Overview

URL26aab.pv.wy5532.com/
IP 37.48.65.153 (Netherlands)
ASN#60781 LeaseWeb Netherlands B.V.
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-12-01 01:14:18 UTC
StatusLoading report..
IDS alerts0
Blocklist alert1
urlquery alerts No alerts detected
Tags None

Domain Summary (43)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
api.yadore.com (1) 591567 No data No data 88.99.112.6
dd.kelkoogroup.net (1) 0 No data No data 65.9.44.60 Domain (kelkoogroup.net) ranked at: 79339
x.klarnacdn.net (1) 8025 No data No data 143.204.55.101
dipaka-ead.com (3) 0 2022-10-31 13:23:43 UTC 2022-11-30 04:18:00 UTC 3.212.50.125 Unknown ranking
status.thawte.com (3) 5123 2017-11-27 12:33:51 UTC 2022-11-30 18:35:27 UTC 93.184.220.29
ocsp.usertrust.com (1) 899 2012-05-21 15:43:18 UTC 2022-11-30 17:12:14 UTC 104.18.32.68
chimpstatic.com (1) 4832 2017-04-24 07:02:55 UTC 2022-11-30 22:50:21 UTC 96.6.17.210
connect.facebook.net (2) 139 2012-05-22 02:51:28 UTC 2022-11-30 17:12:06 UTC 31.13.72.12
ocsp.digicert.com (5) 86 2012-05-21 07:02:23 UTC 2022-11-30 20:24:46 UTC 93.184.220.29
www.facebook.com (1) 99 No data No data 31.13.72.36
s.kk-resources.com (1) 38577 No data No data 143.204.55.57
googleads.g.doubleclick.net (1) 42 2021-02-20 15:43:32 UTC 2022-11-30 22:38:04 UTC 142.250.74.66
tb.de17a.com (4) 529091 No data No data 213.155.156.189
fonts.gstatic.com (5) 0 2014-09-09 00:40:21 UTC 2022-11-30 22:48:06 UTC 216.58.207.227 Domain (gstatic.com) ranked at: 540
no-go.kelkoogroup.net (4) 0 No data No data 95.211.116.27 Domain (kelkoogroup.net) ranked at: 79339
www.google-analytics.com (3) 40 2013-07-28 22:04:32 UTC 2022-11-30 22:10:37 UTC 142.250.74.110
www.googletagmanager.com (1) 75 2013-05-22 02:07:37 UTC 2022-11-30 23:14:41 UTC 142.250.74.168
www.google.com (2) 7 2015-07-09 17:04:24 UTC 2022-11-30 21:17:02 UTC 142.250.74.132
region1.google-analytics.com (1) 0 2022-03-17 11:26:33 UTC 2022-11-30 17:28:03 UTC 216.239.34.36 Domain (google-analytics.com) ranked at: 8401
clever-redirect.com (1) 0 No data No data 78.46.197.88 Unknown ranking
content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-11-30 17:19:42 UTC 34.160.144.191
img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-11-30 17:26:07 UTC 34.120.237.76
ocsp.sectigo.com (3) 487 2018-12-17 11:31:55 UTC 2022-11-30 21:13:57 UTC 172.64.155.188
static.itxuc.com (7) 0 No data No data 85.196.80.229 Unknown ranking
rcgmal4n.klarnaservices.com (1) 30458 No data No data 143.204.55.73
cdn.jsdelivr.net (2) 439 2012-09-30 00:15:09 UTC 2022-11-30 17:12:06 UTC 151.101.1.229
stats.g.doubleclick.net (1) 96 2013-06-10 20:21:11 UTC 2022-11-30 17:26:15 UTC 64.233.165.157
r3.o.lencr.org (11) 344 2020-12-02 08:52:13 UTC 2022-11-30 17:12:16 UTC 23.36.76.226
eu-library.klarnaservices.com (1) 22427 No data No data 54.230.111.116
api-js.datadome.co (1) 8155 2017-10-11 14:14:56 UTC 2022-11-30 19:13:23 UTC 13.48.98.34
ocsp.pki.goog (12) 175 2017-06-14 07:23:31 UTC 2022-11-30 17:12:14 UTC 142.250.74.131
bat.bing.com (3) 387 2014-04-08 09:23:16 UTC 2022-11-30 17:12:25 UTC 204.79.197.200
www.google.no (2) 25607 2016-04-05 19:50:59 UTC 2022-11-30 21:12:58 UTC 142.250.74.163
26aab.pv.wy5532.com (3) 0 No data No data 162.210.196.168 Unknown ranking
lookandfind.me (2) 35702 No data No data 5.9.110.29
services14.itxuc.com (3) 0 No data No data 213.52.87.171 Unknown ranking
ocsp.globalsign.com (1) 2075 2012-05-25 06:20:55 UTC 2022-11-30 17:14:19 UTC 104.18.21.226
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-30 17:13:24 UTC 34.117.237.239
push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-11-30 17:12:17 UTC 34.214.17.205
soundgarden.no (58) 0 No data No data 62.92.37.200 Unknown ranking
fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-11-30 21:05:51 UTC 142.250.74.74
s.kelkoogroup.net (2) 316265 No data No data 185.60.164.26
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-30 17:12:31 UTC 34.102.187.140

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-12-01 2 26aab.pv.wy5532.com/ Malware

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 37.48.65.153
Date UQ / IDS / BL URL IP
2023-01-29 21:31:18 +0000 0 - 2 - 6 ijkkfkxj.nn.wy5532.com/ 37.48.65.153
2023-01-29 01:07:21 +0000 0 - 0 - 1 xmkgvw.gov.wy5532.com/ 37.48.65.153
2023-01-28 22:20:07 +0000 0 - 0 - 3 cn735e1.ou.wy5532.com/ 37.48.65.153
2023-01-28 07:31:01 +0000 0 - 2 - 6 qwrer.80813.ir.wy5532.com/ 37.48.65.153
2023-01-28 05:09:24 +0000 0 - 0 - 2 ogbjpspi.soso.wy5532.com/ 37.48.65.153


Last 5 reports on ASN: LeaseWeb Netherlands B.V.
Date UQ / IDS / BL URL IP
2023-01-30 11:49:38 +0000 0 - 0 - 3 andicomedicalsuppliers.com/chromestre/158on89 (...) 37.48.65.136
2023-01-30 11:48:53 +0000 0 - 0 - 3 andicomedicalsuppliers.com/chromestre/141on89 (...) 37.48.65.136
2023-01-30 09:55:55 +0000 0 - 0 - 5 9609775885.ambientesmatematicos.co/Newgtod0v5 (...) 213.227.149.193
2023-01-30 09:33:33 +0000 0 - 2 - 2 95.211.16.242/mips.mips 95.211.16.242
2023-01-30 09:33:30 +0000 0 - 2 - 2 95.211.16.242//mips.mips 95.211.16.242


Last 5 reports on domain: wy5532.com
Date UQ / IDS / BL URL IP
2023-01-30 07:42:00 +0000 0 - 0 - 1 govyty.34ca6.cz.wy5532.com/ 37.48.65.152
2023-01-30 07:33:42 +0000 0 - 0 - 1 lkljk.105aa.dv.wy5532.com/ 185.107.56.200
2023-01-30 07:05:11 +0000 0 - 0 - 1 lkjkui.4ac8e.ii.wy5532.com/ 207.244.67.218
2023-01-30 05:28:16 +0000 0 - 2 - 6 wqwqw.5d58c.rd.wy5532.com/ 37.48.65.155
2023-01-30 04:22:33 +0000 0 - 2 - 6 59b90.faedcc.wy5532.com/ 37.48.65.149


No other reports with similar screenshot

JavaScript

Executed Scripts (70)

Executed Evals (0)

Executed Writes (2)
#1 JavaScript::Write (size: 504) - SHA256: 06bcfb8ab518e4cacfe75bd237c986b43335cfa8d0c253b3f61b72316ea56162
< script type = 'text/html'
id = 'ko_simpleGrid_pageLinks' > < div class = "ko-grid-pageLinks" > < span > Page: < /span>                        <!-- ko foreach: ko.utils.range(0, maxPageIndex) -->                               <a href="#" data-bind="text: $data + 1, click: function() { $root.currentPageIndex($data) }, css: { selected: $data == $root.currentPageIndex() }">                            </a > <!-- /ko -->                    </div></script>
#2 JavaScript::Write (size: 701) - SHA256: f35774fc96428f2c5f7680bfd25cb56793253947e437f12c234ab3bcf2f41d61
< script type = 'text/html'
id = 'ko_simpleGrid_grid' > < table class = "ko-grid"
cellspacing = "0" > < thead > < tr data - bind = "foreach: columns" > < th data - bind = "text: headerText" > < /th>                            </tr > < /thead>                        <tbody data-bind="foreach: itemsOnCurrentPage">                           <tr data-bind="foreach: $parent.columns">                               <td data-bind="text: typeof rowText == 'function' ? rowText($parent) : $parent[rowText] "></td > < /tr>                        </tbody > < /table></script >


HTTP Transactions (167)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2318
Expires: Thu, 01 Dec 2022 01:52:44 GMT
Date: Thu, 01 Dec 2022 01:14:06 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2526
Cache-Control: max-age=122359
Date: Thu, 01 Dec 2022 01:14:06 GMT
Etag: "638730f7-1d7"
Expires: Fri, 02 Dec 2022 11:13:25 GMT
Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2945
Expires: Thu, 01 Dec 2022 02:03:11 GMT
Date: Thu, 01 Dec 2022 01:14:06 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 00:18:04 GMT
cache-control: public,max-age=3600
age: 3362
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    14cd9a0afb6ba9a763651d5112760d1e
Sha1:   75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
Sha256: 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
                                        
                                            GET / HTTP/1.1 
Host: 26aab.pv.wy5532.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: sid=2c57d3b4-7111-11ed-b960-73817f1765eb
Upgrade-Insecure-Requests: 1

search
                                         162.210.196.168
HTTP/1.1 200 OK
content-type: text/html; charset=utf-8
                                        
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 480
date: Thu, 01 Dec 2022 01:14:06 GMT
server: nginx


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (480), with no line terminators
Size:   480
Md5:    8b2fb78a052330618d9c7ad8e6ff2a09
Sha1:   a0290dbf7df5918fafe579bdc18883ab47464d0d
Sha256: dda5c6fc3f319fd7f803a69ed86c54cd2911c2d92e29a77f3854fe0a0f4baf30

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: dZjgEvNNVVgVkQ6M+eNHctZOkxo0Jm5nijL9ENm2+FBnNLNWNnuIOgqAqyOgjk0oIV6VLNalNPc=
x-amz-request-id: VRG7A270ZSEQXFDF
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 00:46:04 GMT
age: 1682
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 01 Dec 2022 01:14:06 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: 26aab.pv.wy5532.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://26aab.pv.wy5532.com/
Cookie: sid=2c57d3b4-7111-11ed-b960-73817f1765eb

search
                                         162.210.196.168
HTTP/1.1 404 Not Found
                                        
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 9
date: Thu, 01 Dec 2022 01:14:06 GMT
server: nginx


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   9
Md5:    d8f4a1993546cc4b850cde3599e27aec
Sha1:   094b763b4cfcc0b05e5d040581cd513c3ca08067
Sha256: 907ba78b4545338d3539683e63ecb51cf51c10adc9dabd86e92bd52339f298b9
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 01:11:15 GMT
cache-control: public,max-age=3600
age: 172
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2528
Cache-Control: max-age=117292
Date: Thu, 01 Dec 2022 01:14:07 GMT
Etag: "63871d2b-1d7"
Expires: Fri, 02 Dec 2022 09:48:59 GMT
Last-Modified: Wed, 30 Nov 2022 09:06:51 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY2OTg2NDQ0NiwiaWF0IjoxNjY5ODU3MjQ2LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIyc204Y2tjYjlsZ3EycTJ0dDgwdWQyMGQiLCJuYmYiOjE2Njk4NTcyNDYsInRzIjoxNjY5ODU3MjQ2NjM1MTA2fQ.R27lCLjYlPHbxajnEc-x8MeVdIT2Bf1BDMNNf9djD78&sid=2c57d3b4-7111-11ed-b960-73817f1765eb HTTP/1.1 
Host: 26aab.pv.wy5532.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://26aab.pv.wy5532.com/
Cookie: sid=2c57d3b4-7111-11ed-b960-73817f1765eb
Upgrade-Insecure-Requests: 1

search
                                         162.210.196.168
HTTP/1.1 302 Found
                                        
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 11
date: Thu, 01 Dec 2022 01:14:07 GMT
location: http://dipaka-ead.com/zcvisitor/73cb5236-7115-11ed-b8fb-0aa52923212d/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=4fb4e190-e7f9-11ec-be3c-128084d1ce51
server: nginx
set-cookie: sid=2c57d3b4-7111-11ed-b960-73817f1765eb; path=/; domain=.wy5532.com; expires=Tue, 19 Dec 2090 04:28:14 GMT; max-age=2147483647; HttpOnly


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   11
Md5:    32682312d17c7cbf18e73594f5570319
Sha1:   60e22121bdd0bc71cdb2bae2a3aa577006b2eae9
Sha256: e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 2V8dZOm6NUU6S1P/+bSRMw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         34.214.17.205
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: GsLnDnhY+Ntxh1E2cj0zMYMDHjw=

                                        
                                            GET /zcvisitor/73cb5236-7115-11ed-b8fb-0aa52923212d/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=4fb4e190-e7f9-11ec-be3c-128084d1ce51 HTTP/1.1 
Host: dipaka-ead.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://26aab.pv.wy5532.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         3.212.50.125
HTTP/1.1 200
Content-Type: text/html;charset=UTF-8
                                        
Date: Thu, 01 Dec 2022 01:14:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Server: MTFfLxIu


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   1100
Md5:    f06240a6741face1c2091af69aa4c16f
Sha1:   884aa8837ac43acb0f4b06afaaf5a375ed029928
Sha256: 3dc878eee5a94cdb6dff7a2f69342581ebd7cfa7cd23e0f48bd2e7be5cc69d43
                                        
                                            GET /zcredirect?visitid=73cb5236-7115-11ed-b8fb-0aa52923212d&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false HTTP/1.1 
Host: dipaka-ead.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dipaka-ead.com/zcvisitor/73cb5236-7115-11ed-b8fb-0aa52923212d/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=4fb4e190-e7f9-11ec-be3c-128084d1ce51
Upgrade-Insecure-Requests: 1

search
                                         3.212.50.125
HTTP/1.1 200
Content-Type: text/html;charset=UTF-8
                                        
Date: Thu, 01 Dec 2022 01:14:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
redirected: JS
Server: ynRfcNLd


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   356
Md5:    9d114559ed5dc381324cb32d47063d90
Sha1:   4b16f733768b87ec64f017f9e576275330c9dbde
Sha256: dbe17731b5f728e5aed60c87ffcb6473d0c9df855bbe13f29d6f5f0dd1cb61b6
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A0DC6D4CD78E4068278AB54529C604C657409DE920E939C2C929B104D906B6BD"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1696
Expires: Thu, 01 Dec 2022 01:42:24 GMT
Date: Thu, 01 Dec 2022 01:14:08 GMT
Connection: keep-alive

                                        
                                            GET /favicon.ico HTTP/1.1 
Host: dipaka-ead.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dipaka-ead.com/zcredirect?visitid=73cb5236-7115-11ed-b8fb-0aa52923212d&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false

search
                                         3.212.50.125
HTTP/1.1 404
Content-Type: text/html;charset=utf-8
                                        
Date: Thu, 01 Dec 2022 01:14:08 GMT
Content-Length: 653
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Content-Language: en
Server: yhknZyEs


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (649), with no line terminators
Size:   653
Md5:    ba2732b1b2fa2626ffaa15f62f9e7d66
Sha1:   203d4e7fbb1d80449d6e4e1f3ae7a9bf8625debe
Sha256: 879861cb72fe9fbb476dab246021c4c83b4066327de2529e05ec54d3afb0a1c8
                                        
                                            GET /s/r6?s=623619497&s2=badious-buzzard&s3=romeo-sic-vqpeyj59e3 HTTP/1.1 
Host: clever-redirect.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dipaka-ead.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         78.46.197.88
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
referrer-policy: no-referrer
x-powered-by: PHP/7.4.27
set-cookie: 73a6f0bde42c2d33b895b4c86269e949=86ee18b08f659bba431a8c94a5375332c5a5f704c6b064bcbaf430fd0a3b840ba%3A2%3A%7Bi%3A0%3Bs%3A32%3A%2273a6f0bde42c2d33b895b4c86269e949%22%3Bi%3A1%3Bs%3A1%3A%221%22%3B%7D; expires=Fri, 02-Dec-2022 01:14:08 GMT; Max-Age=86400; path=/; HttpOnly
content-length: 354
date: Thu, 01 Dec 2022 01:14:08 GMT
server: Apache/2.4.52 (codeit) OpenSSL/1.1.1m PHP/7.4.27
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (354), with no line terminators
Size:   354
Md5:    06cd5c55107c17eadfddbff6b12209e7
Sha1:   fe2ca9dd3972b3d68bb919a26d63fb7aba7898a6
Sha256: 8dfe153db6f2ae662937108616e20772123840d6737a021dafe5dafb1f600925
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A73B23B47AA8BC231534C2DD12670AD4AF61C6B32DC286416CBAC9D504592AEE"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=916
Expires: Thu, 01 Dec 2022 01:29:24 GMT
Date: Thu, 01 Dec 2022 01:14:08 GMT
Connection: keep-alive

                                        
                                            GET /s/a?t=10&f=1&u=f4bdb01fc36e3f720c2a963a770625c6&m=soundgarden.no&s1=623619497&s2=badious-buzzard&s3=romeo-sic-vqpeyj59e3&s5=cf HTTP/1.1 
Host: lookandfind.me
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         5.9.110.29
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 01 Dec 2022 01:14:08 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1k
X-Powered-By: PHP/8.1.10
Set-Cookie: eac533679b3e8eef969b082b5b446a6a=df2a91c6c2e835b218e2d5ce1e4109d312456f06352904e901f25675da904cc0a%3A2%3A%7Bi%3A0%3Bs%3A32%3A%22eac533679b3e8eef969b082b5b446a6a%22%3Bi%3A1%3Bs%3A1%3A%221%22%3B%7D; expires=Fri, 02-Dec-2022 01:14:08 GMT; Max-Age=86400; path=/; HttpOnly
Referrer-Policy: strict-origin-when-cross-origin
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with very long lines (941), with no line terminators
Size:   941
Md5:    f8807474dcc72d6bee7d114d0fff1bd4
Sha1:   169358bc9e1411e0bc4cfab109ae680cb200c6c9
Sha256: 2b2696c29d83b80af682f9c4f680e0eae119e3961b48135cc0d33f3e8c5721d6
                                        
                                            GET /s/r?u=https%3A%2F%2Fapi.yadore.com%2Fv2%2Fr%3Fe%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%3D%3D%26i%3DgA6FDu_H1RHx7EV%2F%26placementId%3D8a94cd8e18394e86eb92f5ea07f197f0&h=38f50c8e381a93377142f7b0fc42d22f HTTP/1.1 
Host: lookandfind.me
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: eac533679b3e8eef969b082b5b446a6a=df2a91c6c2e835b218e2d5ce1e4109d312456f06352904e901f25675da904cc0a%3A2%3A%7Bi%3A0%3Bs%3A32%3A%22eac533679b3e8eef969b082b5b446a6a%22%3Bi%3A1%3Bs%3A1%3A%221%22%3B%7D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin

search
                                         5.9.110.29
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 01 Dec 2022 01:14:08 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1k
X-Powered-By: PHP/8.1.10
Referrer-Policy: strict-origin-when-cross-origin
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (867), with no line terminators
Size:   867
Md5:    57320c94d94151df916c6f14d89fce73
Sha1:   d4fb91b6d6fb99085d4f68f1b551301343edf127
Sha256: 972a3f4c740478490a8c9dade5376be669f0dc74c48f8ca6d447dd4017e4ba32
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11906
Expires: Thu, 01 Dec 2022 04:32:34 GMT
Date: Thu, 01 Dec 2022 01:14:08 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11906
Expires: Thu, 01 Dec 2022 04:32:34 GMT
Date: Thu, 01 Dec 2022 01:14:08 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11906
Expires: Thu, 01 Dec 2022 04:32:34 GMT
Date: Thu, 01 Dec 2022 01:14:08 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11906
Expires: Thu, 01 Dec 2022 04:32:34 GMT
Date: Thu, 01 Dec 2022 01:14:08 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11906
Expires: Thu, 01 Dec 2022 04:32:34 GMT
Date: Thu, 01 Dec 2022 01:14:08 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f6b1394-57be-42ed-ad12-94fa7a0b4be7.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7609
x-amzn-requestid: 1a464872-7c15-42d3-a12a-f344adf99662
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cV91PHVUoAMFf4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63857687-3f77f387752222b212d6e2a5;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 03:03:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mh5slfAqC8Jrbw6WLAI_GN9oftGPLXy0W75ZvD_XBcoBukkYT9wVsQ==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 05:21:42 GMT
age: 71546
etag: "b3d22d146c6094cb539de40a72b9c5a140802ee5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7609
Md5:    0d0219e6bee2a28f003f396f872eecf0
Sha1:   b3d22d146c6094cb539de40a72b9c5a140802ee5
Sha256: 41c1b037e8e654c19f36b74cceccd1fc841cc9fb7de39ac552ab5089dc3e82db
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f924fdd-ce65-4f00-8153-3caef7c54e22.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5295
x-amzn-requestid: e9c096df-2dba-408c-b45a-d114755fa883
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbzM0HmuoAMF4Ww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cbeb-5808a0756f4180a0613cdbcd;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:32:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lUjE1-vViTaS5s23OSlhLlxC597y0etgzMYGUdlqdpHBTK_ww5DEYA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:49:20 GMT
age: 12288
etag: "b412d62d44993500b947a38e8e242d0c6d6b7588"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5295
Md5:    eb4b8985f697c1ff7753d3961fb4f67d
Sha1:   b412d62d44993500b947a38e8e242d0c6d6b7588
Sha256: 571c1543cd99b08e62438146f383bf48a9172ae377b4c17dbc6c8c58bdbb5803
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabcce497-e838-40ff-ab98-af5f631b766f.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 2382
x-amzn-requestid: 94ae079e-ec35-4e9c-aa30-33be1137c477
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cTRYNHPeIAMFncg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6384629a-386ca2063c3991d4749e18cf;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 07:26:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6hcyQXOxk36UdAHQkayqoUCfBxaKkDk407cfakceLUQBX4PlYwd5tg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 12:36:46 GMT
age: 45442
etag: "b3eaec75f854d22cd1dcd6aa42e37f6d0df50036"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   2382
Md5:    f5469e846da1e0f21cfc480f56a656a6
Sha1:   b3eaec75f854d22cd1dcd6aa42e37f6d0df50036
Sha256: d5701207a8b6b358359ebfd85a6916af7a3abf79acba235bf7d4131b0bc2e9b5
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff41bace1-a7a5-42ae-b255-862c9cbac9de.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10437
x-amzn-requestid: 2a8183c4-47ec-42bb-8e67-3e742dc3750c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb0YpEeooAMFfvg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cdd0-2014fd4d49dcd4087bf1db4d;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:40:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wQc8gdA6brp46QVd0ee9cBtnmA9q1j3nUO2ou9MDIhecNINtmphq0Q==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:50:06 GMT
age: 12242
etag: "99b5ef2d6a4d1a1251a06d9d9f989b01d089a8d1"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10437
Md5:    291127b670135b42b6e9687aa2a13237
Sha1:   99b5ef2d6a4d1a1251a06d9d9f989b01d089a8d1
Sha256: 49b082a738bcd15a0bb4e9f96a180797ffcfa368977ac1927df882a0343664d3
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac125ad4-8001-4f7b-a27e-5f3c4f979358.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6036
x-amzn-requestid: 9867bb66-8624-4fe5-943f-2752e038cd22
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb0YoE3YoAMFSWQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cdd0-1710e0052c8bf19c06b6011e;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:40:32 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RXKIjgAm-fxCv0Wadim_1BwhuUkcAmZRPXUB9gT_qnEkREplaGZpkg==
via: 1.1 44cd593d82a2d200a94217033c614c6a.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:45:30 GMT
age: 12518
etag: "4593bb86a0a61eccab43063cb3c0c797abea5b46"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6036
Md5:    83e8a8c500dbcb636ad4a57a10de8adf
Sha1:   4593bb86a0a61eccab43063cb3c0c797abea5b46
Sha256: fd9bc5cfa9db9999ceba780a3c801663ae3a9d115fc968f633800da2a680d49c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7837c610-4f38-4ecd-b984-5752ff89a1f8.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7957
x-amzn-requestid: 54f43d6b-cf41-4067-b459-6b8d98869354
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cV91PGgNIAMF2Xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63857687-069ac54c22797a511c69a220;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 03:03:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: B4x-V_KZGERwIhr_eGik5Npj5mKN6CbI9pdrNU2I8gFCGYKQVuu3dA==
via: 1.1 6c90b631453c435bd0022caa657b67e8.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 05:38:39 GMT
age: 70529
etag: "01a07f9a5725f608fafeced7b3d1ebdbcb776c29"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7957
Md5:    37004182402c955f288eb1fa8df7aef4
Sha1:   01a07f9a5725f608fafeced7b3d1ebdbcb776c29
Sha256: c90c80dd5cadbde3fef20a9c4561b1efa47401e5f6bdf64c91246553c50204f0
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6B292FAB4B5394F236BA2AC2ADE945ACBAACBBDE396B259EE743E7EB47869178"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15826
Expires: Thu, 01 Dec 2022 05:37:54 GMT
Date: Thu, 01 Dec 2022 01:14:08 GMT
Connection: keep-alive

                                        
                                            GET /v2/r?e=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&i=gA6FDu_H1RHx7EV/&placementId=8a94cd8e18394e86eb92f5ea07f197f0 HTTP/1.1 
Host: api.yadore.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lookandfind.me/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         88.99.112.6
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
                                        
date: Thu, 01 Dec 2022 01:14:09 GMT
location: https://no-go.kelkoogroup.net/ctl/go/offersearchGo?.ts=1669837967472&.sig=K533GpEzMmmn2U8iZpf4ROamI.U-&affiliationId=96965886&comId=100534128&country=no&offerId=7c3e6598ffb854146974dbc907488e90&service=37&tokenId=eef84b7f-8e19-45d1-adee-7c88767dc72d&wait=true&addedParams=true&custom1=f717e727c2db3292c50ffe8b4175d8654963cad743809886127fba440fd5cfbc&custom2=SRdytlITOR16&custom3=false
server: nginx
x-powered-by: PHP/8.0.25
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: status.thawte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 662
Cache-Control: 'max-age=158059'
Date: Thu, 01 Dec 2022 01:14:09 GMT
Last-Modified: Thu, 01 Dec 2022 01:03:07 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /ctl/go/offersearchGo?.ts=1669837967472&.sig=K533GpEzMmmn2U8iZpf4ROamI.U-&affiliationId=96965886&comId=100534128&country=no&offerId=7c3e6598ffb854146974dbc907488e90&service=37&tokenId=eef84b7f-8e19-45d1-adee-7c88767dc72d&wait=true&addedParams=true&custom1=f717e727c2db3292c50ffe8b4175d8654963cad743809886127fba440fd5cfbc&custom2=SRdytlITOR16&custom3=false HTTP/1.1 
Host: no-go.kelkoogroup.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lookandfind.me/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         95.211.116.27
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 01 Dec 2022 01:14:09 GMT
leadId: dc1-kls-prod-ls-03.prod.dc1.kelkoo.net_1669857249226_599511
clickId: 107698148_1669857249216_9082165
country: no
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
X-DataDome: protected
Request-Time: PT0.020107S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: ALLOWALL
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Content-Length: 33000
Set-Cookie: datadome=08YlfbkXZK4q3_wEisgSblQcQIfgXktiCrqc82km3f5EgL~APyKxX-ibcnzhpomM4mUf2KP3H8ACg5iquf0Uk2yDZYZu-E6zK1_JQ8zeLbZfqkJ0wkrp7aHw4IUlsORw; Max-Age=31536000; Expires=Fri, 01 Dec 2023 01:14:09 GMT; SameSite=Lax; Path=/; Domain=.kelkoogroup.net; Secure kelkooID=a4c6294-184cb3f87c0-2b6663; Max-Age=31536000; Expires=Fri, 01 Dec 2023 01:14:09 GMT; SameSite=None; Path=/; Domain=kelkoogroup.net; Secure; HTTPOnly
P3P: CP="Anything"
ApacheTracking: localhost
Keep-Alive: timeout=40, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (13002)
Size:   33000
Md5:    92580e8cf6c3653a38534043e6714a74
Sha1:   afc61834c5455b6d9dd00b6884c5d842fad3ab7a
Sha256: 74481402a649c6f7eee0212ced8fff2c7cbc652289a80be41851446a7a26c7fc
                                        
                                            POST /fp?country=no&k=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&leadId=dc1-kls-prod-ls-03.prod.dc1.kelkoo.net_1669857249226_599511&clickId=107698148_1669857249216_9082165 HTTP/1.1 
Host: no-go.kelkoogroup.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/ctl/go/offersearchGo?.ts=1669837967472&.sig=K533GpEzMmmn2U8iZpf4ROamI.U-&affiliationId=96965886&comId=100534128&country=no&offerId=7c3e6598ffb854146974dbc907488e90&service=37&tokenId=eef84b7f-8e19-45d1-adee-7c88767dc72d&wait=true&addedParams=true&custom1=f717e727c2db3292c50ffe8b4175d8654963cad743809886127fba440fd5cfbc&custom2=SRdytlITOR16&custom3=false
Content-Type: text/plain;charset=utf-8
Content-Length: 536
Origin: https://no-go.kelkoogroup.net
Connection: keep-alive
Cookie: datadome=08YlfbkXZK4q3_wEisgSblQcQIfgXktiCrqc82km3f5EgL~APyKxX-ibcnzhpomM4mUf2KP3H8ACg5iquf0Uk2yDZYZu-E6zK1_JQ8zeLbZfqkJ0wkrp7aHw4IUlsORw; kelkooID=a4c6294-184cb3f87c0-2b6663; _ga=GA1.2.586967650.1669857248; _gid=GA1.2.339384317.1669857248
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         95.211.116.27
HTTP/1.1 200 OK
Content-Type: text/plain; charset=UTF-8
                                        
Date: Thu, 01 Dec 2022 01:14:09 GMT
Request-Time: PT0.009034S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: ALLOWALL
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Content-Length: 0
P3P: CP="Anything"
ApacheTracking: localhost
Keep-Alive: timeout=40, max=98
Connection: Keep-Alive

                                        
                                            GET /assets/images/p.png?country=no&k=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&leadId=dc1-kls-prod-ls-03.prod.dc1.kelkoo.net_1669857249226_599511&clickId=107698148_1669857249216_9082165 HTTP/1.1 
Host: no-go.kelkoogroup.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/ctl/go/offersearchGo?.ts=1669837967472&.sig=K533GpEzMmmn2U8iZpf4ROamI.U-&affiliationId=96965886&comId=100534128&country=no&offerId=7c3e6598ffb854146974dbc907488e90&service=37&tokenId=eef84b7f-8e19-45d1-adee-7c88767dc72d&wait=true&addedParams=true&custom1=f717e727c2db3292c50ffe8b4175d8654963cad743809886127fba440fd5cfbc&custom2=SRdytlITOR16&custom3=false
Connection: keep-alive
Cookie: datadome=08YlfbkXZK4q3_wEisgSblQcQIfgXktiCrqc82km3f5EgL~APyKxX-ibcnzhpomM4mUf2KP3H8ACg5iquf0Uk2yDZYZu-E6zK1_JQ8zeLbZfqkJ0wkrp7aHw4IUlsORw; kelkooID=a4c6294-184cb3f87c0-2b6663
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         95.211.116.27
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 01 Dec 2022 01:14:09 GMT
Request-Time: PT0.001265S
X-Robots-Tag: noindex,nofollow
Cache-Control: private, must-revalidate
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: ALLOWALL
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Content-Length: 68
P3P: CP="Anything"
ApacheTracking: localhost
Keep-Alive: timeout=40, max=89
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Size:   68
Md5:    91e42db1c66c0b276abf6234dc50b2eb
Sha1:   c1986af3c26609b8b7d8933f99c51c1a89e9ea6b
Sha256: 63ef318d96b5d0d0ceba6e04a4e622b1158335cdc67c49e27839132c6f655058
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6F49520CD7E8D6F9C52694AE6C8919B88937B385C32A3F50F403C7BEDA346BFB"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3729
Expires: Thu, 01 Dec 2022 02:16:18 GMT
Date: Thu, 01 Dec 2022 01:14:09 GMT
Connection: keep-alive

                                        
                                            GET /tags.js HTTP/1.1 
Host: dd.kelkoogroup.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/
Connection: keep-alive
Cookie: datadome=08YlfbkXZK4q3_wEisgSblQcQIfgXktiCrqc82km3f5EgL~APyKxX-ibcnzhpomM4mUf2KP3H8ACg5iquf0Uk2yDZYZu-E6zK1_JQ8zeLbZfqkJ0wkrp7aHw4IUlsORw; kelkooID=a4c6294-184cb3f87c0-2b6663
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

search
                                         65.9.44.60
HTTP/2 200 OK
content-type: text/javascript
                                        
content-length: 43164
server: Apache
strict-transport-security: max-age=63072000; includeSubDomains; preload
last-modified: Thu, 17 Nov 2022 15:19:16 GMT
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
via: 1.1 f59f3000d5bbed733e1102d0cab025be.cloudfront.net (CloudFront), 1.1 d30a7800f939c215cded21c657c43fc8.cloudfront.net (CloudFront)
date: Thu, 01 Dec 2022 00:19:43 GMT
cache-control: max-age=3600, public
expires: Thu, 01 Dec 2022 01:19:31 GMT
etag: "33bf8-5edac1cc94a7f-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: LHR50-P2, ARN54-C1
x-amz-cf-id: iaBblYdtG1K7Jx3KGYJYirKGK4oMN8t42EHfLtvgidhABxRYmMLbJQ==
age: 3278
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65432)
Size:   43164
Md5:    1e9601b9f2fcd0d1d742e87fd046749c
Sha1:   88431bfdad7d8be4cf62396a57aebcec0de09827
Sha256: 4bcdd319b49ac3e4683e774aefe69157100f9ebee3bc428e425cfc93a7da9feb
                                        
                                            GET /redirect?country=no&k=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&leadId=dc1-kls-prod-ls-03.prod.dc1.kelkoo.net_1669857249226_599511&clickId=107698148_1669857249216_9082165&url=https%3A%2F%2Fsoundgarden.no%2Fglorious%2F114204%2Fglorious-record-box-advanced-110-hvit-vinylboks%3Fkk%3Da4c6294-184cb3f87c0-2b6663%26utm_source%3Dkelkoono%26utm_medium%3Dcpc%26utm_campaign%3Dkelkooclick%26utm_term%3DGlorious%2BRecord%2BBox%2BAdvanced%2B110%2B-%2BHvit%2B HTTP/1.1 
Host: no-go.kelkoogroup.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/ctl/go/offersearchGo?.ts=1669837967472&.sig=K533GpEzMmmn2U8iZpf4ROamI.U-&affiliationId=96965886&comId=100534128&country=no&offerId=7c3e6598ffb854146974dbc907488e90&service=37&tokenId=eef84b7f-8e19-45d1-adee-7c88767dc72d&wait=true&addedParams=true&custom1=f717e727c2db3292c50ffe8b4175d8654963cad743809886127fba440fd5cfbc&custom2=SRdytlITOR16&custom3=false
Connection: keep-alive
Cookie: datadome=08YlfbkXZK4q3_wEisgSblQcQIfgXktiCrqc82km3f5EgL~APyKxX-ibcnzhpomM4mUf2KP3H8ACg5iquf0Uk2yDZYZu-E6zK1_JQ8zeLbZfqkJ0wkrp7aHw4IUlsORw; kelkooID=a4c6294-184cb3f87c0-2b6663; _ga=GA1.2.586967650.1669857248; _gid=GA1.2.339384317.1669857248
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin

search
                                         95.211.116.27
HTTP/1.1 303 See Other
Content-Type: text/plain
                                        
Date: Thu, 01 Dec 2022 01:14:09 GMT
leadId: dc1-kls-prod-ls-03.prod.dc1.kelkoo.net_1669857249226_599511
clickId: 107698148_1669857249216_9082165
country: no
Location: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
X-DataDome: protected
Request-Time: PT0.014411S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: ALLOWALL
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Content-Length: 0
Set-Cookie: datadome=30zUHV~uEl3e56F_6GABlQ8zzHC6ylLmJU_muty3OaauVXzv22UBuCSeE-WwzkhHdSJij73blb6kcpIrIox7Pt8UbXfcowBIbC5qpu5z1FXNLmjclc0Vkw-ghjS_b92c; Max-Age=31536000; Expires=Fri, 01 Dec 2023 01:14:09 GMT; SameSite=Lax; Path=/; Domain=.kelkoogroup.net; Secure
P3P: CP="Anything"
ApacheTracking: localhost
Keep-Alive: timeout=40, max=98
Connection: Keep-Alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:14:09 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 13:51:16 GMT
Expires: Tue, 06 Dec 2022 13:51:15 GMT
Etag: "7a7636c312030713f423f96629a9024892748326"
Cache-Control: max-age=603350,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 826
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7727f6e2af401c02-OSL

                                        
                                            POST /js/ HTTP/1.1 
Host: api-js.datadome.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 4137
Origin: https://no-go.kelkoogroup.net
Connection: keep-alive
Referer: https://no-go.kelkoogroup.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         13.48.98.34
HTTP/2 200 OK
content-type: application/json;charset=utf-8
                                        
date: Thu, 01 Dec 2022 01:14:09 GMT
content-length: 236
server: DataDome
access-control-allow-origin: *
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: 0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   236
Md5:    f74e179544a7cfb6232c4994861649ed
Sha1:   e9eb7950160c164631bc06601ae11bc660c4cb10
Sha256: 5a6f8cfe2bc27287c5ac61a6e074378cbb6e4dd96f2945b0c4a996757f1ef4f6
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:14:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /collect?v=1&_v=j96&t=pageview&_s=1&dl=https%3A%2F%2Fno-go.kelkoogroup.net%2Fctl%2Fgo%2FoffersearchGo%3F.ts%3D1669837967472%26.sig%3DK533GpEzMmmn2U8iZpf4ROamI.U-%26affiliationId%3D96965886%26comId%3D100534128%26country%3Dno%26offerId%3D7c3e6598ffb854146974dbc907488e90%26service%3D37%26tokenId%3Deef84b7f-8e19-45d1-adee-7c88767dc72d%26wait%3Dtrue%26addedParams%3Dtrue%26custom1%3Df717e727c2db3292c50ffe8b4175d8654963cad743809886127fba440fd5cfbc%26custom2%3DSRdytlITOR16%26custom3%3Dfalse&dr=https%3A%2F%2Flookandfind.me%2F&dp=%2F96965886%7C100534128%7C&ul=en-us&de=UTF-8&dt=Du%20sendes%20videre%20til%20Soundgarden&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=QACAAAABAAAAAC~&cid=586967650.1669857248&tid=UA-168544891-6&_gid=339384317.1669857248&_r=1&cd1=96965886&cd2=dc1-kls-prod-ls-03.prod.dc1.kelkoo.net_1669857249226_599511&cd3=100534128&cd4=a4c6294-184cb3f87c0-2b6663&cd5=&cd6=96965886%7C100534128%7C&z=525673064 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://no-go.kelkoogroup.net
Connection: keep-alive
Referer: https://no-go.kelkoogroup.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

search
                                         142.250.74.110
HTTP/2 200 OK
content-type: image/gif
                                        
access-control-allow-origin: https://no-go.kelkoogroup.net
date: Thu, 01 Dec 2022 01:14:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
x-content-type-options: nosniff
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:14:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:14:10 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 14:22:54 GMT
Expires: Tue, 06 Dec 2022 14:22:53 GMT
Etag: "cdc68684893f7ef4e5db95ba3cf7668ab8dab8e4"
Cache-Control: max-age=478722,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7727f6e27a3ab4e8-OSL

                                        
                                            GET /glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+ HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no-go.kelkoogroup.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-frame-options: DENY, DENY
x-aspnet-version: 4.0.30319
set-cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; expires=Wed, 08-Feb-2023 11:54:00 GMT; path=/; HttpOnly; SameSite=Lax ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; path=/; HttpOnly; SameSite=Lax McWeb3.15.2-6=DeviceSize=lg; expires=Fri, 01-Dec-2023 01:14:00 GMT; path=/; SameSite=Lax McWeb3.15.2-6=DeviceSize=lg; expires=Fri, 01-Dec-2023 01:14:00 GMT; path=/; SameSite=Lax
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 28075
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5640), with CRLF, LF line terminators
Size:   28075
Md5:    ea55128358fce0d651230409571c5d89
Sha1:   0a796c02ff0c6be92a45357fc26dfc3ee9083144
Sha256: e7ffc3baac70bfbbf21384786f8e2dd88b90191a5907acfcb583315926a38147
                                        
                                            GET /dist/js/5.dbbe55f10dc002a100b5.bundle.css HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public,max-age=31536000
content-encoding: gzip
last-modified: Tue, 16 Aug 2022 11:14:50 GMT
accept-ranges: bytes
etag: "031ad6661b1d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 35807
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   35807
Md5:    75c9343caab357f03c597a5b94a2941e
Sha1:   827f5a2671fac0b33d55419fca61e3bd064ca5e9
Sha256: 4f05b123515634859515dacc5aff602ab4ef7a0ee589a639adbb0a443f56b113
                                        
                                            GET /dist/js/2.568bd4b6b52b0560762f.bundle.js HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public,max-age=31536000
content-encoding: gzip
last-modified: Tue, 16 Aug 2022 11:14:50 GMT
accept-ranges: bytes
etag: "031ad6661b1d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 16580
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (64336)
Size:   16580
Md5:    ff086c4d9fa12ef0babb1741477c96a9
Sha1:   d2190c4a03980a80b4d50eb66dd07ea1d245f42d
Sha256: a47b09f3446be3888a696b5bb4c9cace243bc36fc63cce39697e5521dbbaabac
                                        
                                            GET /dist/js/main-styles.ae0faadba64def61f22d.bundle.css HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public,max-age=31536000
content-encoding: gzip
last-modified: Tue, 16 Aug 2022 11:14:50 GMT
accept-ranges: bytes
etag: "031ad6661b1d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 6717
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (29049)
Size:   6717
Md5:    f8c8e15653f6ce7ffd9db0912fcf519d
Sha1:   0ddc0acfb54904159db734718cdc373b295e7d03
Sha256: e3c02a77e90fb6b1c6146be21b7fe415b55b6ad76f6e1d5772d15e30c973c64c
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:14:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /mcjs-connected/js/users/1c3e11c92815b92e5bfdf8456/3d861ac8fe5c1b11964285b74.js HTTP/1.1 
Host: chimpstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         96.6.17.210
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
x-amz-id-2: 1NFcX78ZNlcq33IPZ5NM6k1ChMwgSqEOFOBBYUKax0IiPdMzvS7O/Bo8qZ+sBZ4OzE9dOBOK9iQ=
x-amz-request-id: 511SW5NP7YYZNKF6
Last-Modified: Wed, 26 Oct 2022 10:27:23 GMT
ETag: "382eff63e2665fe8b3503791385f6adc"
Accept-Ranges: bytes
Server: AmazonS3
X-EdgeConnect-MidMile-RTT: 0, 6
X-EdgeConnect-Origin-MEX-Latency: 108, 108
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=306
Expires: Thu, 01 Dec 2022 01:19:16 GMT
Date: Thu, 01 Dec 2022 01:14:10 GMT
Content-Length: 2337
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text
Size:   2337
Md5:    5b47f593d21f98eeafe89e478eda52cf
Sha1:   08b38062771c818652afcef98cbf8a9bd3be6e98
Sha256: a76c0d8252e87eafef98010699d2f52da7dc183a47e46d363d96348c5fcee53b
                                        
                                            GET /scripts/specialoffers.js?v=pkgGl6kFu7beKoc6j6iZhA3Knu5xyVJxTFSnxLoSxcs1 HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
cache-control: public
content-encoding: gzip
expires: Fri, 01 Dec 2023 01:14:00 GMT
last-modified: Thu, 01 Dec 2022 01:14:00 GMT
vary: User-Agent,Accept-Encoding
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 1032
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1823), with no line terminators
Size:   1032
Md5:    d5cbf6e684d066ada657228d15c6a262
Sha1:   19b0fdbf000387738f4d461353ef690967a7c5a4
Sha256: 9d06e957d4ae1913a2be1fc77c90fa5caef509a1d3f985f5d59c6e642160c8c0
                                        
                                            GET /scripts/autocampaigns.js?v=n3tBbxhGbfbVv-EpRYrzDrTG2U8bHxXVzDvv_lu6DHQ1 HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
cache-control: public
content-encoding: gzip
expires: Fri, 01 Dec 2023 01:14:00 GMT
last-modified: Thu, 01 Dec 2022 01:14:00 GMT
vary: User-Agent,Accept-Encoding
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 1260
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3914), with no line terminators
Size:   1260
Md5:    711c5d58494443d5fd28b0209f25837c
Sha1:   0cd7fe531010a72cb4f52bc1aeeaa1a1f5e7e8ce
Sha256: 2d5668b1ebf7be16d0c436bf0c4b624d8863cda63354c710cd7b49b4aad07981
                                        
                                            GET /dist/js/runtime.df29bc903bd9297c5e1d.js HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public,max-age=31536000
content-encoding: gzip
last-modified: Tue, 16 Aug 2022 11:14:50 GMT
accept-ranges: bytes
etag: "031ad6661b1d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 998
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1501)
Size:   998
Md5:    cab9eab5b4d4eb8fcbd645b6e0bfc52b
Sha1:   1a7d98b4bf9a4db3aaf56c47ad726eebd89389ee
Sha256: eabe0a9859ebe569ab5116574a9ac136ea385985e3883f7633c8f499eb5223c7
                                        
                                            GET /dist/js/5.dbbe55f10dc002a100b5.bundle.js HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public,max-age=31536000
content-encoding: gzip
last-modified: Tue, 16 Aug 2022 11:14:50 GMT
accept-ranges: bytes
etag: "031ad6661b1d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 324
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (482)
Size:   324
Md5:    e20251f5e49270d30c15f8df68f6a535
Sha1:   711c67d30d57c6a5a290026b189c56890738b0c5
Sha256: 924114b3696d7b5cd8bdc99449f8737f7d1e4f6635baf891a36c365fcabba2bb
                                        
                                            GET /dist/js/main-styles.ae0faadba64def61f22d.bundle.js HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public,max-age=31536000
content-encoding: gzip
last-modified: Tue, 16 Aug 2022 11:14:50 GMT
accept-ranges: bytes
etag: "031ad6661b1d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 411
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (464)
Size:   411
Md5:    dc4c567219fbd6b37e4fcd77355e7bac
Sha1:   d984d54e688461080f2a48b182c0d51b9c3efc6a
Sha256: 62a1b1b8d3a269d747ff9d6374fdbf8e64da959a60d2f5b4cbfaf4115f9ec367
                                        
                                            GET /dist/js/main.68f22f7cb6e3b796d26f.bundle.js HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public,max-age=31536000
content-encoding: gzip
last-modified: Tue, 16 Aug 2022 11:14:50 GMT
accept-ranges: bytes
etag: "031ad6661b1d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 14084
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (43050)
Size:   14084
Md5:    0469ea4fc5caba984b3385c20400de13
Sha1:   534b37d4487610f4dd2baa8a62b71913fdc0ce2f
Sha256: 9c02dbb4a3d08479bb55c702af75fba8a5785bd45180dff877f1e131c1d22348
                                        
                                            GET /dist/js/master-theme-styles-d4.04277d56e211c8a042c1.bundle.js HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public,max-age=31536000
content-encoding: gzip
last-modified: Tue, 16 Aug 2022 11:14:50 GMT
accept-ranges: bytes
etag: "031ad6661b1d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 307
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   307
Md5:    7395ebaa94abe9a249fed774ab4446a1
Sha1:   c8cfa9fe94c3ef4fe3f49cfd77555f6b1c50b2d3
Sha256: a817f895a7ac6878dba4b389dadae8a878174789dba48ddab6d0b12b0033e568
                                        
                                            GET /dist/js/bid-banner.13ec44ef6cef0b8a66c8.bundle.js HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public,max-age=31536000
content-encoding: gzip
last-modified: Tue, 16 Aug 2022 11:14:50 GMT
accept-ranges: bytes
etag: "031ad6661b1d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 1330
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2900)
Size:   1330
Md5:    bb56024971fae0152d1ca86bee115684
Sha1:   ad2f86fdb9c9c555c28a1296d5a7491066411392
Sha256: 55954feb65fdbde9a948bc6a9593717b8af87637fff2787a780f37c6003ac3b7
                                        
                                            GET /App_Themes/Demonstrare4Dummy/Images/SeperatorArrow.gif HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: image/gif
                                        
cache-control: public,max-age=31536000
last-modified: Tue, 16 Aug 2022 11:10:44 GMT
accept-ranges: bytes
etag: "092cd460b1d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 37
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 87a, 2 x 11\012- data
Size:   37
Md5:    6f73aa84eb3170630d812433a7f859ae
Sha1:   5d6f769d44b1a26dc7659047d006310b40dc1666
Sha256: 18052af927c25016d55b3f4dcdf96f767536b94fb29e2713adc5080bdb220fa1
                                        
                                            GET /App_Themes/MASTER/images/1px_transparent.png HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public,max-age=31536000
last-modified: Tue, 16 Aug 2022 11:10:44 GMT
accept-ranges: bytes
etag: "092cd460b1d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 141
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Size:   141
Md5:    273352ef860dea665ed24eed59488efe
Sha1:   14fbeaca4303ceff0662c23a0d13365766db1654
Sha256: 38631a426e372dbe90a52ab1b1f0312d254c3d2559472ced786530f89363295f
                                        
                                            GET /Media/Cache/Images/1/0/WEB_Image_Glorious_Record_Box_Advanced_110_vinylbo_114204_2845714941_plid_153350.Jpeg HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public,max-age=31536000
last-modified: Thu, 11 Feb 2021 10:06:15 GMT
accept-ranges: bytes
etag: "b56d8e885d0d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 10295
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 610x450, components 3\012- data
Size:   10295
Md5:    c540c0d5f65304a01bb2686ebfff490a
Sha1:   0db8d58772f70b501f581fa18d638b9229025ff3
Sha256: bc43a04021bf8574352b0d8f35e0b6dc95c8765eb80ca13f8a9126b82a0d3163
                                        
                                            GET /Media/Cache/Images/1/0/WEB_Image_Glorious_Record_Box_Advanced_110_vinylbo_114204447060854_plid_153350.Jpeg HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public,max-age=31536000
last-modified: Thu, 11 Feb 2021 10:06:15 GMT
accept-ranges: bytes
etag: "f6cdaf885d0d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 6290
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 610x450, components 3\012- data
Size:   6290
Md5:    c72d572a20615ff2f28c7b641e1ec0fb
Sha1:   4a3493142d67d08ba2e3efd544abaa39dc19c5a6
Sha256: ac051853f486c2f1517fd7319f7924f15109ccbb30f60edd33437498330c4240
                                        
                                            GET /css/Cust/Images/stock/stock.png HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public,max-age=31536000
last-modified: Wed, 20 Mar 2019 09:40:30 GMT
accept-ranges: bytes
etag: "9890df50dfd41:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 261
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 25 x 25, 8-bit/color RGBA, non-interlaced\012- data
Size:   261
Md5:    9dbd3f131aaadb74f5f3a7dbe09c6587
Sha1:   9c354427da59617bcc997e52c99fc57d69a19ee8
Sha256: 78769ebebea6afda3b3a8cbc1a121b9025699bd6d1619eb50d97543e22e132a5
                                        
                                            GET /Media/Cache/Images/1/0/WEB_Image_Glorious_Record_Box_Advanced_110_-_Hvit__114204_289975203_plid_153350.Jpeg HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public,max-age=31536000
last-modified: Thu, 20 Jan 2022 12:11:42 GMT
accept-ranges: bytes
etag: "d3618ce2f6dd81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 2840
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Size:   2840
Md5:    92c59d8460edd93f6cda8fb455bfeb7d
Sha1:   6eb4c8c7d5490f87af4b6efcf1413b792ef3e56f
Sha256: aeaf2dd6ddb07cf64d359249cff60c277682d698cfd97638e138f1cce9bfb324
                                        
                                            GET /scripts/product-infoD4.js?v=XoJnnZ3NT3IGyy0pjUmMnkgkP4q1SxkGQkJHmqiCnmk1 HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
cache-control: public
content-encoding: gzip
expires: Fri, 01 Dec 2023 01:14:00 GMT
last-modified: Thu, 01 Dec 2022 01:14:00 GMT
vary: User-Agent,Accept-Encoding
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 7464
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (22826), with no line terminators
Size:   7464
Md5:    b33cc72c77d64105b0cf6d3fa3f5e471
Sha1:   c38a49aaecf198ce0f2f69baafed949647b9d26a
Sha256: 84e7dd07233948b7fa67f3a7ff1e552590359582d3dc7afaba59ff7776e2f36f
                                        
                                            GET /scripts/d4reviews.js?v=6qnk_PUZl62h4-tIi1EsTeB2RhM6kv9w7hgZJwQUvSA1 HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
cache-control: public
content-encoding: gzip
expires: Fri, 01 Dec 2023 01:14:00 GMT
last-modified: Thu, 01 Dec 2022 01:14:00 GMT
vary: User-Agent,Accept-Encoding
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 655
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1087), with no line terminators
Size:   655
Md5:    040f8cece834ca2a519b26de7c9bf50e
Sha1:   5ea5b0faeb0c1ebb98dc72c445299619736a2a58
Sha256: 861e3cfc47e45e8d55178ea371522db7bb5ce07351fb2a4630abd88d39f23847
                                        
                                            GET /Media/Cache/Images/1/0/WEB_Image_114204_2_585744578_plid_153350.Jpeg HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public,max-age=31536000
last-modified: Thu, 11 Feb 2021 10:06:15 GMT
accept-ranges: bytes
etag: "ca42c5885d0d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 6676
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 600x315, components 3\012- data
Size:   6676
Md5:    41682afdccc99e022d0a182293eee015
Sha1:   84fd5534ba9076d2717362cb07a30912ef08eacd
Sha256: b6393ff940ff173b349ba2bd8fbc05c43873bdbb96b35dad19952dd0f5e54224
                                        
                                            GET /css2?family=Source+Sans+Pro&display=swap HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.74
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 01:14:10 GMT
date: Thu, 01 Dec 2022 01:14:10 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1020
Md5:    37a06efeffa10792781c63dcc6064992
Sha1:   fd7d616d2d88baf3e073892d5bee7e1d3fd65459
Sha256: d639168121f9a6a9e7e9823234e689885e2774b0f4e5d02a54c348e2822207bc
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:14:10 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 30 Nov 2022 18:02:14 GMT
Expires: Wed, 07 Dec 2022 18:02:13 GMT
Etag: "edf609817e45658cd700de80bbb9f3877c050218"
Cache-Control: max-age=578282,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7727f6e74cc9b4e8-OSL

                                        
                                            GET /plugins/plugin.js?tokenv2=c94c403bef50abedb0ae41e062470e2c&rcntrl=1408411&ccntrl=60000245&useCorp=60000246 HTTP/1.1 
Host: services14.itxuc.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         213.52.87.171
HTTP/1.1 200 OK
Content-Type: application/javascript;charset=utf-8
                                        
Server: nginx
Date: Thu, 01 Dec 2022 01:14:10 GMT
Content-Length: 13326
Connection: keep-alive
Set-Cookie: JSESSIONID=0C9B3E6312995638989ACA573ED649FC; Path=/; Secure; HttpOnly; SameSite=None
ITXVOS: true
Cache-Control: public, max-age=300, must-revalidate
Expires: Thu, 01 Dec 2022 01:19:10 GMT
Last-Modified: Wed, 30 Nov 2022 13:26:10 GMT
ETag: W/"r1012010021669814770444"
Access-Control-Expose-Headers: ETag,Vary
Vary: Origin, Range
ITXVOS-Action: no.itx.portal.web.servletv2.plugins.PluginServlet


--- Additional Info ---
Magic:  ASCII text, with very long lines (13326), with no line terminators
Size:   13326
Md5:    d99760301c73d729cc84b273cd07308f
Sha1:   8f5f0a3351e78601267cca2ec24d3a6dd42c6622
Sha256: 8a1e155c48c7454a2e2ad9ad1844dd3db0c146a88633c15be089c470d1f4c1a1
                                        
                                            GET /r10120.10.0.2/jsv2/lib/babel/regeneratorRuntime.js HTTP/1.1 
Host: static.itxuc.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         85.196.80.229
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Thu, 01 Dec 2022 01:14:10 GMT
content-length: 6995
last-modified: Wed, 30 Nov 2022 13:21:25 GMT
etag: "638758d5-1b53"
expires: Sun, 26 Nov 2023 01:14:10 GMT
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
access-control-allow-methods: GET, OPTIONS
access-control-allow-credentials: true
access-control-expose-headers: Content-Length
pragma: public
cache-control: max-age=31104000, public
vary: Origin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6995), with no line terminators
Size:   6995
Md5:    65afb5c3ff3838e9f91c3b8f083c41e9
Sha1:   82846d481a92a6738ed8496f724aaf97b9efa148
Sha256: 688e51c1099e0876f57f5d13a105544fcf076f2cb267462104576762457e4213
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:14:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://soundgarden.no
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.227
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13036
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:28:49 GMT
expires: Thu, 30 Nov 2023 19:28:49 GMT
cache-control: public, max-age=31536000
age: 20721
last-modified: Wed, 27 Apr 2022 16:04:42 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 13036, version 1.0\012- data
Size:   13036
Md5:    0ad032b3d07aaf33b160ac4799dda40f
Sha1:   06b931e0d0bf37f5037d9e66d6feedfddd21c0ba
Sha256: c124c88ca4fcb4336e97617647ef0d32441329371120c8eabaea0fea226560b0
                                        
                                            GET /scripts/web-defered-4.0.js?v=qtCgK46Vz9dq6LfHo6-eX0LNEgW1tFZBwpdQ9alUQSA1 HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
cache-control: public
content-encoding: gzip
expires: Fri, 01 Dec 2023 01:14:00 GMT
last-modified: Thu, 01 Dec 2022 01:14:00 GMT
vary: User-Agent,Accept-Encoding
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   132521
Md5:    d255401826f2ad39c74228e3e2e9271f
Sha1:   7070c618fce58bde67054fabc672b4310e56a21c
Sha256: 57c00deb5127d8713bad7e7d7cdae0130845f98794ea7c22b45880350fc12828
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:14:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /userfiles/image/logo_black.png HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/api/stylesheet/combined/SoundgardenD4.css?version=680
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public,max-age=31536000
last-modified: Wed, 20 Apr 2022 12:30:11 GMT
accept-ranges: bytes
etag: "903cdf60b254d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 38303
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1200 x 292, 8-bit/color RGBA, non-interlaced\012- data
Size:   38303
Md5:    d17f6aa3780c4c16488fadcbc8d5ed02
Sha1:   baf0ccf9cb524223f78582e7b6709d842b9c9860
Sha256: e8150f35360b51454125c9745bfaf1dc0e8f52a813503e88b5f4b5bc2fe3d26f
                                        
                                            GET /userfiles/image/person-icon.png HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/api/stylesheet/combined/SoundgardenD4.css?version=680
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public,max-age=31536000
last-modified: Wed, 30 Mar 2022 12:10:16 GMT
accept-ranges: bytes
etag: "160f61d2f44d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 10553
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 596 x 619, 8-bit/color RGBA, non-interlaced\012- data
Size:   10553
Md5:    89a4a6c697d9aee15cc09a7773240e63
Sha1:   35e31eb1b562729242030eb1caa62ad7f4a722f1
Sha256: 708762d7f263be8d7db3fe7ab8025f47852651c67d13705e0306d31e92b7e0b1
                                        
                                            GET /userfiles/image/gratis-frakt.png HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/api/stylesheet/combined/SoundgardenD4.css?version=680
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public,max-age=31536000
last-modified: Wed, 30 Mar 2022 12:10:02 GMT
accept-ranges: bytes
etag: "b93eef152f44d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 977
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 23 x 19, 8-bit/color RGBA, non-interlaced\012- data
Size:   977
Md5:    fa35ea5da63cf211418e64df63bd3011
Sha1:   d24a107870b8bc49ca0ec9f8244f50c8666f8bf9
Sha256: a54832a7eac2a24a7b7d23fb055ae5b37ee7dd53737076db48f61c81af4d2f45
                                        
                                            GET /css/images/vipps_ec_sq.svg HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/api/stylesheet/combined/SoundgardenD4.css?version=680
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: image/svg+xml
                                        
cache-control: public,max-age=31536000
last-modified: Tue, 16 Aug 2022 11:10:46 GMT
accept-ranges: bytes
etag: "0bf3dd560b1d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 5552
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (5552), with no line terminators
Size:   5552
Md5:    1f348c884eed79ee3c0d73a8219caabe
Sha1:   99a1d1b1d795a994fe23df818da6e78e6caa4387
Sha256: 355036569a37f7a4a07e425f58a8052ecea9bbbd2622d2257434b9b59e8acbcd
                                        
                                            GET /fonts/multicase-icons.woff2?19959973 HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://soundgarden.no/dist/js/5.dbbe55f10dc002a100b5.bundle.css
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: application/font-woff2
                                        
cache-control: public,max-age=31536000
last-modified: Tue, 16 Aug 2022 11:10:46 GMT
accept-ranges: bytes
etag: "0bf3dd560b1d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 9000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 9000, version 1.0\012- data
Size:   9000
Md5:    ae9297c781988524286f15cc0d4523ad
Sha1:   a0cb1b8403f21e6d52ecf39b0f6405932bb69b71
Sha256: dc06cd9132370d5fe97173d66d4eef4ae4419353ba2eb0f2cd75a530e0441c3b
                                        
                                            GET /r10120.10.0.2/jsv2/lib/portalPolyfill.js HTTP/1.1 
Host: static.itxuc.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         85.196.80.229
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Thu, 01 Dec 2022 01:14:10 GMT
content-length: 14558
last-modified: Wed, 30 Nov 2022 13:21:30 GMT
etag: "638758da-38de"
expires: Sun, 26 Nov 2023 01:14:10 GMT
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
access-control-allow-methods: GET, OPTIONS
access-control-allow-credentials: true
access-control-expose-headers: Content-Length
pragma: public
cache-control: max-age=31104000, public
vary: Origin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (14558), with no line terminators
Size:   14558
Md5:    7635320ef1aad608d965da49107b3790
Sha1:   15dae88b9aff31d5c1e4e6a32522ec4168bcdd21
Sha256: 3b31518219d8fa1d0c2fb7cbe9dea153cdd5c2bdda5a4d85a296a7951a563d2a
                                        
                                            GET /r10120.10.0.2/jsv2/lib/itx.js HTTP/1.1 
Host: static.itxuc.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         85.196.80.229
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Thu, 01 Dec 2022 01:14:10 GMT
content-length: 29486
last-modified: Wed, 30 Nov 2022 13:21:26 GMT
etag: "638758d6-732e"
expires: Sun, 26 Nov 2023 01:14:10 GMT
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
access-control-allow-methods: GET, OPTIONS
access-control-allow-credentials: true
access-control-expose-headers: Content-Length
pragma: public
cache-control: max-age=31104000, public
vary: Origin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (29485), with no line terminators
Size:   29486
Md5:    d95df38c9816f455aba6cd7b04cf90c0
Sha1:   ab51c120c0402e85217c78e93b9716b474e041b3
Sha256: 849ddc3b541aa63b9011e907495ff56a76a9d263b0113d5c7d4d3c5c397dd880
                                        
                                            GET /r10120.10.0.2/plugins/style/plugin_real.css HTTP/1.1 
Host: static.itxuc.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         85.196.80.229
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Thu, 01 Dec 2022 01:14:10 GMT
content-length: 413
last-modified: Wed, 30 Nov 2022 13:21:37 GMT
etag: "638758e1-19d"
expires: Sun, 26 Nov 2023 01:14:10 GMT
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
access-control-allow-methods: GET, OPTIONS
access-control-allow-credentials: true
access-control-expose-headers: Content-Length
pragma: public
cache-control: max-age=31104000, public
vary: Origin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (413), with no line terminators
Size:   413
Md5:    a1e54975f90780907dbfbbde584dfb9d
Sha1:   69ee180e0d61308afa8889b3977d926726caa4a9
Sha256: 547edbcf0cb35b612700092a6ab5ac8503d9a9c3eed7425b5b41f6fe34394fed
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1735
Cache-Control: max-age=154681
Date: Thu, 01 Dec 2022 01:14:11 GMT
Etag: "6387b255-1d7"
Expires: Fri, 02 Dec 2022 20:12:12 GMT
Last-Modified: Wed, 30 Nov 2022 19:43:17 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /css/Cust/Images/Soundgarden/android-icon-192x192.png HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public,max-age=31536000
last-modified: Wed, 22 Apr 2020 11:19:40 GMT
accept-ranges: bytes
etag: "02efea9718d61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 43079
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size:   43079
Md5:    613e8d02120238d1107b8617f8a03148
Sha1:   6f4ea14588a5d93678c66ce745e5f0ac71410c6b
Sha256: 61d202551f75be6edd5d335eb5b406a8274e19ed5cd51df0953805dd9392228f
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1735
Cache-Control: max-age=154681
Date: Thu, 01 Dec 2022 01:14:11 GMT
Etag: "6387b255-1d7"
Expires: Fri, 02 Dec 2022 20:12:12 GMT
Last-Modified: Wed, 30 Nov 2022 19:43:17 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /css/Cust/Images/Soundgarden/favicon-16x16.png HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public,max-age=31536000
last-modified: Wed, 22 Apr 2020 11:19:42 GMT
accept-ranges: bytes
etag: "05b40eb9718d61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 1368
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Size:   1368
Md5:    c7eade6133f2488142ecd5c7afb3b366
Sha1:   3e66b2458bfb6ba7601d89075b2ad191d91265bb
Sha256: 5c44642797de4644cabaeb785fc29cb777085c10ad78d1c3390184f649d6585e
                                        
                                            GET /v3/s?ver=2.17.5&d=credit-promotion-badge&e=no-NO&g=76a67b63-f7f2-536b-a57e-87733b1dfe19&purchase_amount=59000 HTTP/1.1 
Host: rcgmal4n.klarnaservices.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://soundgarden.no/
Origin: https://soundgarden.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         143.204.55.73
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Thu, 01 Dec 2022 01:14:10 GMT
access-control-allow-origin: https://soundgarden.no
vary: Accept-Encoding, Origin
access-control-allow-credentials: true
klarna-correlation-id: 4a3d0ab9-e1ac-4850-b235-f04060dbf1bb
timing-allow-origin: *
cache-control: public, max-age=86400
etag: W/"1730-1MLsunwWKnNklKr1jDWvpIFhI2k"
x-envoy-upstream-service-time: 4
server: envoy
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: t-MUF5r9_UKIhJf_wtTXkK7d3OSBwFsjqqxNMa1pXLiSstfyd8lagw==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- HTML document text\012- HTML document, ASCII text, with very long lines (58412)
Size:   30028
Md5:    4f2fd460f5e61db542848d3b67fbe964
Sha1:   4f1311c36eb85f1d4fef1e8584a55936b0084355
Sha256: 04fbcab16f7cb01277c7339fba43f89af2518f40d17c22e1b0870a1753119adc
                                        
                                            GET /en_US/sdk.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         31.13.72.12
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 77c6e94f5a7f3923d972e63154185ff3
etag: "db3478de1609cf50f280fb40301edc38"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Thu, 01 Dec 2022 01:27:04 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: kq6bUGdWzx/f6fmprwkkCg==
x-fb-debug: yQYt8GSjt1tvIL5NfW3ctPDknYigE5fmPnyaVurhYGAu/kQzdOcmUbnOIJojDpG0sfzYU2ZKMDbZTpjstWdu2A==
priority: u=3,i
content-length: 1687
x-fb-trip-id: 1904183273
date: Thu, 01 Dec 2022 01:14:11 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1957)
Size:   1687
Md5:    92ae9b506756cf1fdfe9f9a9af09240a
Sha1:   336e4a4cfdac08e7b015fc010e4ca07af41506bf
Sha256: b4161235484bf99ab62d5d4b2493f3cde077784d9767a4204b721d459f22eb22
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1735
Cache-Control: max-age=154681
Date: Thu, 01 Dec 2022 01:14:11 GMT
Etag: "6387b255-1d7"
Expires: Fri, 02 Dec 2022 20:12:12 GMT
Last-Modified: Wed, 30 Nov 2022 19:43:17 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /en_US/sdk.js?hash=af27759a11591bf67f4bbf6b2e475d83 HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://soundgarden.no
Connection: keep-alive
Referer: https://soundgarden.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         31.13.72.12
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 323c267e12f0efe92f3c5c645dc242e1
etag: "4976c5ea137d3a90943d2056f2d87d44"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 01 Dec 2023 00:41:07 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: F4GPdyYYJ7d+vt6x9o1s4g==
x-fb-debug: kNMQyylr5hjIeIE3fLzY9HHZaBwl1OCkLoE5bEuI5uuDwnRosARC12xc1ACkVE9k+2nsv0VFR0qw3SgLaWV5yA==
content-length: 86897
x-fb-trip-id: 1904183273
date: Thu, 01 Dec 2022 01:14:11 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (13192)
Size:   86897
Md5:    17818f77261827b77ebedeb1f68d6ce2
Sha1:   f97b667209271e4ccd93c29a7e3f49e789120af9
Sha256: 1e431e57d93ede7807f17ab6a2bdec828a8169152431dad9572307814207cc0c
                                        
                                            GET /userfiles/image/shopping-cart.png HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/api/stylesheet/combined/SoundgardenD4.css?version=680
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public,max-age=31536000
last-modified: Wed, 30 Mar 2022 12:10:41 GMT
accept-ranges: bytes
etag: "5266c82c2f44d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 9349
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 599 x 565, 8-bit/color RGBA, non-interlaced\012- data
Size:   9349
Md5:    464f509b3480f7907000c2ab8e86ee0d
Sha1:   754817f7d9589f41ad03809338a76724f661c9c7
Sha256: 22cdb8e129bdfc5845846a525887f82b2281d1513cd7e50cc941f095b064d062
                                        
                                            GET /Media/Cache/Images/1/0/WEB_Image_Glorious_Record_Box_Advanced_110_vinylbo_114204314194834_plid_153350.Jpeg HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public,max-age=31536000
last-modified: Thu, 11 Feb 2021 10:06:15 GMT
accept-ranges: bytes
etag: "10a7a8885d0d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 871
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 80x80, components 3\012- data
Size:   871
Md5:    d5ebba23aeb6f6c904dbc69e7aa531f7
Sha1:   aa2b7fe3deac5d8d0f5964b66d51150861804e3c
Sha256: 5172b06865614f3601727b08592029fc3e251cb76e5d2488432f9471ad7e5a60
                                        
                                            GET /Media/Cache/Images/1/0/WEB_Image_Glorious_Record_Box_Advanced_110_vinylbo_114204_2668896321_plid_153350.Jpeg HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public,max-age=31536000
last-modified: Thu, 11 Feb 2021 10:06:15 GMT
accept-ranges: bytes
etag: "56e484885d0d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 1192
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 80x80, components 3\012- data
Size:   1192
Md5:    ab92d6dcf9cf90216e92ca26460fd85c
Sha1:   3b6fde83d189aef9a7d5eb6fb84c805e1ffb5488
Sha256: 62bb6ce72d7232203bc5aaf8d8d73d33a6ce9eff5b39dc419950451545f1a44b
                                        
                                            GET /css/Demonstrare4/images/royalslider/rs-default.png HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/dist/js/master-theme-styles-d4.04277d56e211c8a042c1.bundle.css
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public,max-age=31536000
last-modified: Tue, 16 Aug 2022 11:10:46 GMT
accept-ranges: bytes
etag: "0bf3dd560b1d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 1509
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 197 x 133, 8-bit colormap, non-interlaced\012- data
Size:   1509
Md5:    681c1acdf3b644425e5cca45dd78a675
Sha1:   98c3b4a42100bf1f165ddf5d23d0e3768ca4454e
Sha256: 5ea1a728dcf8b49df966750696ae4c0b11d2273cfed529425df78fb9898e7abe
                                        
                                            GET /css/Demonstrare4/images/royalslider/preloader.gif HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/dist/js/master-theme-styles-d4.04277d56e211c8a042c1.bundle.css
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: image/gif
                                        
cache-control: public,max-age=31536000
last-modified: Tue, 16 Aug 2022 11:10:46 GMT
accept-ranges: bytes
etag: "0bf3dd560b1d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 1986
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 20 x 20\012- data
Size:   1986
Md5:    5695f03663b39ed4b9436d789f0b27ec
Sha1:   62be0d1e5848a717a52ea0b923a47f0d0d6086e3
Sha256: 04c9abd7ff30a71e2e308f76c509c325b099ab6e3667859df6ede4b9aebf6c4c
                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://soundgarden.no
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.227
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:34:15 GMT
expires: Thu, 30 Nov 2023 19:34:15 GMT
cache-control: public, max-age=31536000
age: 20396
last-modified: Wed, 11 May 2022 19:24:56 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Size:   15740
Md5:    b9c29351c46f3e8c8631c4002457f48a
Sha1:   e57e59c5780995ff2937ab2b511a769212974a87
Sha256: f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
                                        
                                            GET /css/Demonstrare4/images/royalslider/slider-right.png HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/dist/js/master-theme-styles-d4.04277d56e211c8a042c1.bundle.css
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public,max-age=31536000
last-modified: Tue, 16 Aug 2022 11:10:46 GMT
accept-ranges: bytes
etag: "0bf3dd560b1d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 659
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 44 x 44, 8-bit colormap, non-interlaced\012- data
Size:   659
Md5:    dae4fd6d05ab5f8de893ca495781a470
Sha1:   aa7272fa8cdd34428da676b3af06ff238722640d
Sha256: 9e0c734a184fa8d90b888f49ee72b00baa4bd0fc7d2e81c4f9acb202b35da7c1
                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://soundgarden.no
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.227
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:54 GMT
expires: Thu, 30 Nov 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 20417
last-modified: Wed, 11 May 2022 19:24:48 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size:   15744
Md5:    15d9f621c3bd1599f0169dcf0bd5e63e
Sha1:   7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
                                        
                                            GET /css/Demonstrare4/images/royalslider/slider-left.png HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/dist/js/master-theme-styles-d4.04277d56e211c8a042c1.bundle.css
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public,max-age=31536000
last-modified: Tue, 16 Aug 2022 11:10:46 GMT
accept-ranges: bytes
etag: "0bf3dd560b1d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 1157
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 44 x 44, 8-bit colormap, non-interlaced\012- data
Size:   1157
Md5:    60f073c1b01abeefb1303111a4998205
Sha1:   e227b7f93246b3b94f7cfbc50063af67bf82f373
Sha256: 1e594cea1ef10f1145f4d2053797655a09ca9b6e31d7ae8b2d9674be8defec60
                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://soundgarden.no
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.227
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:56 GMT
expires: Thu, 30 Nov 2023 19:33:56 GMT
cache-control: public, max-age=31536000
age: 20415
last-modified: Wed, 11 May 2022 19:24:45 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size:   15920
Md5:    3a44e06eb954b96aa043227f3534189d
Sha1:   23cef6993ddb2b2979e8e7647fc3763694e2ba7d
Sha256: b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://soundgarden.no
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         216.58.207.227
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:34:15 GMT
expires: Thu, 30 Nov 2023 19:34:15 GMT
cache-control: public, max-age=31536000
age: 20396
last-modified: Wed, 11 May 2022 19:24:42 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size:   15860
Md5:    e9f5aaf547f165386cd313b995dddd8e
Sha1:   acdef5603c2387b0e5bffd744b679a24a8bc1968
Sha256: f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
                                        
                                            GET /api/Campaign/LoadSpecialOffers?_=1669857249371 HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
cache-control: no-cache
pragma: no-cache
expires: -1
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:00 GMT
content-length: 41
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   41
Md5:    869a8c7b1da5af6130726896dc38da10
Sha1:   393c31667a6b2a37462994d42e01c7db1efd653b
Sha256: a823eabc48c16d9fa3176bcda6e8788956b4c7eff3b709f11f63458cab894dbb
                                        
                                            GET /ui/fonts/v1.3/fonts.css HTTP/1.1 
Host: x.klarnacdn.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.55.101
HTTP/2 200 OK
content-type: text/css
                                        
content-length: 5189
date: Wed, 09 Nov 2022 03:13:13 GMT
x-amz-replication-status: COMPLETED
last-modified: Fri, 30 Apr 2021 10:01:44 GMT
etag: "c992228f869c757b2b0a2f8ecb17fa21"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000
x-amz-meta-ui: ui
x-amz-version-id: t6YqdT7IzEDnLlEXrdYp2k7IY4qR3s8G
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9JzvoNSupTgfEAOmG-BZo-QxqwaOl1WNbhjVLDIxT5NrpxFRuiJRog==
age: 1893659
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  gzip compressed data, max compression\012- data
Size:   5877
Md5:    0611fdee397536fbc085d03df0f19ec3
Sha1:   8537cd0831fd799bba4654cb0a3ba03eabb098a5
Sha256: 5731707c89686208c88031a0ec9f5f068297cb2ae4cbfcaaa965e51e6bbcf53d
                                        
                                            GET /r10120.10.0.2/plugins/uc/itx-chat/public/build/chat.js HTTP/1.1 
Host: static.itxuc.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.itxuc.com/r10120.10.0.2/plugins/uc/itx-chat/public/chat.html?endpoint=https:%2F%2Fservices14.itxuc.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         85.196.80.229
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Thu, 01 Dec 2022 01:14:11 GMT
content-length: 309265
last-modified: Wed, 30 Nov 2022 13:21:34 GMT
etag: "638758de-4b811"
expires: Sun, 26 Nov 2023 01:14:11 GMT
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
access-control-allow-methods: GET, OPTIONS
access-control-allow-credentials: true
access-control-expose-headers: Content-Length
pragma: public
cache-control: max-age=31104000, public
vary: Origin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   309265
Md5:    fdaa5c684eebef5c4b9576f124c2bdba
Sha1:   0e0e25d36f616450fe173325171a0215556c0b26
Sha256: b4607f1437c9ecd850ef1bde594c9a439fd3a03cf5b3e01e176463b3fb4ccf4e
                                        
                                            GET /r10120.10.0.2/plugins/uc/itx-chat/public/chat.css HTTP/1.1 
Host: static.itxuc.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.itxuc.com/r10120.10.0.2/plugins/uc/itx-chat/public/chat.html?endpoint=https:%2F%2Fservices14.itxuc.com
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         85.196.80.229
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Thu, 01 Dec 2022 01:14:11 GMT
content-length: 5442
last-modified: Wed, 30 Nov 2022 13:21:37 GMT
etag: "638758e1-1542"
expires: Sun, 26 Nov 2023 01:14:11 GMT
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
access-control-allow-methods: GET, OPTIONS
access-control-allow-credentials: true
access-control-expose-headers: Content-Length
pragma: public
cache-control: max-age=31104000, public
vary: Origin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (5440), with no line terminators
Size:   5442
Md5:    f9bafc0bae7a179c8cac1424ba232501
Sha1:   1dda996fa1339b11626d6d12453cc65a8dfd33dc
Sha256: ba25fa7ea6d7bb82cfb64e3841d660b10266f7cd2b7d1ddcbf100bf16ff2555b
                                        
                                            GET /v2.6/plugins/like.php?action=like&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Dfd71d0e87b57dc%26domain%3Dsoundgarden.no%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fsoundgarden.no%252Ff36e3d8b27362e2%26relation%3Dparent.parent&container_width=0&href=https%3A%2F%2Fsoundgarden.no%2Fglorious%2F114204%2Fglorious-record-box-advanced-110-hvit-vinylboks&layout=button_count&locale=en_US&sdk=joey&share=true&show_faces=false&width=450 HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         31.13.72.36
HTTP/2 200 OK
content-type: text/html;charset=utf-8
                                        
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: Bd+yPFUGml7XZkuP+GM1UirHTH/Scqkfww5nIMJRuL2GM5Rkgyvx1sd+W73mEAKvrI5ig0nEfm3sh9GqsOJbdA==
content-length: 0
date: Thu, 01 Dec 2022 01:14:11 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

                                        
                                            GET /npm/bootstrap-icons@1.7.0/font/bootstrap-icons.css HTTP/1.1 
Host: cdn.jsdelivr.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.itxuc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         151.101.1.229
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 1.7.0
x-jsd-version-type: version
etag: W/"11e0a-qWq/juG6+a0vCIRW1zWhkONA0CI"
content-encoding: gzip
accept-ranges: bytes
date: Thu, 01 Dec 2022 01:14:11 GMT
age: 5624902
x-served-by: cache-fra19174-FRA, cache-bma1683-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 10369
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   10369
Md5:    909a77fbb9817e7076e1c0d9f6815d20
Sha1:   ab99db60da677190afecbac0692980f796b2b37a
Sha256: f8995cbfe1e21066a3a7c6c933fe273496b453fb6ea027ad09e03e67a1c1fe09
                                        
                                            GET /npm/bootstrap@5.2.1/dist/css/bootstrap.min.css HTTP/1.1 
Host: cdn.jsdelivr.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://static.itxuc.com
Connection: keep-alive
Referer: https://static.itxuc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         151.101.1.229
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 5.2.1
x-jsd-version-type: version
etag: W/"2fbaa-t81XpP1qH65hJhUPQn7yFzlyk+Q"
content-encoding: gzip
accept-ranges: bytes
date: Thu, 01 Dec 2022 01:14:11 GMT
age: 7292124
x-served-by: cache-fra19168-FRA, cache-bma1637-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 27568
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65305)
Size:   27568
Md5:    7e053d70c375231966f265955f1f400a
Sha1:   8017809ac549996fd235e6b93c65e0715db749ad
Sha256: bad72701e11f955fba2fbc70f2675fe767bcdfcee2a7205eb7bbbabd4ac176f6
                                        
                                            POST /api/AreaRenderer/RenderFields HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
Content-Length: 2297
Origin: https://soundgarden.no
Connection: keep-alive
Referer: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
cache-control: no-cache
pragma: no-cache
expires: -1
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
set-cookie: McWeb3.15.2-6=DeviceSize=lg; expires=Fri, 01-Dec-2023 01:14:00 GMT; path=/; SameSite=Lax
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:02 GMT
content-length: 15506
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (15497), with no line terminators
Size:   15506
Md5:    4b24774a239676113e9b79db41b3eefc
Sha1:   d8c228e7a44e321bdfb45f7a87a8a68d96fa6a3e
Sha256: 6a236fce8ae97869b077953579938a0e49093ffaa78cf132e73eb298efaed624
                                        
                                            POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:14:11 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "68A594E32FE40D3F1427BCC2B00451E618262A49"
Expires: Thu, 01 Dec 2022 13:00:00 GMT
Last-Modified: Thu, 01 Dec 2022 01:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 112
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7727f6ee7a71b51e-OSL


--- Additional Info ---
Magic:  data
Size:   1462
Md5:    aad86bcde168b704a5d0211f5d887413
Sha1:   8475e7d51e834b48c4880444611e4cdefc2cebc7
Sha256: 7827ce922cb5f70e5af6261a5f7d0f4222d7775a885ff0a6deb9f2f5b414ccf3
                                        
                                            POST /api/Language/GetLanguageTexts HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
Content-Length: 125
Origin: https://soundgarden.no
Connection: keep-alive
Referer: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
cache-control: no-cache
pragma: no-cache
expires: -1
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:02 GMT
content-length: 356
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , Unicode text, UTF-8 text, with very long lines (354), with no line terminators
Size:   356
Md5:    5316437cb152d26a7f6e0d24e01e8dfb
Sha1:   dc4c3bd3cbf574196d9549c1d6c38acff3ef524e
Sha256: b4e117993afc7a7a016aed9ca3cac68bbf8b32d549d1796827a65de92c8ebb9c
                                        
                                            GET /Media/Web/ImageNotFound.gif HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: image/gif
                                        
cache-control: public,max-age=31536000
last-modified: Tue, 16 Aug 2022 11:10:44 GMT
accept-ranges: bytes
etag: "092cd460b1d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:02 GMT
content-length: 1348
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 320 x 320\012- data
Size:   1348
Md5:    614b97f22314f54ee79c9d4760f67708
Sha1:   e09504820eecfcf78e6a5d528959b17aa1f70953
Sha256: 34822960f798e8f9351dea6596eeed407cf705e59d244f8d124f4fb3249e5976
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Dec 2022 01:14:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /rest/uc/chat/plugin/anonconfig?tokenv2=c94c403bef50abedb0ae41e062470e2c&rcntrl=1408411&ccntrl=60000245&useCorp=60000246&hostname=soundgarden.no HTTP/1.1 
Host: services14.itxuc.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://static.itxuc.com
Connection: keep-alive
Referer: https://static.itxuc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

search
                                         213.52.87.171
HTTP/1.1 200 OK
Content-Type: application/json;charset=UTF-8
                                        
Server: nginx
Date: Thu, 01 Dec 2022 01:14:11 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ITXVOS: true
Cache-Control: public, max-age=300, must-revalidate
Pragma: cache
Expires: Thu, 01 Dec 2022 01:19:11 GMT
Access-Control-Allow-Headers: Content-Type,ITXVOS-Frontend-Version,Content-Length,Content-Disposition,ITXVOS-Mobile-App-Version,Iwp-User-Agent,Date,Object-Map-Response,ITX-Ensure-User
Access-Control-Expose-Headers: Content-Type,ITXVOS-Frontend-Version,Content-Length,Content-Disposition,ITXVOS-Mobile-App-Version,ETag,Date,ITX-Ensure-User-Failure,Vary
Access-Control-Allow-Origin: https://static.itxuc.com
Access-Control-Allow-Credentials: true
ITXVOS-Action: no.itx.portal.web.uc.action.ChatPluginConfigAnonActionGet
ITXVOS-Action-ID: 41011
ITXVOS-Frontend-Version: r10120.10.0.2
ITXVOS-Mobile-App-Version: 1.4.6/1.4.6
ITXVOS-Cached-Resource: No
Last-Modified: Tue, 29 Nov 2022 21:04:25 GMT
ETag: W/"1669755865236C60000246"
Vary: Origin, Range
Set-Cookie: JSESSIONID=66BF4BE80938EA648134280BDF4A8D9C; Path=/; Secure; HttpOnly; SameSite=None iwpsessioncookie=iwpsess; Expires=Fri, 02-Dec-2022 01:14:11 GMT; Path=/; Secure; SameSite=None


--- Additional Info ---
Magic:  JSON data\012- , Unicode text, UTF-8 text, with very long lines (7203)
Size:   7216
Md5:    5d51479365e64cde1e0b379e70bd6947
Sha1:   404147dca6273eed213ac40da5ac4525a3aa84f2
Sha256: e26f2ab38ca4275075e3b9f439bf7883931af050f66433dea0e562e92f42873f
                                        
                                            GET /Media/Cache/Images/1/7/WEB_Image_114157_-1341751765_plid_152487.Jpeg HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public,max-age=31536000
last-modified: Mon, 31 Jan 2022 22:48:36 GMT
accept-ranges: bytes
etag: "7457eaef416d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:02 GMT
content-length: 3392
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 240x256, components 3\012- data
Size:   3392
Md5:    0683e604013d08947c69246fcfc57700
Sha1:   d07a395bc36ad5f94ae0feb6af8c4a384d8fdca2
Sha256: 153bfa57522f4e670d34b390fca8c93494282facf55369101674f989e22cc446
                                        
                                            GET /Media/Cache/Images/1/0/WEB_Image_114156_330817663_plid_152460.Jpeg HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public,max-age=31536000
last-modified: Mon, 31 Jan 2022 22:48:36 GMT
accept-ranges: bytes
etag: "35883aef416d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:02 GMT
content-length: 3333
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 240x256, components 3\012- data
Size:   3333
Md5:    3ffbfccd62271ccbbf3f60dc61db1a43
Sha1:   8120fcd300bb79812f8e74aeb92db9c89c2ded58
Sha256: 07dd6dc21d215da9fae75774d48f1ea53a64d0e96b3357a381789f95d17442c4
                                        
                                            GET /gtm.js?id=GTM-W2ZH5B HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 01 Dec 2022 01:14:11 GMT
expires: Thu, 01 Dec 2022 01:14:11 GMT
cache-control: private, max-age=900
last-modified: Thu, 01 Dec 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 86537
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (12298)
Size:   86537
Md5:    42bd6cf5bae4953cc7b1722406d740b4
Sha1:   a670ce0013d4bad9007ae2e6f56ad06305ba9f30
Sha256: e7406c5391c9e41bd4bb23f1e589a13afa8588beecb6bd4a416cc4c61ce90f7d
                                        
                                            GET /Media/Cache/Images/1/2/WEB_Image_114200_2_1202379872_plid_153242.Jpeg HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public,max-age=31536000
last-modified: Mon, 31 Jan 2022 22:48:36 GMT
accept-ranges: bytes
etag: "272f8aaef416d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:02 GMT
content-length: 3864
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 240x256, components 3\012- data
Size:   3864
Md5:    6b6d34ff425f643d26dfe817ca3aa646
Sha1:   6a6df9d5e5eec039c6218c05114fef33846b962b
Sha256: f2ce9127cf5e19dc3372903590579d64d54913516ca2cdbdd33e661029c4afe4
                                        
                                            GET /r10120.10.0.2/plugins/uc/itx-chat/public/chat.html?endpoint=https:%2F%2Fservices14.itxuc.com HTTP/1.1 
Host: static.itxuc.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         85.196.80.229
HTTP/2 200 OK
content-type: text/html
                                        
server: nginx
date: Thu, 01 Dec 2022 01:14:11 GMT
last-modified: Wed, 30 Nov 2022 13:20:39 GMT
etag: W/"638758a7-a68"
expires: Sun, 26 Nov 2023 01:14:11 GMT
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
access-control-allow-methods: GET, OPTIONS
access-control-allow-credentials: true
access-control-expose-headers: Content-Length
pragma: public
cache-control: max-age=31104000, public
vary: Origin
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   8287
Md5:    7f03795278c1dac8664dd3e82691b7cc
Sha1:   dc6e84f6a847beefeb8f2fa0e71724d65a7bae41
Sha256: bd2860514815234f1882512ce15528ffd4494840052fd5d5c8e926700e8d6788
                                        
                                            GET /Media/Cache/Images/1/6/WEB_Image_114202_2_-996910944_plid_153296.Jpeg HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public,max-age=31536000
last-modified: Mon, 31 Jan 2022 22:48:36 GMT
accept-ranges: bytes
etag: "dbf38eaef416d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:02 GMT
content-length: 6208
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 240x256, components 3\012- data
Size:   6208
Md5:    f70161b31e613985045827da26f54a30
Sha1:   2c570f0206cee40a553cbabab9bb6e4f94ce3b91
Sha256: 0d3c1cf7242787371838ee464644498fbeb51b171a854345ec6b2d16671027ea
                                        
                                            POST /api/TinyPopup/RenderTinyPopup HTTP/1.1 
Host: soundgarden.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
Content-Length: 11
Origin: https://soundgarden.no
Connection: keep-alive
Referer: https://soundgarden.no/glorious/114204/glorious-record-box-advanced-110-hvit-vinylboks?kk=a4c6294-184cb3f87c0-2b6663&utm_source=kelkoono&utm_medium=cpc&utm_campaign=kelkooclick&utm_term=Glorious+Record+Box+Advanced+110+-+Hvit+
Cookie: .ASPXANONYMOUS=sN6OCLQ72QEkAAAAZGIyMGQ5YWYtMzM0ZC00YTUxLThkMDYtZDNiNGI2ODlkN2IwDeHs7kHS_JZgyuEn6r0oXqhd8o41; ASP.NET_SessionId=5wbkqafahok3qtywbnuudns1; McWeb3.15.2-6=DeviceSize=lg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         62.92.37.200
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
cache-control: no-cache
pragma: no-cache
expires: -1
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-ua-compatible: IE=Edge
date: Thu, 01 Dec 2022 01:14:02 GMT
content-length: 977
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- HTML document, ASCII text, with very long lines (977), with no line terminators
Size:   977
Md5:    5a91e9a5dd231efcda1b0e443d374db2
Sha1:   1b0a78777e3352edb6e54c52607573d12c85abbe
Sha256: 82902e2c642af193113b73b451bdfe31c7cda5b3d7192e3b10a0ce9e932b4cbf
                                        
                                            GET /rest/uc/chat/nextqueuememberanon?tokenv2=c94c403bef50abedb0ae41e062470e2c&rcntrl=1408411&ccntrl=60000245&useCorp=60000246&queue=9a3bf9d54a4c508f39c44775babf34b8&followOverflow=true HTTP/1.1 
Host: services14.itxuc.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://static.itxuc.com
Connection: keep-alive
Referer: https://static.itxuc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

search
                                         213.52.87.171
HTTP/1.1 404 Not Found
Content-Type: application/json;charset=UTF-8
                                        
Server: nginx
Date: Thu, 01 Dec 2022 01:14:11 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ITXVOS: true
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Access-Control-Allow-Headers: Content-Type,ITXVOS-Frontend-Version,Content-Length,Content-Disposition,ITXVOS-Mobile-App-Version,Iwp-User-Agent,Date,Object-Map-Response,ITX-Ensure-User
Access-Control-Expose-Headers: Content-Type,ITXVOS-Frontend-Version,Content-Length,Content-Disposition,ITXVOS-Mobile-App-Version,ETag,Date,ITX-Ensure-User-Failure
Access-Control-Allow-Origin: https://static.itxuc.com
Access-Control-Allow-Credentials: true
ITXVOS-Action: no.itx.portal.web.uc.action.NextChatQueueMemberAnonActionGet
ITXVOS-Action-ID: 41007
ITXVOS-Frontend-Version: r10120.10.0.2
ITXVOS-Mobile-App-Version: 1.4.6/1.4.6
ITXVOS-Cached-Resource: No
Set-Cookie: JSESSIONID=5CCAE338305837674C6441DA13C5766F; Path=/; Secure; HttpOnly; SameSite=None iwpsessioncookie=iwpsess; Expires=Fri, 02-Dec-2022 01:14:11 GMT; Path=/; Secure; SameSite=None


--- Additional Info ---
Magic:  JSON data\012- , ASCII text
Size:   3
Md5:    8a80554c91d9fca8acb82f023de02f11
Sha1:   5f36b2ea290645ee34d943220a14b54ee5ea5be5
Sha256: ca3d163bab055381827226140568f3bef7eaac187cebd76878e0b63e9e442356