Overview

URL8.us.findthewnd.xyz/feed/?link=true&tid=8&subid=8k.us&ref=track.gositego.live&s1=6381c6aab526f72f2c16bf8e
IP 23.235.251.114 (United States)
ASN#19437 SS-ASH
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-26 07:56:59 UTC
StatusLoading report..
IDS alerts0
Blocklist alert2
urlquery alerts No alerts detected
Tags None

Domain Summary (39)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
firefox.settings.services.mozilla.com (2) 867 No data No data 34.102.187.140
policy.app.cookieinformation.com (4) 34976 No data No data 152.199.21.175
ocsp.sca1b.amazontrust.com (1) 1015 No data No data 143.204.42.88
r3.o.lencr.org (11) 344 No data No data 23.36.76.226
ocsp.digicert.com (8) 86 No data No data 93.184.220.29
samba.trffclb.com (2) 0 No data No data 51.83.143.92 Unknown ranking
api-js.datadome.co (1) 8155 No data No data 13.51.39.45
www.googletagmanager.com (1) 75 No data No data 142.250.74.168
chimpstatic.com (1) 4832 No data No data 96.6.17.210
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
popmyads.com (1) 44134 No data No data 104.21.54.194
ocsp.pki.goog (10) 175 No data No data 142.250.74.3
ocsp.usertrust.com (1) 899 No data No data 104.18.32.68
braasport.no (14) 0 No data No data 5.145.153.8 Unknown ranking
www.google-analytics.com (1) 40 No data No data 142.250.74.174
connect.getflowbox.com (2) 44529 No data No data 143.204.55.66
api.clerk.io (8) 60284 No data No data 52.58.186.193
geotrkclknow.com (1) 0 No data No data 172.67.161.46 Unknown ranking
push.services.mozilla.com (1) 2140 No data No data 35.160.184.41
dd.kelkoogroup.net (1) 0 No data No data 54.230.111.47 Domain (kelkoogroup.net) ranked at: 79339
status.thawte.com (2) 5123 No data No data 93.184.220.29
no-go.kelkoogroup.net (3) 0 No data No data 95.211.116.27 Domain (kelkoogroup.net) ranked at: 79339
8.us.findthewnd.xyz (1) 0 No data No data 23.235.251.114 Unknown ranking
redir.tealwinds.xyz (1) 0 No data No data 198.211.113.186 Domain (tealwinds.xyz) ranked at: 178693
pritha-ner.com (1) 141698 No data No data 3.208.247.235
api.kelkoogroup.net (1) 468795 No data No data 143.204.55.112
www.braasport.no (1) 0 No data No data 5.145.153.8 Unknown ranking
braa.icdn.no (17) 0 No data No data 172.67.131.222 Unknown ranking
contile.services.mozilla.com (1) 1114 No data No data 34.117.237.239
fonts.gstatic.com (1) 0 No data No data 216.58.207.195 Domain (gstatic.com) ranked at: 540
coi-prod.azureedge.net (1) 191751 No data No data 152.199.21.175
fonts.googleapis.com (1) 8877 No data No data 142.250.74.10
mono.trffcsource.com (1) 180746 No data No data 51.83.143.92
cdn.clerk.io (1) 73670 No data No data 52.29.221.108
static.ws.apsis.one (1) 300210 No data No data 54.230.111.22
img-getpocket.cdn.mozilla.net (7) 1631 No data No data 34.120.237.76
ubfbboxn.com (2) 0 No data No data 3.126.48.135 Unknown ranking
static.lipscore.com (2) 483894 No data No data 143.204.55.30
wapi.lipscore.com (60) 318267 No data No data 151.101.86.217

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
 No alerts detected

mnemonic secure dns
 No alerts detected

Quad9 DNS
Scan Date Severity Indicator Comment
2022-11-26 2 trffclb.com Sinkholed
2022-11-26 2 trffclb.com Sinkholed


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 23.235.251.114
Date UQ / IDS / BL URL IP
2023-02-05 11:22:44 +0000 0 - 0 - 2 4.us.silverwinds.xyz/feed/?link=true&tid=4&su (...) 23.235.251.114
2023-02-03 20:22:48 +0000 0 - 0 - 2 8.us.tealwinds.xyz/feed/?link=true&tid=8&subi (...) 23.235.251.114
2023-01-29 16:07:50 +0000 0 - 2 - 2 66.us.tealwinds.xyz/feed/?link=true&tid=66&su (...) 23.235.251.114
2023-01-25 06:47:03 +0000 0 - 0 - 1 21.us.tealwinds.xyz/feed/?link=true&tid=21&su (...) 23.235.251.114
2023-01-19 15:47:03 +0000 0 - 0 - 2 60.us.tealwinds.xyz/feed/?link=true&tid=60&su (...) 23.235.251.114


Last 5 reports on ASN: SS-ASH
Date UQ / IDS / BL URL IP
2023-02-05 11:22:44 +0000 0 - 0 - 2 4.us.silverwinds.xyz/feed/?link=true&tid=4&su (...) 23.235.251.114
2023-02-03 20:22:48 +0000 0 - 0 - 2 8.us.tealwinds.xyz/feed/?link=true&tid=8&subi (...) 23.235.251.114
2023-02-01 20:53:46 +0000 0 - 0 - 22 www.montereycountyclinicservices.org/ 131.153.100.222
2023-01-31 07:05:58 +0000 0 - 0 - 4 www.afamag.com/ 131.153.100.9
2023-01-29 16:07:50 +0000 0 - 2 - 2 66.us.tealwinds.xyz/feed/?link=true&tid=66&su (...) 23.235.251.114


Last 5 reports on domain: findthewnd.xyz
Date UQ / IDS / BL URL IP
2023-01-07 13:30:31 +0000 0 - 2 - 4 22.us.findthewnd.xyz/feed/?link=true&tid=22&s (...) 23.235.251.114
2022-12-29 08:58:09 +0000 0 - 0 - 3 22.us.findthewnd.xyz/feed/?link=true&tid=22&s (...) 23.235.251.114
2022-12-25 04:52:14 +0000 0 - 0 - 4 22.us.findthewnd.xyz/feed/?link=true&tid=22&s (...) 23.235.251.114
2022-12-23 00:58:30 +0000 0 - 0 - 3 22.us.findthewnd.xyz/feed/?link=true&tid=22&s (...) 23.235.251.114
2022-12-22 18:48:23 +0000 0 - 0 - 3 22.us.findthewnd.xyz/feed/?link=true&tid=22&s (...) 23.235.251.114


Last 1 reports with similar screenshot
Date UQ / IDS / BL URL IP
2023-01-24 05:26:17 +0000 0 - 0 - 1 gamingfun.me/watch.php?id=2UPAZ8.exe 52.173.151.229

JavaScript

Executed Scripts (40)

Executed Evals (1)
#1 JavaScript::Eval (size: 91) - SHA256: dd0db4070d82505b49de7e0f991818f84f4d5a7ffe51b98675be8e2e84c05555
(function() {
    return window.CookieInformation.getConsentGivenFor("cookie_cat_statistic")
})();

Executed Writes (0)


HTTP Transactions (177)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16456
Expires: Sat, 26 Nov 2022 12:31:04 GMT
Date: Sat, 26 Nov 2022 07:56:48 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "141AC47ACC3800E5D35A82012FA4B044277ABAD3A95DC24415F66FB72C972AE6"
Last-Modified: Wed, 23 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7735
Expires: Sat, 26 Nov 2022 10:05:43 GMT
Date: Sat, 26 Nov 2022 07:56:48 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4294
Cache-Control: max-age=99960
Date: Sat, 26 Nov 2022 07:56:48 GMT
Etag: "63809972-1d7"
Expires: Sun, 27 Nov 2022 11:42:48 GMT
Last-Modified: Fri, 25 Nov 2022 10:31:14 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: ZGZbHiF98V3xU0PvR0XNAWDCSnFmedjQQo64o/PQp32D0XNQDMKRPKs05lYFqaVMZ7p8jJrHUhE=
x-amz-request-id: 7BVXCVDEZV4ZD1JW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 26 Nov 2022 07:44:09 GMT
age: 759
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 26 Nov 2022 07:17:31 GMT
cache-control: public,max-age=3600
age: 2357
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    567df7db606cf5d0871aa5bc9311b6da
Sha1:   4263faac7cbab2fcaf6661911dcad5091c06be17
Sha256: e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sat, 26 Nov 2022 07:56:48 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 26 Nov 2022 07:11:12 GMT
cache-control: public,max-age=3600
age: 2736
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5185
Cache-Control: max-age=95788
Date: Sat, 26 Nov 2022 07:56:48 GMT
Etag: "638085ab-1d7"
Expires: Sun, 27 Nov 2022 10:33:16 GMT
Last-Modified: Fri, 25 Nov 2022 09:06:51 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /feed/?link=true&tid=8&subid=8k.us&ref=track.gositego.live&s1=6381c6aab526f72f2c16bf8e HTTP/1.1 
Host: 8.us.findthewnd.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         23.235.251.114
HTTP/1.1 301 Moved Permanently
                                        
Cache-Control: no-cache
Location: https://redir.tealwinds.xyz/click/invalid/?tid=8&subid=8k.us
Date: Sat, 26 Nov 2022 07:56:48 GMT
Connection: keep-alive
Keep-Alive: timeout=5
Transfer-Encoding: chunked

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: m5aalM4UI/RbWTSpGcuNGQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         35.160.184.41
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: okMJidUUS35HN0bvwnuiKA1z+Dg=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "9E2F1C72BBCCD1F2E546F409DDA97363A525AD40021B349FB085E5D3AEA5434D"
Last-Modified: Sat, 26 Nov 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 26 Nov 2022 13:56:49 GMT
Date: Sat, 26 Nov 2022 07:56:49 GMT
Connection: keep-alive

                                        
                                            GET /click/invalid/?tid=8&subid=8k.us HTTP/1.1 
Host: redir.tealwinds.xyz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         198.211.113.186
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
X-Powered-By: Express
Surrogate-Control: no-store
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate
Pragma: no-cache
Expires: 0
Location: https://mono.trffcsource.com/z.php?p=c:9qopki6xxt24fkzm4&d=620239e89b29133e2933cceb&s=8
Vary: Accept
Content-Length: 234
Date: Sat, 26 Nov 2022 07:56:49 GMT
Connection: keep-alive
Keep-Alive: timeout=5


--- Additional Info ---
Magic:  HTML document, ASCII text, with no line terminators
Size:   234
Md5:    ec5db86b65bb94d1ae856c7ef84ada1e
Sha1:   14cb402b710327b35e5e2cc315cf3e9b18718223
Sha256: 682fdb61228205f6ff34d48ee6229e0ab0f086f9c7c6ec2d53b812c9fff3aa57
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "49DA6B0B960BB9ACC9977D1DE478E4269F0C224EE236E4DEAAE5243B99CEFF69"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10339
Expires: Sat, 26 Nov 2022 10:49:08 GMT
Date: Sat, 26 Nov 2022 07:56:49 GMT
Connection: keep-alive

                                        
                                            GET /z.php?p=c:9qopki6xxt24fkzm4&d=620239e89b29133e2933cceb&s=8 HTTP/1.1 
Host: mono.trffcsource.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         51.83.143.92
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sat, 26 Nov 2022 07:56:49 GMT
Content-Length: 0
Connection: keep-alive
Round: 11hx4alk7e
Raund: 25d
Location: https://samba.trffclb.com/l.php?p=c:9qopki6xwqp07eckv&d=603611c5b7eaf46891533240&s=int_8

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "49DA6B0B960BB9ACC9977D1DE478E4269F0C224EE236E4DEAAE5243B99CEFF69"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10339
Expires: Sat, 26 Nov 2022 10:49:08 GMT
Date: Sat, 26 Nov 2022 07:56:49 GMT
Connection: keep-alive

                                        
                                            GET /l.php?p=c:9qopki6xwqp07eckv&d=603611c5b7eaf46891533240&s=int_8 HTTP/1.1 
Host: samba.trffclb.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         51.83.143.92
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sat, 26 Nov 2022 07:56:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: bt-603611c5b7eaf46891533240=6381c6c18cfb7c53c40a97b1; expires=Tue, 29-Nov-2022 07:56:49 GMT; Max-Age=259200; path=/; domain=samba.trffclb.com; HttpOnly
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with very long lines (538)
Size:   491
Md5:    bbf5c16161f1c7fb963192079edbc07f
Sha1:   e1504575ac1c497f8ae90cb02eeb2db9907a1d2b
Sha256: 03c32ba99e77652cae4d0a53673c970585b855cf772a1078acdec8f9fcf0333f

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /l.php?p=c:9qopki6xwqp07eckv&d=603611c5b7eaf46891533240&s=int_8&bv=1 HTTP/1.1 
Host: samba.trffclb.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://samba.trffclb.com/l.php?p=c:9qopki6xwqp07eckv&d=603611c5b7eaf46891533240&s=int_8
Cookie: bt-603611c5b7eaf46891533240=6381c6c18cfb7c53c40a97b1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin

search
                                         51.83.143.92
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sat, 26 Nov 2022 07:56:49 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: bt-603611c5b7eaf46891533240=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=samba.trffclb.com; HttpOnly
Round: 11kgq037yu
Raund: 2si
Location: https://popmyads.com/serve/52264/64661/szqpmqqoapdpgpq/aHR0cDovL3RyYWZmaXgxMy5jb20=


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4498
Cache-Control: max-age=87543
Date: Sat, 26 Nov 2022 07:56:49 GMT
Etag: "63806826-117"
Expires: Sun, 27 Nov 2022 08:15:52 GMT
Last-Modified: Fri, 25 Nov 2022 07:00:54 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /serve/52264/64661/szqpmqqoapdpgpq/aHR0cDovL3RyYWZmaXgxMy5jb20= HTTP/1.1 
Host: popmyads.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://samba.trffclb.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         104.21.54.194
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Sat, 26 Nov 2022 07:56:49 GMT
x-powered-by: PHP/7.1.33
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FCd5N65GkZeU5DsLdQ3kAGodLFbxOPT5H8RO4iLo0yxbomaOKNPqAi8908BsZ1Iw7dF%2FOCpguJmGeyk%2BXFq1hQ%2Bo9%2Bf%2FC0qt%2Fs7jWlRYQ3qRmmnHLT8UCSfOIaOuiRA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 770111dc3fee0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Size:   1043
Md5:    956fa2207a4aa733ccd638885144821c
Sha1:   c6a8ca3e91d25ada15929126a9bd67b45b2cd522
Sha256: aaf5d7b0597d24e019c0b0070cf40425fd41d666254093775d7ba6f8f7de181e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2827
Expires: Sat, 26 Nov 2022 08:43:57 GMT
Date: Sat, 26 Nov 2022 07:56:50 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2827
Expires: Sat, 26 Nov 2022 08:43:57 GMT
Date: Sat, 26 Nov 2022 07:56:50 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2827
Expires: Sat, 26 Nov 2022 08:43:57 GMT
Date: Sat, 26 Nov 2022 07:56:50 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2827
Expires: Sat, 26 Nov 2022 08:43:57 GMT
Date: Sat, 26 Nov 2022 07:56:50 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 3502
x-amzn-requestid: ca3f2610-e03c-48a7-abb3-fbbab76f63d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYUHO5IAMFqDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-7e36137711dc4668278c1c94;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QS3ZKYetcm87GNwSr34eRPF2d4r8ppwf3fT19aV-u84f7ObX4bU8wQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 08:20:28 GMT
age: 84982
etag: "61f9bed607e81606be78285596acdc5e0e4f4994"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   3502
Md5:    a783df85f30f9c555f9df6b99f61744d
Sha1:   61f9bed607e81606be78285596acdc5e0e4f4994
Sha256: 19db42201d0fa059f680d890ede6683c04e893e6308a2256d0203f826a7f34de
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30fddcf4-c88b-41c3-90f7-a4530639de73.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7025
x-amzn-requestid: 2c9cd3bc-80d4-4578-a0aa-4f1ff7f19d30
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVNYGwaIAMFU8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813588-0c66a293144f894f001ae0cf;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:37:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gxs4AeIklafRh02vSn6hA5r7MZagrQsqNR0zhpl5HHiQhQEswFc8RQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:48:35 GMT
age: 36495
etag: "741e5e48c4fb170efee9b611be5638d999a09bd2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7025
Md5:    7e0c5064718601e80b7bfc931120ff70
Sha1:   741e5e48c4fb170efee9b611be5638d999a09bd2
Sha256: d0b1537f43277e7f59152e6272d4f3888ab4618fa7fe0e4b24e2f851dbf0f4cd
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4309
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1U8xGxgIAMF-qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ezHvyK3va4SioabOjSittTiLQRs_Q8k4TPxkiGp_svtZ8omDPTUN-A==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 05:04:28 GMT
age: 10342
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4309
Md5:    841a4b110022a99ddea6f7bf66df0fa1
Sha1:   126771b86638108050cf57c0d12faa27f80f0edb
Sha256: 240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7a5b86-3ad1-40c7-b173-8a9ac078c227.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8913
x-amzn-requestid: d0a9414c-eccf-44e8-adb7-92654544eeb5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLWWXEpeIAMFnzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381375b-5825510666b3e80a5f83cafa;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:44:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: LDrq5UcFhG63XFZhmeS5Z_mEkwrvuQ2bLfT8hV9I3E1s1lJLZF5Dww==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:46:24 GMT
age: 36626
etag: "0b6c9b51d10762a4747286ab5b1c2354fa39c622"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8913
Md5:    5088223f5973e3cd56f03f50a1e84b79
Sha1:   0b6c9b51d10762a4747286ab5b1c2354fa39c622
Sha256: 8159e4f7eec7bea518bb29e3fdb070bab4fb70116205577f7b7d74ad4d0dfbc7
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9049
x-amzn-requestid: 6cbd9639-c29d-4ff4-8091-3168f64f4c78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVGHzKoAMFSuA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135ba-100ea4235fdf1df8491041c8;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OJZkZ18TlSgdBWsmSroQPIcYIvBFvz5-7hu9_GravTcz6zqxKXHZrg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:43:36 GMT
age: 36794
etag: "3d32bff85cb7ec118c4496d0c3802829fdc9af3b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9049
Md5:    c8dc4b8a7e9f7f4f84f0da568b43392b
Sha1:   3d32bff85cb7ec118c4496d0c3802829fdc9af3b
Sha256: 4b0ffde427085c796a7a5823604b29a4af43dbb93e99ec41f34feb37f52ac7d9
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b25450-4da4-45fe-97c4-620a26a2ac8f.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11186
x-amzn-requestid: 67dbfbd2-ba7f-4540-8d2c-5c2c4de21cae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLUf7HGdIAMFhow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813465-36b0d8fc4bdb5faf328bd99d;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:32:21 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aWg_mLQcRYtCNYfaypt-rqwKNbzd4FOFd3mMT8sSQU_dmO7KP29Rsw==
via: 1.1 7b00c3fd9220034414107b03e53b1b8e.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 22:01:51 GMT
age: 35699
etag: "2f88534696701cfdaf7e2aa78f6d4b8766a2b77f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11186
Md5:    2f470fab0957e148a9c58dfeedc72463
Sha1:   2f88534696701cfdaf7e2aa78f6d4b8766a2b77f
Sha256: c2c5617f8fbf3860578a9bcf821dea13e3225ccd02774f29f4bf022e4abd9ff9
                                        
                                            GET /0646614100?adTagId=20111650-aa5d-11e6-a4a9-0e855f2e0669&fallbackUrl=https://popmyads.com/return/30 HTTP/1.1 
Host: pritha-ner.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         3.208.247.235
HTTP/1.1 302
                                        
Date: Sat, 26 Nov 2022 07:56:50 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Location: https://geotrkclknow.com/rot/HWFzx7fRrNLrsCgv?extid=dve232e3a66d5f11edb6d50a198dd38f7956a781bfaf8348779dc042b57002a6c906927194b8c04eb400&cost=0.001000
Server: BWjFVCzz

                                        
                                            POST /s/gts1p5/a9LXWPqIFeg HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 26 Nov 2022 07:56:50 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /s/gts1p5/a9LXWPqIFeg HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 26 Nov 2022 07:56:50 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "5148FD9827152BE219165E04B9413FA3FE226F45E534178DDB37D76A37C133CF"
Last-Modified: Thu, 24 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20053
Expires: Sat, 26 Nov 2022 13:31:03 GMT
Date: Sat, 26 Nov 2022 07:56:50 GMT
Connection: keep-alive

                                        
                                            GET /click?trvid=30559&extid=dve232e3a66d5f11edb6d50a198dd38f7956a781bfaf8348779dc042b57002a6c906927194b8c04eb400&cost=0.001000 HTTP/1.1 
Host: ubfbboxn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         3.126.48.135
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
server: nginx
date: Sat, 26 Nov 2022 07:56:51 GMT
content-length: 1371
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
expires: Thu, 01 Jan 1970 00:00:00 UTC
pragma: no-cache
set-cookie: ClickDataNG=H4sIAAAAAAAA_7RU227jNhD9FWOAAC2gSKSsi6WFschmkaLAJi2QTfelL7yMbMI0KZCUbO_l3wtKStbo-754PJzDmeGcM_oGIzqvrIEWaEpSAgmES4_QkgT8wD-__hfWjOgCSmg7pj0mILQShz8ltMDrfTkYcjlKpJCAZAGhpVXVFEVTUJqAYMeeqZ2J6DUpyyYB5e__vnvL5WxgQdkJUNIqT8ANGqNHEnAolUMRHjHsbQQk4O3gxBQvEtDMSGV2C3rxXpyGFiAB23XoYqxe0zoB7pgR-wU7xWbkPoTet1nGepUeUB-s3Tk79KnBkPUD18rv0WV-b_temV025plW5nB7tAaD-opuct8LO5jgLltj_x0IySslt1h0tJKS3ZI18ltKkd_yLqe3nJUo8lLWlJAZfEQn9syEF6e3Uzs367ub_OEmfzidTil3jPneupC-JheDD_ZIt_8bv7A-QEtSQmic3YhmmCns2cUO4efD7wfn0IgLtPDy_BESGJy6msTAO87t2aTCHrOJ7PfBjUpuJwbnFvAclNzKEfN1jmtWVbLsKEXJK1kSRpuNlOtNVzdlxeoN5R3rNutiU9eNFKTIeVkTkrNKNKRq8po2Bd8IUiAvXkcS37KdnkJIlKbq76R06D200NC0IWmRp7QsrkPVzPvg0d3t0ARo4dF-VVqzrEzJ6rcvykh78qunzytKUvJu9UWZqni3OscfN7aUlCn5ffUHioPN8liZErp6UA47e86mKMTBdujQzbUkjkrg267Y2N5SJirQ__Nzx-Jd7uzJT3eXrG8pPjhm5HXORytRXx88sSPOvpjrwT3jGrOPz5_iEHwPLXzQ6rx6tnqIK-UnSUyyhBae_pp6383dxJAK8_n37xAl4tCE-0j2sj1O7ZT51F8dBceMZ2JeVw-tGbROYBYjtN8W_cEVa3gO6AzT08fiV4gFEhjJ3N1IF5svdr3YYrHlYieZ_PjxXwAAAP__2LrGMAEFAAA=; Expires=Mon, 26 Dec 2022 07:56:51 GMT; SameSite=None; Secure ClickDataNgFall=H4sIAAAAAAAA_7RU227jNhD9FWOAAC2gSKSsi6WFschmkaLAJi2QTfelL7yMbMI0KZCUbO_l3wtKStbo-754PJzDmeGcM_oGIzqvrIEWaEpSAgmES4_QkgT8wD-__hfWjOgCSmg7pj0mILQShz8ltMDrfTkYcjlKpJCAZAGhpVXVFEVTUJqAYMeeqZ2J6DUpyyYB5e__vnvL5WxgQdkJUNIqT8ANGqNHEnAolUMRHjHsbQQk4O3gxBQvEtDMSGV2C3rxXpyGFiAB23XoYqxe0zoB7pgR-wU7xWbkPoTet1nGepUeUB-s3Tk79KnBkPUD18rv0WV-b_temV025plW5nB7tAaD-opuct8LO5jgLltj_x0IySslt1h0tJKS3ZI18ltKkd_yLqe3nJUo8lLWlJAZfEQn9syEF6e3Uzs367ub_OEmfzidTil3jPneupC-JheDD_ZIt_8bv7A-QEtSQmic3YhmmCns2cUO4efD7wfn0IgLtPDy_BESGJy6msTAO87t2aTCHrOJ7PfBjUpuJwbnFvAclNzKEfN1jmtWVbLsKEXJK1kSRpuNlOtNVzdlxeoN5R3rNutiU9eNFKTIeVkTkrNKNKRq8po2Bd8IUiAvXkcS37KdnkJIlKbq76R06D200NC0IWmRp7QsrkPVzPvg0d3t0ARo4dF-VVqzrEzJ6rcvykh78qunzytKUvJu9UWZqni3OscfN7aUlCn5ffUHioPN8liZErp6UA47e86mKMTBdujQzbUkjkrg267Y2N5SJirQ__Nzx-Jd7uzJT3eXrG8pPjhm5HXORytRXx88sSPOvpjrwT3jGrOPz5_iEHwPLXzQ6rx6tnqIK-UnSUyyhBae_pp6383dxJAK8_n37xAl4tCE-0j2sj1O7ZT51F8dBceMZ2JeVw-tGbROYBYjtN8W_cEVa3gO6AzT08fiV4gFEhjJ3N1IF5svdr3YYrHlYieZ_PjxXwAAAP__2LrGMAEFAAA=; Expires=Mon, 26 Dec 2022 07:56:51 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (491)
Size:   1371
Md5:    8e848c80f0e7a697c1e110b328d1d9cc
Sha1:   a2a2f613d9f5b92ae5fe8c46686310e9b32f0e7d
Sha256: 39e46f8b2744e849a21e85ef5ea35df70d5488d3a8ed10080fd645c68dad0c61
                                        
                                            GET /double?t=2&d=eyJVUkwiOiJodHRwczovL2FwaS5rZWxrb29ncm91cC5uZXQvcHVibGlzaGVyL3Nob3BwaW5nL3YyL2xpbmstbW9uZXRpemVyL2xpbms_Y291bnRyeT1ub1x1MDAyNmlkPWU0ZjE2ZGRhLTAzZWItMTFlYi1iZjIxLWJhNWVjMjVkNzEwMFx1MDAyNm1lcmNoYW50VXJsPWh0dHBzJTNBJTJGJTJGd3d3LmJyYWFzcG9ydC5ub1x1MDAyNmN1c3RvbTE9YjdoNXVuMHltZGUxIiwiUmVkaXJlY3RXb3JkaW5nIjoiICIsIlJlZGlyZWN0VGl0bGUiOiJSZWRpcmVjdGlvbi4uLiIsIlJlZGlyZWN0TGlua1RleHQiOiIgIiwiSW5zdGFsbElkIjoyMDAxfQ== HTTP/1.1 
Host: ubfbboxn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ClickDataNG=H4sIAAAAAAAA_7RU227jNhD9FWOAAC2gSKSsi6WFschmkaLAJi2QTfelL7yMbMI0KZCUbO_l3wtKStbo-754PJzDmeGcM_oGIzqvrIEWaEpSAgmES4_QkgT8wD-__hfWjOgCSmg7pj0mILQShz8ltMDrfTkYcjlKpJCAZAGhpVXVFEVTUJqAYMeeqZ2J6DUpyyYB5e__vnvL5WxgQdkJUNIqT8ANGqNHEnAolUMRHjHsbQQk4O3gxBQvEtDMSGV2C3rxXpyGFiAB23XoYqxe0zoB7pgR-wU7xWbkPoTet1nGepUeUB-s3Tk79KnBkPUD18rv0WV-b_temV025plW5nB7tAaD-opuct8LO5jgLltj_x0IySslt1h0tJKS3ZI18ltKkd_yLqe3nJUo8lLWlJAZfEQn9syEF6e3Uzs367ub_OEmfzidTil3jPneupC-JheDD_ZIt_8bv7A-QEtSQmic3YhmmCns2cUO4efD7wfn0IgLtPDy_BESGJy6msTAO87t2aTCHrOJ7PfBjUpuJwbnFvAclNzKEfN1jmtWVbLsKEXJK1kSRpuNlOtNVzdlxeoN5R3rNutiU9eNFKTIeVkTkrNKNKRq8po2Bd8IUiAvXkcS37KdnkJIlKbq76R06D200NC0IWmRp7QsrkPVzPvg0d3t0ARo4dF-VVqzrEzJ6rcvykh78qunzytKUvJu9UWZqni3OscfN7aUlCn5ffUHioPN8liZErp6UA47e86mKMTBdujQzbUkjkrg267Y2N5SJirQ__Nzx-Jd7uzJT3eXrG8pPjhm5HXORytRXx88sSPOvpjrwT3jGrOPz5_iEHwPLXzQ6rx6tnqIK-UnSUyyhBae_pp6383dxJAK8_n37xAl4tCE-0j2sj1O7ZT51F8dBceMZ2JeVw-tGbROYBYjtN8W_cEVa3gO6AzT08fiV4gFEhjJ3N1IF5svdr3YYrHlYieZ_PjxXwAAAP__2LrGMAEFAAA=; ClickDataNgFall=H4sIAAAAAAAA_7RU227jNhD9FWOAAC2gSKSsi6WFschmkaLAJi2QTfelL7yMbMI0KZCUbO_l3wtKStbo-754PJzDmeGcM_oGIzqvrIEWaEpSAgmES4_QkgT8wD-__hfWjOgCSmg7pj0mILQShz8ltMDrfTkYcjlKpJCAZAGhpVXVFEVTUJqAYMeeqZ2J6DUpyyYB5e__vnvL5WxgQdkJUNIqT8ANGqNHEnAolUMRHjHsbQQk4O3gxBQvEtDMSGV2C3rxXpyGFiAB23XoYqxe0zoB7pgR-wU7xWbkPoTet1nGepUeUB-s3Tk79KnBkPUD18rv0WV-b_temV025plW5nB7tAaD-opuct8LO5jgLltj_x0IySslt1h0tJKS3ZI18ltKkd_yLqe3nJUo8lLWlJAZfEQn9syEF6e3Uzs367ub_OEmfzidTil3jPneupC-JheDD_ZIt_8bv7A-QEtSQmic3YhmmCns2cUO4efD7wfn0IgLtPDy_BESGJy6msTAO87t2aTCHrOJ7PfBjUpuJwbnFvAclNzKEfN1jmtWVbLsKEXJK1kSRpuNlOtNVzdlxeoN5R3rNutiU9eNFKTIeVkTkrNKNKRq8po2Bd8IUiAvXkcS37KdnkJIlKbq76R06D200NC0IWmRp7QsrkPVzPvg0d3t0ARo4dF-VVqzrEzJ6rcvykh78qunzytKUvJu9UWZqni3OscfN7aUlCn5ffUHioPN8liZErp6UA47e86mKMTBdujQzbUkjkrg267Y2N5SJirQ__Nzx-Jd7uzJT3eXrG8pPjhm5HXORytRXx88sSPOvpjrwT3jGrOPz5_iEHwPLXzQ6rx6tnqIK-UnSUyyhBae_pp6383dxJAK8_n37xAl4tCE-0j2sj1O7ZT51F8dBceMZ2JeVw-tGbROYBYjtN8W_cEVa3gO6AzT08fiV4gFEhjJ3N1IF5svdr3YYrHlYieZ_PjxXwAAAP__2LrGMAEFAAA=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         3.126.48.135
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
server: nginx
date: Sat, 26 Nov 2022 07:56:51 GMT
content-length: 908
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
expires: Thu, 01 Jan 1970 00:00:00 UTC
pragma: no-cache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   908
Md5:    25910d73395cc02358a9ceb1179d29e6
Sha1:   cff07a4c03000e85f8ae549256dedea10c5901bd
Sha256: 874c867608de4a3076877764aeded5147151cae3adae260aec8f1a88f86ee382
                                        
                                            GET /publisher/shopping/v2/link-monetizer/link?country=no&id=e4f16dda-03eb-11eb-bf21-ba5ec25d7100&merchantUrl=https%3A%2F%2Fwww.braasport.no&custom1=b7h5un0ymde1 HTTP/1.1 
Host: api.kelkoogroup.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         143.204.55.112
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
content-length: 27097
x-gravitee-transaction-id: 1b1e927e-bf0c-4578-9e92-7ebf0c0578ca
x-gravitee-request-id: 1b1e927e-bf0c-4578-9e92-7ebf0c0578ca
leadid: dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1669449411889_1161447
clickid: 107698147_1669449411875_4608035
country: no
accept-ch: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
set-cookie: datadome=5n2HzgherEiItEk3uZVafs1eJGXWRGuV1Ul68258Zg-mVRupgunJ026kLQxIvs3GhGjZCiYgZ85Ivsyy5wr84CYT9vBXxnTRL9v6x7vkc5Zts33fLye8yhxr9soU60ei; Max-Age=31536000; Expires=Sun, 26 Nov 2023 07:56:51 GMT; SameSite=Lax; Path=/; Domain=.kelkoo.net; Secure kelkooID=a4c6293-184b2f06d23-157201; Max-Age=31536000; Expires=Sun, 26 Nov 2023 07:56:51 GMT; SameSite=None; Path=/; Domain=kelkoogroup.net; Secure; HTTPOnly
x-datadome: protected
request-time: PT0.018756S
x-robots-tag: noindex,nofollow
referrer-policy: origin-when-cross-origin
x-frame-options: DENY
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-permitted-cross-domain-policies: master-only
date: Sat, 26 Nov 2022 07:56:51 GMT
x-cache: Miss from cloudfront
via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Luc1JMlIawqL1YUYc7hWES0Cb9D5Cylvol3-L1s5LC2nUy78G1khMg==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (13002)
Size:   27097
Md5:    3128dbd9aa6871103658a2b7bb0a81a9
Sha1:   ec011597dd548a6ea981b20a7cd3d4bd509e67d6
Sha256: 15781c3740cf4c265ec50935bf2f5093af776652c6be02824dadb7e816ae6c7a
                                        
                                            GET /tags.js HTTP/1.1 
Host: dd.kelkoogroup.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://api.kelkoogroup.net/
Connection: keep-alive
Cookie: kelkooID=a4c6293-184b2f06d23-157201
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

search
                                         54.230.111.47
HTTP/2 200 OK
content-type: text/javascript
                                        
content-length: 43164
server: Apache
strict-transport-security: max-age=63072000; includeSubDomains; preload
last-modified: Thu, 17 Nov 2022 15:19:16 GMT
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
via: 1.1 d13436be9e793d00b0273db3f7904816.cloudfront.net (CloudFront), 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
date: Sat, 26 Nov 2022 07:20:12 GMT
cache-control: max-age=3600, public
expires: Sat, 26 Nov 2022 08:19:58 GMT
etag: "33bf8-5edac1cc94a7f-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA60-P2, OSL50-P1
x-amz-cf-id: UrEmvixCuHV1bawVuE_40AxA2zHEogsihDyCI-kQQBeiMAkVg0KeYg==
age: 2213
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65432)
Size:   43164
Md5:    1e9601b9f2fcd0d1d742e87fd046749c
Sha1:   88431bfdad7d8be4cf62396a57aebcec0de09827
Sha256: 4bcdd319b49ac3e4683e774aefe69157100f9ebee3bc428e425cfc93a7da9feb
                                        
                                            POST / HTTP/1.1 
Host: status.thawte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5734
Cache-Control: max-age=126562
Date: Sat, 26 Nov 2022 07:56:52 GMT
Etag: "6380fbc0-1d7"
Expires: Sun, 27 Nov 2022 19:06:14 GMT
Last-Modified: Fri, 25 Nov 2022 17:30:40 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: status.thawte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2097
Cache-Control: max-age=122925
Date: Sat, 26 Nov 2022 07:56:52 GMT
Etag: "6380fbc0-1d7"
Expires: Sun, 27 Nov 2022 18:05:37 GMT
Last-Modified: Fri, 25 Nov 2022 17:30:40 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /assets/images/p.png?country=no&k=612f7a9541cd6ea61eb554c0e4cff43782302cf856b8d479e69e75993288f96797823d69825ef5eb8d882124ac33335cc2978fe36feaa933dba4e0c571ace5b0a1a4d8ae43b2892687048706ae4cc13aeec8a3f3e9bb1a90f0a47387bee6d06f49969ccc53082f05187018f135d235d7b6b153c11c9eee764134cfe22da504f23d1a76820927564e21460955ead9bd7415c64828b1847c3dea2d4d363055ee90d344dfcb886c73fedea3ea73d296243c3741770bd8dbd51ab5e8bfa3c685ab3eb7761d62e0f8d359518d0ed4ae581329&leadId=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1669449411889_1161447&clickId=107698147_1669449411875_4608035 HTTP/1.1 
Host: no-go.kelkoogroup.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://api.kelkoogroup.net/
Connection: keep-alive
Cookie: kelkooID=a4c6293-184b2f06d23-157201
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

search
                                         95.211.116.27
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 26 Nov 2022 07:56:52 GMT
Request-Time: PT0.001585S
X-Robots-Tag: noindex,nofollow
Cache-Control: private, must-revalidate
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Content-Length: 68
P3P: CP="Anything"
ApacheTracking: localhost
Keep-Alive: timeout=40, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Size:   68
Md5:    91e42db1c66c0b276abf6234dc50b2eb
Sha1:   c1986af3c26609b8b7d8933f99c51c1a89e9ea6b
Sha256: 63ef318d96b5d0d0ceba6e04a4e622b1158335cdc67c49e27839132c6f655058
                                        
                                            POST /fp?country=no&k=612f7a9541cd6ea61eb554c0e4cff43782302cf856b8d479e69e75993288f96797823d69825ef5eb8d882124ac33335cc2978fe36feaa933dba4e0c571ace5b0a1a4d8ae43b2892687048706ae4cc13aeec8a3f3e9bb1a90f0a47387bee6d06f49969ccc53082f05187018f135d235d7b6b153c11c9eee764134cfe22da504f23d1a76820927564e21460955ead9bd7415c64828b1847c3dea2d4d363055ee90d344dfcb886c73fedea3ea73d296243c3741770bd8dbd51ab5e8bfa3c685ab3eb7761d62e0f8d359518d0ed4ae581329&leadId=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1669449411889_1161447&clickId=107698147_1669449411875_4608035 HTTP/1.1 
Host: no-go.kelkoogroup.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://api.kelkoogroup.net/
Content-Type: text/plain;charset=utf-8
Content-Length: 504
Origin: https://api.kelkoogroup.net
Connection: keep-alive
Cookie: kelkooID=a4c6293-184b2f06d23-157201; _ga=GA1.2.1375588916.1669449411; _gid=GA1.2.1226330836.1669449411
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

search
                                         95.211.116.27
HTTP/1.1 200 OK
Content-Type: text/plain; charset=UTF-8
                                        
Date: Sat, 26 Nov 2022 07:56:52 GMT
Request-Time: PT0.005249S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Content-Length: 0
P3P: CP="Anything"
ApacheTracking: localhost
Keep-Alive: timeout=40, max=91
Connection: Keep-Alive

                                        
                                            GET /redirect?country=no&k=612f7a9541cd6ea61eb554c0e4cff43782302cf856b8d479e69e75993288f96797823d69825ef5eb8d882124ac33335cc2978fe36feaa933dba4e0c571ace5b0a1a4d8ae43b2892687048706ae4cc13aeec8a3f3e9bb1a90f0a47387bee6d06f49969ccc53082f05187018f135d235d7b6b153c11c9eee764134cfe22da504f23d1a76820927564e21460955ead9bd7415c64828b1847c3dea2d4d363055ee90d344dfcb886c73fedea3ea73d296243c3741770bd8dbd51ab5e8bfa3c685ab3eb7761d62e0f8d359518d0ed4ae581329&leadId=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1669449411889_1161447&clickId=107698147_1669449411875_4608035&url=https%3A%2F%2Fwww.braasport.no%3Fkk%3Da4c6293-184b2f06d23-157201%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono&initiator=timeout HTTP/1.1 
Host: no-go.kelkoogroup.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://api.kelkoogroup.net/
Connection: keep-alive
Cookie: kelkooID=a4c6293-184b2f06d23-157201; _ga=GA1.2.1375588916.1669449411; _gid=GA1.2.1226330836.1669449411
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site

search
                                         95.211.116.27
HTTP/1.1 303 See Other
Content-Type: text/plain
                                        
Date: Sat, 26 Nov 2022 07:56:52 GMT
leadId: dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1669449411889_1161447
clickId: 107698147_1669449411875_4608035
country: no
Location: https://www.braasport.no?kk=a4c6293-184b2f06d23-157201&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
X-DataDome: protected
Request-Time: PT0.016421S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Content-Length: 0
Set-Cookie: datadome=5XRoMRpkoZqHtVKJJorjhmpLRKPkTtcX_ROoFAXfixswFV0lKI7mDhdGy1jSmhCMgfJqVJSRfGVY8RF50ULtDy10qGu~FijpTqemxxbNolPoeCkUrUhuxV_iXiEyPA9C; Max-Age=31536000; Expires=Sun, 26 Nov 2023 07:56:52 GMT; SameSite=Lax; Path=/; Domain=.kelkoogroup.net; Secure
P3P: CP="Anything"
ApacheTracking: localhost
Keep-Alive: timeout=40, max=82
Connection: Keep-Alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 26 Nov 2022 07:56:52 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 26 Nov 2022 01:51:17 GMT
Expires: Sat, 03 Dec 2022 01:51:16 GMT
Etag: "f1c5ce4fb8c1b312d4a6ca6ccc0afdc9764de782"
Cache-Control: max-age=602982,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 1017
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 770111ea3842b503-OSL

                                        
                                            POST /js/ HTTP/1.1 
Host: api-js.datadome.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 3511
Origin: https://api.kelkoogroup.net
Connection: keep-alive
Referer: https://api.kelkoogroup.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         13.51.39.45
HTTP/2 200 OK
content-type: application/json;charset=utf-8
                                        
date: Sat, 26 Nov 2022 07:56:52 GMT
content-length: 236
server: DataDome
access-control-allow-origin: *
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: 0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   236
Md5:    71ffe5c9d0a9e504acc138ce9de8f07d
Sha1:   661eb97cc2d4c3103ea01e1edcff62db235334b3
Sha256: ecfe513b0bb14174f4df3c93abd55400ed7639a577043f4e452b3b3ef0b41193
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "CC4CC6EA288A0426E259031F9BB263E4DFF4A59C35FAC1FB1FC750CF84A3EB5D"
Last-Modified: Sat, 26 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 26 Nov 2022 13:56:52 GMT
Date: Sat, 26 Nov 2022 07:56:52 GMT
Connection: keep-alive

                                        
                                            GET /?kk=a4c6293-184b2f06d23-157201&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono HTTP/1.1 
Host: www.braasport.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://api.kelkoogroup.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         5.145.153.8
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx
Date: Sat, 26 Nov 2022 07:56:52 GMT
Content-Length: 162
Connection: keep-alive
Location: https://braasport.no/?kk=a4c6293-184b2f06d23-157201&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   162
Md5:    4f8e702cc244ec5d4de32740c0ecbd97
Sha1:   3adb1f02d5b6054de0046e367c1d687b6cdf7aff
Sha256: 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
                                        
                                            GET /?kk=a4c6293-184b2f06d23-157201&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono HTTP/1.1 
Host: braasport.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://api.kelkoogroup.net/
Connection: keep-alive
Cookie: _pk_id.2.5746=4f243935b08c22b5.1654509554.
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         5.145.153.8
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Server: nginx
Date: Sat, 26 Nov 2022 07:56:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: private
Set-Cookie: ASP.NET_SessionId=gye4waoj3oxxi3f53lowee3x; path=/; HttpOnly; SameSite=Lax
X-Powered-By: ASP.NET
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1709), with CRLF, LF line terminators
Size:   40695
Md5:    865a663ccb82b36ba4c0c7384409b445
Sha1:   b0747855026ce0245d71b1691f70cea21f3b6e69
Sha256: 28d41cb107f30aafa2cde1297c5c3a7e3ca7ba795065ae836feae031103f8cef
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 26 Nov 2022 07:56:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /js/lib/loop54-js-connector.min.js HTTP/1.1 
Host: braasport.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/?kk=a4c6293-184b2f06d23-157201&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Cookie: _pk_id.2.5746=4f243935b08c22b5.1654509554.; ASP.NET_SessionId=gye4waoj3oxxi3f53lowee3x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         5.145.153.8
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sat, 26 Nov 2022 07:56:52 GMT
Content-Length: 226349
Connection: keep-alive
Expires: Sun, 29 Mar 2020 00:00:00 GMT
Last-Modified: Tue, 08 Nov 2022 12:21:49 GMT
Accept-Ranges: bytes
ETag: "31b5ad6cf3d81:0"
X-Powered-By: ASP.NET


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   226349
Md5:    8878177dc9e2e88fe62c455a196147e8
Sha1:   b7de9563c989e4585898e2e9db13d23b4adc41c4
Sha256: 2ebbe50be40affd210c5b98a6c2120f696a8eee9ab29ef45ad67885867c0faec
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=97444
Date: Sat, 26 Nov 2022 07:56:52 GMT
Etag: "6380a068-117"
Expires: Sun, 27 Nov 2022 11:00:56 GMT
Last-Modified: Fri, 25 Nov 2022 11:00:56 GMT
Server: nginx
Content-Length: 279

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 26 Nov 2022 07:56:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=97444
Date: Sat, 26 Nov 2022 07:56:52 GMT
Etag: "6380a068-117"
Expires: Sun, 27 Nov 2022 11:00:56 GMT
Last-Modified: Fri, 25 Nov 2022 11:00:56 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279

                                        
                                            POST /collect?v=1&_v=j96&t=pageview&_s=1&dl=https%3A%2F%2Fapi.kelkoogroup.net%2Fpublisher%2Fshopping%2Fv2%2Flink-monetizer%2Flink%3Fcountry%3Dno%26id%3De4f16dda-03eb-11eb-bf21-ba5ec25d7100%26merchantUrl%3Dhttps%253A%252F%252Fwww.braasport.no%26custom1%3Db7h5un0ymde1&dp=%2F%7C100457547%7C&ul=en-us&de=UTF-8&dt=Du%20sendes%20videre%20til%20Braasport.no&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=QACAAAABAAAAAC~&cid=1375588916.1669449411&tid=UA-168544891-6&_gid=1226330836.1669449411&_r=1&cd1=&cd2=dc1-kls-prod-ls-04.prod.dc1.kelkoo.net_1669449411889_1161447&cd3=100457547&cd4=a4c6293-184b2f06d23-157201&cd5=&cd6=%7C100457547%7C&z=1365843928 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://api.kelkoogroup.net
Connection: keep-alive
Referer: https://api.kelkoogroup.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

search
                                         142.250.74.174
HTTP/2 200 OK
content-type: image/gif
                                        
access-control-allow-origin: https://api.kelkoogroup.net
date: Sat, 26 Nov 2022 07:56:52 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
x-content-type-options: nosniff
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=97444
Date: Sat, 26 Nov 2022 07:56:52 GMT
Etag: "6380a068-117"
Expires: Sun, 27 Nov 2022 11:00:56 GMT
Last-Modified: Fri, 25 Nov 2022 11:00:56 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /media/kategoribilder/black-week-2022/Oakley_1.jpg?mode=crop&width=640&height=915 HTTP/1.1 
Host: braa.icdn.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.67.131.222
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sat, 26 Nov 2022 07:56:52 GMT
content-length: 79653
cache-control: public, max-age=31536000
expires: Sat, 25 Nov 2023 07:29:50 GMT
x-aspnet-version: 4.0.30319
cf-cache-status: HIT
age: 88021
last-modified: Fri, 25 Nov 2022 07:29:51 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SNAC64NNjPs4xsaNK9aLEWhgJtHtq06xjM80odSAir9UdJgy06cSUO6F3604%2F0jsIIIX1tinBIWheKh45Vq5repB22BFn6dYSTXNeggryTkftXaYpuINlkozf8N2A0c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770111ed5db3b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 640x915, components 3\012- data
Size:   79653
Md5:    1740fa55942cef41024653ea5c565cad
Sha1:   1f754110cab012f89bff7f11b400de1921c466a2
Sha256: 02c8019fe6c215b112a0c1068ac12c209249bf19aeb7ddd9244bc39c30513763
                                        
                                            GET /uc.js HTTP/1.1 
Host: policy.app.cookieinformation.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
age: 145
cache-control: max-age=300
content-md5: MYYKq2p56pWUQuWDOioz6A==
date: Sat, 26 Nov 2022 07:56:52 GMT
etag: 0x8DAC63B0E0D8AF8
expires: Sat, 26 Nov 2022 08:01:52 GMT
last-modified: Mon, 14 Nov 2022 12:23:36 GMT
server: ECAcc (ska/F75E)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: a21e6d62-201e-0093-056c-01e347000000
x-ms-version: 2009-09-19
x-robots-tag: noindex, noarchive, nosnippet, noindex, noarchive, nosnippet
content-length: 10635
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (33315), with no line terminators
Size:   10635
Md5:    1daa6fac288f313bd8259a15620e93a2
Sha1:   6cc7b1244182d7d00d1464006aa5eb1817fd91df
Sha256: 3d214ddc2ebd7cd44d079361f3662697ead14836c05ae59afc3f51df5922b36f
                                        
                                            GET /media/kategoribilder/black-week-2022/aasnes.jpg?mode=crop&width=640&height=915 HTTP/1.1 
Host: braa.icdn.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.67.131.222
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sat, 26 Nov 2022 07:56:52 GMT
content-length: 82364
cache-control: public, max-age=31536000
expires: Wed, 22 Nov 2023 17:50:43 GMT
x-aspnet-version: 4.0.30319
cf-cache-status: HIT
age: 309969
last-modified: Tue, 22 Nov 2022 17:50:43 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NNyytA9bz%2FM3TvwoHkcGP93vaHOCildQLCK4vlsq4988OHAbG7%2FmPmrcuhlAi4MAVCMAE%2BMspSxWJk%2Bz425aevcIQCioht39gc7FJ%2FlBjx5fHS3J9GUYde6%2Bg5Qm0Oc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770111ed5db2b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 640x915, components 3\012- data
Size:   82364
Md5:    47088457d24cd9b99ba222764f130d38
Sha1:   8f79a84ce57e77110966433272a743a7d594f37e
Sha256: 16e748840937c96bd0958f90715e4d19175a15130800fc8bf348ab73746afcb1
                                        
                                            GET /media/kategoribilder/black-week-2022/klar_1.jpg?mode=crop&width=640&height=915 HTTP/1.1 
Host: braa.icdn.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.67.131.222
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sat, 26 Nov 2022 07:56:52 GMT
content-length: 98747
cache-control: public, max-age=31536000
expires: Wed, 22 Nov 2023 20:12:49 GMT
x-aspnet-version: 4.0.30319
cf-cache-status: HIT
age: 301442
last-modified: Tue, 22 Nov 2022 20:12:50 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qhhA0kD1ZiM0SWMiKJ11u%2B%2FdRMEc39qmNfu7zEqGmDKhkgzCwY2Ly6b%2BVmAGhMUEOygelhQZwY50NVjs%2FEd2EZYamDi1T8r0pV2%2Fek6sMHhs3u%2BAMYUEoDsTYLRzBIc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770111ed5db4b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 640x915, components 3\012- data
Size:   98747
Md5:    2b02afa6d30ede059ed51971d86c217f
Sha1:   32566efd3de07c5a2456b03ea71e9a6e5bb296ac
Sha256: 1255f38189f07df10b4fecc683c123e09d79ec5e12e942f636ffceea5dc1ec08
                                        
                                            GET /media/kategoribilder/black-week-2022/alpinski_1.jpg?mode=crop&width=640&height=915 HTTP/1.1 
Host: braa.icdn.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.67.131.222
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sat, 26 Nov 2022 07:56:52 GMT
content-length: 103537
cache-control: public, max-age=31536000
expires: Wed, 22 Nov 2023 20:12:49 GMT
x-aspnet-version: 4.0.30319
cf-cache-status: HIT
age: 301442
last-modified: Tue, 22 Nov 2022 20:12:50 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zAVfZRowaC48XX7MDuX33vpHy%2FbJ0JDM%2BxtyIMHc0Lqo2n7G0RtYMxZ%2BOoR98bO%2BzPjtqePtstrNk4kMndaroL4DnCBUe3bAN%2BLcrrcjAMW%2FD1O8zUik3Ryx%2FEd8RG4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770111ed5da9b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 640x915, components 3\012- data
Size:   103537
Md5:    1df3f44859734f9dcc3898740d6e5e5f
Sha1:   6eb13fab4d8a5a53e58717898d2b277daf3028f6
Sha256: 967cf02cfc53d4a8c47114320dd6b7d7d401023642406c769f918db8a7f559b8
                                        
                                            GET /media/kategoribilder/black-week-2022/fjellski_1.jpg?mode=crop&width=640&height=915 HTTP/1.1 
Host: braa.icdn.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.67.131.222
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sat, 26 Nov 2022 07:56:52 GMT
content-length: 89357
cache-control: public, max-age=31536000
expires: Wed, 22 Nov 2023 20:12:51 GMT
x-aspnet-version: 4.0.30319
cf-cache-status: HIT
age: 301441
last-modified: Tue, 22 Nov 2022 20:12:51 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BKTNM2pMA%2F4og3eOLLnZy1qEmr52TuCVJNqmL82V3Yp8jCJ0eCM8yN693YfVAYyr2Qixfi65VMH%2BKTpk4cP5QpaYto%2FMUA9SyUfZuwoj0sHjax6kKmUI88mbaNAXUxU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770111ed5daeb51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 640x915, components 3\012- data
Size:   89357
Md5:    1ed05059cde914994af9f6fdf9fd4578
Sha1:   39a057c50b17befdd314f080c11f09936e96e5b4
Sha256: 5ab853aa86977e683f6b64093c1efda2dfc2c7a6af41c3c6926dc9049c6e37d2
                                        
                                            GET /media/kategoribilder/black-week-2022/turutstyr_1.jpg?mode=crop&width=640&height=915 HTTP/1.1 
Host: braa.icdn.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.67.131.222
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sat, 26 Nov 2022 07:56:52 GMT
content-length: 100076
cache-control: public, max-age=31536000
expires: Wed, 22 Nov 2023 20:12:50 GMT
x-aspnet-version: 4.0.30319
cf-cache-status: HIT
age: 301442
last-modified: Tue, 22 Nov 2022 20:12:50 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ecux36O3nudH5ifO9WwJL0wcXKAZ7iKU86%2BYa8dUABe1UfD3DTpPGo6YLjwLlxLGvk1q8N9XxvXsTX5wnxoDDNO2s%2BSMutcG%2B7vEy%2FDVjtdabWelGizcTfn3fEhtRc0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770111ed5db0b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 640x915, components 3\012- data
Size:   100076
Md5:    88ec445c6cdcfdb454fcf4195f929364
Sha1:   2780cad7b879b861d5788975b1fde48518f38ace
Sha256: 3e24d7c9e35d2150400541002b9a6b4877fcfbe1a6f96b0be63805e78bdd32a2
                                        
                                            GET /media/kategoribilder/black-week-2022/lop_1.jpg?mode=crop&width=640&height=915 HTTP/1.1 
Host: braa.icdn.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.67.131.222
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sat, 26 Nov 2022 07:56:52 GMT
content-length: 152183
cache-control: public, max-age=31536000
expires: Wed, 22 Nov 2023 20:12:51 GMT
x-aspnet-version: 4.0.30319
cf-cache-status: HIT
age: 301440
last-modified: Tue, 22 Nov 2022 20:12:52 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LQqSz%2FHsgJYOKV1gOmQb6CbTsO9MWzVwo8SA2d0PeBb890Evfs6zRQXs879VQSnW8OX6DzjNq5VAu70B%2FYo%2BKzNtcnKq9VkbfwNRgDZ1wARyRCmM7e03FZ%2FTiYIUkJs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770111ed5dadb51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 640x915, components 3\012- data
Size:   152183
Md5:    4f63a230eefa0e3211b6c7dfc19bc6ec
Sha1:   08cfe69036c374939f21b9c4ff2b195bc082bba3
Sha256: 1246197e5cc0ae8986ca362f343535c1f2afb26b6834489bea89a017af5a2c10
                                        
                                            GET /media/kategoribilder/black-week-2022/alpinsko_1.jpg?mode=crop&width=640&height=915 HTTP/1.1 
Host: braa.icdn.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.67.131.222
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sat, 26 Nov 2022 07:56:52 GMT
content-length: 110471
cache-control: public, max-age=31536000
expires: Wed, 22 Nov 2023 20:12:49 GMT
x-aspnet-version: 4.0.30319
cf-cache-status: HIT
age: 301442
last-modified: Tue, 22 Nov 2022 20:12:50 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8ZvRWEg%2BO6XDnFx6oa%2BjQh67IXHSo0CYjbxIT4aBuq%2FlVKGotLr44hqQ7LlQQtaGHx9C7aJOpkdALNjjuCqT%2BEPHIQgg6n6I4njmvT8VAKbF1cRmGkZimrB%2Bih0%2B3bI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770111ed5da8b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 640x915, components 3\012- data
Size:   110471
Md5:    4a2b72ea38e95391acd891366a5833b1
Sha1:   99acf5a4f0293fe127ef821ab84dd68c70f040cd
Sha256: 1c6d4c6d186facec2908c66a2f532b2e79177c2a3254578394778dbfacde62f1
                                        
                                            GET /media/kategoribilder/black-week-2022/alpinbrller_1.jpg?mode=crop&width=640&height=915 HTTP/1.1 
Host: braa.icdn.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.67.131.222
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sat, 26 Nov 2022 07:56:52 GMT
content-length: 81575
cache-control: public, max-age=31536000
expires: Wed, 22 Nov 2023 20:12:50 GMT
x-aspnet-version: 4.0.30319
cf-cache-status: HIT
age: 301441
last-modified: Tue, 22 Nov 2022 20:12:51 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5TV3Zf84lhiknU%2BVDKOI0OSHTTauuZa023Gggf7lYVXi2PEM4BbzSMc%2FPB4as0uTb3OYkMJoeNH%2B7DXiynRCCOTxlsoD2JjzhNY%2FwZ0479%2F92JE6rSpX0PhyokiAyGo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770111ed5dacb51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 640x915, components 3\012- data
Size:   81575
Md5:    0682fdf9e5e4d7d2154e7e6325e18246
Sha1:   99c9d6e5c2d8f107c977480a567235232f69d81d
Sha256: 3501009f16cd5907f2149ae1c5e14ab1b2e4c2536c1f497d46c0a10f3556a4a4
                                        
                                            GET /media/kategoribilder/black-week-2022/Arcteryx.jpg?mode=crop&width=640&height=915 HTTP/1.1 
Host: braa.icdn.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.67.131.222
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sat, 26 Nov 2022 07:56:52 GMT
content-length: 81849
cache-control: public, max-age=31536000
expires: Sat, 25 Nov 2023 07:30:23 GMT
x-aspnet-version: 4.0.30319
cf-cache-status: HIT
age: 87987
last-modified: Fri, 25 Nov 2022 07:30:25 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dCg9kGD2XQINHV7ju4Z4%2FtxfBxCbDpp2QgFwZGRTjfZ3TgP5EKbVAu6WP5RidB%2Fp90oE2ylWD5u0OCg5Vi0eBUxmkqsJ4XkSJuJsjFXmpYu0qMFvAbl1bj8kuSy8jwI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770111ed6dcfb51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 640x915, components 3\012- data
Size:   81849
Md5:    94d674d7b6ccb3dae44aff8192e5a2a9
Sha1:   854a75081a34327a2735d8e4f3cdadc6bda516af
Sha256: bbc68dcf7534e035e4b0a2c344d193a5d02de5d9ce1cb2b77ec2305659fb614b
                                        
                                            GET /media/kategoribilder/black-week-2022/devold_1.jpg?mode=crop&width=640&height=915 HTTP/1.1 
Host: braa.icdn.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.67.131.222
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sat, 26 Nov 2022 07:56:52 GMT
content-length: 87173
cache-control: public, max-age=31536000
expires: Wed, 22 Nov 2023 18:02:14 GMT
x-aspnet-version: 4.0.30319
cf-cache-status: HIT
age: 309278
last-modified: Tue, 22 Nov 2022 18:02:14 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Qzp8V6pgHQgzpPQTytmMdgaIdnzSXNzHMxthKA6%2FWT79xJi0%2FB4y58kJGGNjU9kcZB7RdJHZc02wSjwGY1JOkRaOiyWuGKHhCFwLCzdCp7ow3LC2gTR1c3LH54SUHms%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770111ed6dcdb51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 640x915, components 3\012- data
Size:   87173
Md5:    22931362f518f5a53cc7a27baf19fda5
Sha1:   2d592a625217a66451463750a0cf2a4952913187
Sha256: a6324f0a5dec99cfd92273e3461bb7d2761719908273bece20e47e5b61d0c7ab
                                        
                                            GET /media/kategoribilder/black-week-2022/swix_2.jpg?mode=crop&width=640&height=915 HTTP/1.1 
Host: braa.icdn.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.67.131.222
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sat, 26 Nov 2022 07:56:52 GMT
content-length: 83972
cache-control: public, max-age=31536000
expires: Sat, 25 Nov 2023 07:32:42 GMT
x-aspnet-version: 4.0.30319
cf-cache-status: HIT
age: 87849
last-modified: Fri, 25 Nov 2022 07:32:43 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K4iwnjvCXizGUaJFGzaGzvayf6rs77Ir4V9ZMnNYUOi0taCs2sERmLywbGLhq7e59XVbcs6AmV9rKjtUT%2BOF3wjPnD%2BjNRmLgkwD5RLUzosT7dxG1YE5I7fCOsTNha4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770111ed6dcbb51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 640x915, components 3\012- data
Size:   83972
Md5:    42e10ebf9ebfe9a34f688dbd7869dbf6
Sha1:   5cd122d39f04e0a838e2c82b89823413fe5acfdb
Sha256: d2ba90e8b095d74d63fba28d128ec3730367e2bf6a858eee21a734cb6be38057
                                        
                                            GET /media/kategoribilder/black-week-2022/craft_2.jpg?mode=crop&width=640&height=915 HTTP/1.1 
Host: braa.icdn.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.67.131.222
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sat, 26 Nov 2022 07:56:52 GMT
content-length: 82982
cache-control: public, max-age=31536000
expires: Sat, 25 Nov 2023 18:04:11 GMT
x-aspnet-version: 4.0.30319
cf-cache-status: HIT
age: 49959
last-modified: Fri, 25 Nov 2022 18:04:13 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yvibQ%2BALEK9Xs%2BmpMDLv%2FEKOdlkYIy41Fcm1yNh8a%2F1k1n1FN%2FAm6WryVBaQ0ed1OKJowyUQ%2BzRNK9N0VUscY%2F6Z7wFb4KR7HcaRMj0%2BEy0a51d4Pqgs94pNiBOU9mk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770111ed6dd0b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 640x915, components 3\012- data
Size:   82982
Md5:    3e301435676b8417bec9d3c273422642
Sha1:   8d54b38bc61d2b296335ccdccfd09a1fa76c4645
Sha256: bd9032365b8a14614fbaeb82faa2dfb4f37e3f4f9a84a162565779d965d7c8a6
                                        
                                            GET /media/kategoribilder/black-week-2022/langrenn_1.jpg?mode=crop&width=640&height=915 HTTP/1.1 
Host: braa.icdn.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.67.131.222
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sat, 26 Nov 2022 07:56:52 GMT
content-length: 117793
cache-control: public, max-age=31536000
expires: Wed, 22 Nov 2023 20:12:52 GMT
x-aspnet-version: 4.0.30319
cf-cache-status: HIT
age: 301440
last-modified: Tue, 22 Nov 2022 20:12:52 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MgTyrxZ7gW85hKrAyC0rcZfKFmUnsX7lq5JAyP177t%2FXDVPcEBr2qAN98weAgwvOXV7ULXC5%2FbXAi%2FuA3S53mX%2BI8G69SSR530%2F4oywOe%2Fks8bpOj9bAWM7PGFUjqDI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770111ed5dabb51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 640x915, components 3\012- data
Size:   117793
Md5:    06d6166af76dc6b0c9ebf55b71b7818e
Sha1:   7ef9046425910d4507221301d06db0373c604596
Sha256: 0d5a1e472165649a9d4b864928d634ea38360fc8989bbfcc2aa56a88c5b6be2f
                                        
                                            GET /media/kategoribilder/black-week-2022/dahlie_2.jpg?mode=crop&width=640&height=915 HTTP/1.1 
Host: braa.icdn.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.67.131.222
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sat, 26 Nov 2022 07:56:52 GMT
content-length: 83953
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 18:21:14 GMT
x-aspnet-version: 4.0.30319
cf-cache-status: HIT
age: 135338
last-modified: Thu, 24 Nov 2022 18:21:14 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uADac%2FEOlL4A1Uq3Z0BrX8rACHpf9mV8z%2Bq4QrpgMg%2FwH%2BxoZD53eH%2FZY41w3Z7Vr3gRbtqqMcO0pRj5eITGPTaMDhhK5H3vVVbTjcnr%2Fu44KNCvz%2FNtM4fIbcjWZr0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770111ed6dc9b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 640x915, components 3\012- data
Size:   83953
Md5:    cef237f7dca102b10938eebdd859f22c
Sha1:   23e4c4722d2b0fc3048c52329f54acbb1f6bec4b
Sha256: 416ad752805f5773a8079f93105e437b114123122b2aa0c7ea1f1bb33b51b54f
                                        
                                            GET /media/kategoribilder/black-week-2022/Sgn_1.jpg?mode=crop&width=640&height=915 HTTP/1.1 
Host: braa.icdn.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.67.131.222
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sat, 26 Nov 2022 07:56:52 GMT
content-length: 77746
cache-control: public, max-age=31536000
expires: Sat, 25 Nov 2023 07:28:51 GMT
x-aspnet-version: 4.0.30319
cf-cache-status: HIT
age: 88080
last-modified: Fri, 25 Nov 2022 07:28:52 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GSYwzVepK3Y%2B4yH6f1sKS%2BjYo5lfic7HYu9GnjI398US2vzGAAhRMIztxWVcesHfH%2BSP9cv579lDUq%2FzrmLy4Qw8Yv6h9kF46z%2Bv8xY7fF3EkYfj5LPDDrdjCBx%2BuHU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770111ed6dc5b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 640x915, components 3\012- data
Size:   77746
Md5:    2d7f8a430edfa61d2e46bf53da643c4c
Sha1:   6723ca1ca32918d90a9ba32d7b6ff089fd77b5d2
Sha256: 78a80dde2aabe97dd66ad251d413c62e37344d89cb43ddb002d0c865747daae8
                                        
                                            GET /media/designelementer/2250x250px_julegaver_29112021.jpg?mode=crop&width=2250&height=250 HTTP/1.1 
Host: braa.icdn.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.67.131.222
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sat, 26 Nov 2022 07:56:52 GMT
content-length: 100548
cache-control: public, max-age=31536000
expires: Mon, 20 Nov 2023 18:34:04 GMT
x-aspnet-version: 4.0.30319
cf-cache-status: HIT
age: 480166
last-modified: Sun, 20 Nov 2022 18:34:06 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FZMtNi6IuQsqCcwZnVQ3UD11Rkjz3ViNCLUWfumM5EcFoaQa6AMtf78KU1K01JRbyg7ucnpxMqhgOdSMCavsLxpEbz3v7WTA4VkNtvCYHxzYGu66JC%2FumyvPId5Nu3E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770111ed5dafb51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 2250x250, components 3\012- data
Size:   100548
Md5:    b8044818f2c1d5c2e59db6e2b5af16cd
Sha1:   e068bbb6fc35463be0f208907e6e5951e6a68e51
Sha256: b2ebd19ccab52692b172227e875d954ba118f8da3d4749c2d85574e377999fa9
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=97444
Date: Sat, 26 Nov 2022 07:56:52 GMT
Etag: "6380a068-117"
Expires: Sun, 27 Nov 2022 11:00:56 GMT
Last-Modified: Fri, 25 Nov 2022 11:00:56 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 26 Nov 2022 07:56:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 26 Nov 2022 07:56:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=97444
Date: Sat, 26 Nov 2022 07:56:52 GMT
Etag: "6380a068-117"
Expires: Sun, 27 Nov 2022 11:00:56 GMT
Last-Modified: Fri, 25 Nov 2022 11:00:56 GMT
Server: nginx
Content-Length: 279

                                        
                                            GET /resources/theme/1/1320/BraasportV2.css HTTP/1.1 
Host: braasport.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/?kk=a4c6293-184b2f06d23-157201&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Cookie: _pk_id.2.5746=4f243935b08c22b5.1654509554.; ASP.NET_SessionId=gye4waoj3oxxi3f53lowee3x
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         5.145.153.8
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Sat, 26 Nov 2022 07:56:54 GMT
Content-Length: 66893
Connection: keep-alive
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=31536000
Content-Encoding: gzip
Expires: Sun, 26 Nov 2023 07:56:53 GMT
Last-Modified: Wed, 23 Nov 2022 11:09:17 GMT
Vary: Accept-Encoding
X-Powered-By: ASP.NET


--- Additional Info ---
Magic:  ASCII text, with very long lines (39609)
Size:   66893
Md5:    3cabac6cac87a18d6090fa7783ea98eb
Sha1:   af3c8644913f4b3733775d06aa3a2f9c974705ef
Sha256: c4f64431197eb00360279466f2ed26101abea4bac931feb4fd883baa99b030a7
                                        
                                            GET /App_Themes/Braasport/Modules/Ecommerce50/images/cart.png HTTP/1.1 
Host: braasport.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/?kk=a4c6293-184b2f06d23-157201&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Cookie: _pk_id.2.5746=4f243935b08c22b5.1654509554.; ASP.NET_SessionId=gye4waoj3oxxi3f53lowee3x
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         5.145.153.8
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Sat, 26 Nov 2022 07:56:54 GMT
Content-Length: 961
Connection: keep-alive
Expires: Sun, 29 Mar 2020 00:00:00 GMT
Last-Modified: Tue, 08 Nov 2022 12:21:16 GMT
Accept-Ranges: bytes
ETag: "c95764996cf3d81:0"
X-Powered-By: ASP.NET


--- Additional Info ---
Magic:  PNG image data, 50 x 46, 8-bit/color RGBA, non-interlaced\012- data
Size:   961
Md5:    1a744066443b4124ca0c56511069e751
Sha1:   d79016607cb5193247e763d843ee00f95b6e223d
Sha256: 18817343fc9710ab557e86255b1a4a7f1490793fc82eedb242b1d5f6fb214b55
                                        
                                            GET /App_Themes/BraasportV2/images/braasport.svg HTTP/1.1 
Host: braasport.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/?kk=a4c6293-184b2f06d23-157201&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Cookie: _pk_id.2.5746=4f243935b08c22b5.1654509554.; ASP.NET_SessionId=gye4waoj3oxxi3f53lowee3x
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         5.145.153.8
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx
Date: Sat, 26 Nov 2022 07:56:54 GMT
Content-Length: 6216
Connection: keep-alive
Expires: Sun, 29 Mar 2020 00:00:00 GMT
Last-Modified: Tue, 08 Nov 2022 12:21:05 GMT
Accept-Ranges: bytes
ETag: "fbd9e1926cf3d81:0"
X-Powered-By: ASP.NET


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1240), with CRLF line terminators
Size:   6216
Md5:    3ed4cd82c9251eb0da1c25e0fe27a830
Sha1:   4741ffc75bfc82cfc976c57d6859e253d2da5e29
Sha256: 96ee8bcfd77c96480cd52d8d5c2cf28bda8dad620082a2bbe886fa5cf5f1beab
                                        
                                            GET /flowbox.js HTTP/1.1 
Host: connect.getflowbox.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.55.66
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 213
last-modified: Thu, 24 Nov 2022 16:36:59 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 26 Nov 2022 07:56:08 GMT
cache-control: max-age=300, must-revalidate
etag: "a0344a7514e19d5840ccee01178b20ba"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: HoUUhm_QDXEjW5_f-aJd8__oPxcyBvcEyYSUR7qPFOUzNCOmps9ZdA==
age: 47
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   213
Md5:    a0344a7514e19d5840ccee01178b20ba
Sha1:   76ec3b41420970d300f925e5649261f75b3806fa
Sha256: 11ed3053192dc00e982639b0a06099a2edb4bd03531a4af3ecef162568cac99a
                                        
                                            GET /cookiesharingiframe.html HTTP/1.1 
Host: policy.app.cookieinformation.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         152.199.21.175
HTTP/2 200 OK
content-type: text/html
                                        
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
age: 136
cache-control: max-age=300
content-md5: xqkKVmywb8mz//pJblCHTA==
date: Sat, 26 Nov 2022 07:56:54 GMT
etag: 0x8DAC63B0D415222
expires: Sat, 26 Nov 2022 08:01:54 GMT
last-modified: Mon, 14 Nov 2022 12:23:35 GMT
server: ECAcc (ska/F754)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 72ef6297-701e-007a-2f6c-01250d000000
x-ms-version: 2009-09-19
x-robots-tag: noindex, noarchive, nosnippet
content-length: 2809
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (8796), with no line terminators
Size:   2809
Md5:    464df94556dbd1a2739263fcab4816f1
Sha1:   97697bd4140c79cca4db296ec880986a93c850db
Sha256: 0a9398fe42c23368200c4a6b0daa74d62666f507b3792ea43e333cf117d22e53
                                        
                                            GET /mcjs-connected/js/users/298921844abfcf0e09c85373a/155a1f2423b69195fbbcb5e48.js HTTP/1.1 
Host: chimpstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         96.6.17.210
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
x-amz-id-2: R5vH3w8m8G2jWOkRfczXnS4XjvK9/G2iYRDjGRTbSNyBQW5KUhA2eL+/p8UUjyJNK3tAMvFNHko=
x-amz-request-id: ATJEM4JN6R2WGTX4
Last-Modified: Wed, 02 Jun 2021 11:37:20 GMT
ETag: "4b60d3ea13c42468679685c32a1680ac"
Accept-Ranges: bytes
Server: AmazonS3
X-EdgeConnect-MidMile-RTT: 1, 0, 0, 0
X-EdgeConnect-Origin-MEX-Latency: 96, 98, 97, 236
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=416
Expires: Sat, 26 Nov 2022 08:03:50 GMT
Date: Sat, 26 Nov 2022 07:56:54 GMT
Content-Length: 653
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text
Size:   653
Md5:    5c4175ac0e0e6d95ac18d804b263153a
Sha1:   66985f07a251a4cb15b7570f57ae7eb30ab0e180
Sha256: 58bde7a88d8aa4d7f183b4749b2f747cda33ed54035190f10ba81c9312ba25d7
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 26 Nov 2022 07:56:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /cookie-data/braasport.no/cabl.json HTTP/1.1 
Host: policy.app.cookieinformation.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://braasport.no
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/json
                                        
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
age: 51
cache-control: max-age=300
content-md5: ifR12UdN2+X30lVKylg0bQ==
date: Sat, 26 Nov 2022 07:56:54 GMT
etag: 0x8DACD3FF64371A1
expires: Sat, 26 Nov 2022 08:01:54 GMT
last-modified: Wed, 23 Nov 2022 10:46:22 GMT
server: ECAcc (ska/F6C5)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 7b2fcce6-f01e-0039-4c6c-01c351000000
x-ms-version: 2009-09-19
x-robots-tag: noindex, noarchive, nosnippet
content-length: 878
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (5317), with no line terminators
Size:   878
Md5:    ace158b8feec67864c6987a98cab4a50
Sha1:   9baba6bc3555b5b8e569b8cf6903476a4cafc348
Sha256: 97c3d1be52055868e463f1db7993693441920ee5599baa9c0cf604e1e0806638
                                        
                                            GET /App_Themes/BraasportV2/images/search.svg HTTP/1.1 
Host: braasport.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/resources/theme/1/1320/BraasportV2.css
Cookie: _pk_id.2.5746=4f243935b08c22b5.1654509554.; ASP.NET_SessionId=gye4waoj3oxxi3f53lowee3x
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         5.145.153.8
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx
Date: Sat, 26 Nov 2022 07:56:54 GMT
Content-Length: 425
Connection: keep-alive
Expires: Sun, 29 Mar 2020 00:00:00 GMT
Last-Modified: Tue, 08 Nov 2022 12:21:07 GMT
Accept-Ranges: bytes
ETag: "17b73e946cf3d81:0"
X-Powered-By: ASP.NET


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Size:   425
Md5:    ca13a3b5c922427b1122b5108f90665e
Sha1:   98b2e840bba4ace4043c5520909232ae0ea687ff
Sha256: 949991c2f14daa27a71ebec8f48050903070a4b4a40e1ed55c881452f16d20b8
                                        
                                            GET /App_Themes/BraasportV2/images/favourites.svg HTTP/1.1 
Host: braasport.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/?kk=a4c6293-184b2f06d23-157201&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Cookie: _pk_id.2.5746=4f243935b08c22b5.1654509554.; ASP.NET_SessionId=gye4waoj3oxxi3f53lowee3x
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         5.145.153.8
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx
Date: Sat, 26 Nov 2022 07:56:54 GMT
Content-Length: 718
Connection: keep-alive
Expires: Sun, 29 Mar 2020 00:00:00 GMT
Last-Modified: Tue, 08 Nov 2022 12:21:05 GMT
Accept-Ranges: bytes
ETag: "0d81b936cf3d81:0"
X-Powered-By: ASP.NET


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Size:   718
Md5:    630dc67f0f6f8707f9f7d66bcfe8c086
Sha1:   b8a1afe8a9d01deba1f6879f68788acdaaa604e8
Sha256: 4433a3f5672f68eed556b50db4422a1c754c0defc046b0013e1e206dd2e32dcd
                                        
                                            GET /App_Themes/BraasportV2/images/vipps_hurtigkasse_white.svg HTTP/1.1 
Host: braasport.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/resources/theme/1/1320/BraasportV2.css
Cookie: _pk_id.2.5746=4f243935b08c22b5.1654509554.; ASP.NET_SessionId=gye4waoj3oxxi3f53lowee3x
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         5.145.153.8
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx
Date: Sat, 26 Nov 2022 07:56:54 GMT
Content-Length: 3747
Connection: keep-alive
Expires: Sun, 29 Mar 2020 00:00:00 GMT
Last-Modified: Tue, 08 Nov 2022 12:21:07 GMT
Accept-Ranges: bytes
ETag: "33666e946cf3d81:0"
X-Powered-By: ASP.NET


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   3747
Md5:    6548352b57f70dfb3bf0545f2f32b80a
Sha1:   3041009065c01753517fca5fcc491f5546e2aff3
Sha256: 07a2bfae22f09d247ab0bef19e737498fb9ba612ccd920535ad0c199245db565
                                        
                                            GET /App_Themes/Braasport/images/hjerte.svg HTTP/1.1 
Host: braasport.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/resources/theme/1/1320/BraasportV2.css
Cookie: _pk_id.2.5746=4f243935b08c22b5.1654509554.; ASP.NET_SessionId=gye4waoj3oxxi3f53lowee3x
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         5.145.153.8
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx
Date: Sat, 26 Nov 2022 07:56:54 GMT
Content-Length: 586
Connection: keep-alive
Expires: Sun, 29 Mar 2020 00:00:00 GMT
Last-Modified: Tue, 08 Nov 2022 12:21:04 GMT
Accept-Ranges: bytes
ETag: "1ab724926cf3d81:0"
X-Powered-By: ASP.NET


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (344), with CRLF line terminators
Size:   586
Md5:    3273f7ef53e271f178f14d63f1a2fbfc
Sha1:   6db8c9fa0c1138acf4c7c490ce53f0cef229bc3a
Sha256: 68384f9d3a7592c4ac8d3988306b3cbf5c310275a05496a81a9340a8586d5ae1
                                        
                                            GET /assets/no/lipscore-v1.js HTTP/1.1 
Host: static.lipscore.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.55.30
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 69216
Connection: keep-alive
Date: Fri, 25 Nov 2022 09:23:17 GMT
Last-Modified: Fri, 25 Nov 2022 09:21:17 GMT
ETag: "97e709db0efc7e4edcf01c2a116c6e10"
Content-Encoding: gzip
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 18qXOxDhLmYCyhT2pEE968aG3KSh50LLRATAkmtXX7MJMZkeHq6x1g==
Age: 81218


--- Additional Info ---
Magic:  ASCII text, with very long lines (589)
Size:   69216
Md5:    97e709db0efc7e4edcf01c2a116c6e10
Sha1:   7509e2a1739bb8bf0d1b43942128a760f4c7e918
Sha256: 9736aad14a6b6460b71f0cbdc9d1f0035cd4c8947029b788450afcf35376a92e
                                        
                                            GET /gtm.js?id=GTM-PGH62HH HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 07:56:54 GMT
expires: Sat, 26 Nov 2022 07:56:54 GMT
cache-control: private, max-age=900
last-modified: Sat, 26 Nov 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 86886
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (19772)
Size:   86886
Md5:    6153b863083311c0e4c2492726a7efa5
Sha1:   f9a6d770ec40cbebdae755568db5a1d01e3f8ba1
Sha256: fc7088872ae06f2fd65b3e0f3a5851c83555e900550a5619a6e93c593cfc5df3
                                        
                                            GET /9e5f1e/braasport.no/nb.js HTTP/1.1 
Host: policy.app.cookieinformation.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
age: 30
cache-control: max-age=300
content-md5: M6Msfgp5oPCXR007PPJdEQ==
date: Sat, 26 Nov 2022 07:56:54 GMT
etag: 0x8DACD3FF6512BAF
expires: Sat, 26 Nov 2022 08:01:54 GMT
last-modified: Wed, 23 Nov 2022 10:46:22 GMT
server: ECAcc (ska/F7B0)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 4cd92b43-201e-0048-406c-01257a000000
x-ms-version: 2009-09-19
x-robots-tag: noindex, noarchive, nosnippet
content-length: 16152
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, Unicode text, UTF-8 text, with very long lines (65328)
Size:   16152
Md5:    273bb168be8fa569630fc9cdce3294c7
Sha1:   095ccc4bf47ca56163236f48b3f80bb6af1e4edd
Sha256: 0b18e03cdac00d883683b89106596222ddffa127ab24486f8bfe68afbbb8c9ba
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 26 Nov 2022 07:56:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 26 Nov 2022 07:56:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://braasport.no
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 16:40:18 GMT
expires: Fri, 24 Nov 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 141396
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size:   30928
Md5:    ac0d2859ea5f8fd6bcb3c305c08ec184
Sha1:   7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
Sha256: ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 26 Nov 2022 07:56:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         143.204.42.88
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=121279
Date: Sat, 26 Nov 2022 07:56:54 GMT
Etag: "6380ec6b-1d7"
Expires: Sun, 27 Nov 2022 17:38:13 GMT
Last-Modified: Fri, 25 Nov 2022 16:25:15 GMT
Server: ECS (bsa/EB21)
X-Cache: Miss from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: mmKpqOxTJUKj22j46QNkdeUHvkMA3fQZVI5pjFzNLzikipEAO1riUQ==
Age: 4378

                                        
                                            GET /static/images/kunder/banner_logos/popup-logo-placeholder.png HTTP/1.1 
Host: coi-prod.azureedge.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         152.199.21.175
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
age: 86
cache-control: max-age=300
content-md5: bV8lZ67y+NCF/Ka4Az5gEg==
date: Sat, 26 Nov 2022 07:56:54 GMT
etag: 0x8D895EB2067310F
expires: Sat, 26 Nov 2022 08:01:54 GMT
last-modified: Tue, 01 Dec 2020 11:20:36 GMT
server: ECAcc (ska/F77C)
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: a6289112-c01e-009b-306c-01f948000000
x-ms-version: 2009-09-19
x-robots-tag: noindex, noarchive, nosnippet
content-length: 945
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size:   945
Md5:    6d5f2567aef2f8d085fca6b8033e6012
Sha1:   d8cf24a12b6e92c4b3536f672a3070d2b9e20a30
Sha256: 70ce978ebbfb04b30148154ca33ef448faa5f8c69bb506088dc25fb1896d8bcd
                                        
                                            GET /assets/lipscore-v1.css HTTP/1.1 
Host: static.lipscore.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.55.30
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 11566
Connection: keep-alive
Date: Fri, 25 Nov 2022 09:23:17 GMT
Last-Modified: Fri, 25 Nov 2022 09:19:44 GMT
ETag: "ad324c13384f3748c4d121fab666b608"
Content-Encoding: gzip
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: yxP7gdlqgXAt2nNMR9kPO1OszG3VfIygXKKSUUeuWxaTtrXAuZ1wXQ==
Age: 81218


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   11566
Md5:    ad324c13384f3748c4d121fab666b608
Sha1:   de2833b8d80bd2ca7b1a077086e803fa9f947cc5
Sha256: 7597379ecb627246ef4309081cce9d17780443654ffe9270a33448189e4dfdfb
                                        
                                            GET /clerk.js HTTP/1.1 
Host: cdn.clerk.io
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         52.29.221.108
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sat, 26 Nov 2022 07:56:54 GMT
server: nginx
last-modified: Fri, 18 Nov 2022 09:14:23 GMT
vary: Accept-Encoding
etag: W/"63774cef-16208"
expires: Sat, 26 Nov 2022 08:56:54 GMT
cache-control: max-age=3600
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   35831
Md5:    e8aee97cc328063f9c109c203b9c06f2
Sha1:   1b19c9d7942b7bf0c059a06bcb86b117159949f8
Sha256: cddb65bbd6b0ff4ebc8983111228c037fe506617c966cda4bc447d20ddca1f37
                                        
                                            GET /fav/favicon-16x16.png HTTP/1.1 
Host: braasport.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/?kk=a4c6293-184b2f06d23-157201&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Cookie: _pk_id.2.5746=4f243935b08c22b5.1654509554.; ASP.NET_SessionId=gye4waoj3oxxi3f53lowee3x
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         5.145.153.8
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Sat, 26 Nov 2022 07:56:54 GMT
Content-Length: 1545
Connection: keep-alive
Expires: Sun, 29 Mar 2020 00:00:00 GMT
Last-Modified: Tue, 08 Nov 2022 12:21:47 GMT
Accept-Ranges: bytes
ETag: "1c3c33ac6cf3d81:0"
X-Powered-By: ASP.NET


--- Additional Info ---
Magic:  PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Size:   1545
Md5:    7cb0df7b37843c499b5f2ce69805d5f8
Sha1:   8d57eb83083950969fa142d13f85b91f7b77fdce
Sha256: 84361353c5d843f49fe99bbaa0d9abfa7472c2725c4f5bd2b431a7caecf03b7a
                                        
                                            GET /App_Themes/BraasportV2/images/clerk.png HTTP/1.1 
Host: braasport.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/resources/theme/1/1320/BraasportV2.css
Cookie: _pk_id.2.5746=4f243935b08c22b5.1654509554.; ASP.NET_SessionId=gye4waoj3oxxi3f53lowee3x
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         5.145.153.8
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Sat, 26 Nov 2022 07:56:54 GMT
Content-Length: 2356
Connection: keep-alive
Expires: Sun, 29 Mar 2020 00:00:00 GMT
Last-Modified: Tue, 08 Nov 2022 12:21:05 GMT
Accept-Ranges: bytes
ETag: "7a04936cf3d81:0"
X-Powered-By: ASP.NET


--- Additional Info ---
Magic:  PNG image data, 88 x 88, 8-bit/color RGBA, non-interlaced\012- data
Size:   2356
Md5:    69c7e2273bc469c4f7518998884d2d84
Sha1:   0dc676489affbdf1fd514848f2a3b1522ca8d37b
Sha256: 19bfaab1e30139385be004fbcd8a3bf9d9afc641bab2e86306fe7f8a07dc3ec7
                                        
                                            GET /v2/log/debug?payload=%7B%22key%22%3A%221hyXzGpS91Brzvve8XdaVLuTs7dHFqeB%22%2C%22source%22%3A%22Clerk.js%22%2C%22series%22%3A85562215%2C%22message%22%3A%22%5BAPI%5D%20Unknown%20content%20%5C%22testttt%5C%22%22%2C%22type%22%3A%22error%22%2C%22metadata%22%3A%7B%22api%22%3A%22%22%2C%22args%22%3A%7B%22clerk-content-id%22%3A5%2C%22template%22%3A%22testttt%22%2C%22key%22%3A%221hyXzGpS91Brzvve8XdaVLuTs7dHFqeB%22%2C%22visitor%22%3A%22auto%22%2C%22_%22%3A1669449414%7D%2C%22response%22%3A%7B%22status%22%3A%22error%22%2C%22type%22%3A%22LogicalError%22%2C%22message%22%3A%22Unknown%20content%20%5C%22testttt%5C%22%22%2C%22id%22%3A%22A34FrtlK%22%2C%22moreInfo%22%3A%22Go%20to%20my.clerk.io%2C%20select%20this%20store%2C%20go%20to%20Data%20%3E%20Logs%20and%20search%20for%20the%20error%20ID%20%5C%22A34FrtlK%5C%22.%22%7D%2C%22protocol%22%3A%22https%22%2C%22proxy%22%3A%22api.clerk.io%2Fv2%22%2C%22time%22%3A0.21700000762939453%2C%22origin%22%3A%22https%3A%2F%2Fbraasport.no%2F%3Fkk%3Da4c6293-184b2f06d23-157201%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono%22%2C%22init_origin%22%3A%22https%3A%2F%2Fbraasport.no%2F%3Fkk%3Da4c6293-184b2f06d23-157201%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono%22%2C%22user_agent%22%3A%22Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0%22%2C%22init_user_agent%22%3A%22Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0%22%7D%2C%22_%22%3A1669449414%7D&callback=__clerk_cb_7 HTTP/1.1 
Host: api.clerk.io
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         52.58.186.193
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sat, 26 Nov 2022 07:56:54 GMT
server: nginx
vary: Accept-Encoding
cache-control: no-cache
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   25277
Md5:    a3b25e52b452206e382491350ca2e824
Sha1:   c6909070404e6344ea85dd5526e738b9da7104ac
Sha256: 8efa816a8dcfa92c68756049a6827373bd577b63e22d3342396429210bea127b
                                        
                                            GET /App_Themes/BraasportV2/images/account.svg HTTP/1.1 
Host: braasport.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/?kk=a4c6293-184b2f06d23-157201&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Cookie: _pk_id.2.5746=4f243935b08c22b5.1654509554.; ASP.NET_SessionId=gye4waoj3oxxi3f53lowee3x
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         5.145.153.8
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx
Date: Sat, 26 Nov 2022 07:56:55 GMT
Content-Length: 793
Connection: keep-alive
Expires: Sun, 29 Mar 2020 00:00:00 GMT
Last-Modified: Tue, 08 Nov 2022 12:21:05 GMT
Accept-Ranges: bytes
ETag: "f264cc926cf3d81:0"
X-Powered-By: ASP.NET


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with CRLF line terminators
Size:   793
Md5:    689820179f0e46a782173a5a3e0180ad
Sha1:   a64198ea68f1c8341e7167527e52b6fc06a213c0
Sha256: 07693c63e071b67f5ef22124b614f96a17f284937351b0e7a60946342139858e
                                        
                                            GET /App_Themes/BraasportV2/images/cart.svg HTTP/1.1 
Host: braasport.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/?kk=a4c6293-184b2f06d23-157201&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Cookie: _pk_id.2.5746=4f243935b08c22b5.1654509554.; ASP.NET_SessionId=gye4waoj3oxxi3f53lowee3x
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         5.145.153.8
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx
Date: Sat, 26 Nov 2022 07:56:55 GMT
Content-Length: 880
Connection: keep-alive
Expires: Sun, 29 Mar 2020 00:00:00 GMT
Last-Modified: Tue, 08 Nov 2022 12:21:05 GMT
Accept-Ranges: bytes
ETag: "14edf4926cf3d81:0"
X-Powered-By: ASP.NET


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (305), with CRLF line terminators
Size:   880
Md5:    2fddec2c947e816791008f0ebf04a4dd
Sha1:   de013e814407588660b85f03958198c14c40b36f
Sha256: fef810746c8f22628c8150866320a5fbc588e8ac563a83f0a37cbf2a2cc1518b
                                        
                                            GET /hit?api_key=2cba3c9f19c6f8c1f630c98c HTTP/1.1 
Host: wapi.lipscore.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://braasport.no
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         151.101.86.217
HTTP/2 200 OK
                                        
server: Varnish
retry-after: 0
access-control-allow-credentials: true
accept-ranges: bytes
date: Sat, 26 Nov 2022 07:56:55 GMT
via: 1.1 varnish
x-served-by: cache-bma1633-BMA
x-cache: HIT
x-cache-hits: 0
x-timer: S1669449415.354756,VS0,VE0
access-control-allow-origin: https://braasport.no
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            GET /initial_data/settings/show?api_key=2cba3c9f19c6f8c1f630c98c&invitation_template_id=&lang= HTTP/1.1 
Host: wapi.lipscore.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://braasport.no
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         151.101.86.217
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: Cowboy
access-control-allow-methods: GET,POST,OPTIONS,PUT,DELETE
access-control-expose-headers: X-Pagination
access-control-max-age: 86400
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
access-control-allow-credentials: true
access-control-allow-headers: X-Http-Method-Override
cache-control: public, no-cache
x-request-id: 22e81f38-e0d4-4118-9d95-b3e7ca3e64f3
x-runtime: 0.019876
via: 1.1 vegur, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 07:56:55 GMT
age: 168030
x-served-by: cache-bma1633-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1669449415.354738,VS0,VE0
vary: Origin
access-control-allow-origin: https://braasport.no
content-length: 8958
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (8958), with no line terminators
Size:   8958
Md5:    d847cd627404517f620a960aa2433053
Sha1:   294ddcc745be69a44260b884d6bc02f21f15ff5e
Sha256: 74de3ec8be73a563bb53dcd8a6e3da8d3088b7aa35a9ffdfcf156abac6ca1248
                                        
                                            GET /initial_data/products/show?api_key=2cba3c9f19c6f8c1f630c98c&internal_id=17926&widgets=r_sm&translate_to_lang=no HTTP/1.1 
Host: wapi.lipscore.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://braasport.no
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.86.217
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: Cowboy
access-control-allow-methods: GET,POST,OPTIONS,PUT,DELETE
access-control-expose-headers: X-Pagination
access-control-max-age: 86400
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
access-control-allow-credentials: true
access-control-allow-headers: X-Http-Method-Override
cache-control: public, no-cache
x-request-id: d2cf9409-8456-4c0f-95ff-2854c80b3235
x-runtime: 0.031438
via: 1.1 vegur, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 07:56:55 GMT
age: 943796
x-served-by: cache-bma1633-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1669449416.587017,VS0,VE1
vary: Origin
access-control-allow-origin: https://braasport.no
content-length: 71
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   71
Md5:    e713fc1f21f2b53e6cf977ccd2a51b21
Sha1:   ced11df44e3731f3882f06109eaa740cad739411
Sha256: a983cb333d715f4cacacf2ea775bda59e792fe7330ad93a7fc73926f797d7c98
                                        
                                            GET /initial_data/products/show?api_key=2cba3c9f19c6f8c1f630c98c&internal_id=17924&widgets=r_sm&translate_to_lang=no HTTP/1.1 
Host: wapi.lipscore.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://braasport.no
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.86.217
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: Cowboy
access-control-allow-methods: GET,POST,OPTIONS,PUT,DELETE
access-control-expose-headers: X-Pagination
access-control-max-age: 86400
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
access-control-allow-credentials: true
access-control-allow-headers: X-Http-Method-Override
cache-control: public, no-cache
x-request-id: 5690e519-4f0f-4dbf-a503-e3e0e030e901
x-runtime: 0.029339
via: 1.1 vegur, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 07:56:55 GMT
age: 688968
x-served-by: cache-bma1633-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1669449416.587040,VS0,VE1
vary: Origin
access-control-allow-origin: https://braasport.no
content-length: 71
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   71
Md5:    b4a89749465493558f1fe187162c6fe1
Sha1:   9beaaede54b9746a9b32727b033948a15c6f29a1
Sha256: 76cdeb751c89245f52efdaff8f2f51eee1d0e464b0587f2804dd68f5b301e400
                                        
                                            GET /initial_data/products/show?api_key=2cba3c9f19c6f8c1f630c98c&internal_id=12249&widgets=r_sm&translate_to_lang=no HTTP/1.1 
Host: wapi.lipscore.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://braasport.no
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.86.217
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: Cowboy
access-control-allow-methods: GET,POST,OPTIONS,PUT,DELETE
access-control-expose-headers: X-Pagination
access-control-max-age: 86400
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
access-control-allow-credentials: true
access-control-allow-headers: X-Http-Method-Override
cache-control: public, no-cache
x-request-id: 01fcf7ea-93a3-4876-b622-5f3dc0f78f75
x-runtime: 0.022122
via: 1.1 vegur, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 07:56:55 GMT
age: 956743
x-served-by: cache-bma1633-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1669449416.591583,VS0,VE1
vary: Origin
access-control-allow-origin: https://braasport.no
content-length: 71
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   71
Md5:    b0f17922a87d45ea8dde58f9de363dd0
Sha1:   8a0ca9b934e5d3bef8cbf4d3e2f88e1df051f6ab
Sha256: efd1f0e6cf04441d4f4e5e56a86e6edb461492533898948f5e50fcdde0d17ac8
                                        
                                            GET /initial_data/products/show?api_key=2cba3c9f19c6f8c1f630c98c&internal_id=17910&widgets=r_sm&translate_to_lang=no HTTP/1.1 
Host: wapi.lipscore.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://braasport.no
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.86.217
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: Cowboy
access-control-allow-methods: GET,POST,OPTIONS,PUT,DELETE
access-control-expose-headers: X-Pagination
access-control-max-age: 86400
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
access-control-allow-credentials: true
access-control-allow-headers: X-Http-Method-Override
cache-control: public, no-cache
x-request-id: c0a85331-e8d9-4fb0-8251-083b6391bd51
x-runtime: 0.025129
via: 1.1 vegur, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 07:56:55 GMT
age: 951129
x-served-by: cache-bma1633-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1669449416.591605,VS0,VE1
vary: Origin
access-control-allow-origin: https://braasport.no
content-length: 71
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   71
Md5:    3a178afcecbde551f7f079c02ded1a9c
Sha1:   4623e9e990b5e4e8eb0da3ac3089525751526b77
Sha256: a365228001a5a94147b3a03ffea9fab97d223cda2e5763219ac365aa5d339fd4
                                        
                                            GET /initial_data/products/show?api_key=2cba3c9f19c6f8c1f630c98c&internal_id=17913&widgets=r_sm&translate_to_lang=no HTTP/1.1 
Host: wapi.lipscore.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://braasport.no
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.86.217
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: Cowboy
access-control-allow-methods: GET,POST,OPTIONS,PUT,DELETE
access-control-expose-headers: X-Pagination
access-control-max-age: 86400
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
access-control-allow-credentials: true
access-control-allow-headers: X-Http-Method-Override
cache-control: public, no-cache
x-request-id: 2661136f-746e-4f8b-b428-22a69dcccc6a
x-runtime: 0.014065
via: 1.1 vegur, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 07:56:55 GMT
age: 353223
x-served-by: cache-bma1633-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1669449416.591634,VS0,VE1
vary: Origin
access-control-allow-origin: https://braasport.no
content-length: 71
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   71
Md5:    743386c24d6b47580bb2daeb871f1f9b
Sha1:   e081d2fedd2bebbe8f5c6662798aa43a867eb75f
Sha256: 3ae6bb7d83d07640009653291e6a41a2020e065a3bed550121cd403ddbeaed4c
                                        
                                            GET /initial_data/products/show?api_key=2cba3c9f19c6f8c1f630c98c&internal_id=18015&widgets=r_sm&translate_to_lang=no HTTP/1.1 
Host: wapi.lipscore.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://braasport.no
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.86.217
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: Cowboy
access-control-allow-methods: GET,POST,OPTIONS,PUT,DELETE
access-control-expose-headers: X-Pagination
access-control-max-age: 86400
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
access-control-allow-credentials: true
access-control-allow-headers: X-Http-Method-Override
cache-control: public, no-cache
x-request-id: 62a79127-311b-4706-b7c5-069b016d7ada
x-runtime: 0.054511
via: 1.1 vegur, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 07:56:55 GMT
age: 944954
x-served-by: cache-bma1633-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1669449416.592045,VS0,VE1
vary: Origin
access-control-allow-origin: https://braasport.no
content-length: 71
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   71
Md5:    9dabf51b86547cbf8254dd10e81aaccf
Sha1:   7dd15e0932ca2a242869c8bacd9b19f4852e6487
Sha256: 12b0f9476618e744a68eb05ceab0cb536c7914dff50ad1166d547b7a1aef7a19
                                        
                                            GET /initial_data/products/show?api_key=2cba3c9f19c6f8c1f630c98c&internal_id=15209&widgets=r_sm&translate_to_lang=no HTTP/1.1 
Host: wapi.lipscore.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://braasport.no
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.86.217
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: Cowboy
access-control-allow-methods: GET,POST,OPTIONS,PUT,DELETE
access-control-expose-headers: X-Pagination
access-control-max-age: 86400
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
access-control-allow-credentials: true
access-control-allow-headers: X-Http-Method-Override
cache-control: public, no-cache
x-request-id: df85242e-af65-4bb1-b434-4da6ae35b4eb
x-runtime: 0.016242
via: 1.1 vegur, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 07:56:55 GMT
age: 427677
x-served-by: cache-bma1633-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1669449416.593159,VS0,VE1
vary: Origin
access-control-allow-origin: https://braasport.no
content-length: 71
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   71
Md5:    4d875acf4a33672f8890013460d267a3
Sha1:   9613a0e2078184dc89a14b9cf0bf816b21fd4fb4
Sha256: 210c0c422e3b6f521f714ca6885aadc8f38d66b7ea31e49adb7c8a94486752b8
                                        
                                            GET /initial_data/products/show?api_key=2cba3c9f19c6f8c1f630c98c&internal_id=18284&widgets=r_sm&translate_to_lang=no HTTP/1.1 
Host: wapi.lipscore.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://braasport.no
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.86.217
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: Cowboy
access-control-allow-methods: GET,POST,OPTIONS,PUT,DELETE
access-control-expose-headers: X-Pagination
access-control-max-age: 86400
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
access-control-allow-credentials: true
access-control-allow-headers: X-Http-Method-Override
cache-control: public, no-cache
x-request-id: e8e02b21-8229-4409-9989-45650b97d7d5
x-runtime: 0.022872
via: 1.1 vegur, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 07:56:55 GMT
age: 430809
x-served-by: cache-bma1633-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1669449416.594547,VS0,VE1
vary: Origin
access-control-allow-origin: https://braasport.no
content-length: 72
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   72
Md5:    eb1ef9ddb7eb6b24c4de3640f652f811
Sha1:   20d5f993a24cc72c390ae579dcde9667c8a75445
Sha256: 3b5afef8306063815f30c785404e95d31315e434b2b73c0464f6850d87f2c53b
                                        
                                            GET /initial_data/products/show?api_key=2cba3c9f19c6f8c1f630c98c&internal_id=20734&widgets=r_sm&translate_to_lang=no HTTP/1.1 
Host: wapi.lipscore.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://braasport.no
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.86.217
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: Cowboy
access-control-allow-methods: GET,POST,OPTIONS,PUT,DELETE
access-control-expose-headers: X-Pagination
access-control-max-age: 86400
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
access-control-allow-credentials: true
access-control-allow-headers: X-Http-Method-Override
cache-control: public, no-cache
x-request-id: f536bd74-e756-4bb8-b537-a1b4cef241b6
x-runtime: 0.019697
via: 1.1 vegur, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 07:56:55 GMT
age: 777227
x-served-by: cache-bma1633-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1669449416.597262,VS0,VE1
vary: Origin
access-control-allow-origin: https://braasport.no
content-length: 71
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   71
Md5:    85132c7deaa479f1d3e4dc07edee6dff
Sha1:   22603bf6705faf6d513141295ea62410beb0ac15
Sha256: 359896feb03f31f4f38060cd18033519cfd20d6bcb482603eb1a89fe3fd8e480
                                        
                                            GET /v2/log/pageview?payload=%7B%22key%22%3A%221hyXzGpS91Brzvve8XdaVLuTs7dHFqeB%22%2C%22visitor%22%3A%22auto%22%2C%22_%22%3A1669449415%7D&callback=__clerk_cb_8 HTTP/1.1 
Host: api.clerk.io
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         52.58.186.193
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sat, 26 Nov 2022 07:56:55 GMT
server: nginx
vary: Accept-Encoding
cache-control: no-cache
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

                                        
                                            GET /initial_data/products/show?api_key=2cba3c9f19c6f8c1f630c98c&internal_id=20154&widgets=r_sm&translate_to_lang=no HTTP/1.1 
Host: wapi.lipscore.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://braasport.no
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.86.217
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: Cowboy
access-control-allow-methods: GET,POST,OPTIONS,PUT,DELETE
access-control-expose-headers: X-Pagination
access-control-max-age: 86400
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
access-control-allow-credentials: true
access-control-allow-headers: X-Http-Method-Override
cache-control: public, no-cache
x-request-id: 292a4616-0346-47bb-a743-4e777c0eccb2
x-runtime: 0.027698
via: 1.1 vegur, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 07:56:55 GMT
age: 860533
x-served-by: cache-bma1633-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1669449416.599449,VS0,VE1
vary: Origin
access-control-allow-origin: https://braasport.no
content-length: 71
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   71
Md5:    87d973d55773e693625c92c298224334
Sha1:   f725b8473018cd1aa628102e37b2eeb4d6cc65d3
Sha256: daa54c83bfa4d0fb738062cfb2cf3128e984fadebada4b308ffd1eedc4794178
                                        
                                            GET /initial_data/products/show?api_key=2cba3c9f19c6f8c1f630c98c&internal_id=17560&widgets=r_sm&translate_to_lang=no HTTP/1.1 
Host: wapi.lipscore.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://braasport.no
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.86.217
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: Cowboy
access-control-allow-methods: GET,POST,OPTIONS,PUT,DELETE
access-control-expose-headers: X-Pagination
access-control-max-age: 86400
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
access-control-allow-credentials: true
access-control-allow-headers: X-Http-Method-Override
cache-control: public, no-cache
x-request-id: 73fa0cf7-ec9a-4adc-8161-a8417704b54c
x-runtime: 0.022097
via: 1.1 vegur, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 07:56:55 GMT
age: 263086
x-served-by: cache-bma1633-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1669449416.602175,VS0,VE1
vary: Origin
access-control-allow-origin: https://braasport.no
content-length: 72
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   72
Md5:    ddd82383829650b9aa3d71a9fa438a05
Sha1:   eab46b0b82e6885eadbbe96ba51b4773e0c7f496
Sha256: 8b699742e6669919dcf14945c07ca6c49bfc72e38149f1c36d238b8fb75ae418
                                        
                                            GET /initial_data/products/show?api_key=2cba3c9f19c6f8c1f630c98c&internal_id=15521&widgets=r_sm&translate_to_lang=no HTTP/1.1 
Host: wapi.lipscore.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://braasport.no
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.86.217
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: Cowboy
access-control-allow-methods: GET,POST,OPTIONS,PUT,DELETE
access-control-expose-headers: X-Pagination
access-control-max-age: 86400
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
access-control-allow-credentials: true
access-control-allow-headers: X-Http-Method-Override
cache-control: public, no-cache
x-request-id: f4ca65e3-9b94-47b4-a21f-aac83d2ea0b1
x-runtime: 0.024135
via: 1.1 vegur, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 07:56:55 GMT
age: 954693
x-served-by: cache-bma1633-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1669449416.605665,VS0,VE0
vary: Origin
access-control-allow-origin: https://braasport.no
content-length: 72
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   72
Md5:    0cb8fb95dcd14ea34ac16b70ade46af3
Sha1:   63e1e367edc3c7a8b649307cdd6928015e400a36
Sha256: be2b01cc2e79785ea02aac3a8f8ada806e88d80e117370f19caa6f3f6ad0fbb5
                                        
                                            GET /initial_data/products/show?api_key=2cba3c9f19c6f8c1f630c98c&internal_id=15178&widgets=r_sm&translate_to_lang=no HTTP/1.1 
Host: wapi.lipscore.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://braasport.no
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.86.217
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: Cowboy
access-control-allow-methods: GET,POST,OPTIONS,PUT,DELETE
access-control-expose-headers: X-Pagination
access-control-max-age: 86400
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
access-control-allow-credentials: true
access-control-allow-headers: X-Http-Method-Override
cache-control: public, no-cache
x-request-id: 812bb6b0-532b-4dac-8454-00590b2533a8
x-runtime: 0.017358
via: 1.1 vegur, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 07:56:55 GMT
age: 774788
x-served-by: cache-bma1633-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1669449416.605430,VS0,VE1
vary: Origin
access-control-allow-origin: https://braasport.no
content-length: 72
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   72
Md5:    37c94712bbeff24aec2daead865b5eec
Sha1:   b283e9212eae910fae7e55c6f259b72169b89565
Sha256: a0726ccf48a8b3c3cf42ce82c3f2d089b1a34acd902fce59dab51ca4de25b9b4
                                        
                                            GET /initial_data/products/show?api_key=2cba3c9f19c6f8c1f630c98c&internal_id=12278&widgets=r_sm&translate_to_lang=no HTTP/1.1 
Host: wapi.lipscore.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://braasport.no
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.86.217
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: Cowboy
access-control-allow-methods: GET,POST,OPTIONS,PUT,DELETE
access-control-expose-headers: X-Pagination
access-control-max-age: 86400
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
access-control-allow-credentials: true
access-control-allow-headers: X-Http-Method-Override
cache-control: public, no-cache
x-request-id: 3b9159fb-2c5f-49ba-881e-581d31a50985
x-runtime: 0.048299
via: 1.1 vegur, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 07:56:55 GMT
age: 262340
x-served-by: cache-bma1633-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1669449416.607972,VS0,VE1
vary: Origin
access-control-allow-origin: https://braasport.no
content-length: 74
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   74
Md5:    bb0b4ca64fac224b21da553ca34209bf
Sha1:   73c817ee4cf1030d5e3a3c92241337743d81909e
Sha256: 0c70dd304fe9cd6622671f03706eabd663d3531398e607f7a619d002afae6d31
                                        
                                            GET /initial_data/products/show?api_key=2cba3c9f19c6f8c1f630c98c&internal_id=12286&widgets=r_sm&translate_to_lang=no HTTP/1.1 
Host: wapi.lipscore.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://braasport.no
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.86.217
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: Cowboy
access-control-allow-methods: GET,POST,OPTIONS,PUT,DELETE
access-control-expose-headers: X-Pagination
access-control-max-age: 86400
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
access-control-allow-credentials: true
access-control-allow-headers: X-Http-Method-Override
cache-control: public, no-cache
x-request-id: fb3d737f-3a71-40af-ba47-84c2534c4f52
x-runtime: 0.013150
via: 1.1 vegur, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 07:56:55 GMT
age: 689678
x-served-by: cache-bma1633-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1669449416.606476,VS0,VE4
vary: Origin
access-control-allow-origin: https://braasport.no
content-length: 70
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   70
Md5:    2af738574224e5b496cae5aa48bff0b5
Sha1:   bb4d9199f8b2e59c2e6817647099b2490b7e664d
Sha256: 304454a66bc2fa23daa9a8191d84629c5b9034482286324ac3c7f7849d3a1143
                                        
                                            GET /initial_data/products/show?api_key=2cba3c9f19c6f8c1f630c98c&internal_id=15182&widgets=r_sm&translate_to_lang=no HTTP/1.1 
Host: wapi.lipscore.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://braasport.no
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.86.217
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: Cowboy
access-control-allow-methods: GET,POST,OPTIONS,PUT,DELETE
access-control-expose-headers: X-Pagination
access-control-max-age: 86400
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
access-control-allow-credentials: true
access-control-allow-headers: X-Http-Method-Override
cache-control: public, no-cache
x-request-id: 71b5123c-c848-44dc-baf8-2bf18ce0de97
x-runtime: 0.041060
via: 1.1 vegur, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 07:56:55 GMT
age: 770294
x-served-by: cache-bma1633-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1669449416.610305,VS0,VE1
vary: Origin
access-control-allow-origin: https://braasport.no
content-length: 71
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   71
Md5:    3b6a3a7e9dc8e5e57292a41ebfabcfcc
Sha1:   b35dc5bd3ea7d4eecfa09679b0ca3f5f26e8f863
Sha256: b871fbdd23f5b2858fbdced4b48f2b833b8fa7b9292721c8d2ca28dd4d8b12be
                                        
                                            GET /initial_data/products/show?api_key=2cba3c9f19c6f8c1f630c98c&internal_id=12285&widgets=r_sm&translate_to_lang=no HTTP/1.1 
Host: wapi.lipscore.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://braasport.no
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.86.217
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: Cowboy
access-control-allow-methods: GET,POST,OPTIONS,PUT,DELETE
access-control-expose-headers: X-Pagination
access-control-max-age: 86400
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
access-control-allow-credentials: true
access-control-allow-headers: X-Http-Method-Override
cache-control: public, no-cache
x-request-id: 66da9814-2dc3-4adb-9af9-dc8ff4884ddc
x-runtime: 0.015425
via: 1.1 vegur, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 07:56:55 GMT
age: 591563
x-served-by: cache-bma1633-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1669449416.617335,VS0,VE1
vary: Origin
access-control-allow-origin: https://braasport.no
content-length: 70
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   70
Md5:    ac4cc38a192191d67abbc266f8bba3af
Sha1:   99e93dfc6cc9fc5ca8045df85e0c73e16014ea05
Sha256: a0aa163e8e84782da20a22f4c34cf8d9113041ca380ba4245b58705443094293
                                        
                                            GET /initial_data/products/show?api_key=2cba3c9f19c6f8c1f630c98c&internal_id=12274&widgets=r_sm&translate_to_lang=no HTTP/1.1 
Host: wapi.lipscore.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://braasport.no
Connection: keep-alive
Referer: https://braasport.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.86.217
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: Cowboy
access-control-allow-methods: GET,POST,OPTIONS,PUT,DELETE
access-control-expose-headers: X-Pagination
access-control-max-age: 86400
x-frame-options: SAMEORIGIN