 2023 07:44:35 GMT
Content-Type: image/png
Content-Length: 1584552
Connection: keep-alive
Last-Modified: Mon, 26 Dec 2022 08:35:18 GMT
ETag: "182da8-5f0b703e3d4a0"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
celis.no/bilder_diverse/slide_1672172886.png
193.107.30.42200 OK 934 kB URL HTTP/1.1 celis.no/bilder_diverse/slide_1672172886.png
IP 193.107.30.42:0
File type PNG image data, 1564 x 864, 8-bit/color RGBA, non-interlaced\012- data
Size 934 kB (934170 bytes)
Hash 2e71f6926ab861d6af7b21114fe6beb0
f87d577af06dae0690fad07867fe281ac2ba97e3
0200e969e04e26e6200b93e645662eae104aacd903389795f12d6d7db858d608
GET /bilder_diverse/slide_1672172886.png HTTP/1.1
Host: celis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Cookie: 24nb=eyJpdiI6IjRRTXdFWHVaNU5qSURNWDMrOHFKXC93PT0iLCJ2YWx1ZSI6IlBcL3l0TTlUdjNBcHVWdUVHaUR0NEhPQkdMZ3VTbkZncFNMQTB1N25ZcERnT3lxc09vVG1BVUl3WFwvcmQyalJuYkNCUm55QUxLQVNrM2lQbDIzcDlFM1E9PSIsIm1hYyI6Ijc0ZTkwMGMxNjc0ODFmODdjNzg4MjI5MjY4NzAxY2I3OGE3OWM1OGQwMTQ3ZTliN2M4OGY3ZWQwMTllZGExZjEifQ%3D%3D; 24db790=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%224e1faa857f8eb070013fad3d94f9a767%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%22193.107.30.42%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A80%3A%22Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1673682274%3B%7D060c28d534cccff36657f6fea712453d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Sat, 14 Jan 2023 07:44:35 GMT
Content-Type: image/png
Content-Length: 934170
Connection: keep-alive
Last-Modified: Tue, 27 Dec 2022 20:28:06 GMT
ETag: "e411a-5f0d516ecf7ce"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.gstatic.com/s/notosans/v27/o-0NIpQlx3QUlC5A4PNjXhFVZNyB.woff2
142.250.74.35200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/notosans/v27/o-0NIpQlx3QUlC5A4PNjXhFVZNyB.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 12684, version 1.0\012- data
Hash 0c235386bcf6af06f67e6c89fd19e434
10720574d4609322023984a761f32f9518c07bc4
c1c30918a861cb6a985ab55d54ad7e861682354197f164cb3b7194f20eed67ac
GET /s/notosans/v27/o-0NIpQlx3QUlC5A4PNjXhFVZNyB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://celis.no
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12684
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 10 Jan 2023 15:42:35 GMT
expires: Wed, 10 Jan 2024 15:42:35 GMT
cache-control: public, max-age=31536000
age: 316920
last-modified: Mon, 09 May 2022 18:28:04 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
sc-static.net/scevent.min.js
54.230.82.240200 OK 13 kB URL HTTP/2 sc-static.net/scevent.min.js
IP 54.230.82.240:0
File type ASCII text, with very long lines (30920), with no line terminators
Hash 5c1e6ef321052f9ef17baa3b17775b15
dc24d4674334a60c2b9d1cd9aae0b6ed1bbb09ea
12a2c25fdde940fdbf0dcf5f2743c615bf8acac3ce6d19bf8b55102526bf763f
GET /scevent.min.js HTTP/1.1
Host: sc-static.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 13268
server: CloudFront
date: Sat, 14 Jan 2023 07:44:35 GMT
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Content-Type
cache-control: private, s-maxage=0, max-age=600
set-cookie: X-AB=0d6e407936704bd380072f5891d28b0e;max-age=86400;expires=Sun, 15 Jan 2023 07:07:24 GMT;Path=/scevent.min.js; Secure; SameSite=None
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: i0vAtw_RyV3Io99qaEwcD0Me84JyKr-udeFEGkECnH4ZoaDPVSpSZA==
X-Firefox-Spdy: h2
celis.no/images_hovedside/Legg%20til%20en%20overskrift%20(650%20%C3%97%20500%C2%A0px)%20(1564%20%C3%97%20684%C2%A0px)%20(2).png?1672043086343
193.107.30.42200 OK 1.5 MB URL HTTP/1.1 celis.no/images_hovedside/Legg%20til%20en%20overskrift%20(650%20%C3%97%20500%C2%A0px)%20(1564%20%C3%97%20684%C2%A0px)%20(2).png?1672043086343
IP 193.107.30.42:0
File type PNG image data, 1564 x 684, 8-bit/color RGBA, non-interlaced\012- data
Size 1.5 MB (1518629 bytes)
Hash 0bb14adae77f675b4b5a04b007f4594a
42f099636c92d6adb59724cc9a57a6b92625a5af
07c95e79a0b66f4efaf21ef9e854bbabb4009a6a9df5168b3813f91a02eb8c19
GET /images_hovedside/Legg%20til%20en%20overskrift%20(650%20%C3%97%20500%C2%A0px)%20(1564%20%C3%97%20684%C2%A0px)%20(2).png?1672043086343 HTTP/1.1
Host: celis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Cookie: 24nb=eyJpdiI6IjRRTXdFWHVaNU5qSURNWDMrOHFKXC93PT0iLCJ2YWx1ZSI6IlBcL3l0TTlUdjNBcHVWdUVHaUR0NEhPQkdMZ3VTbkZncFNMQTB1N25ZcERnT3lxc09vVG1BVUl3WFwvcmQyalJuYkNCUm55QUxLQVNrM2lQbDIzcDlFM1E9PSIsIm1hYyI6Ijc0ZTkwMGMxNjc0ODFmODdjNzg4MjI5MjY4NzAxY2I3OGE3OWM1OGQwMTQ3ZTliN2M4OGY3ZWQwMTllZGExZjEifQ%3D%3D; 24db790=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%224e1faa857f8eb070013fad3d94f9a767%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%22193.107.30.42%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A80%3A%22Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1673682274%3B%7D060c28d534cccff36657f6fea712453d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Sat, 14 Jan 2023 07:44:35 GMT
Content-Type: image/png
Content-Length: 1518629
Connection: keep-alive
Last-Modified: Mon, 26 Dec 2022 08:24:45 GMT
ETag: "172c25-5f0b6de25f491"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.gstatic.com/s/notosans/v27/o-0IIpQlx3QUlC5A4PNr5TRA.woff2
142.250.74.35200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/notosans/v27/o-0IIpQlx3QUlC5A4PNr5TRA.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 12860, version 1.0\012- data
Hash ab21c24efd75543e16e34807ebc6cdec
eb2562f9729079333fbcbbe94868695669dd3301
88f00438d26021a325247c4427898f7c778a22976df9f1a9d9876429778bf265
GET /s/notosans/v27/o-0IIpQlx3QUlC5A4PNr5TRA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://celis.no
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 10 Jan 2023 15:42:34 GMT
expires: Wed, 10 Jan 2024 15:42:34 GMT
cache-control: public, max-age=31536000
age: 316922
last-modified: Mon, 09 May 2022 18:27:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
celis.no/images_hovedside/17_2.png?1671925526492
193.107.30.42200 OK 521 kB URL HTTP/1.1 celis.no/images_hovedside/17_2.png?1671925526492
IP 193.107.30.42:0
File type PNG image data, 650 x 500, 8-bit/color RGBA, non-interlaced\012- data
Size 521 kB (520644 bytes)
Hash d10be0758473d66e89ffc70fdf635dce
7f4d9791155a5e8dd438ed9fd80153c50bd3ed2c
d733ce7d8cd6a51f6be1658b4889301084e58682ebc6ed7525e1f0a1222d6e79
GET /images_hovedside/17_2.png?1671925526492 HTTP/1.1
Host: celis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Cookie: 24nb=eyJpdiI6IjRRTXdFWHVaNU5qSURNWDMrOHFKXC93PT0iLCJ2YWx1ZSI6IlBcL3l0TTlUdjNBcHVWdUVHaUR0NEhPQkdMZ3VTbkZncFNMQTB1N25ZcERnT3lxc09vVG1BVUl3WFwvcmQyalJuYkNCUm55QUxLQVNrM2lQbDIzcDlFM1E9PSIsIm1hYyI6Ijc0ZTkwMGMxNjc0ODFmODdjNzg4MjI5MjY4NzAxY2I3OGE3OWM1OGQwMTQ3ZTliN2M4OGY3ZWQwMTllZGExZjEifQ%3D%3D; 24db790=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%224e1faa857f8eb070013fad3d94f9a767%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%22193.107.30.42%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A80%3A%22Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1673682274%3B%7D060c28d534cccff36657f6fea712453d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Sat, 14 Jan 2023 07:44:35 GMT
Content-Type: image/png
Content-Length: 520644
Connection: keep-alive
Last-Modified: Sat, 24 Dec 2022 23:45:23 GMT
ETag: "7f1c4-5f09b7eea2e7e"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash df489559868985b8815baa1cfaaff191
cb804ae84a7d8c2b6580c97caa484cfb515c1435
ecfca9383aa4ff0bc88dc975918610d1406ac9198e68d26a731a589b073b3ead
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 07:44:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ff769a61655ff79317c1cc61664161ca
868131e2ed3c93d322543613f75d6eb8b2f72dd9
bb6f2ebe6dfb213e9596976600c2456e0511a83fbdc7aa27f109129d57adc251
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 556
Cache-Control: max-age=170026
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 07:44:36 GMT
Etag: "63c25062-1d7"
Expires: Mon, 16 Jan 2023 06:58:22 GMT
Last-Modified: Sat, 14 Jan 2023 06:49:06 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ff769a61655ff79317c1cc61664161ca
868131e2ed3c93d322543613f75d6eb8b2f72dd9
bb6f2ebe6dfb213e9596976600c2456e0511a83fbdc7aa27f109129d57adc251
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 556
Cache-Control: max-age=170026
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 07:44:36 GMT
Etag: "63c25062-1d7"
Expires: Mon, 16 Jan 2023 06:58:22 GMT
Last-Modified: Sat, 14 Jan 2023 06:49:06 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 312fdd61be99c11a38d7977736cab2e3
c7d04a3f58968b89e9d7bc581b4c75e7cafb7542
532fda09bbdf75d18ac82be5cc7c87516f578d34809cc9f8fe719219749b3507
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5782
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 07:44:36 GMT
Last-Modified: Sat, 14 Jan 2023 06:08:14 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
tr.snapchat.com/cm/i?pid=ac51940d-7a99-45df-8891-baebc7fa9a8d&u_scsid=b470c03b-e970-49f9-a903-2536db92d439&u_sclid=04ec47a8-784d-4581-844c-880247075ff7
35.190.43.134200 OK 0 B URL HTTP/2 tr.snapchat.com/cm/i?pid=ac51940d-7a99-45df-8891-baebc7fa9a8d&u_scsid=b470c03b-e970-49f9-a903-2536db92d439&u_sclid=04ec47a8-784d-4581-844c-880247075ff7
IP 35.190.43.134:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/i?pid=ac51940d-7a99-45df-8891-baebc7fa9a8d&u_scsid=b470c03b-e970-49f9-a903-2536db92d439&u_sclid=04ec47a8-784d-4581-844c-880247075ff7 HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 14 Jan 2023 07:44:36 GMT
content-type: text/html
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 0
x-envoy-upstream-service-time: 0
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tr.snapchat.com/p
35.190.43.134200 OK 68 B IP 35.190.43.134:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
POST /p HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 488
Origin: https://celis.no
Connection: keep-alive
Referer: https://celis.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 14 Jan 2023 07:44:36 GMT
access-control-allow-origin: https://celis.no
cache-control: no-cache, no-transform
set-cookie: sc_at=v2|H4sIAAAAAAAAAAXBgQ0AIQgDwIlIqAqUdR50Cob/u9sVVQdCeybnJiU1Id1fgabg1hl4bOda4aM/SlgEtzIAAAA=;SameSite=None;Version=1;Comment=;Domain=.snapchat.com;Path=/;Max-Age=33696000;Secure
content-type: text/html
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 68
x-envoy-upstream-service-time: 9
server: API Gateway
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
celis.no/favicon.ico
193.107.30.42200 OK 0 B IP 193.107.30.42:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: celis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Cookie: 24nb=eyJpdiI6IjRRTXdFWHVaNU5qSURNWDMrOHFKXC93PT0iLCJ2YWx1ZSI6IlBcL3l0TTlUdjNBcHVWdUVHaUR0NEhPQkdMZ3VTbkZncFNMQTB1N25ZcERnT3lxc09vVG1BVUl3WFwvcmQyalJuYkNCUm55QUxLQVNrM2lQbDIzcDlFM1E9PSIsIm1hYyI6Ijc0ZTkwMGMxNjc0ODFmODdjNzg4MjI5MjY4NzAxY2I3OGE3OWM1OGQwMTQ3ZTliN2M4OGY3ZWQwMTllZGExZjEifQ%3D%3D; 24db790=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%224e1faa857f8eb070013fad3d94f9a767%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%22193.107.30.42%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A80%3A%22Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1673682274%3B%7D060c28d534cccff36657f6fea712453d; javascript=1; _schn=_63bzu3; _scid=c0ac5ccf-af03-4d4b-b110-414e57925574; _gcl_au=1.1.2030558088.1673682260; _ga_0VEB93L6P3=GS1.1.1673682260.1.0.1673682260.0.0.0; _ga=GA1.1.1685767469.1673682260
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Sat, 14 Jan 2023 07:44:36 GMT
Content-Type: image/vnd.microsoft.icon
Content-Length: 0
Connection: keep-alive
Last-Modified: Wed, 10 Aug 2016 22:32:33 GMT
ETag: "0-539bf39b2f663"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ff769a61655ff79317c1cc61664161ca
868131e2ed3c93d322543613f75d6eb8b2f72dd9
bb6f2ebe6dfb213e9596976600c2456e0511a83fbdc7aa27f109129d57adc251
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 556
Cache-Control: max-age=170026
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 07:44:36 GMT
Etag: "63c25062-1d7"
Expires: Mon, 16 Jan 2023 06:58:22 GMT
Last-Modified: Sat, 14 Jan 2023 06:49:06 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cfd4ac087fdbf39fec947643791de166
eaa4dbbea8bb338542033af03196551224b5dd45
c5c261a76b945d195b6438d102fb59ef09b29b9919ceb2a1489968a3f48e98e5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2174
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 07:44:36 GMT
Last-Modified: Sat, 14 Jan 2023 07:08:22 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sat, 14 Jan 2023 06:41:07 GMT
expires: Sat, 14 Jan 2023 08:41:07 GMT
cache-control: public, max-age=7200
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
age: 3809
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 16fdc7481eb2bf489762b6b6ad440216
8ba97c0fac5d5edf8ae49bccb0ec2ba8e251f646
465edacc998277376411200c9d9e30fdc1290717d1c5857ff226e73a33bfd516
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 07:44:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 541db4f3f0ba067bfb58cdac34cb86f4
20e6883f068568888ce37c6b9ef8f5d12be257c0
83898f3b2da2a11996d2eb3a5115ef301255030fdf231b8bf7971916769bc7be
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: bcjTN2b5EJt1qM1yq039KBjB994K7+8ymmfA7EtmIFasxXY5RhpSHLgntLKT5k9665gevo4faklKV3uBEn8jRw==
priority: u=3,i
content-length: 27815
x-fb-trip-id: 1904183273
date: Sat, 14 Jan 2023 07:44:36 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/871076749/?random=1673682260041&cv=11&fst=1673682260041&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fcelis.no%2F&ref=https%3A%2F%2Fmedia.bigbasketshop.com%2F&tiba=Celis.no%20-%20Pynt%2C%20accessories%2C%20julebutikk%20og%20mye%20mer&auid=2030558088.1673682260&data=event%3Dgtag.config&rfmt=3&fmt=4
142.250.74.66200 OK 918 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/871076749/?random=1673682260041&cv=11&fst=1673682260041&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fcelis.no%2F&ref=https%3A%2F%2Fmedia.bigbasketshop.com%2F&tiba=Celis.no%20-%20Pynt%2C%20accessories%2C%20julebutikk%20og%20mye%20mer&auid=2030558088.1673682260&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 142.250.74.66:0
File type ASCII text, with very long lines (2025), with no line terminators
Hash c459e0918fcb78b12a1cfe7274cfaca2
e5896a0741bb00454dcdb6a75adf69333001984a
84930efa031ac150b77b050d614b324e14c64856b10cb25d8ba43411e3ee6b70
GET /pagead/viewthroughconversion/871076749/?random=1673682260041&cv=11&fst=1673682260041&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fcelis.no%2F&ref=https%3A%2F%2Fmedia.bigbasketshop.com%2F&tiba=Celis.no%20-%20Pynt%2C%20accessories%2C%20julebutikk%20og%20mye%20mer&auid=2030558088.1673682260&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 14 Jan 2023 07:44:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 918
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 14-Jan-2023 07:59:36 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cfd4ac087fdbf39fec947643791de166
eaa4dbbea8bb338542033af03196551224b5dd45
c5c261a76b945d195b6438d102fb59ef09b29b9919ceb2a1489968a3f48e98e5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4019
Cache-Control: max-age=105436
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 07:44:36 GMT
Etag: "63c1468d-1d7"
Expires: Sun, 15 Jan 2023 13:01:52 GMT
Last-Modified: Fri, 13 Jan 2023 11:54:53 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 16fdc7481eb2bf489762b6b6ad440216
8ba97c0fac5d5edf8ae49bccb0ec2ba8e251f646
465edacc998277376411200c9d9e30fdc1290717d1c5857ff226e73a33bfd516
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 07:44:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 69c011429c0b1f8a0c091474b207c240
fe2c5e1854a65d8a2b669fc54aa0c827f07e428b
409f967eeebf5472cb0d2a917b9285e52b21950f672c6c37a19285d3375edc7f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 07:44:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f96f3b88eebd362c0208a60d27e28068
f244f8dfbc2677fbddcf0024ff7cf343e24205bb
9b3586a498232da2b246b2bd158d7fd75eb9b4ac00ed750bbe670f1b54fe0f2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 07:44:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/1p-user-list/871076749/?random=1673682260041&cv=11&fst=1673679600000&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fcelis.no%2F&ref=https%3A%2F%2Fmedia.bigbasketshop.com%2F&tiba=Celis.no%20-%20Pynt%2C%20accessories%2C%20julebutikk%20og%20mye%20mer&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2496683958&rmt_tld=0&ipr=y
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/871076749/?random=1673682260041&cv=11&fst=1673679600000&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fcelis.no%2F&ref=https%3A%2F%2Fmedia.bigbasketshop.com%2F&tiba=Celis.no%20-%20Pynt%2C%20accessories%2C%20julebutikk%20og%20mye%20mer&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2496683958&rmt_tld=0&ipr=y
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/871076749/?random=1673682260041&cv=11&fst=1673679600000&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fcelis.no%2F&ref=https%3A%2F%2Fmedia.bigbasketshop.com%2F&tiba=Celis.no%20-%20Pynt%2C%20accessories%2C%20julebutikk%20og%20mye%20mer&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2496683958&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 14 Jan 2023 07:44:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/871076749/?random=1673682260041&cv=11&fst=1673679600000&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fcelis.no%2F&ref=https%3A%2F%2Fmedia.bigbasketshop.com%2F&tiba=Celis.no%20-%20Pynt%2C%20accessories%2C%20julebutikk%20og%20mye%20mer&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2496683958&rmt_tld=1&ipr=y
142.250.74.67200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/871076749/?random=1673682260041&cv=11&fst=1673679600000&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fcelis.no%2F&ref=https%3A%2F%2Fmedia.bigbasketshop.com%2F&tiba=Celis.no%20-%20Pynt%2C%20accessories%2C%20julebutikk%20og%20mye%20mer&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2496683958&rmt_tld=1&ipr=y
IP 142.250.74.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/871076749/?random=1673682260041&cv=11&fst=1673679600000&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fcelis.no%2F&ref=https%3A%2F%2Fmedia.bigbasketshop.com%2F&tiba=Celis.no%20-%20Pynt%2C%20accessories%2C%20julebutikk%20og%20mye%20mer&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2496683958&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 14 Jan 2023 07:44:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 815f1a1e0adac55b38019d2af17b9bbe
6e04467e75f83b4a692cf6716b5b564274a487c7
6d8326d418f56d57221790353c7b220088d63c133901e0b500accb5e420811db
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 07:44:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-24343184-8&cid=1685767469.1673682260&jid=983859982&gjid=1368065541&_gid=784079738.1673682260&_u=IADAAEAAAAAAACAAI~&z=272397802
173.194.222.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-24343184-8&cid=1685767469.1673682260&jid=983859982&gjid=1368065541&_gid=784079738.1673682260&_u=IADAAEAAAAAAACAAI~&z=272397802
IP 173.194.222.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-24343184-8&cid=1685767469.1673682260&jid=983859982&gjid=1368065541&_gid=784079738.1673682260&_u=IADAAEAAAAAAACAAI~&z=272397802 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://celis.no
Connection: keep-alive
Referer: https://celis.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://celis.no
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 14 Jan 2023 07:44:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-85161377-1&cid=1685767469.1673682260&jid=989720325&gjid=2066676492&_gid=784079738.1673682260&_u=IADAAEABAAAAACAAI~&z=867040559
173.194.222.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-85161377-1&cid=1685767469.1673682260&jid=989720325&gjid=2066676492&_gid=784079738.1673682260&_u=IADAAEABAAAAACAAI~&z=867040559
IP 173.194.222.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-85161377-1&cid=1685767469.1673682260&jid=989720325&gjid=2066676492&_gid=784079738.1673682260&_u=IADAAEABAAAAACAAI~&z=867040559 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://celis.no
Connection: keep-alive
Referer: https://celis.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://celis.no
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 14 Jan 2023 07:44:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f96f3b88eebd362c0208a60d27e28068
f244f8dfbc2677fbddcf0024ff7cf343e24205bb
9b3586a498232da2b246b2bd158d7fd75eb9b4ac00ed750bbe670f1b54fe0f2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 07:44:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.facebook.com/tr/?id=363070558056973&ev=PageView&dl=https%3A%2F%2Fcelis.no%2F&rl=https%3A%2F%2Fmedia.bigbasketshop.com%2F&if=false&ts=1673682260451&sw=1280&sh=1024&v=2.9.92&r=stable&ec=0&o=30&fbp=fb.1.1673682260450.120564923&it=1673682260303&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=363070558056973&ev=PageView&dl=https%3A%2F%2Fcelis.no%2F&rl=https%3A%2F%2Fmedia.bigbasketshop.com%2F&if=false&ts=1673682260451&sw=1280&sh=1024&v=2.9.92&r=stable&ec=0&o=30&fbp=fb.1.1673682260450.120564923&it=1673682260303&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=363070558056973&ev=PageView&dl=https%3A%2F%2Fcelis.no%2F&rl=https%3A%2F%2Fmedia.bigbasketshop.com%2F&if=false&ts=1673682260451&sw=1280&sh=1024&v=2.9.92&r=stable&ec=0&o=30&fbp=fb.1.1673682260450.120564923&it=1673682260303&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 14 Jan 2023 07:44:36 GMT
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-0VEB93L6P3>m=2oe1a1&_p=551486168&cid=1685767469.1673682260&ul=en-us&sr=1280x1024&_s=1&sid=1673682260&sct=1&seg=0&dl=https%3A%2F%2Fcelis.no%2F&dr=https%3A%2F%2Fmedia.bigbasketshop.com%2F&dt=Celis.no%20-%20Pynt%2C%20accessories%2C%20julebutikk%20og%20mye%20mer&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-0VEB93L6P3>m=2oe1a1&_p=551486168&cid=1685767469.1673682260&ul=en-us&sr=1280x1024&_s=1&sid=1673682260&sct=1&seg=0&dl=https%3A%2F%2Fcelis.no%2F&dr=https%3A%2F%2Fmedia.bigbasketshop.com%2F&dt=Celis.no%20-%20Pynt%2C%20accessories%2C%20julebutikk%20og%20mye%20mer&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-0VEB93L6P3>m=2oe1a1&_p=551486168&cid=1685767469.1673682260&ul=en-us&sr=1280x1024&_s=1&sid=1673682260&sct=1&seg=0&dl=https%3A%2F%2Fcelis.no%2F&dr=https%3A%2F%2Fmedia.bigbasketshop.com%2F&dt=Celis.no%20-%20Pynt%2C%20accessories%2C%20julebutikk%20og%20mye%20mer&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://celis.no
Connection: keep-alive
Referer: https://celis.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://celis.no
date: Sat, 14 Jan 2023 07:44:37 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
celis.no/images_hovedside/Legg%20til%20en%20overskrift%20(650%20%C3%97%20500%C2%A0px)%20(24)_1.png?1671969417767
193.107.30.42200 OK 0 B URL HTTP/1.1 celis.no/images_hovedside/Legg%20til%20en%20overskrift%20(650%20%C3%97%20500%C2%A0px)%20(24)_1.png?1671969417767
IP 193.107.30.42:0
GET /images_hovedside/Legg%20til%20en%20overskrift%20(650%20%C3%97%20500%C2%A0px)%20(24)_1.png?1671969417767 HTTP/1.1
Host: celis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Cookie: 24nb=eyJpdiI6IjRRTXdFWHVaNU5qSURNWDMrOHFKXC93PT0iLCJ2YWx1ZSI6IlBcL3l0TTlUdjNBcHVWdUVHaUR0NEhPQkdMZ3VTbkZncFNMQTB1N25ZcERnT3lxc09vVG1BVUl3WFwvcmQyalJuYkNCUm55QUxLQVNrM2lQbDIzcDlFM1E9PSIsIm1hYyI6Ijc0ZTkwMGMxNjc0ODFmODdjNzg4MjI5MjY4NzAxY2I3OGE3OWM1OGQwMTQ3ZTliN2M4OGY3ZWQwMTllZGExZjEifQ%3D%3D; 24db790=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%224e1faa857f8eb070013fad3d94f9a767%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%22193.107.30.42%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A80%3A%22Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1673682274%3B%7D060c28d534cccff36657f6fea712453d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Sat, 14 Jan 2023 07:44:35 GMT
Content-Type: image/png
Content-Length: 473021
Connection: keep-alive
Last-Modified: Sun, 25 Dec 2022 11:56:57 GMT
ETag: "737bd-5f0a5b731dcb1"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
tr.snapchat.com/config/no/ac51940d-7a99-45df-8891-baebc7fa9a8d.js
35.190.43.134200 OK 0 B URL HTTP/2 tr.snapchat.com/config/no/ac51940d-7a99-45df-8891-baebc7fa9a8d.js
IP 35.190.43.134:0
GET /config/no/ac51940d-7a99-45df-8891-baebc7fa9a8d.js HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://celis.no
Connection: keep-alive
Referer: https://celis.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 14 Jan 2023 07:44:36 GMT
access-control-allow-origin: https://celis.no
content-type: application/javascript
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-envoy-upstream-service-time: 0
content-encoding: gzip
vary: Accept-Encoding
server: API Gateway
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tc.tradetracker.net/?c=31502&m=12&a=416060&r=RA&u=
46.137.112.3301 Moved Permanently 0 B URL HTTP/2 tc.tradetracker.net/?c=31502&m=12&a=416060&r=RA&u=
IP 46.137.112.3:0
GET /?c=31502&m=12&a=416060&r=RA&u= HTTP/1.1
Host: tc.tradetracker.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://media.bigbasketshop.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sat, 14 Jan 2023 07:44:34 GMT
content-type: text/html; charset=UTF-8
location: https://celis.no/
server: nginx
cache-control: no-cache, must-revalidate
set-cookie: uf=VvHzfdVeFDMZ1BvBM1TRV1lrT0FVbU9heHhRSEYzRUNkcVBZZExyUmdlRFNXRFMway9rZk5oYTMxR2h1VzVsd2dacE51OGpXaEg5MWRUMzJxcmlGNHlibVI2SUNqYzh4c2lkbEl3PT0%3D; expires=Sun, 14-Jan-2024 07:44:34 GMT; Max-Age=31536000; path=/; domain=.tradetracker.net; secure; SameSite=None
__tdat31502=MTY3MzY4MjI3NDo6MTI6OjQxNjA2MDo6UkE6OmY6OjQ5ZWIwMzIwOWM1MzM0OGNlNzk1NGIxNTdmMGU4MDM4; expires=Mon, 13-Feb-2023 07:44:34 GMT; Max-Age=2592000; path=/; domain=.tradetracker.net; secure; SameSite=None
X-Firefox-Spdy: h2
celis.no/assets/js/theme.js?m=1666701888
193.107.30.42200 OK 0 B URL HTTP/1.1 celis.no/assets/js/theme.js?m=1666701888
IP 193.107.30.42:0
GET /assets/js/theme.js?m=1666701888 HTTP/1.1
Host: celis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Cookie: 24nb=eyJpdiI6IjRRTXdFWHVaNU5qSURNWDMrOHFKXC93PT0iLCJ2YWx1ZSI6IlBcL3l0TTlUdjNBcHVWdUVHaUR0NEhPQkdMZ3VTbkZncFNMQTB1N25ZcERnT3lxc09vVG1BVUl3WFwvcmQyalJuYkNCUm55QUxLQVNrM2lQbDIzcDlFM1E9PSIsIm1hYyI6Ijc0ZTkwMGMxNjc0ODFmODdjNzg4MjI5MjY4NzAxY2I3OGE3OWM1OGQwMTQ3ZTliN2M4OGY3ZWQwMTllZGExZjEifQ%3D%3D; 24db790=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%224e1faa857f8eb070013fad3d94f9a767%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%22193.107.30.42%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A80%3A%22Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1673682274%3B%7D060c28d534cccff36657f6fea712453d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Sat, 14 Jan 2023 07:44:34 GMT
Content-Type: application/javascript
Content-Length: 48163
Connection: keep-alive
Last-Modified: Tue, 25 Oct 2022 12:44:48 GMT
ETag: "30eeb-5ebdb45fb1000-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
celis.no/images_hovedside/14_4.png?1671925505360
193.107.30.42200 OK 0 B URL HTTP/1.1 celis.no/images_hovedside/14_4.png?1671925505360
IP 193.107.30.42:0
GET /images_hovedside/14_4.png?1671925505360 HTTP/1.1
Host: celis.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://celis.no/
Cookie: 24nb=eyJpdiI6IjRRTXdFWHVaNU5qSURNWDMrOHFKXC93PT0iLCJ2YWx1ZSI6IlBcL3l0TTlUdjNBcHVWdUVHaUR0NEhPQkdMZ3VTbkZncFNMQTB1N25ZcERnT3lxc09vVG1BVUl3WFwvcmQyalJuYkNCUm55QUxLQVNrM2lQbDIzcDlFM1E9PSIsIm1hYyI6Ijc0ZTkwMGMxNjc0ODFmODdjNzg4MjI5MjY4NzAxY2I3OGE3OWM1OGQwMTQ3ZTliN2M4OGY3ZWQwMTllZGExZjEifQ%3D%3D; 24db790=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%224e1faa857f8eb070013fad3d94f9a767%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%22193.107.30.42%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A80%3A%22Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0%29+Gecko%2F20100101+Firefox%2F105.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1673682274%3B%7D060c28d534cccff36657f6fea712453d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Sat, 14 Jan 2023 07:44:35 GMT
Content-Type: image/png
Content-Length: 516488
Connection: keep-alive
Last-Modified: Sat, 24 Dec 2022 23:45:02 GMT
ETag: "7e188-5f09b7da59a3b"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
media.bigbasketshop.com/track?q=y9mVqLVe3evR
104.21.86.113200 OK 0 B URL HTTP/2 media.bigbasketshop.com/track?q=y9mVqLVe3evR
IP 104.21.86.113:0
GET /track?q=y9mVqLVe3evR HTTP/1.1
Host: media.bigbasketshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://p.npcad.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 14 Jan 2023 07:44:34 GMT
content-type: text/html
referrer-policy: origin
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XbotniE6hK2O0Cuj6LANFa293FR%2Buhtgaic7%2Fv5gMzIa2ymPbiIkOQffinO7FhSgTKMqIqbmIC0GkFGMehJb6SlE6%2FjctyQcUGCAABTPHkAnpXsrj%2FwVDGWuq2aayDZOR7REvOA0JKWFpg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7894bf44697c0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2