| jumity.net/ | 50.116.93.187 | | 254 B |
IP50.116.93.187:0 ASN#46606 UNIFIEDLAYER-AS-1
File typeHTML document, ASCII text Hash2c578bb27a25a4bb8856d68b894ce8cf abf7fe2ace9f98a4b9fad1fe5c38c2be531f7532 0bc9890d3d0129868649cf71e638f9926ebc47c56df684f8067efd3f549f0766
Analyzer | Verdict | Alert | OpenPhish | phishing | SwissPass |
GET / HTTP/1.1
Host: jumity.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Thu, 25 Apr 2024 14:17:42 GMT
server: nginx/1.21.6
content-type: text/html; charset=iso-8859-1
content-length: 254
location: https://wwp.antoiew.com/redirect-zone/76133339
x-server-cache: false
X-Firefox-Spdy: h2
|
|
| wwp.antoiew.com/zone/76133339?frame=0&ancestorOrigins=0&v=bXonuLylmb9ydGoDtnRpR327xbKLmxh3P6%2BNZjPwprJGzfutFjhW%2FjTXOJyvSr31mHvbbtVXtny3UNPHUjYUIr7T2IonXau7TtZnoJl6TR1hvn9D0lcSc3NB%2Bih1A349yu5UWr%2BxhA2DoYzFsZXFVa2WGY0LWsCwt6qQA%2Fd%2F%2B9ebcscvDKFFDmRd1LCvae1MAmJTgrQAtlbd9RDsypTLj2VAJ%2FtDv69b40HHVRj0yLYFSTUul0tHBXW4pTWyy%2BAHvX2LOYqWVW8ys8cI6tRLglyCWeA2WrR8aIWwc2s3OaSrrhZdZIEyO3NdMFxbyO6aLH2OEX5oVuoWrqtiFST%2Bpg%3D%3D&st=1714054662417 | 188.114.96.1 | | 0 B |
URL wwp.antoiew.com/zone/76133339?frame=0&ancestorOrigins=0&v=bXonuLylmb9ydGoDtnRpR327xbKLmxh3P6%2BNZjPwprJGzfutFjhW%2FjTXOJyvSr31mHvbbtVXtny3UNPHUjYUIr7T2IonXau7TtZnoJl6TR1hvn9D0lcSc3NB%2Bih1A349yu5UWr%2BxhA2DoYzFsZXFVa2WGY0LWsCwt6qQA%2Fd%2F%2B9ebcscvDKFFDmRd1LCvae1MAmJTgrQAtlbd9RDsypTLj2VAJ%2FtDv69b40HHVRj0yLYFSTUul0tHBXW4pTWyy%2BAHvX2LOYqWVW8ys8cI6tRLglyCWeA2WrR8aIWwc2s3OaSrrhZdZIEyO3NdMFxbyO6aLH2OEX5oVuoWrqtiFST%2Bpg%3D%3D&st=1714054662417 IP188.114.96.1:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /zone/76133339?frame=0&ancestorOrigins=0&v=bXonuLylmb9ydGoDtnRpR327xbKLmxh3P6%2BNZjPwprJGzfutFjhW%2FjTXOJyvSr31mHvbbtVXtny3UNPHUjYUIr7T2IonXau7TtZnoJl6TR1hvn9D0lcSc3NB%2Bih1A349yu5UWr%2BxhA2DoYzFsZXFVa2WGY0LWsCwt6qQA%2Fd%2F%2B9ebcscvDKFFDmRd1LCvae1MAmJTgrQAtlbd9RDsypTLj2VAJ%2FtDv69b40HHVRj0yLYFSTUul0tHBXW4pTWyy%2BAHvX2LOYqWVW8ys8cI6tRLglyCWeA2WrR8aIWwc2s3OaSrrhZdZIEyO3NdMFxbyO6aLH2OEX5oVuoWrqtiFST%2Bpg%3D%3D&st=1714054662417 HTTP/1.1
Host: wwp.antoiew.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wwp.antoiew.com/redirect-zone/76133339
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Thu, 25 Apr 2024 14:17:43 GMT
content-length: 0
location: https://mgcrspub.lmdfmd.com?feedid=popzone29490&subid=site_24514_29490_1&uuid=764b9d92-a7f6-4050-9175-627ba29e5aae&ep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
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=c8J2sS9Hdzcf%2Fyw287%2BxudCeHEcajW3yMyfwXSrj997PDxhk%2Bjc0MUTp0pFYBD4j6DSwH3aJEg52CkjgxT42eTXaTlk%2F7V80VjYo8onan%2F4zAQwU70Zob6h92TQoXzwvzbU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879ef54a1a520b02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| mgcrspub.lmdfmd.com/?feedid=popzone29490&subid=site_24514_29490_1&uuid=764b9d92-a7f6-4050-9175-627ba29e5aae&ep=Z7BZHO3SRHGCINKOOVRPVNV5DJGPFFRH4FQ6RBMPXRPXYNTY2GPSLN2LCDSPUAYMV2B337ZE4J4CPXVCZ2VQDNNSPCS2XXKIL2MFXJVGURQ5O6LBRWUHOXKAOWVDXSEXRJGRHP5IDYJ6GYLRV5Q3MNFXDJ7EBOASAXF3FHZHYLDDRYXT4H6ERPP2POCHFZEZ7Y5RJBTP4LIPXLFYWKXD3GY57MLPYMDNXYSNBMW3ABLUPCUTXPPNC7MK2GC42UHZSB2FPKE7IZ6YIN2S76CYE7PP3N7BU4QEWRGZKEYD5K4G5V4WM7SVMUSS4LCL2Y56TZAJUCEMBSSJZOIJOV3YPFFFHOOKHLVUFZEYNQTR7ZJQT2UPHSVYH7EJ3Y2IV5AKNZZ42NHZKTGLQQ4UXW5T2LHQPQEXDMGHH2SJSC6QEGYIJA4B5ZJG5F35YNW2TZ2IDBVBYMZT74MO3C7IQ3I4MREEMQDEV4W7SNRPY4BJWFKVYXHEDM5DQQTCOTIGY6JC5XJRYPOAJHW7BAFMA2Q5OHIECHJAATDUPLAOVYYPX3ECB7GFLOIEDGD7AFR2LMMXNMREWRJNHWFORPDR6J3BMBLC37YABHGRBW7WUSGL3ZIRUOJBCC3YUGPMZEMPN5XB4ACWZ7W5BQXFGTKYT5YV6HQQ73CT4ALYI24BJGO4XI6N5U4JON6A%3D%3D%3D%3D | 146.190.22.79 | | 0 B |
URL mgcrspub.lmdfmd.com/?feedid=popzone29490&subid=site_24514_29490_1&uuid=764b9d92-a7f6-4050-9175-627ba29e5aae&ep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
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?feedid=popzone29490&subid=site_24514_29490_1&uuid=764b9d92-a7f6-4050-9175-627ba29e5aae&ep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
Host: mgcrspub.lmdfmd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wwp.antoiew.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 25 Apr 2024 14:17:43 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://bf.lmdfmd.com/api/v1/backfill?feedid=popzone29490&subid=site_24514_29490_1&uuid=764b9d92-a7f6-4050-9175-627ba29e5aae&ep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
|
|
| bf.lmdfmd.com/api/v1/backfill?feedid=popzone29490&subid=site_24514_29490_1&uuid=764b9d92-a7f6-4050-9175-627ba29e5aae&ep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| 172.67.200.230 | | 0 B |
URL bf.lmdfmd.com/api/v1/backfill?feedid=popzone29490&subid=site_24514_29490_1&uuid=764b9d92-a7f6-4050-9175-627ba29e5aae&ep=Z7BZHO3SRHGCINKOOVRPVNV5DJGPFFRH4FQ6RBMPXRPXYNTY2GPSLN2LCDSPUAYMV2B337ZE4J4CPXVCZ2VQDNNSPCS2XXKIL2MFXJVGURQ5O6LBRWUHOXKAOWVDXSEXRJGRHP5IDYJ6GYLRV5Q3MNFXDJ7EBOASAXF3FHZHYLDDRYXT4H6ERPP2POCHFZEZ7Y5RJBTP4LIPXLFYWKXD3GY57MLPYMDNXYSNBMW3ABLUPCUTXPPNC7MK2GC42UHZSB2FPKE7IZ6YIN2S76CYE7PP3N7BU4QEWRGZKEYD5K4G5V4WM7SVMUSS4LCL2Y56TZAJUCEMBSSJZOIJOV3YPFFFHOOKHLVUFZEYNQTR7ZJQT2UPHSVYH7EJ3Y2IV5AKNZZ42NHZKTGLQQ4UXW5T2LHQPQEXDMGHH2SJSC6QEGYIJA4B5ZJG5F35YNW2TZ2IDBVBYMZT74MO3C7IQ3I4MREEMQDEV4W7SNRPY4BJWFKVYXHEDM5DQQTCOTIGY6JC5XJRYPOAJHW7BAFMA2Q5OHIECHJAATDUPLAOVYYPX3ECB7GFLOIEDGD7AFR2LMMXNMREWRJNHWFORPDR6J3BMBLC37YABHGRBW7WUSGL3ZIRUOJBCC3YUGPMZEMPN5XB4ACWZ7W5BQXFGTKYT5YV6HQQ73CT4ALYI24BJGO4XI6N5U4JON6A%3D%3D%3D%3D IP172.67.200.230:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/v1/backfill?feedid=popzone29490&subid=site_24514_29490_1&uuid=764b9d92-a7f6-4050-9175-627ba29e5aae&ep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
Host: bf.lmdfmd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wwp.antoiew.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 25 Apr 2024 14:17:43 GMT
content-length: 0
location: https://www.promsteklo.com/karo-tribe/
content-language: en-US
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3GsymQpECACM8HKoOGMSiEbQXKwl%2Bif8sR%2B%2FjQnVmqtU%2FjVQR4KsA7k0dRZJz7oySuNHZl5euuVMj0%2BXr1il2JX4qcG4WWtbHHHdrfxA8IxqROMEmDDT32BXpX1xKCQX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879ef54daf420b49-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| docplayer.info/docs-images/87/97010930/images/200-0.jpg | 65.109.88.248 | | 104 kB |
URL docplayer.info/docs-images/87/97010930/images/200-0.jpg IP65.109.88.248:0 ASN#24940 Hetzner Online GmbH
File typeJPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 866x878, components 3 Size104 kB (103691 bytes) Hash31ddb78cbb362929de6d81be667eb1a1 b292f7484716a4785995672828a64b931a6f3874 90277974d580adf4c7bf9287ef681995e90924f4526cbd35a3fa71174d2656be
GET /docs-images/87/97010930/images/200-0.jpg HTTP/1.1
Host: docplayer.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.promsteklo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Thu, 25 Apr 2024 14:17:43 GMT
Content-Type: image/jpeg
Content-Length: 103691
Connection: keep-alive
Last-Modified: Thu, 11 Oct 2018 11:57:55 GMT
ETag: "5bbf3ac3-1950b"
Cloud-Cache-Backend-Server: nginx-135
Accept-Ranges: bytes
Frontend: nginx-135
Set-Cookie: country=NO; domain=.docplayer.info; path=/
d_id=37
uid=QW1Y+GYqZgcgv+Kw0G3eAg==; expires=Fri, 25-Apr-25 14:17:43 GMT; path=/
|
|
| my.rtmark.net/gid.js?userId=008049ae75b447a1ea7198359dc660bc | 139.45.195.8 | | 65 B |
URL my.rtmark.net/gid.js?userId=008049ae75b447a1ea7198359dc660bc IP139.45.195.8:0
Hashb6eac88734a29e13ec139d7ee0fd3ae4 92616e462b984a477fc7915ffa06ad7d1e1fb3a0 dbebcb8db95637421ebeeffae324f970407d093447162dc01bf6db4ede5e27d1
GET /gid.js?userId=008049ae75b447a1ea7198359dc660bc HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.promsteklo.com
DNT: 1
Connection: keep-alive
Referer: https://www.promsteklo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:17:44 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://www.promsteklo.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=008049ae75b447a1ea7198359dc660bc; expires=Fri, 25 Apr 2025 14:17:44 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| moonoafy.net/zone?pub=0&zone_id=7385711&is_mobile=false&domain=www.promsteklo.com&var=&ymid=&var_3=&tg=0&sw=3.1.504 | 139.45.197.250 | | 880 B |
URL moonoafy.net/zone?pub=0&zone_id=7385711&is_mobile=false&domain=www.promsteklo.com&var=&ymid=&var_3=&tg=0&sw=3.1.504 IP139.45.197.250:0
Hash8c94917973f69c46bf9675db5331fe21 ae5463859e58537cd519408c23afc21f00336ddc 6744114309aa9c91409fd076ec40b2add4f4813737f62cbc7ffd9df8c7d3b508
GET /zone?pub=0&zone_id=7385711&is_mobile=false&domain=www.promsteklo.com&var=&ymid=&var_3=&tg=0&sw=3.1.504 HTTP/1.1
Host: moonoafy.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.promsteklo.com/
Origin: https://www.promsteklo.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:17:44 GMT
content-type: application/json; charset=utf-8
content-length: 880
x-trace-id: 11409087df9afbce4e7ce46a280990a3
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://www.promsteklo.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| richinfo.co/richpartners/in-page/js/richads-ob.js?pubid=916729&siteid=345683 | 5.200.15.239 | | 29 kB |
URL richinfo.co/richpartners/in-page/js/richads-ob.js?pubid=916729&siteid=345683 IP5.200.15.239:0
File typegzip compressed data, from Unix Hash6518a9a040f1e74db7294bb3d09a5eb1 e2e949d69be54d6b532b9434564a186fabc09fe7 24755f9699339e149795183c3212573c26d2edb38ebe9ecef3f5877b2e9a33ca
GET /richpartners/in-page/js/richads-ob.js?pubid=916729&siteid=345683 HTTP/1.1
Host: richinfo.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.promsteklo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty/1.21.4.1
date: Thu, 25 Apr 2024 14:17:44 GMT
content-type: application/x-javascript
x-amz-id-2: XsHX2laU3ZaePdRuzCduU88j5aJnMrV6O4vU0bH5e0MlY4hgWE1+l6g/7rq5GIoPFZkQ8xVYa0Y=
x-amz-request-id: C9X3E1JPTYB80679
last-modified: Wed, 10 Apr 2024 13:16:50 GMT
etag: W/"2ddcb957a89b99f69dad51fb8e99ea5c"
x-amz-server-side-encryption: AES256
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| moonoafy.net/custom | 139.45.197.250 | | 0 B |
IP139.45.197.250:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /custom HTTP/1.1
Host: moonoafy.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.promsteklo.com/
Origin: https://www.promsteklo.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:17:44 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://www.promsteklo.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2
|
|
| gishejuy.com/500/7385708?excludes=&oaid=008049ae75b447a1ea7198359dc660bc&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fwww.promsteklo.com%2Fkaro-tribe%2F&drf=https%3A%2F%2Fwwp.antoiew.com%2F&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0 | 139.45.197.242 | | 0 B |
URL gishejuy.com/500/7385708?excludes=&oaid=008049ae75b447a1ea7198359dc660bc&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fwww.promsteklo.com%2Fkaro-tribe%2F&drf=https%3A%2F%2Fwwp.antoiew.com%2F&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0 IP139.45.197.242:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /500/7385708?excludes=&oaid=008049ae75b447a1ea7198359dc660bc&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fwww.promsteklo.com%2Fkaro-tribe%2F&drf=https%3A%2F%2Fwwp.antoiew.com%2F&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0 HTTP/1.1
Host: gishejuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.promsteklo.com/
Origin: https://www.promsteklo.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:17:44 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://www.promsteklo.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-allow-credentials: true
access-control-max-age: 600
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
|
|
| eu.convers.link/users/info?callback=userinfo_rp_pu | 5.200.15.239 | | 227 B |
URL eu.convers.link/users/info?callback=userinfo_rp_pu IP5.200.15.239:0
File typegzip compressed data, from Unix Hashd48e0dbb074903649294e9bda4d325bf d0c43dec2d98e16b925c8adcb044cff8ea4d10f8 133c2d1239202cb0d7db5d9074301d0a7079a47ee036483be971c65139f5b828
GET /users/info?callback=userinfo_rp_pu HTTP/1.1
Host: eu.convers.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.promsteklo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty/1.21.4.1
date: Thu, 25 Apr 2024 14:17:44 GMT
content-type: application/json;charset=UTF-8
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| aistekso.net/401/7385710?oo=1&oaid=008049ae75b447a1ea7198359dc660bc&sw_version=v1.337.0 | 139.45.197.244 | | 877 B |
URL aistekso.net/401/7385710?oo=1&oaid=008049ae75b447a1ea7198359dc660bc&sw_version=v1.337.0 IP139.45.197.244:0
File typegzip compressed data, max speed, from Unix Hash6d930c7d0125620eef34fb3cefc0691b 3fe0747142b399d2bf63f2732617ffb9e74cba40 03710bebc7db7392c05bfddf9f7def50bd1eef2f34a1dd1dd5498aad243198a7
GET /401/7385710?oo=1&oaid=008049ae75b447a1ea7198359dc660bc&sw_version=v1.337.0 HTTP/1.1
Host: aistekso.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.promsteklo.com
DNT: 1
Connection: keep-alive
Referer: https://www.promsteklo.com/
Cookie: OAID=0300498087394cd0e65ac81ab838126a
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:17:44 GMT
content-type: application/json
x-trace-id: 4f44e04ffbbb9be16bf7048bd38990af
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: https://www.promsteklo.com
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
set-cookie: OAID=008049ae75b447a1ea7198359dc660bc; expires=Fri, 25 Apr 2025 14:17:44 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| amunfezanttor.com/event | 139.45.197.250 | | 0 B |
IP139.45.197.250:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
OPTIONS /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.promsteklo.com/
Origin: https://www.promsteklo.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:17:44 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://www.promsteklo.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2
|
|
| cameesse.net/9?z=7385709&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.promsteklo.com%2Fkaro-tribe%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&sah=1024&drf=https%3A%2F%2Fwwp.antoiew.com%2F&hil=1&ist=0&oaid=008049ae75b447a1ea7198359dc660bc | 139.45.197.242 | | 0 B |
URL cameesse.net/9?z=7385709&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.promsteklo.com%2Fkaro-tribe%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&sah=1024&drf=https%3A%2F%2Fwwp.antoiew.com%2F&hil=1&ist=0&oaid=008049ae75b447a1ea7198359dc660bc IP139.45.197.242:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /9?z=7385709&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.promsteklo.com%2Fkaro-tribe%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&sah=1024&drf=https%3A%2F%2Fwwp.antoiew.com%2F&hil=1&ist=0&oaid=008049ae75b447a1ea7198359dc660bc HTTP/1.1
Host: cameesse.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.promsteklo.com/
Origin: https://www.promsteklo.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Thu, 25 Apr 2024 14:17:44 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.promsteklo.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
|
|
| amunfezanttor.com/event | 139.45.197.250 | | 94 B |
IP139.45.197.250:0
Hashb40881fd04ebb43c46c631e846e9e6a7 ab3b60c2161533568f9dcca6b1d436b008b9d230 4346e701a9d619075fbfdbc6478f5aca42ad4571467473cd3d210b8af70db66d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.promsteklo.com/
Content-Type: application/json
Content-Length: 514
Origin: https://www.promsteklo.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:17:44 GMT
content-type: application/json; charset=utf-8
content-length: 94
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://www.promsteklo.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| moonoafy.net/custom | 139.45.197.250 | | 0 B |
IP139.45.197.250:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /custom HTTP/1.1
Host: moonoafy.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.promsteklo.com/
Origin: https://www.promsteklo.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:17:44 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://www.promsteklo.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2
|
|
| aistekso.net/500/7385710?excludes=&oaid=008049ae75b447a1ea7198359dc660bc&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fwww.promsteklo.com%2Fkaro-tribe%2F&drf=https%3A%2F%2Fwwp.antoiew.com%2F&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0 | 139.45.197.244 | | 0 B |
URL aistekso.net/500/7385710?excludes=&oaid=008049ae75b447a1ea7198359dc660bc&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fwww.promsteklo.com%2Fkaro-tribe%2F&drf=https%3A%2F%2Fwwp.antoiew.com%2F&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0 IP139.45.197.244:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /500/7385710?excludes=&oaid=008049ae75b447a1ea7198359dc660bc&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fwww.promsteklo.com%2Fkaro-tribe%2F&drf=https%3A%2F%2Fwwp.antoiew.com%2F&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0 HTTP/1.1
Host: aistekso.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.promsteklo.com/
Origin: https://www.promsteklo.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:17:44 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://www.promsteklo.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-allow-credentials: true
access-control-max-age: 600
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
|
|
| moonoafy.net/custom | 139.45.197.250 | | 39 B |
IP139.45.197.250:0
Hash058b158c2be925f556454ef762d93538 cc6fc563b4b6baee880fdbc7fcfaa134978e33c9 ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: moonoafy.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.promsteklo.com/
Content-Type: application/json
Content-Length: 393
Origin: https://www.promsteklo.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:17:44 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 4a095649e03a051ce12712c6dcacd2a7
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://www.promsteklo.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| cameesse.net/11?rnd=3891847287&z=7385709&b=15763363&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=7&rb=noGLOx-r1R68uWRePfZ-HbKQSrhWrdPSDD9fp24VenUew18RBX9KUyRCj0QlHXJrsaDSRreDn-Ns4a5sTFJHU5LNF0llKw_U0ehXLD4mdnWwRcvH_L9boKpvaOlVQK3gl1qIELvl8xfImfTDBRpgqejjpgiM1UdbfFoZciRpAB7JQQZXV-6majUsbIMs1CzzSh9smBJZ8Y0oHK3ljmPsU5Cbcxq2ZyFUHTfR0LMOzWA5YrxSi96k7pZqkSubFe4GQ-hLlAaosr6YAS8wdJwjcbTuqMnY9vlPgKZTvU73UMstRUj1FidrCQswNfnq9cA0CNjbVU6llncmYMC-lOjNDrF7H1Q4Ui0ue-pIeYzar0VhErxgRooEk54W-n1ggHFBycW3Q7DJAm0h4YVa0sa2ylx9y3GwpR29ZD8ZYUIXQC11RemOR_EfB9Kd0Y4RARg9Fr2PKaHFMBxMIO0JhryrscJO6pNv_gyCC4yRu6Fl4m5qM4jmDD3Rg5oo9nUOgAS8pYwohm3tcsZet-EUy3p9811S32DHxyTwswsjqrfIXl3gP-tEc0SYYpwCbyj-4qVaDQfMfB_gbz9sgoRJuDTbhUFpbhNTzeG8YbU7CwUvCDj6rF0sVURjyjsG8mxLpcFjwOQtyvNf2s3FS0VwlKkoiAOWu6V4-nqxnGab38h8L0BaxototDhnm35TYirf4MWH8BW8dVk4oHHRlj1vyTmoMWeMGfJqxHeFsJlu6tbTzfiOxjq1OQTa26Y_5eixxubaMmKpZTqnlNyhIv1pbZvN7VZrI0FHYb7hbk8K_X-1pQvhQEQH4ZZ5NhH1nFKI1GMzSiGDYXz7mP6FUbmRZ53BP57W-C8WJZ-kDDNBHDdPnnUoxhunRqg736bOwcTe15ECtYobaqdeZ8y1PpdRN4LMhw==&ruid=95c35bfe-a0bc-477c-8b32-a26a39342648&subid=807366387782651904&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.promsteklo.com%2Fkaro-tribe%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&sah=1024&drf=https%3A%2F%2Fwwp.antoiew.com%2F&hil=1&ist=0&ot=143 | 139.45.197.242 | | 0 B |
URL cameesse.net/11?rnd=3891847287&z=7385709&b=15763363&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=7&rb=noGLOx-r1R68uWRePfZ-HbKQSrhWrdPSDD9fp24VenUew18RBX9KUyRCj0QlHXJrsaDSRreDn-Ns4a5sTFJHU5LNF0llKw_U0ehXLD4mdnWwRcvH_L9boKpvaOlVQK3gl1qIELvl8xfImfTDBRpgqejjpgiM1UdbfFoZciRpAB7JQQZXV-6majUsbIMs1CzzSh9smBJZ8Y0oHK3ljmPsU5Cbcxq2ZyFUHTfR0LMOzWA5YrxSi96k7pZqkSubFe4GQ-hLlAaosr6YAS8wdJwjcbTuqMnY9vlPgKZTvU73UMstRUj1FidrCQswNfnq9cA0CNjbVU6llncmYMC-lOjNDrF7H1Q4Ui0ue-pIeYzar0VhErxgRooEk54W-n1ggHFBycW3Q7DJAm0h4YVa0sa2ylx9y3GwpR29ZD8ZYUIXQC11RemOR_EfB9Kd0Y4RARg9Fr2PKaHFMBxMIO0JhryrscJO6pNv_gyCC4yRu6Fl4m5qM4jmDD3Rg5oo9nUOgAS8pYwohm3tcsZet-EUy3p9811S32DHxyTwswsjqrfIXl3gP-tEc0SYYpwCbyj-4qVaDQfMfB_gbz9sgoRJuDTbhUFpbhNTzeG8YbU7CwUvCDj6rF0sVURjyjsG8mxLpcFjwOQtyvNf2s3FS0VwlKkoiAOWu6V4-nqxnGab38h8L0BaxototDhnm35TYirf4MWH8BW8dVk4oHHRlj1vyTmoMWeMGfJqxHeFsJlu6tbTzfiOxjq1OQTa26Y_5eixxubaMmKpZTqnlNyhIv1pbZvN7VZrI0FHYb7hbk8K_X-1pQvhQEQH4ZZ5NhH1nFKI1GMzSiGDYXz7mP6FUbmRZ53BP57W-C8WJZ-kDDNBHDdPnnUoxhunRqg736bOwcTe15ECtYobaqdeZ8y1PpdRN4LMhw==&ruid=95c35bfe-a0bc-477c-8b32-a26a39342648&subid=807366387782651904&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.promsteklo.com%2Fkaro-tribe%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&sah=1024&drf=https%3A%2F%2Fwwp.antoiew.com%2F&hil=1&ist=0&ot=143 IP139.45.197.242:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /11?rnd=3891847287&z=7385709&b=15763363&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=7&rb=noGLOx-r1R68uWRePfZ-HbKQSrhWrdPSDD9fp24VenUew18RBX9KUyRCj0QlHXJrsaDSRreDn-Ns4a5sTFJHU5LNF0llKw_U0ehXLD4mdnWwRcvH_L9boKpvaOlVQK3gl1qIELvl8xfImfTDBRpgqejjpgiM1UdbfFoZciRpAB7JQQZXV-6majUsbIMs1CzzSh9smBJZ8Y0oHK3ljmPsU5Cbcxq2ZyFUHTfR0LMOzWA5YrxSi96k7pZqkSubFe4GQ-hLlAaosr6YAS8wdJwjcbTuqMnY9vlPgKZTvU73UMstRUj1FidrCQswNfnq9cA0CNjbVU6llncmYMC-lOjNDrF7H1Q4Ui0ue-pIeYzar0VhErxgRooEk54W-n1ggHFBycW3Q7DJAm0h4YVa0sa2ylx9y3GwpR29ZD8ZYUIXQC11RemOR_EfB9Kd0Y4RARg9Fr2PKaHFMBxMIO0JhryrscJO6pNv_gyCC4yRu6Fl4m5qM4jmDD3Rg5oo9nUOgAS8pYwohm3tcsZet-EUy3p9811S32DHxyTwswsjqrfIXl3gP-tEc0SYYpwCbyj-4qVaDQfMfB_gbz9sgoRJuDTbhUFpbhNTzeG8YbU7CwUvCDj6rF0sVURjyjsG8mxLpcFjwOQtyvNf2s3FS0VwlKkoiAOWu6V4-nqxnGab38h8L0BaxototDhnm35TYirf4MWH8BW8dVk4oHHRlj1vyTmoMWeMGfJqxHeFsJlu6tbTzfiOxjq1OQTa26Y_5eixxubaMmKpZTqnlNyhIv1pbZvN7VZrI0FHYb7hbk8K_X-1pQvhQEQH4ZZ5NhH1nFKI1GMzSiGDYXz7mP6FUbmRZ53BP57W-C8WJZ-kDDNBHDdPnnUoxhunRqg736bOwcTe15ECtYobaqdeZ8y1PpdRN4LMhw==&ruid=95c35bfe-a0bc-477c-8b32-a26a39342648&subid=807366387782651904&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.promsteklo.com%2Fkaro-tribe%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&sah=1024&drf=https%3A%2F%2Fwwp.antoiew.com%2F&hil=1&ist=0&ot=143 HTTP/1.1
Host: cameesse.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.promsteklo.com
DNT: 1
Connection: keep-alive
Referer: https://www.promsteklo.com/
Cookie: scm=1; OAID=008049ae75b447a1ea7198359dc660bc; oaidts=1714054664
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:17:45 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://www.promsteklo.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 233f13c594be75f7d836eb4a29600959
access-control-expose-headers: X-Sc
set-cookie: OAID=008049ae75b447a1ea7198359dc660bc; expires=Fri, 25 Apr 2025 14:17:45 GMT; secure; SameSite=None
oaidts=1714054664; expires=Fri, 25 Apr 2025 14:17:45 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
|
|
| 7ool.net/richpartners/pops/js/md5.js | 109.200.209.143 | | 34 kB |
URL 7ool.net/richpartners/pops/js/md5.js IP109.200.209.143:0
File typegzip compressed data, from Unix Hash8482804a23ab19935dad7e6aee4ef0ba bdb6f40994afe628a90ce1471d76efc79107460b a9f6de1344d628cb3e9ae15891c19a736e5e51868d9210d93e3995f1d38d521a
GET /richpartners/pops/js/md5.js HTTP/1.1
Host: 7ool.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.promsteklo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty/1.21.4.1
date: Thu, 25 Apr 2024 14:17:44 GMT
content-type: application/x-javascript
x-amz-id-2: U6xQg9OT/t3ToenwciXwWpJijjdjh+tG+BcVFZvpVgPMHgeiW79SKcJ3TadpghM/LiMSpx4M+Z0=
x-amz-request-id: 6J9V6X3646NW05VJ
last-modified: Wed, 10 Apr 2024 13:16:50 GMT
etag: W/"957f14b329cbf0159c40d4d8a5620041"
x-amz-server-side-encryption: AES256
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cameesse.net/9?z=7385709&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.promsteklo.com%2Fkaro-tribe%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&sah=1024&drf=https%3A%2F%2Fwwp.antoiew.com%2F&hil=1&ist=0&oaid=008049ae75b447a1ea7198359dc660bc | 139.45.197.242 | | 2.8 kB |
URL cameesse.net/9?z=7385709&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.promsteklo.com%2Fkaro-tribe%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&sah=1024&drf=https%3A%2F%2Fwwp.antoiew.com%2F&hil=1&ist=0&oaid=008049ae75b447a1ea7198359dc660bc IP139.45.197.242:0
Hashe7439b9490bfd336bb74beb74d1d5c4a 912861b12c22646d7a404ee49b75400ed8e7ba72 989bec0d8ae73130175be17b1de78fbc27df05945ef373abfc023251739d75fe
POST /9?z=7385709&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.promsteklo.com%2Fkaro-tribe%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&sah=1024&drf=https%3A%2F%2Fwwp.antoiew.com%2F&hil=1&ist=0&oaid=008049ae75b447a1ea7198359dc660bc HTTP/1.1
Host: cameesse.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 75
Origin: https://www.promsteklo.com
DNT: 1
Connection: keep-alive
Referer: https://www.promsteklo.com/
Cookie: scm=1; OAID=008049ae75b447a1ea7198359dc660bc; oaidts=1714054664
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:17:44 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: https://www.promsteklo.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: b7112f2cc8ed1d5f0c3adf7e94b38c27
access-control-expose-headers: X-Sc
set-cookie: OAID=008049ae75b447a1ea7198359dc660bc; expires=Fri, 25 Apr 2025 14:17:44 GMT; secure; SameSite=None
oaidts=1714054664; expires=Fri, 25 Apr 2025 14:17:44 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cameesse.net/121?rnd=2372935286&z=7385709&b=15763363&c=6332999&var=&varid=0&d=https%3A%2F%2Fwww.nbfcs.org%2F%23signUp%3D807366387782651904&cln={CELL_NUMBER}&btp=7&rb=noGLOx-r1R68uWRePfZ-HbKQSrhWrdPSDD9fp24VenUew18RBX9KUyRCj0QlHXJrsaDSRreDn-Ns4a5sTFJHU5LNF0llKw_U0ehXLD4mdnWwRcvH_L9boKpvaOlVQK3gl1qIELvl8xfImfTDBRpgqejjpgiM1UdbfFoZciRpAB7JQQZXV-6majUsbIMs1CzzSh9smBJZ8Y0oHK3ljmPsU5Cbcxq2ZyFUHTfR0LMOzWA5YrxSi96k7pZqkSubFe4GQ-hLlAaosr6YAS8wdJwjcbTuqMnY9vlPgKZTvU73UMstRUj1FidrCQswNfnq9cA0CNjbVU6llncmYMC-lOjNDrF7H1Q4Ui0ue-pIeYzar0VhErxgRooEk54W-n1ggHFBycW3Q7DJAm0h4YVa0sa2ylx9y3GwpR29ZD8ZYUIXQC11RemOR_EfB9Kd0Y4RARg9Fr2PKaHFMBxMIO0JhryrscJO6pNv_gyCC4yRu6Fl4m5qM4jmDD3Rg5oo9nUOgAS8pYwohm3tcsZet-EUy3p9811S32DHxyTwswsjqrfIXl3gP-tEc0SYYpwCbyj-4qVaDQfMfB_gbz9sgoRJuDTbhUFpbhNTzeG8YbU7CwUvCDj6rF0sVURjyjsG8mxLpcFjwOQtyvNf2s3FS0VwlKkoiAOWu6V4-nqxnGab38h8L0BaxototDhnm35TYirf4MWH8BW8dVk4oHHRlj1vyTmoMWeMGfJqxHeFsJlu6tbTzfiOxjq1OQTa26Y_5eixxubaMmKpZTqnlNyhIv1pbZvN7VZrI0FHYb7hbk8K_X-1pQvhQEQH4ZZ5NhH1nFKI1GMzSiGDYXz7mP6FUbmRZ53BP57W-C8WJZ-kDDNBHDdPnnUoxhunRqg736bOwcTe15ECtYobaqdeZ8y1PpdRN4LMhw==&bag=7BUmLnNMrGibGvCfhU7Wp6i9XabCh7Qh&ruid=95c35bfe-a0bc-477c-8b32-a26a39342648&subid=807366387782651904 | 139.45.197.242 | | 0 B |
URL cameesse.net/121?rnd=2372935286&z=7385709&b=15763363&c=6332999&var=&varid=0&d=https%3A%2F%2Fwww.nbfcs.org%2F%23signUp%3D807366387782651904&cln={CELL_NUMBER}&btp=7&rb=noGLOx-r1R68uWRePfZ-HbKQSrhWrdPSDD9fp24VenUew18RBX9KUyRCj0QlHXJrsaDSRreDn-Ns4a5sTFJHU5LNF0llKw_U0ehXLD4mdnWwRcvH_L9boKpvaOlVQK3gl1qIELvl8xfImfTDBRpgqejjpgiM1UdbfFoZciRpAB7JQQZXV-6majUsbIMs1CzzSh9smBJZ8Y0oHK3ljmPsU5Cbcxq2ZyFUHTfR0LMOzWA5YrxSi96k7pZqkSubFe4GQ-hLlAaosr6YAS8wdJwjcbTuqMnY9vlPgKZTvU73UMstRUj1FidrCQswNfnq9cA0CNjbVU6llncmYMC-lOjNDrF7H1Q4Ui0ue-pIeYzar0VhErxgRooEk54W-n1ggHFBycW3Q7DJAm0h4YVa0sa2ylx9y3GwpR29ZD8ZYUIXQC11RemOR_EfB9Kd0Y4RARg9Fr2PKaHFMBxMIO0JhryrscJO6pNv_gyCC4yRu6Fl4m5qM4jmDD3Rg5oo9nUOgAS8pYwohm3tcsZet-EUy3p9811S32DHxyTwswsjqrfIXl3gP-tEc0SYYpwCbyj-4qVaDQfMfB_gbz9sgoRJuDTbhUFpbhNTzeG8YbU7CwUvCDj6rF0sVURjyjsG8mxLpcFjwOQtyvNf2s3FS0VwlKkoiAOWu6V4-nqxnGab38h8L0BaxototDhnm35TYirf4MWH8BW8dVk4oHHRlj1vyTmoMWeMGfJqxHeFsJlu6tbTzfiOxjq1OQTa26Y_5eixxubaMmKpZTqnlNyhIv1pbZvN7VZrI0FHYb7hbk8K_X-1pQvhQEQH4ZZ5NhH1nFKI1GMzSiGDYXz7mP6FUbmRZ53BP57W-C8WJZ-kDDNBHDdPnnUoxhunRqg736bOwcTe15ECtYobaqdeZ8y1PpdRN4LMhw==&bag=7BUmLnNMrGibGvCfhU7Wp6i9XabCh7Qh&ruid=95c35bfe-a0bc-477c-8b32-a26a39342648&subid=807366387782651904 IP139.45.197.242:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /121?rnd=2372935286&z=7385709&b=15763363&c=6332999&var=&varid=0&d=https%3A%2F%2Fwww.nbfcs.org%2F%23signUp%3D807366387782651904&cln={CELL_NUMBER}&btp=7&rb=noGLOx-r1R68uWRePfZ-HbKQSrhWrdPSDD9fp24VenUew18RBX9KUyRCj0QlHXJrsaDSRreDn-Ns4a5sTFJHU5LNF0llKw_U0ehXLD4mdnWwRcvH_L9boKpvaOlVQK3gl1qIELvl8xfImfTDBRpgqejjpgiM1UdbfFoZciRpAB7JQQZXV-6majUsbIMs1CzzSh9smBJZ8Y0oHK3ljmPsU5Cbcxq2ZyFUHTfR0LMOzWA5YrxSi96k7pZqkSubFe4GQ-hLlAaosr6YAS8wdJwjcbTuqMnY9vlPgKZTvU73UMstRUj1FidrCQswNfnq9cA0CNjbVU6llncmYMC-lOjNDrF7H1Q4Ui0ue-pIeYzar0VhErxgRooEk54W-n1ggHFBycW3Q7DJAm0h4YVa0sa2ylx9y3GwpR29ZD8ZYUIXQC11RemOR_EfB9Kd0Y4RARg9Fr2PKaHFMBxMIO0JhryrscJO6pNv_gyCC4yRu6Fl4m5qM4jmDD3Rg5oo9nUOgAS8pYwohm3tcsZet-EUy3p9811S32DHxyTwswsjqrfIXl3gP-tEc0SYYpwCbyj-4qVaDQfMfB_gbz9sgoRJuDTbhUFpbhNTzeG8YbU7CwUvCDj6rF0sVURjyjsG8mxLpcFjwOQtyvNf2s3FS0VwlKkoiAOWu6V4-nqxnGab38h8L0BaxototDhnm35TYirf4MWH8BW8dVk4oHHRlj1vyTmoMWeMGfJqxHeFsJlu6tbTzfiOxjq1OQTa26Y_5eixxubaMmKpZTqnlNyhIv1pbZvN7VZrI0FHYb7hbk8K_X-1pQvhQEQH4ZZ5NhH1nFKI1GMzSiGDYXz7mP6FUbmRZ53BP57W-C8WJZ-kDDNBHDdPnnUoxhunRqg736bOwcTe15ECtYobaqdeZ8y1PpdRN4LMhw==&bag=7BUmLnNMrGibGvCfhU7Wp6i9XabCh7Qh&ruid=95c35bfe-a0bc-477c-8b32-a26a39342648&subid=807366387782651904 HTTP/1.1
Host: cameesse.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: scm=1; OAID=008049ae75b447a1ea7198359dc660bc; oaidts=1714054664
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Thu, 25 Apr 2024 14:17:45 GMT
content-length: 0
location: https://www.nbfcs.org/#signUp=807366387782651904
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: e84352cb3dc235207b888b44e1a43a56
access-control-expose-headers: X-Sc
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
|
|
| moonoafy.net/custom | 139.45.197.250 | | 39 B |
IP139.45.197.250:0
Hash058b158c2be925f556454ef762d93538 cc6fc563b4b6baee880fdbc7fcfaa134978e33c9 ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: moonoafy.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.promsteklo.com/
Content-Type: application/json
Content-Length: 749
Origin: https://www.promsteklo.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:17:45 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 5098158be909133a9b861f4bd841f3de
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://www.promsteklo.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| www.promsteklo.com/favicon.ico | 37.140.192.158 | | 523 B |
URL www.promsteklo.com/favicon.ico IP37.140.192.158:0 ASN#197695 Domain names registrar REG.RU, Ltd
File typePNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced Hash9fbdc3c4d796154bd3d66cf1a3afe65d c9799dbabfc3d62248b12ee63fdd0731a21be9e8 74ef9a015e71aafe9f16f5966570aef9c2d522de00eb844fc36e3f55bf76468a
GET /favicon.ico HTTP/1.1
Host: www.promsteklo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.promsteklo.com/karo-tribe/
Cookie: prefetchAd_7385707=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:17:45 GMT
content-type: image/vnd.microsoft.icon
content-length: 523
last-modified: Mon, 07 Mar 2016 14:14:02 GMT
etag: "20b-52d7613a7f74e"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 25 Apr 2024 14:17:50 GMT
strict-transport-security: max-age=31536000;
X-Firefox-Spdy: h2
|
|
| www.nbfcs.org/ | 95.211.117.215 | | 11 B |
IP95.211.117.215:0 ASN#60781 LeaseWeb Netherlands B.V.
File typeASCII text, with no line terminators Hash32682312d17c7cbf18e73594f5570319 60e22121bdd0bc71cdb2bae2a3aa577006b2eae9 e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47
GET / HTTP/1.1
Host: www.nbfcs.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
cache-control: max-age=0, private, must-revalidate
content-length: 11
date: Thu, 25 Apr 2024 14:17:45 GMT
location: http://ww1.nbfcs.org/?subid1=96304feb-030e-11ef-9155-e3d604489190
server: Cowboy
set-cookie: sid=96304feb-030e-11ef-9155-e3d604489190; path=/; domain=.nbfcs.org; expires=Tue, 13 May 2092 17:31:53 GMT; max-age=2147483647; secure; HttpOnly
X-Firefox-Spdy: h2
|
|
| gishejuy.com/impression/atcHnXm37q6iGRt9tEUDtBJd6vaJaYD-IRjzBc1J98A5lTe4iP2HeSMAaJfA2IAyUCO0YtmKByzonhcxP2ecgAKYg9cljsZBO3iAU_wQn39zwSorkjaGema7IhXgT0GTVkXcacTE7XM0Ptos_dhXPOTMoG8NGKeoaFBKX5sFEXFXjvwUmg4SFI-nqZLziXAvwPeUcj1ulP5vU30WZdFkfwjIqkaXXUFvCO7eoRWcFdHWbB3F1g7fqUwAh_JPP-VODXkb_Dm5ZpJbrmdg4KUlYsmZA20ihbF6unadz9v3VBdAopy-gGX5R6YC_GcsoGC9tqK7tIxrkWXyN1s0Zc98Ia23oe90-YyagBSS_PgDiAx8iaaThuO7V6_pr1CGfyTtSmL63UvU9vvjp9otwAznC0t3sVMFKmSLdVfjNqY9r4JrhtY_3j7IUgakke5Hmo-vS1NioBFdttwGsNdu1mZJV32_DQ3F37JpImAYNi1zcRb2gXEvxaXajob8a4ZzeA_bLIePj8H1n3o6H660CADsdpB76wtslU0XPWZX0RbGzHQvPGi113iDEprblF-EpoufYI5KfAS8E5XvFI6Z7U7iEfYzWFmUUomUFftecTHbGmNUuJE0uhVcXtjZ-vhLf1f-X7dkvwqLb1JyyadBkVsSh-UnjyQc66LVeil_Ti_AB5gkMjq2wRMwl9RHgMnpZ4NP0YTuIOzXmimCHpMIb-MECLkVkSVlc5wYV_HZBKNv3WO9fSfctWgj2tXAZ9jWoUH5DptKu9BKZobWGeWiO0JDRq-jrqiUD_lFo1BnoVqOEuXkhaS1tD_lw0AKbDMzbYhoN4iGLpdvnKY=?_z=7385708&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&pl=https%3A%2F%2Fwww.promsteklo.com%2Fkaro-tribe%2F&drf=https%3A%2F%2Fwwp.antoiew.com%2F&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0 | 139.45.197.242 | | 43 B |
URL gishejuy.com/impression/atcHnXm37q6iGRt9tEUDtBJd6vaJaYD-IRjzBc1J98A5lTe4iP2HeSMAaJfA2IAyUCO0YtmKByzonhcxP2ecgAKYg9cljsZBO3iAU_wQn39zwSorkjaGema7IhXgT0GTVkXcacTE7XM0Ptos_dhXPOTMoG8NGKeoaFBKX5sFEXFXjvwUmg4SFI-nqZLziXAvwPeUcj1ulP5vU30WZdFkfwjIqkaXXUFvCO7eoRWcFdHWbB3F1g7fqUwAh_JPP-VODXkb_Dm5ZpJbrmdg4KUlYsmZA20ihbF6unadz9v3VBdAopy-gGX5R6YC_GcsoGC9tqK7tIxrkWXyN1s0Zc98Ia23oe90-YyagBSS_PgDiAx8iaaThuO7V6_pr1CGfyTtSmL63UvU9vvjp9otwAznC0t3sVMFKmSLdVfjNqY9r4JrhtY_3j7IUgakke5Hmo-vS1NioBFdttwGsNdu1mZJV32_DQ3F37JpImAYNi1zcRb2gXEvxaXajob8a4ZzeA_bLIePj8H1n3o6H660CADsdpB76wtslU0XPWZX0RbGzHQvPGi113iDEprblF-EpoufYI5KfAS8E5XvFI6Z7U7iEfYzWFmUUomUFftecTHbGmNUuJE0uhVcXtjZ-vhLf1f-X7dkvwqLb1JyyadBkVsSh-UnjyQc66LVeil_Ti_AB5gkMjq2wRMwl9RHgMnpZ4NP0YTuIOzXmimCHpMIb-MECLkVkSVlc5wYV_HZBKNv3WO9fSfctWgj2tXAZ9jWoUH5DptKu9BKZobWGeWiO0JDRq-jrqiUD_lFo1BnoVqOEuXkhaS1tD_lw0AKbDMzbYhoN4iGLpdvnKY=?_z=7385708&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&pl=https%3A%2F%2Fwww.promsteklo.com%2Fkaro-tribe%2F&drf=https%3A%2F%2Fwwp.antoiew.com%2F&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0 IP139.45.197.242:0
File typeGIF image data, version 89a, 1 x 1 Hashb4491705564909da7f9eaf749dbbfbb1 279315d507855c6a4351e1e2c2f39dd9cd2fccd8 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /impression/atcHnXm37q6iGRt9tEUDtBJd6vaJaYD-IRjzBc1J98A5lTe4iP2HeSMAaJfA2IAyUCO0YtmKByzonhcxP2ecgAKYg9cljsZBO3iAU_wQn39zwSorkjaGema7IhXgT0GTVkXcacTE7XM0Ptos_dhXPOTMoG8NGKeoaFBKX5sFEXFXjvwUmg4SFI-nqZLziXAvwPeUcj1ulP5vU30WZdFkfwjIqkaXXUFvCO7eoRWcFdHWbB3F1g7fqUwAh_JPP-VODXkb_Dm5ZpJbrmdg4KUlYsmZA20ihbF6unadz9v3VBdAopy-gGX5R6YC_GcsoGC9tqK7tIxrkWXyN1s0Zc98Ia23oe90-YyagBSS_PgDiAx8iaaThuO7V6_pr1CGfyTtSmL63UvU9vvjp9otwAznC0t3sVMFKmSLdVfjNqY9r4JrhtY_3j7IUgakke5Hmo-vS1NioBFdttwGsNdu1mZJV32_DQ3F37JpImAYNi1zcRb2gXEvxaXajob8a4ZzeA_bLIePj8H1n3o6H660CADsdpB76wtslU0XPWZX0RbGzHQvPGi113iDEprblF-EpoufYI5KfAS8E5XvFI6Z7U7iEfYzWFmUUomUFftecTHbGmNUuJE0uhVcXtjZ-vhLf1f-X7dkvwqLb1JyyadBkVsSh-UnjyQc66LVeil_Ti_AB5gkMjq2wRMwl9RHgMnpZ4NP0YTuIOzXmimCHpMIb-MECLkVkSVlc5wYV_HZBKNv3WO9fSfctWgj2tXAZ9jWoUH5DptKu9BKZobWGeWiO0JDRq-jrqiUD_lFo1BnoVqOEuXkhaS1tD_lw0AKbDMzbYhoN4iGLpdvnKY=?_z=7385708&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&pl=https%3A%2F%2Fwww.promsteklo.com%2Fkaro-tribe%2F&drf=https%3A%2F%2Fwwp.antoiew.com%2F&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0 HTTP/1.1
Host: gishejuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.promsteklo.com/
Cookie: OAID=008049ae75b447a1ea7198359dc660bc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:17:49 GMT
content-type: image/gif
content-length: 43
x-trace-id: 893d9f6ee473ac74f6a489ec0d47f59d
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| aistekso.net/impression/DCT0dY-GHipu0SKR-S5cRm5xnJf9NHiW243N4xZY_rQ7VAeKsflNS5phA9DcrQ1boQK7DZgxCQcrV2EnolkGfe6c1vRAHtfafH7mAoy30nJIbbD58ijJXqsVZ8OtcSBVTyG_S_YnXFqbOQzBx4YsvO_ssBrrmiw5mrRMR9kx7vWq2JmUE621ZIdcWCYkq118CVDPFpYWFuttYQ-xu5DbN5NmqeNBrkMCOdPkR0oyobQWU4ua_jXSm29UwM2KJcaNpel4E1tTTJVER_0TJAQVSJROI1khY11I5GTn15QaTdigDStqilWqgQnTn5VYOceFnOATOl2cBuTfS605mNGn-b5gTvFMC-V91x2jcNd-0gxxR3R9nipgyoNsDwwwLw7FSCxvUKts-qrvdZ91fSaZQ3AOzSYM8fosV6jVDQgQih-sHH0pikQ1gEP0fDvSDPYNjS97Jv92kxAu3heAeFX1HllBxwtSECa3cKbRIiJL7MmrB_1kT0cBKGOHXHckNLXKTOe-XQrasWnZUYeRfFjGhTVyl1VzgqhIY9YUB1rUZE30ra2Yl1d5prc_f6EeYWw_sH0tKY91SERSb5UlwjywYuLQPLN-JMznmJmUzHuYknV4uykvPj4fw7DPQu8mPTVNoaIJPoFUYB-spNzEmKSy-imNXOIRGeuuRtLXUAvOPg0wEwxC8kDZBP3Qoqv369tC8PEjAzt3iRcHy0FwrvHCpi1c8SRDO4B2jwgOBWkt6-0qTDynCvLeQPm63M6iVQgy28Tf6gGZIGIahuswm3A3lOtZNDK-IuMnYf_veUKFALRI2B-sBta0tp4tPVJKGl6WheI3JRqaumY=?_z=7385710&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&pl=https%3A%2F%2Fwww.promsteklo.com%2Fkaro-tribe%2F&drf=https%3A%2F%2Fwwp.antoiew.com%2F&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0 | 139.45.197.244 | | 43 B |
URL aistekso.net/impression/DCT0dY-GHipu0SKR-S5cRm5xnJf9NHiW243N4xZY_rQ7VAeKsflNS5phA9DcrQ1boQK7DZgxCQcrV2EnolkGfe6c1vRAHtfafH7mAoy30nJIbbD58ijJXqsVZ8OtcSBVTyG_S_YnXFqbOQzBx4YsvO_ssBrrmiw5mrRMR9kx7vWq2JmUE621ZIdcWCYkq118CVDPFpYWFuttYQ-xu5DbN5NmqeNBrkMCOdPkR0oyobQWU4ua_jXSm29UwM2KJcaNpel4E1tTTJVER_0TJAQVSJROI1khY11I5GTn15QaTdigDStqilWqgQnTn5VYOceFnOATOl2cBuTfS605mNGn-b5gTvFMC-V91x2jcNd-0gxxR3R9nipgyoNsDwwwLw7FSCxvUKts-qrvdZ91fSaZQ3AOzSYM8fosV6jVDQgQih-sHH0pikQ1gEP0fDvSDPYNjS97Jv92kxAu3heAeFX1HllBxwtSECa3cKbRIiJL7MmrB_1kT0cBKGOHXHckNLXKTOe-XQrasWnZUYeRfFjGhTVyl1VzgqhIY9YUB1rUZE30ra2Yl1d5prc_f6EeYWw_sH0tKY91SERSb5UlwjywYuLQPLN-JMznmJmUzHuYknV4uykvPj4fw7DPQu8mPTVNoaIJPoFUYB-spNzEmKSy-imNXOIRGeuuRtLXUAvOPg0wEwxC8kDZBP3Qoqv369tC8PEjAzt3iRcHy0FwrvHCpi1c8SRDO4B2jwgOBWkt6-0qTDynCvLeQPm63M6iVQgy28Tf6gGZIGIahuswm3A3lOtZNDK-IuMnYf_veUKFALRI2B-sBta0tp4tPVJKGl6WheI3JRqaumY=?_z=7385710&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&pl=https%3A%2F%2Fwww.promsteklo.com%2Fkaro-tribe%2F&drf=https%3A%2F%2Fwwp.antoiew.com%2F&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0 IP139.45.197.244:0
File typeGIF image data, version 89a, 1 x 1 Hashb4491705564909da7f9eaf749dbbfbb1 279315d507855c6a4351e1e2c2f39dd9cd2fccd8 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /impression/DCT0dY-GHipu0SKR-S5cRm5xnJf9NHiW243N4xZY_rQ7VAeKsflNS5phA9DcrQ1boQK7DZgxCQcrV2EnolkGfe6c1vRAHtfafH7mAoy30nJIbbD58ijJXqsVZ8OtcSBVTyG_S_YnXFqbOQzBx4YsvO_ssBrrmiw5mrRMR9kx7vWq2JmUE621ZIdcWCYkq118CVDPFpYWFuttYQ-xu5DbN5NmqeNBrkMCOdPkR0oyobQWU4ua_jXSm29UwM2KJcaNpel4E1tTTJVER_0TJAQVSJROI1khY11I5GTn15QaTdigDStqilWqgQnTn5VYOceFnOATOl2cBuTfS605mNGn-b5gTvFMC-V91x2jcNd-0gxxR3R9nipgyoNsDwwwLw7FSCxvUKts-qrvdZ91fSaZQ3AOzSYM8fosV6jVDQgQih-sHH0pikQ1gEP0fDvSDPYNjS97Jv92kxAu3heAeFX1HllBxwtSECa3cKbRIiJL7MmrB_1kT0cBKGOHXHckNLXKTOe-XQrasWnZUYeRfFjGhTVyl1VzgqhIY9YUB1rUZE30ra2Yl1d5prc_f6EeYWw_sH0tKY91SERSb5UlwjywYuLQPLN-JMznmJmUzHuYknV4uykvPj4fw7DPQu8mPTVNoaIJPoFUYB-spNzEmKSy-imNXOIRGeuuRtLXUAvOPg0wEwxC8kDZBP3Qoqv369tC8PEjAzt3iRcHy0FwrvHCpi1c8SRDO4B2jwgOBWkt6-0qTDynCvLeQPm63M6iVQgy28Tf6gGZIGIahuswm3A3lOtZNDK-IuMnYf_veUKFALRI2B-sBta0tp4tPVJKGl6WheI3JRqaumY=?_z=7385710&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&pl=https%3A%2F%2Fwww.promsteklo.com%2Fkaro-tribe%2F&drf=https%3A%2F%2Fwwp.antoiew.com%2F&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0 HTTP/1.1
Host: aistekso.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.promsteklo.com/
Cookie: OAID=008049ae75b447a1ea7198359dc660bc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:17:49 GMT
content-type: image/gif
content-length: 43
x-trace-id: d05ff63e81e6b264945f0fb1a490e522
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| offerimage.com/www/images/9c6355bcf96815c755fbba83f9fd8f64.jpg | 172.67.22.216 | | 17 kB |
URL offerimage.com/www/images/9c6355bcf96815c755fbba83f9fd8f64.jpg IP172.67.22.216:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3 Hash9c6355bcf96815c755fbba83f9fd8f64 ce698b45fb51ef1494f80f432b7aff0985247724 2cd74e866757767cd5c88d066a0bc057aded1e6c07171e091dd87f56ffd4a906
GET /www/images/9c6355bcf96815c755fbba83f9fd8f64.jpg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:49 GMT
content-type: image/jpeg
content-length: 17173
cache-control: max-age=86400
cf-bgj: h2pri
etag: "642af881-4315"
expires: Thu, 25 Apr 2024 18:52:22 GMT
last-modified: Mon, 03 Apr 2023 16:02:09 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 69927
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879ef57519f65696-OSL
X-Firefox-Spdy: h2
|
|
| gishejuy.com/500/7385708?excludes=19845928&oaid=008049ae75b447a1ea7198359dc660bc&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fwww.promsteklo.com%2Fkaro-tribe%2F&drf=https%3A%2F%2Fwwp.antoiew.com%2F&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0 | 139.45.197.242 | | 0 B |
URL gishejuy.com/500/7385708?excludes=19845928&oaid=008049ae75b447a1ea7198359dc660bc&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fwww.promsteklo.com%2Fkaro-tribe%2F&drf=https%3A%2F%2Fwwp.antoiew.com%2F&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0 IP139.45.197.242:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /500/7385708?excludes=19845928&oaid=008049ae75b447a1ea7198359dc660bc&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fwww.promsteklo.com%2Fkaro-tribe%2F&drf=https%3A%2F%2Fwwp.antoiew.com%2F&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0 HTTP/1.1
Host: gishejuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.promsteklo.com/
Origin: https://www.promsteklo.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:17:49 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://www.promsteklo.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-allow-credentials: true
access-control-max-age: 600
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
|
|
| 7ool.net/richpartners/in-page/js/fp.js | 109.200.209.143 | | 28 kB |
URL 7ool.net/richpartners/in-page/js/fp.js IP109.200.209.143:0
File typegzip compressed data, from Unix Hash398bcc478a15e73c8360925b6f9956e2 ca9b1a14c8244d451881a1308e64db77b6ff1c8f 427eda8801a24f1e1654da51067c6d73a160a44c393e9d22c02149c78365f84c
GET /richpartners/in-page/js/fp.js HTTP/1.1
Host: 7ool.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.promsteklo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty/1.21.4.1
date: Thu, 25 Apr 2024 14:17:44 GMT
content-type: application/x-javascript
x-amz-id-2: j3HNAqtUb87B20kdnj9VruCW89rkaxVqBVYBHbQXAOZI1GFsZcL38caknoNNbagwvw1jbXliUfk=
x-amz-request-id: YJQBR2FHVAH5Q0TB
last-modified: Wed, 10 Apr 2024 13:16:50 GMT
etag: W/"9a03b4f00a9a0e2e99f616cf76a3ec12"
x-amz-server-side-encryption: AES256
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| offerimage.com/www/images/c8ab7c608555b511dfa28f585183edc9.jpg | 172.67.22.216 | | 17 kB |
URL offerimage.com/www/images/c8ab7c608555b511dfa28f585183edc9.jpg IP172.67.22.216:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3 Hashc8ab7c608555b511dfa28f585183edc9 07b4fe6aa263e63dc15ca76e57280cf4a1da347a 1086d90e75d50f3d72b9782ab379b7fd12e41b0088aa6ca631b800236fe5d5e7
GET /www/images/c8ab7c608555b511dfa28f585183edc9.jpg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.promsteklo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:49 GMT
content-type: image/jpeg
content-length: 16731
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
cache-control: max-age=86400
cf-bgj: h2pri
etag: "65674405-415b"
expires: Thu, 25 Apr 2024 18:37:39 GMT
last-modified: Wed, 29 Nov 2023 14:00:37 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 70810
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 879ef5766bc55696-OSL
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 216.58.207.227 | | 16 kB |
URL fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0 Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.promsteklo.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 01:54:31 GMT
expires: Wed, 23 Apr 2025 01:54:31 GMT
cache-control: public, max-age=31536000
age: 217399
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| gishejuy.com/400/7385708?oo=1&oaid=008049ae75b447a1ea7198359dc660bc&sw_version=v1.337.0 | 139.45.197.242 | | 1.3 kB |
URL gishejuy.com/400/7385708?oo=1&oaid=008049ae75b447a1ea7198359dc660bc&sw_version=v1.337.0 IP139.45.197.242:0
File typegzip compressed data, max speed, from Unix Hashd9e294f4dd685b4262dbd0074bd1a304 77942f8804f156aed53df9f467001f22b8e83a64 e44029e35bd374d17139c0a6e332beb4abf285d738d27b408fe35fb96f843ac4
GET /400/7385708?oo=1&oaid=008049ae75b447a1ea7198359dc660bc&sw_version=v1.337.0 HTTP/1.1
Host: gishejuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.promsteklo.com
DNT: 1
Connection: keep-alive
Referer: https://www.promsteklo.com/
Cookie: OAID=03004974a38249d7eb266ecc47d0d0cf
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:17:44 GMT
content-type: application/json
x-trace-id: 5d360b72a81543973bbbb611468f94e4
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
vary: Origin
access-control-allow-origin: https://www.promsteklo.com
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
set-cookie: OAID=008049ae75b447a1ea7198359dc660bc; expires=Fri, 25 Apr 2025 14:17:44 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| moonoafy.net/pfe/current/universal.min.js?v=3.1.504 | 139.45.197.250 | | 164 kB |
URL moonoafy.net/pfe/current/universal.min.js?v=3.1.504 IP139.45.197.250:0
File typegzip compressed data, max speed, from Unix Size164 kB (164537 bytes) Hash385d96c6f3fe633c6e54db12112e20c7 e1f2f8f5e0f94ee9e03fbb627d0ddcfb7ee8660c ed8aaee101e6409b1b522b222e58693f9f8fce63e69e9f2c407c77c8a8d9e52c
GET /pfe/current/universal.min.js?v=3.1.504 HTTP/1.1
Host: moonoafy.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.promsteklo.com/
Origin: https://www.promsteklo.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:17:44 GMT
content-type: application/javascript
last-modified: Thu, 25 Apr 2024 10:48:52 GMT
etag: W/"662a3514-15efa"
access-control-allow-origin: https://www.promsteklo.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| veepteero.com/?rb=9QAE_evhrov6nT24LQWvXHt5i9cuLT1s5waSONBvv2RisWyGYX6OjT0EA1TSzJi0zMP-fep5dTDa5lFQZOHGX9jcLEAazfULnxUFn5JF1WuyKsP4U57nl_KwFq2PQ_PHyCPPkkCAZ12p3z6nnO_q2ewrIt541PAhsDzKm12iurGact5p7FpDx1lXF1WHjbTqP5EcrRkJ7sqRNG5D6Lu-OLF0GQy-aLPsa0tcHU5tJqZGUN9a1Cs0qH7omCaifG4xKV0wQ93jb8_kb8fd&request_ab2=0&zoneid=7385707&js_build=iclick-v1.781.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=0&pl=https%3A%2F%2Fwww.promsteklo.com%2Fkaro-tribe%2F&drf=https%3A%2F%2Fwwp.antoiew.com%2F&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.781.0&navlng=en-US&pnt=0&pnrc=0&bs=2e551891-08da-491b-9fe3-92158314ef84&wasm=1&userId=008049ae75b447a1ea7198359dc660bc&m=link | 139.45.197.242 | | 15 kB |
URL veepteero.com/?rb=9QAE_evhrov6nT24LQWvXHt5i9cuLT1s5waSONBvv2RisWyGYX6OjT0EA1TSzJi0zMP-fep5dTDa5lFQZOHGX9jcLEAazfULnxUFn5JF1WuyKsP4U57nl_KwFq2PQ_PHyCPPkkCAZ12p3z6nnO_q2ewrIt541PAhsDzKm12iurGact5p7FpDx1lXF1WHjbTqP5EcrRkJ7sqRNG5D6Lu-OLF0GQy-aLPsa0tcHU5tJqZGUN9a1Cs0qH7omCaifG4xKV0wQ93jb8_kb8fd&request_ab2=0&zoneid=7385707&js_build=iclick-v1.781.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=0&pl=https%3A%2F%2Fwww.promsteklo.com%2Fkaro-tribe%2F&drf=https%3A%2F%2Fwwp.antoiew.com%2F&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.781.0&navlng=en-US&pnt=0&pnrc=0&bs=2e551891-08da-491b-9fe3-92158314ef84&wasm=1&userId=008049ae75b447a1ea7198359dc660bc&m=link IP139.45.197.242:0
File typegzip compressed data, max speed, from Unix Hash2b25560b296fe7f08202893be0966252 3aa443fb898e94e9f0bececbc6de836e107be0aa fa901694e41345c18c78e48c483e02f597282a643405748e68ddf929cac0c04e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /?rb=9QAE_evhrov6nT24LQWvXHt5i9cuLT1s5waSONBvv2RisWyGYX6OjT0EA1TSzJi0zMP-fep5dTDa5lFQZOHGX9jcLEAazfULnxUFn5JF1WuyKsP4U57nl_KwFq2PQ_PHyCPPkkCAZ12p3z6nnO_q2ewrIt541PAhsDzKm12iurGact5p7FpDx1lXF1WHjbTqP5EcrRkJ7sqRNG5D6Lu-OLF0GQy-aLPsa0tcHU5tJqZGUN9a1Cs0qH7omCaifG4xKV0wQ93jb8_kb8fd&request_ab2=0&zoneid=7385707&js_build=iclick-v1.781.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=0&pl=https%3A%2F%2Fwww.promsteklo.com%2Fkaro-tribe%2F&drf=https%3A%2F%2Fwwp.antoiew.com%2F&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.781.0&navlng=en-US&pnt=0&pnrc=0&bs=2e551891-08da-491b-9fe3-92158314ef84&wasm=1&userId=008049ae75b447a1ea7198359dc660bc&m=link HTTP/1.1
Host: veepteero.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.promsteklo.com/
Origin: https://www.promsteklo.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:17:44 GMT
content-type: application/json
x-trace-id: 0416b24ec0be41441c026c00a724f41d
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://www.promsteklo.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=008049ae75b447a1ea7198359dc660bc; expires=Fri, 25 Apr 2025 14:17:44 GMT; path=/; secure; SameSite=None
oaidts=1714054664; expires=Fri, 25 Apr 2025 14:17:44 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Thu, 02 May 2024 14:17:44 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| piteevoo.com/favicon.ico | 139.45.197.244 | | 0 B |
IP139.45.197.244:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: piteevoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://piteevoo.com/4/7296708
Cookie: OAID=008049953f7e44a3f0e69e98e6ca9ddb; oaidts=1714054670
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Thu, 25 Apr 2024 14:17:50 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
pragma: public
cache-control: max-age=315360000, public, must-revalidate, proxy-revalidate
X-Firefox-Spdy: h2
|
|
| piteevoo.com/?z=7296708&syncedCookie=true&rhd=false | 139.45.197.244 | | 0 B |
URL piteevoo.com/?z=7296708&syncedCookie=true&rhd=false IP139.45.197.244:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /?z=7296708&syncedCookie=true&rhd=false HTTP/1.1
Host: piteevoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 520
Origin: https://piteevoo.com
DNT: 1
Connection: keep-alive
Referer: https://piteevoo.com/afu.php?zoneid=7296708&var=7296708&rid=mnhKzS_wDF_SW3g2Y1iWsw%3D%3D&rhd=false&ab2r=0&sf=1
Cookie: OAID=008049953f7e44a3f0e69e98e6ca9ddb; oaidts=1714054670
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Thu, 25 Apr 2024 14:17:50 GMT
content-length: 0
location: https://www.linkbux.com/track/249b79fTSQXCRHXRecneuuNknBdJS3qsSZki2fDUWXsikrVHPUTPp3hSv793qX5QgS5A?url=https%3A%2F%2Fna-kd.com&uid=CPAGpo&click_ref=807366403840815925&sale_comm=${PAYOUT}
x-trace-id: 129226effd49f09719b64bdacb470327
link: <https://www.linkbux.com>; rel="preconnect dns-prefetch",<https://yonmewon.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
referrer-policy: no-referrer
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://piteevoo.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=008049953f7e44a3f0e69e98e6ca9ddb; expires=Fri, 25 Apr 2025 14:17:50 GMT; path=/; secure; SameSite=None
oaidts=1714054670; expires=Fri, 25 Apr 2025 14:17:50 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Thu, 02 May 2024 14:17:50 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| tzegilo.com/stattag.js | 104.21.11.245 | | 13 kB |
IP104.21.11.245:0
File typeJavaScript source, ASCII text, with very long lines (18486) Hash70ebd404c2e1e7bad13998538b56887c 86e57af8ba3cfc2c004da3311835f6b54ba6d848 d71ea61938136a384e4c53c5a7a3c36e68fcc70a68bae691e270987d5d2eb11f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.promsteklo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:44 GMT
content-type: application/javascript
last-modified: Wed, 07 Feb 2024 12:51:13 GMT
etag: W/"65c37cc1-4ac0"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 485
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8V1MRTba379sZe4S%2Bk8ABsxvV0BzeRkO0Qwc2ydvrGd3Lt7gRujAGu1X5QMg3Lz1iynGuMEeWlzTe7RG1eRKMxIrtBRH5LtYVzvxZusb19GvM%2FbOHDV9W761S66xXw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879ef555bb24b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.linkbux.com/track/249b79fTSQXCRHXRecneuuNknBdJS3qsSZki2fDUWXsikrVHPUTPp3hSv793qX5QgS5A?url=https%3A%2F%2Fna-kd.com&uid=CPAGpo&click_ref=807366403840815925&sale_comm=${PAYOUT} | 163.181.1.224 | | 506 B |
URL www.linkbux.com/track/249b79fTSQXCRHXRecneuuNknBdJS3qsSZki2fDUWXsikrVHPUTPp3hSv793qX5QgS5A?url=https%3A%2F%2Fna-kd.com&uid=CPAGpo&click_ref=807366403840815925&sale_comm=${PAYOUT} IP163.181.1.224:0 ASN#24429 Zhejiang Taobao Network Co.,Ltd
File typeHTML document, ASCII text Hash94aac1fd041513cf863374988619d1a2 9f55293129cb1fd987e060e078dbc6076c6ad4d7 d84fdf5aa539686552e77705c1ba4cb73fb91f27a0b02f4f5ca5a2653880760f
GET /track/249b79fTSQXCRHXRecneuuNknBdJS3qsSZki2fDUWXsikrVHPUTPp3hSv793qX5QgS5A?url=https%3A%2F%2Fna-kd.com&uid=CPAGpo&click_ref=807366403840815925&sale_comm=${PAYOUT} HTTP/1.1
Host: www.linkbux.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Thu, 25 Apr 2024 14:17:51 GMT
Vary: Accept-Encoding
Set-Cookie: discuz_2132_saltkey=MEiViVQC; expires=Sat, 25-May-2024 14:17:51 GMT; Max-Age=2592000; path=/; httponly
discuz_2132_lang=en; path=/
discuz_2132_lang=en; path=/
Content-Encoding: gzip
Via: cache29.l2us2[104,0], cache12.ru6[291,0]
Timing-Allow-Origin: *
EagleId: a3b501a017140546710297232e
|
|
| tatrck.com/favicon.ico | 188.114.96.1 | | 0 B |
IP188.114.96.1:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: tatrck.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tatrck.com/v1/go/?deeplink=http%3A%2F%2Fclkde.tradedoubler.com%2Fclick%3Fp%3D270172%26a%3D3335102%26g%3D0%26epi%3D3CejOUnVtcff2LSXxu2BAiJVkNCtLJ24uW1LAJ8E6G8kXv%26epi2%3D246201&p=jFiej8HRuo
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Thu, 25 Apr 2024 14:17:53 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 7011
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3BSfvHFrBY92aCH88YNll4qA9%2FKSNPxSJt7WuE%2BgavihK1kFgNN0zB6qmakpz9RB8qAOQGbljrLEMctNKv4aiU%2FVxRfoTAJ9eE6wMwLm3%2BXENU3vy6Eiht%2Fb%2F10X"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879ef58c0bb85685-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tatrck.com/redir/clickGate.php?u=u68EH62H&p=jFiej8HRuo&m=30&url=https%3A%2F%2Fna-kd.com&s=43292233 | 188.114.96.1 | 302 Found | 10 kB |
URL User Request GET HTTP/2tatrck.com/redir/clickGate.php?u=u68EH62H&p=jFiej8HRuo&m=30&url=https%3A%2F%2Fna-kd.com&s=43292233 IP188.114.96.1:443
CertificateIssuerGoogle Trust Services LLC Subjecttatrck.com FingerprintA6:A6:3C:30:ED:60:B5:2C:37:F3:6B:22:9B:E4:14:AA:72:61:61:6A ValiditySat, 06 Apr 2024 13:13:06 GMT - Fri, 05 Jul 2024 13:13:05 GMT
Hash05d5eadc108ce6c263f4c33f0d84a09d 38993b4aa02f4cfb1c0a9411f7d50c9ebbf23016 2ef61f7a138c6366d33da621ad2bdc6de70ed48ec2f0b59cda1b28a165ffef13
GET /redir/clickGate.php?u=u68EH62H&p=jFiej8HRuo&m=30&url=https%3A%2F%2Fna-kd.com&s=43292233 HTTP/1.1
Host: tatrck.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.shoptastic.io/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 25 Apr 2024 14:17:53 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
location: /v1/go/?deeplink=http%3A%2F%2Fclkde.tradedoubler.com%2Fclick%3Fp%3D270172%26a%3D3335102%26g%3D0%26epi%3D3CejOUnVtcff2LSXxu2BAiJVkNCtLJ24uW1LAJ8E6G8kXv%26epi2%3D246201&p=jFiej8HRuo
referer:
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7GtNSPTWXujanS9SeC%2B%2FU8HlJiETv1ylOL1mXNgkSwppuBDWG0Z%2FY5OkCJ5pGrd8WMtv8S9ec3ZT4yOGg1YcV34%2BdIj86Z%2BNfwqFlnwhdYsc9ZOOnReKWxWFCNfT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879ef589bb815688-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| clkde.tradedoubler.com/click?p=270172&a=3335102&g=0&epi=3CejOUnVtcff2LSXxu2BAiJVkNCtLJ24uW1LAJ8E6G8kXv&epi2=246201 | 54.93.126.123 | 200 OK | 3.8 kB |
URL User Request GET HTTP/2clkde.tradedoubler.com/click?p=270172&a=3335102&g=0&epi=3CejOUnVtcff2LSXxu2BAiJVkNCtLJ24uW1LAJ8E6G8kXv&epi2=246201 IP54.93.126.123:443
CertificateIssuerAmazon Subject*.tradedoubler.com FingerprintE6:E6:D1:02:6C:9A:BE:00:C1:0E:B5:BC:61:D1:C1:FD:74:73:C4:9E ValidityWed, 06 Sep 2023 00:00:00 GMT - Sat, 05 Oct 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (500) Hash2413c6429091c00c10664a20897c65d4 bb3918df5fad92128b7117a93e88c6cdb5019ec7 5f61d561f31e2105d1271f4ecee2c196f5374f1fbdf8eada54dac67860b51d5f
GET /click?p=270172&a=3335102&g=0&epi=3CejOUnVtcff2LSXxu2BAiJVkNCtLJ24uW1LAJ8E6G8kXv&epi2=246201 HTTP/1.1
Host: clkde.tradedoubler.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:53 GMT
content-type: text/html; charset=ISO-8859-1
content-length: 3813
accept-ch: Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Form-Factor, Sec-CH-UA-Model, Sec-CH-UA-WoW64
set-cookie: GUID=1z11zz16jz1gPAduz3916c5131ca322e702874ca5a94e93dd;expires=Fri, 25-Apr-2025 14:17:53 GMT;path=/;domain=.tradedoubler.com
server: TXServerHttp
access-control-allow-origin: *
access-control-allow-credentials: true
vary: Origin
cache-control: private, max-age=0
pragma: no-cache
referrer-policy: origin
X-Firefox-Spdy: h2
|
|
| vht.tradedoubler.com/fp/fpjs.js | 54.230.111.4 | 200 OK | 8.7 kB |
URL GET HTTP/1.1vht.tradedoubler.com/fp/fpjs.js IP54.230.111.4:443
Requested byhttps://clkde.tradedoubler.com/click?p=270172&a=3335102&g=0&epi=3CejOUnVtcff2LSXxu2BAiJVkNCtLJ24uW1LAJ8E6G8kXv&epi2=246201 CertificateIssuerAmazon Subject*.tradedoubler.com Fingerprint41:40:2C:03:9D:93:3B:A8:63:57:07:D9:2D:88:98:4F:16:EE:A9:EE ValidityTue, 14 Nov 2023 00:00:00 GMT - Thu, 12 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (23071) Hash7071a24cf5aa736f41daf866f21a20eb cdef76e0815e39cfef67d22127e6c01062ee02b4 5b036ab5052dc73813aa4a472e3046a0fe217f5787d0c322d755a42201050d5f
GET /fp/fpjs.js HTTP/1.1
Host: vht.tradedoubler.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clkde.tradedoubler.com/
DNT: 1
Connection: keep-alive
Cookie: GUID=1z11zz16jz1gPAduz3916c5131ca322e702874ca5a94e93dd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 8745
Connection: keep-alive
Server: Apache
Strict-Transport-Security: max-age=31536000
Last-Modified: Tue, 12 Mar 2024 11:04:52 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Date: Thu, 25 Apr 2024 04:44:59 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: D2GjPj4o8PI-IZJh6grXb3ePvDrWPvBZHkEv05uprJwhYeSYuipznQ==
Age: 564914
X-XSS-Protection: 1; mode=block
Referrer-Policy: strict-origin-when-cross-origin
X-Content-Type-Options: nosniff
|
|
| clkde.tradedoubler.com/favicon.ico | 54.93.126.123 | 404 Not Found | 193 B |
URL GET HTTP/2clkde.tradedoubler.com/favicon.ico IP54.93.126.123:443
Requested byhttps://clkde.tradedoubler.com/click?p=270172&a=3335102&g=0&epi=3CejOUnVtcff2LSXxu2BAiJVkNCtLJ24uW1LAJ8E6G8kXv&epi2=246201 CertificateIssuerAmazon Subject*.tradedoubler.com FingerprintE6:E6:D1:02:6C:9A:BE:00:C1:0E:B5:BC:61:D1:C1:FD:74:73:C4:9E ValidityWed, 06 Sep 2023 00:00:00 GMT - Sat, 05 Oct 2024 23:59:59 GMT
File typeHTML document, ASCII text, with no line terminators Hash523cbcb278f348bbe64563fe4cc9f435 5a436481b66ccb6dff53c5e1a14c08ef0b4a8e4b 37b6ca25983f4126bd10c135684bc8f421c8b48a5bdb75b5ad69c849035a84f4
GET /favicon.ico HTTP/1.1
Host: clkde.tradedoubler.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clkde.tradedoubler.com/
DNT: 1
Connection: keep-alive
Cookie: GUID=1z11zz16jz1gPAduz3916c5131ca322e702874ca5a94e93dd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Thu, 25 Apr 2024 14:17:53 GMT
content-type: text/html; charset=ISO-8859-1
content-length: 193
X-Firefox-Spdy: h2
|
|
| clkde.tradedoubler.com/click?p=270172&a=3335102&g=0&epi=3CejOUnVtcff2LSXxu2BAiJVkNCtLJ24uW1LAJ8E6G8kXv&epi2=246201 | 54.93.126.123 | 200 OK | 303 B |
URL User Request GET HTTP/2clkde.tradedoubler.com/click?p=270172&a=3335102&g=0&epi=3CejOUnVtcff2LSXxu2BAiJVkNCtLJ24uW1LAJ8E6G8kXv&epi2=246201 IP54.93.126.123:443
CertificateIssuerAmazon Subject*.tradedoubler.com FingerprintE6:E6:D1:02:6C:9A:BE:00:C1:0E:B5:BC:61:D1:C1:FD:74:73:C4:9E ValidityWed, 06 Sep 2023 00:00:00 GMT - Sat, 05 Oct 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (303), with no line terminators Hash43eb0a1ba300ff2e9a9c336f68872040 25a2514bd62aa1bc0581b69d7e18fa76ccb9ad1e 9d4bff6ba8f558d2605ac68b6f64f55f2b136d898bb2261255c1894baaaa31f6
POST /click?p=270172&a=3335102&g=0&epi=3CejOUnVtcff2LSXxu2BAiJVkNCtLJ24uW1LAJ8E6G8kXv&epi2=246201 HTTP/1.1
Host: clkde.tradedoubler.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clkde.tradedoubler.com/
Content-Type: application/x-www-form-urlencoded
Content-Length: 43
Origin: https://clkde.tradedoubler.com
DNT: 1
Connection: keep-alive
Cookie: GUID=1z11zz16jz1gPAduz3916c5131ca322e702874ca5a94e93dd
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Thu, 25 Apr 2024 14:17:53 GMT
content-type: text/html; charset=ISO-8859-1
content-length: 303
location: https://na-kd.com/no/?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
set-cookie: EH_0=1z11z1z16jzVmp4Vz1F2qyaovIIFpyFj5RfV%79P0GF5qO%7aOqOc%79tp%7aBanqQMs_TUo.GQN9iaCYw%7aHBN%79.gYKp%7aEYuNcYi4j4tYuNpSjEdkM6TpquA.u_M26esQKxkfddZWoaTvK2oLDucs6IWf7OEdjC1vCkoQRpk;expires=Fri, 25-Apr-2025 14:17:53 GMT;path=/;domain=.tradedoubler.com
GUID=1z11zz16jz1gPAduz3916c5131ca322e702874ca5a94e93dd;expires=Fri, 25-Apr-2025 14:17:53 GMT;path=/;domain=.tradedoubler.com
server: TXServerHttp
access-control-allow-origin: https://clkde.tradedoubler.com
access-control-allow-credentials: true
vary: Origin
cache-control: private, max-age=0
pragma: no-cache
referrer-policy: origin
X-Firefox-Spdy: h2
|
|
| na-kd.com/no/?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO | 217.114.94.2 | 301 Moved Permanently | 0 B |
URL User Request GET HTTP/2na-kd.com/no/?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO IP217.114.94.2:443
CertificateIssuerCloudflare, Inc. Subjectna-kd.com Fingerprint0F:5B:FA:30:1C:38:2A:9F:22:7D:5F:38:64:CF:82:7E:4D:F1:F0:3B ValiditySat, 17 Jun 2023 00:00:00 GMT - Sun, 16 Jun 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /no/?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO HTTP/1.1
Host: na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clkde.tradedoubler.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Thu, 25 Apr 2024 14:17:53 GMT
content-length: 0
location: https://www.na-kd.com/no/?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
vary: Accept-Encoding
server: cloudflare
cf-ray: 879ef58f6bf256ca-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/no/?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO | 172.64.147.126 | 301 Moved Permanently | 230 B |
URL User Request GET HTTP/2www.na-kd.com/no/?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO IP172.64.147.126:443
CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash53a6c52c49a3f6af2a2b397850b20157 8c1645aa1596eedb7460bb571b6f5cf1c7d653e1 2e64bbeca1a704896190cb50ab515e28c36524f81e8b389b0e43b2e17a75ef1a
GET /no/?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clkde.tradedoubler.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Thu, 25 Apr 2024 14:17:54 GMT
content-type: text/html; charset=utf-8
content-length: 230
location: https://www.na-kd.com:443/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
cache-control: private, no-store
expires: Wed, 24 Apr 2024 14:17:54 GMT
set-cookie: TiPMix=13.858893623510971; path=/; HttpOnly; Domain=www.na-kd.com; Max-Age=3600; Secure; SameSite=None
x-ms-routing-name=self; path=/; HttpOnly; Domain=www.na-kd.com; Max-Age=3600; Secure; SameSite=None
Culture=nb-NO; expires=Mon, 25-Apr-2039 14:17:54 GMT; path=/; secure; SameSite=None
x-actual-url: %2fno%2f%3futm_source%3dtradedoubler_no%26utm_medium%3daffiliate%26utm_campaign%3dTakeads%2bGmbH%2bNO
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 879ef590afaf56b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/siteassets/startfeed/js/sf_mp4_player.js?ref=E3A9CD0EFD | 172.64.147.126 | 200 OK | 613 B |
URL GET HTTP/2www.na-kd.com/siteassets/startfeed/js/sf_mp4_player.js?ref=E3A9CD0EFD IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text Hashf2cd83b2251a50f9b38b959328cb23f7 2f649bbc8a1b4177890c870843835f1a1888faeb ae24036b9d0e1d8708306a3e640fadbc44638d7032ae5930f21480489488441c
GET /siteassets/startfeed/js/sf_mp4_player.js?ref=E3A9CD0EFD HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:54 GMT
content-type: application/x-javascript
content-length: 613
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
cache-control: public, max-age=17119424
content-encoding: gzip
etag: "1D91F447C6E9780"
expires: Sat, 09 Nov 2024 17:41:38 GMT
last-modified: Tue, 03 Jan 2023 07:24:59 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
x-actual-url: %2fsiteassets%2fstartfeed%2fjs%2fsf_mp4_player.js%3fref%3dE3A9CD0EFD
x-server-version: 83.2169.9345
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 12907657
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef593aa9c56b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/siteassets/startfeed/2024/04-april/23.04/responsive.css?ref=1FC2A854A5 | 172.64.147.126 | 200 OK | 3.6 kB |
URL GET HTTP/2www.na-kd.com/siteassets/startfeed/2024/04-april/23.04/responsive.css?ref=1FC2A854A5 IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
Hash5611acf1ac9e9573114e237f35b9e62c 09c7c3c09520836a730cbc49d066bdd5739472ab 9d7c35ebe18ce1eb8afd210b5b59fe733c11d7894e8e25cb3c91eb745807d7dd
GET /siteassets/startfeed/2024/04-april/23.04/responsive.css?ref=1FC2A854A5 HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:54 GMT
content-type: text/css
content-length: 3630
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
cache-control: public, max-age=31334158
content-encoding: gzip
etag: "1DA95456758B600"
expires: Wed, 23 Apr 2025 06:13:52 GMT
last-modified: Tue, 23 Apr 2024 06:13:48 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
x-actual-url: %2fsiteassets%2fstartfeed%2f2024%2f04-april%2f23.04%2fresponsive.css%3fref%3d1FC2A854A5
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 201749
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef593aa9456b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/siteassets/banners/2024/04-april/30-off-everything/banner/responsive.css?ref=63491A236F | 172.64.147.126 | 200 OK | 1.6 kB |
URL GET HTTP/2www.na-kd.com/siteassets/banners/2024/04-april/30-off-everything/banner/responsive.css?ref=63491A236F IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
Hash0534111e923447ab8e1fcfcc69ebb9e5 68f1145abed5f9318aa1872f6ae2a87c06b7ffe6 c88493e7eb737d0755e215c32709dec80e3bf9e42c0a62cd927da07d55996595
GET /siteassets/banners/2024/04-april/30-off-everything/banner/responsive.css?ref=63491A236F HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:54 GMT
content-type: text/css
content-length: 1591
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
cache-control: public, max-age=30659964
content-encoding: gzip
etag: "1DA8F23AE322480"
expires: Tue, 15 Apr 2025 10:57:18 GMT
last-modified: Mon, 15 Apr 2024 10:57:17 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
x-actual-url: %2fsiteassets%2fbanners%2f2024%2f04-april%2f30-off-everything%2fbanner%2fresponsive.css%3fref%3d63491A236F
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 876028
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef593ba9f56b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/siteassets/banners/2024/04-april/30-off-everything/countdown.js?ref=37B783882F | 172.64.147.126 | 200 OK | 1.2 kB |
URL GET HTTP/2www.na-kd.com/siteassets/banners/2024/04-april/30-off-everything/countdown.js?ref=37B783882F IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text Hashc771387289d2eaf5945dc6b06dc0a5b8 22ad7cb8ee11b51f078fbde1ad30dbc7a2bf914e be3dc46762cb369e5d319b81d2e0eb26b77f1462098e48a66749c18abd81d725
GET /siteassets/banners/2024/04-april/30-off-everything/countdown.js?ref=37B783882F HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:54 GMT
content-type: application/x-javascript
content-length: 1206
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
cache-control: public, max-age=30574920
content-encoding: gzip
etag: "1DA8E5DAC059280"
expires: Mon, 14 Apr 2025 11:19:54 GMT
last-modified: Sun, 14 Apr 2024 11:19:53 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
x-actual-url: %2fsiteassets%2fbanners%2f2024%2f04-april%2f30-off-everything%2fcountdown.js%3fref%3d37B783882F
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 961080
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef593baa356b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/browser.bundle.5d35aca87cfc63f352e5.css | 172.64.147.126 | 200 OK | 2.0 kB |
URL GET HTTP/2www.na-kd.com/assets/browser.bundle.5d35aca87cfc63f352e5.css IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeASCII text, with very long lines (4772) Hashdb79ab545652c3742af7e0b065f0c17c fa0b9d25f369c7f0b5ed227f01748cd8bdc2ae33 edccdb803281d98cbfcf2945d4b19f70309feccefc61d65f646a776a7d483967
GET /assets/browser.bundle.5d35aca87cfc63f352e5.css HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:54 GMT
content-type: text/css
content-length: 1989
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
x-actual-url: %2fassets%2fbrowser.bundle.5d35aca87cfc63f352e5.css
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931935
cache-control: public, max-age=2356854126
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef593bab856b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/105.chunk.2ce39eafdf5b543d08d2.css | 172.64.147.126 | 200 OK | 277 B |
URL GET HTTP/2www.na-kd.com/assets/105.chunk.2ce39eafdf5b543d08d2.css IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
Hash1708c8b5539980977cd5844406f5e742 c6c3bb71b6e5dd9d2293061d870d7b3843c61f71 8159b9b7f2e571e826c29f7c06b6660ed692f5cea01f27f008c49a23d3bd56a3
GET /assets/105.chunk.2ce39eafdf5b543d08d2.css HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:54 GMT
content-type: text/css
content-length: 277
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0d95e974979da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 18 Mar 2024 15:33:14 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
x-actual-url: %2fassets%2f105.chunk.2ce39eafdf5b543d08d2.css
x-server-version: 83.2301.9672
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 3137308
cache-control: public, max-age=2356854126
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef593bac456b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/128.chunk.b34d7948fcce67de3d78.css | 172.64.147.126 | 200 OK | 230 B |
URL GET HTTP/2www.na-kd.com/assets/128.chunk.b34d7948fcce67de3d78.css IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeASCII text, with very long lines (357) Hash3efe79ce83ff8e075084f8137d3cd876 0d84f3286f044877a1dda1ea54d0da6967789422 09ada3c60f6fda3dafd901d21205141a20163539dabdd1e6a3817860957ded14
GET /assets/128.chunk.b34d7948fcce67de3d78.css HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:54 GMT
content-type: text/css
content-length: 230
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0507d9abb55da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Fri, 02 Feb 2024 09:38:40 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
x-actual-url: %2fassets%2f128.chunk.b34d7948fcce67de3d78.css
x-server-version: 83.2256.9486
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 6766571
cache-control: public, max-age=2356854126
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef593bac556b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/30.chunk.21cf2fa3ff753fd59ea7.css | 172.64.147.126 | 200 OK | 210 B |
URL GET HTTP/2www.na-kd.com/assets/30.chunk.21cf2fa3ff753fd59ea7.css IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
Hash3936ebde2c6e45c6a523a29707c7d264 f6cda7d2ef234a974e284b753960a2832395e72b 5dd798101dde13e99a7b16c5f6d2ac6f660008fc6e79046c8e28b473cdc85336
GET /assets/30.chunk.21cf2fa3ff753fd59ea7.css HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:54 GMT
content-type: text/css
content-length: 210
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0cd453e221da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 28 Nov 2023 10:04:50 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
x-actual-url: %2fassets%2f30.chunk.21cf2fa3ff753fd59ea7.css
x-server-version: 83.2190.9373
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 12809756
cache-control: public, max-age=2356854126
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef593bac056b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/siteassets/startfeed/2021/css/animation-js.js?ref=52EA2C835C | 172.64.147.126 | 200 OK | 451 B |
URL GET HTTP/2www.na-kd.com/siteassets/startfeed/2021/css/animation-js.js?ref=52EA2C835C IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text Hash45664b6d93bf4bb6de0201787985276f cce167c4b4beb3796aa7bafda15988b0655a5f24 c4f7aa5ae1e310f3f1cc8d197046b0dda0aaf6e18ddf1343ecd41f289ab81b43
GET /siteassets/startfeed/2021/css/animation-js.js?ref=52EA2C835C HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:54 GMT
content-type: application/x-javascript
content-length: 451
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
cache-control: public, max-age=16386580
content-encoding: gzip
etag: "1D6DD27657A8680"
expires: Fri, 01 Nov 2024 06:07:34 GMT
last-modified: Mon, 28 Dec 2020 14:40:33 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
x-actual-url: %2fsiteassets%2fstartfeed%2f2021%2fcss%2fanimation-js.js%3fref%3d52EA2C835C
x-server-version: 83.2144.9290
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 13421200
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef593aa9756b4-OSL
X-Firefox-Spdy: h2
|
|
| use.typekit.net/pyf7mlb.css | 23.36.76.186 | 200 OK | 898 B |
URL GET HTTP/2use.typekit.net/pyf7mlb.css IP23.36.76.186:443 ASN#20940 Akamai International B.V.
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerDigiCert Inc Subjectuse.typekit.net Fingerprint15:AD:3F:8A:55:B7:BC:20:D8:70:5B:06:E0:D2:92:7C:BE:C6:E0:56 ValidityThu, 01 Feb 2024 00:00:00 GMT - Mon, 03 Mar 2025 23:59:59 GMT
File typeUnicode text, UTF-8 text, with very long lines (516) Hash29c0ef331593410d29072e1216427a4d 5f6a9c6975ce78641d895f95e2fcacfeb7c7829c 6400ce0607411a927fafe1b5d22a3945290f4cff47d0de2e755698482a4b97de
GET /pyf7mlb.css HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 898
date: Thu, 25 Apr 2024 14:17:54 GMT
X-Firefox-Spdy: h2
|
|
| app.usercentrics.eu/browser-ui/latest/loader.js | 35.190.14.188 | 200 OK | 8.1 kB |
URL GET HTTP/2app.usercentrics.eu/browser-ui/latest/loader.js IP35.190.14.188:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerGoogle Trust Services LLC Subjectapp.usercentrics.eu FingerprintD5:5D:9C:F8:B9:AC:2F:EC:92:B7:EF:9A:3A:DC:85:5E:69:60:DB:D5 ValidityFri, 05 Apr 2024 03:25:56 GMT - Thu, 04 Jul 2024 04:20:10 GMT
File typeJavaScript source, ASCII text, with very long lines (31540) Hasha9e3830c007795c5fadaf5bc4584430a f1248b6e16cb6b11867419147f02a3c88c44ecd9 628355afc2d7a7bc936446957f32d7ec783711f191d0900cc9bedc7c003119c2
GET /browser-ui/latest/loader.js HTTP/1.1
Host: app.usercentrics.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-guploader-uploadid: ABPtcPrsEAQLBBpoyxNI80aHLINVYKZgZrD71dqec5B6tobgx-ZoKFfGq4hF1dq_yST1Rd59Hg
x-goog-generation: 1712657587703923
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 8125
content-encoding: gzip
x-goog-hash: crc32c=3IX+HQ==, md5=QTj0Yb4389iRD+kNEbRzYg==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 8125
access-control-allow-origin: *
access-control-expose-headers: Content-Type,Content-Length,Transfer-Encoding
server: UploadServer
date: Thu, 25 Apr 2024 14:12:09 GMT
expires: Thu, 25 Apr 2024 15:12:09 GMT
cache-control: public, max-age=3600, no-transform
age: 345
last-modified: Tue, 09 Apr 2024 10:13:07 GMT
etag: "4138f461be37f3d8910fe90d11b47362"
content-type: text/javascript
strict-transport-security: max-age=7776000
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| p.typekit.net/p.css?s=1&k=pyf7mlb&ht=tk&f=139.140.169.173.174.175.176.5474&a=87176020&app=typekit&e=css | 23.36.76.184 | 200 OK | 5 B |
URL GET HTTP/2p.typekit.net/p.css?s=1&k=pyf7mlb&ht=tk&f=139.140.169.173.174.175.176.5474&a=87176020&app=typekit&e=css IP23.36.76.184:443 ASN#20940 Akamai International B.V.
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerDigiCert Inc Subjectuse.typekit.net Fingerprint15:AD:3F:8A:55:B7:BC:20:D8:70:5B:06:E0:D2:92:7C:BE:C6:E0:56 ValidityThu, 01 Feb 2024 00:00:00 GMT - Mon, 03 Mar 2025 23:59:59 GMT
Hash83d24d4b43cc7eef2b61e66c95f3d158 f0cafc285ee23bb6c28c5166f305493c4331c84d 1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb
GET /p.css?s=1&k=pyf7mlb&ht=tk&f=139.140.169.173.174.175.176.5474&a=87176020&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css
content-length: 5
last-modified: Tue, 07 Mar 2023 19:56:00 GMT
etag: "640796d0-5"
cache-control: public, max-age=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Thu, 25 Apr 2024 14:17:54 GMT
X-Firefox-Spdy: h2
|
|
| clcktrck.com/NO/s/red_u_plain.php?t=direct&s=453&d=https%3A%2F%2Fna-kd.com&pub=LB00003604&sub=3604_nakdcpcno_1_CPAGpo&uid=lb_41ofi52 | 3.68.5.1 | | 32 kB |
URL clcktrck.com/NO/s/red_u_plain.php?t=direct&s=453&d=https%3A%2F%2Fna-kd.com&pub=LB00003604&sub=3604_nakdcpcno_1_CPAGpo&uid=lb_41ofi52 IP3.68.5.1:0
Hash7c032ce86b3d39d9a7dd56f38fa54dd6 5a1a7fe424be798db944d0847107abc1184e0d87 861e2c0f1b286ecd4bd10f0f3ee3d8501c0dcbef05891e80bed8f10735b32397
GET /NO/s/red_u_plain.php?t=direct&s=453&d=https%3A%2F%2Fna-kd.com&pub=LB00003604&sub=3604_nakdcpcno_1_CPAGpo&uid=lb_41ofi52 HTTP/1.1
Host: clcktrck.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkbux.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
content-type: text/html; charset=UTF-8
location: https://clcktrck.com/3340b07f6352b061e0908fa0e76668dc/24be45420d78766b5aec34489d70625edb21466237bbbebacb0c1095511faf21f54c8339e232d66955ca115d5af11eb89ba82b13102c95b917c1838d55dc4f17e3d841d814bc1d8a11174b3eb8eb58a1c17b122619f1e9db0a7779f6682d649c9d2b2769efde48e5f5f396cb271e69d6
referrer-policy: origin
date: Thu, 25 Apr 2024 14:17:51 GMT
pragma: no-cache
cache-control: no-cache, private, max-age=0, no-cache, no-store, must-revalidate
expires: Thu, 1 Jan 1970 00:00:00 GMT
X-Firefox-Spdy: h2
|
|
| use.typekit.net/af/efe4a5/00000000000000007735e609/30/l?primer=3569ea2f7b7e0cfe53d24d1a326acf279d1b715ca67e789775350bc602cbb2ab&fvd=n4&v=3 | 23.36.76.186 | 200 OK | 30 kB |
URL GET HTTP/2use.typekit.net/af/efe4a5/00000000000000007735e609/30/l?primer=3569ea2f7b7e0cfe53d24d1a326acf279d1b715ca67e789775350bc602cbb2ab&fvd=n4&v=3 IP23.36.76.186:443 ASN#20940 Akamai International B.V.
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerDigiCert Inc Subjectuse.typekit.net Fingerprint15:AD:3F:8A:55:B7:BC:20:D8:70:5B:06:E0:D2:92:7C:BE:C6:E0:56 ValidityThu, 01 Feb 2024 00:00:00 GMT - Mon, 03 Mar 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), CFF, length 30344, version 1.0 Hash10569b34a950741dd17c798abc875d64 ecd45e219097ec2c8e7b376a59383985d0806cc4 b7a9c99db0a4bc5c003dad968db85e9da8c6e77d5fc7104a0ac00095d741f059
GET /af/efe4a5/00000000000000007735e609/30/l?primer=3569ea2f7b7e0cfe53d24d1a326acf279d1b715ca67e789775350bc602cbb2ab&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 30344
etag: "f2ef0c7bde2e822722e4644fe36f17f8ded799e4"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Thu, 25 Apr 2024 14:17:54 GMT
X-Firefox-Spdy: h2
|
|
| app.usercentrics.eu/browser-ui/3.41.0/index.module.js | 35.190.14.188 | 200 OK | 106 kB |
URL GET HTTP/2app.usercentrics.eu/browser-ui/3.41.0/index.module.js IP35.190.14.188:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerGoogle Trust Services LLC Subjectapp.usercentrics.eu FingerprintD5:5D:9C:F8:B9:AC:2F:EC:92:B7:EF:9A:3A:DC:85:5E:69:60:DB:D5 ValidityFri, 05 Apr 2024 03:25:56 GMT - Thu, 04 Jul 2024 04:20:10 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size106 kB (105950 bytes) Hashe25e01c734bafe5d5c3ba6dacaece31a 05406f282258efcaca12bc2fdd60740bd2152e04 02272840917ae04b26f4d743aa6786a702cec83dbcdebb8661e5ff2a5cb7ae8f
GET /browser-ui/3.41.0/index.module.js HTTP/1.1
Host: app.usercentrics.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-guploader-uploadid: ABPtcPrz70QjbgZPl-dqs8ibXwy9PtXph76t5buimsZD8QjXm7yo0lOxt74PAJoSIh-pZDhLA5U
x-goog-generation: 1712657567113351
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 105950
content-encoding: gzip
x-goog-hash: crc32c=STV0Dg==, md5=+2632AHSwAxdaHrA9VfonA==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 105950
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Tue, 09 Apr 2024 10:17:05 GMT
expires: Wed, 09 Apr 2025 10:17:05 GMT
cache-control: public, max-age=31536000, no-transform
last-modified: Tue, 09 Apr 2024 10:12:47 GMT
etag: "fb6eb7d801d2c00c5d687ac0f557e89c"
content-type: text/javascript
age: 1396849
strict-transport-security: max-age=7776000
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-W9RJXK5 | 142.250.74.168 | 200 OK | 141 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-W9RJXK5 IP142.250.74.168:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (63526) Size141 kB (140582 bytes) Hash04e0f8197f60bf657ccf91a745faa604 131997925032297e7aa36e349e5265c79551aee3 84c4674eb587a9ac813a65629e9cb66c1cf0226d2184ac4a47008627031ab697
GET /gtm.js?id=GTM-W9RJXK5 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 14:17:54 GMT
expires: Thu, 25 Apr 2024 14:17:54 GMT
cache-control: private, max-age=900
last-modified: Thu, 25 Apr 2024 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 140582
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| api.usercentrics.eu/settings/Jq_Vycyzq/latest/languages.json | 35.241.3.184 | 200 OK | 0 B |
URL GET HTTP/3api.usercentrics.eu/settings/Jq_Vycyzq/latest/languages.json IP35.241.3.184:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerGoogle Trust Services LLC Subjectapi.usercentrics.eu FingerprintD7:F1:2D:F8:F0:A0:80:5C:7E:36:A8:14:72:62:BE:5F:0D:B6:61:13 ValidityWed, 03 Apr 2024 12:18:35 GMT - Tue, 02 Jul 2024 13:12:28 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /settings/Jq_Vycyzq/latest/languages.json HTTP/1.1
Host: api.usercentrics.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.na-kd.com/
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-guploader-uploadid: ABPtcPqrvzzcU8Y2qA7O1Gr56GqKi56cSwjCkgXAwWFLhNYFlpNoICDvKPIYeCEK0Ug0xTCjkLZzpm6kIA
access-control-allow-origin: *
access-control-max-age: 3600
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE
access-control-allow-headers: content-type
date: Thu, 25 Apr 2024 14:17:54 GMT
expires: Thu, 25 Apr 2024 14:17:54 GMT
cache-control: private, max-age=0
content-length: 0
server: UploadServer
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=7776000
x-client-geo-location: NO,NO03
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| api.usercentrics.eu/settings/Jq_Vycyzq/latest/languages.json | 35.241.3.184 | 200 OK | 82 B |
URL GET HTTP/3api.usercentrics.eu/settings/Jq_Vycyzq/latest/languages.json IP35.241.3.184:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerGoogle Trust Services LLC Subjectapi.usercentrics.eu FingerprintD7:F1:2D:F8:F0:A0:80:5C:7E:36:A8:14:72:62:BE:5F:0D:B6:61:13 ValidityWed, 03 Apr 2024 12:18:35 GMT - Tue, 02 Jul 2024 13:12:28 GMT
Hash50e4be9d62b4ad04e1f6a39dbede80cd 06c9b0a2c473bd50f96307104471bb537b9cd450 73c53f8f6d87773e070db9a633d1d789bd0122adfd88f6e1effad1ed5aa3a234
GET /settings/Jq_Vycyzq/latest/languages.json HTTP/1.1
Host: api.usercentrics.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.na-kd.com/
content-type: application/json
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ABPtcPretjXkFC0jXVSGe_3SlYO049yn00q2QO9ggZ9xG5YY82IyGODDQqcUsCNx-acw9dXVRNs
x-goog-generation: 1714052327623536
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 82
content-encoding: gzip
x-goog-hash: crc32c=92zZKA==, md5=2YdETwD9oIbDKBsoGNhHVA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 82
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 25 Apr 2024 14:17:41 GMT
expires: Thu, 25 Apr 2024 14:18:41 GMT
cache-control: public, max-age=1800, s-maxage=60
age: 13
last-modified: Thu, 25 Apr 2024 13:38:47 GMT
etag: "d987444f00fda086c3281b2818d84754"
content-type: application/json
vary: Accept-Encoding
strict-transport-security: max-age=7776000
x-client-geo-location: NO,NO03
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| api.usercentrics.eu/settings/Jq_Vycyzq/latest/nb.json | 35.241.3.184 | 403 Forbidden | 0 B |
URL GET HTTP/3api.usercentrics.eu/settings/Jq_Vycyzq/latest/nb.json IP35.241.3.184:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerGoogle Trust Services LLC Subjectapi.usercentrics.eu FingerprintD7:F1:2D:F8:F0:A0:80:5C:7E:36:A8:14:72:62:BE:5F:0D:B6:61:13 ValidityWed, 03 Apr 2024 12:18:35 GMT - Tue, 02 Jul 2024 13:12:28 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /settings/Jq_Vycyzq/latest/nb.json HTTP/1.1
Host: api.usercentrics.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.na-kd.com/
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ABPtcPqKAKVnMUpaHjSf796Gz1a5FuTFfc-vM0AoEvJkrNbBtKnf6wsswC735EDfdPotCD02hSw
access-control-allow-origin: *
access-control-max-age: 3600
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE
access-control-allow-headers: content-type
date: Thu, 25 Apr 2024 14:17:55 GMT
expires: Thu, 25 Apr 2024 14:17:55 GMT
cache-control: private, max-age=0
content-length: 0
server: UploadServer
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=7776000
x-client-geo-location: NO,NO03
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-T2PZBXXXXX&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 80 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-T2PZBXXXXX&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (1763) Hashff4ec26e09095dfd67b97e7d64854455 e57d24d1d4a025e8070d00aa498f89585363f323 e8eb5e352aafd38ba6ac8807a7b577ee777ecb3d2f6eed7058b37efadb2d1db0
GET /gtag/js?id=G-T2PZBXXXXX&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 14:17:55 GMT
expires: Thu, 25 Apr 2024 14:17:55 GMT
cache-control: private, max-age=900
last-modified: Thu, 25 Apr 2024 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80445
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.googletagmanager.com/gtag/destination?id=AW-945266297&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 81 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/destination?id=AW-945266297&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (4179) Hash96a8d884fc64fa3a9c157797c309dd77 1f0336005164e1f0d9e12408c628ed8d9cec0feb 8977e5f109b3ffbe5868c497aede1efd527bbad1e0cf14250d9f55f05dcd4c38
GET /gtag/destination?id=AW-945266297&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 14:17:55 GMT
expires: Thu, 25 Apr 2024 14:17:55 GMT
cache-control: private, max-age=900
last-modified: Thu, 25 Apr 2024 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80758
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| api.usercentrics.eu/settings/Jq_Vycyzq/latest/nb.json | 35.241.3.184 | 403 Forbidden | 111 B |
URL GET HTTP/3api.usercentrics.eu/settings/Jq_Vycyzq/latest/nb.json IP35.241.3.184:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerGoogle Trust Services LLC Subjectapi.usercentrics.eu FingerprintD7:F1:2D:F8:F0:A0:80:5C:7E:36:A8:14:72:62:BE:5F:0D:B6:61:13 ValidityWed, 03 Apr 2024 12:18:35 GMT - Tue, 02 Jul 2024 13:12:28 GMT
File typeXML 1.0 document, ASCII text, with no line terminators Hashe7a9350210b4dba641f6020447c96045 581accef4a8b7fbed97291fe7dd4e113f794ec80 08142330655deb1526dcc56795c92eb5c13012f75b599d5ac68db4027953ed80
GET /settings/Jq_Vycyzq/latest/nb.json HTTP/1.1
Host: api.usercentrics.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.na-kd.com/
content-type: application/json
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 403 Forbidden
x-guploader-uploadid: ABPtcPoliH0nKjfxgjXRqh3KABvxILxnVDPIvMwmRNZnhtFlchdlD_N7MHhHjixYmZdKC5QF7gw
content-type: application/xml; charset=UTF-8
content-length: 111
access-control-allow-origin: *
access-control-expose-headers: *, Cache-Control, Content-Length, Date, Expires, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
date: Thu, 25 Apr 2024 14:17:55 GMT
expires: Thu, 25 Apr 2024 14:17:55 GMT
cache-control: private, max-age=0
server: UploadServer
strict-transport-security: max-age=7776000
x-client-geo-location: NO,NO03
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.googletagmanager.com/gtag/destination?id=DC-11601346&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 75 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/destination?id=DC-11601346&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (4189) Hash6f15619355e97ebb8c2096fb696bd7fe a370ca7ba521cdbc1ee0314fa969d22dd8f7c214 5d9425caeddf96c1693d11789840fc1d57ad12eba30d696a30983f41bd8bcdb4
GET /gtag/destination?id=DC-11601346&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 14:17:55 GMT
expires: Thu, 25 Apr 2024 14:17:55 GMT
cache-control: private, max-age=900
last-modified: Thu, 25 Apr 2024 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 75335
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.na-kd.com/assets/127.chunk.26b70b618fbaf0da34a9.js | 172.64.147.126 | 200 OK | 5.6 kB |
URL GET HTTP/2www.na-kd.com/assets/127.chunk.26b70b618fbaf0da34a9.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (13590) Hash00bafea11dfd14edafb85f602c407e2e bc3c824d29d0f5c447b27a52826e0056e001be62 5c90a52154d5e8d96a59a922c597cea17888ec9ee7baeebf64b50fd034cb9502
GET /assets/127.chunk.26b70b618fbaf0da34a9.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
content-length: 5629
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f127.chunk.26b70b618fbaf0da34a9.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931936
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef5976dfe56b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/1.chunk.29b1c12dbda84665fed8.js | 172.64.147.126 | 200 OK | 688 B |
URL GET HTTP/2www.na-kd.com/assets/1.chunk.29b1c12dbda84665fed8.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (895) Hash45258951fd39ba609f126188795b134a f8f515e764a3d42c7a63b6152c94a9c9e022d46d 875abd2759b59daf2ba237c2d463129dba33293bacab3499c94bec3c8abed427
GET /assets/1.chunk.29b1c12dbda84665fed8.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
content-length: 688
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f1.chunk.29b1c12dbda84665fed8.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931936
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef5976dfc56b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/2.chunk.c3a5c4213d9fc2e39c45.js | 172.64.147.126 | 200 OK | 3.8 kB |
URL GET HTTP/2www.na-kd.com/assets/2.chunk.c3a5c4213d9fc2e39c45.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (8336) Hash8d32513bce4b9b642c66fffb2dce20bd 1a202cd3c2eda337d6c130874d7f3f18ec6e2b7b bef0622cd17559dc786b3877ec47ab717da832aa18d853df2d5bac0ec615f712
GET /assets/2.chunk.c3a5c4213d9fc2e39c45.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
content-length: 3791
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f2.chunk.c3a5c4213d9fc2e39c45.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931936
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef5976dfd56b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO | 172.64.147.126 | 200 OK | 116 kB |
URL User Request GET HTTP/2www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO IP172.64.147.126:443
CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (51086), with CRLF, LF line terminators Size116 kB (116081 bytes) Hash626e0259a1e2c1ada189b1a13af4d17a f0dcf51fc1a5ceb563938565a0dcc3cdc9c74294 e6b6aba4ae0af3109514c9e2ece68d1c7616619f95fa683dffe7cb70f40ddf1e
GET /no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clkde.tradedoubler.com/
DNT: 1
Connection: keep-alive
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:54 GMT
content-type: text/html; charset=utf-8
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
expires: -1
pragma: no-cache
set-cookie: .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; expires=Thu, 04-Jul-2024 00:57:54 GMT; path=/; secure; HttpOnly; SameSite=None
EPi:StateMarker=true; path=/
CountryCode=NOR; expires=Mon, 25-Apr-2039 14:17:54 GMT; path=/; secure; SameSite=None
OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; expires=Fri, 25-Apr-2025 14:17:54 GMT; path=/; SameSite=Lax
__XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; path=/; secure; HttpOnly; SameSite=None
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
x-actual-url: %2fno%3futm_source%3dtradedoubler_no%26utm_medium%3daffiliate%26utm_campaign%3dTakeads%2bGmbH%2bNO
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 879ef591382156b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/40.chunk.36f1eb33341df6622f04.js | 172.64.147.126 | 200 OK | 851 B |
URL GET HTTP/2www.na-kd.com/assets/40.chunk.36f1eb33341df6622f04.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (1172) Hash3b08e98831306f507048524a95cb25a0 d8b43f6837831ccaf7e936c81c236844eb14a139 dc89b2729e8d1d920aa29d3c0fdcbbf1fcba7b7add1829e59dc79235568e072b
GET /assets/40.chunk.36f1eb33341df6622f04.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
content-length: 851
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0d95e974979da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 18 Mar 2024 15:33:14 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f40.chunk.36f1eb33341df6622f04.js
x-server-version: 83.2301.9672
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 3137317
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef597be3256b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/22.chunk.df5b936b092ceb4c9b7a.js | 172.64.147.126 | 200 OK | 479 B |
URL GET HTTP/2www.na-kd.com/assets/22.chunk.df5b936b092ceb4c9b7a.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (388) Hash48a9b499add9171f07681906e75c4b52 c20da8ab09cdcdee0bcdd705fc3d74fad4764c77 a867e1e0b253c50be9bd1312431752f6dbe9e5126a59b2a0534fd440f317698e
GET /assets/22.chunk.df5b936b092ceb4c9b7a.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
content-length: 479
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0d95e974979da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 18 Mar 2024 15:33:14 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f22.chunk.df5b936b092ceb4c9b7a.js
x-server-version: 83.2301.9672
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 3137317
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef597be3556b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/11.chunk.7d98ef82edbf89a2b85c.js | 172.64.147.126 | 200 OK | 1.0 kB |
URL GET HTTP/2www.na-kd.com/assets/11.chunk.7d98ef82edbf89a2b85c.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (1183) Hashc6a2d265055735d9b0b4f28160f4d8da 9ae0b46316093bbaa0a8c49b6491a2a2b6db1e75 5e630247d174004c5afa600210133a37c10e2970158776d83c169fd433765372
GET /assets/11.chunk.7d98ef82edbf89a2b85c.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
content-length: 1011
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f11.chunk.7d98ef82edbf89a2b85c.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931936
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef597be3356b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/57.chunk.49fa9d9271c1354154b4.js | 172.64.147.126 | 200 OK | 2.0 kB |
URL GET HTTP/2www.na-kd.com/assets/57.chunk.49fa9d9271c1354154b4.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (3919) Hash6ca101c715ac8a15ffd336f3a41b2034 2844eb1502e18837852bd7133353a9bcc1cdc5d4 479f53f4d093a1f3acdb8000385ef298aa997e24e58463853d6e683475a468ec
GET /assets/57.chunk.49fa9d9271c1354154b4.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
content-length: 2035
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f57.chunk.49fa9d9271c1354154b4.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 202628
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef597be3b56b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/245.chunk.2edf77bb632b715f2fa3.js | 172.64.147.126 | 200 OK | 3.0 kB |
URL GET HTTP/2www.na-kd.com/assets/245.chunk.2edf77bb632b715f2fa3.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (8772) Hash5c62d2deef184678acf4f3c3fb672312 8cb95e688460fc055efac962459fab59f263512b cae8ac01db5942e4f67fc390091c626cbfb77a27a84b5dacea3cde84039ad4fe
GET /assets/245.chunk.2edf77bb632b715f2fa3.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
content-length: 3015
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f245.chunk.2edf77bb632b715f2fa3.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931936
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef597be3656b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/siteassets/startfeed/css/sf-styles-220424-transition.css?ref=89EE5587DB | 172.64.147.126 | 200 OK | 11 kB |
URL GET HTTP/2www.na-kd.com/siteassets/startfeed/css/sf-styles-220424-transition.css?ref=89EE5587DB IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
Hash2db2891cd230ff64aeb3637cdf2b883b 4e767edf9a74aa2aeac312d61c88ec1968d56088 64905ab6bd3312a62b88cb38731c08bf8916b362a9978edc38ee9c04fdb551c9
GET /siteassets/startfeed/css/sf-styles-220424-transition.css?ref=89EE5587DB HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:54 GMT
content-type: text/css
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
cache-control: public, max-age=31333368
content-encoding: gzip
etag: "1DA94BDD25EAA00"
expires: Wed, 23 Apr 2025 06:00:42 GMT
last-modified: Mon, 22 Apr 2024 14:03:16 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-actual-url: %2fsiteassets%2fstartfeed%2fcss%2fsf-styles-220424-transition.css%3fref%3d89EE5587DB
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 202626
server: cloudflare
cf-ray: 879ef593aa8f56b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/232.chunk.4d2280315a6e5e868007.js | 172.64.147.126 | 200 OK | 1.2 kB |
URL GET HTTP/2www.na-kd.com/assets/232.chunk.4d2280315a6e5e868007.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (1883) Hash7edaa7000cacbdb39ae98234edaf5eb1 a2175ba4384b0fda2eae6462f7cca9822d6d1bd6 1114769c050fc2def2859939de0a9786dfb5d2a14e36d9efa7f1afd2f6ba45cc
GET /assets/232.chunk.4d2280315a6e5e868007.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
content-length: 1161
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f232.chunk.4d2280315a6e5e868007.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 202628
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef5981e8956b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/241.chunk.e8b976665306016c4f49.js | 172.64.147.126 | 200 OK | 959 B |
URL GET HTTP/2www.na-kd.com/assets/241.chunk.e8b976665306016c4f49.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (1431) Hash436e3c43aeda5bfb1eaa66b2aedf9ead dd6fedd4b4a76ef74055d575a6475375a5d2a9a9 b049cebff8268b84e86e3ea0c3b7277020bebe8d248b4386172d26f5d35380f2
GET /assets/241.chunk.e8b976665306016c4f49.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
content-length: 959
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0d95e974979da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 18 Mar 2024 15:33:14 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f241.chunk.e8b976665306016c4f49.js
x-server-version: 83.2301.9672
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 3137317
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef5981e8d56b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/266.chunk.073af26c67547119fcfc.js | 172.64.147.126 | 200 OK | 1.1 kB |
URL GET HTTP/2www.na-kd.com/assets/266.chunk.073af26c67547119fcfc.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (1371) Hash5643cbb31bc9e764dde0fbd871775ac3 5b87dd3e76fbd63437ae62cf6a96a2e05c64cdbe fcd44c809c1decf4d7c1b2a5ae867e96876423103ebb91a7a588373405a23d37
GET /assets/266.chunk.073af26c67547119fcfc.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
content-length: 1080
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f266.chunk.073af26c67547119fcfc.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931918
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef5981e8b56b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/56.chunk.18188170225d30a20ec9.js | 172.64.147.126 | 200 OK | 1.3 kB |
URL GET HTTP/2www.na-kd.com/assets/56.chunk.18188170225d30a20ec9.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (2154) Hasha288e35d1843060219ad7a74b0c1527d 5d150cea390cfbde59792d085aba5c10acd96396 01f15927109e6c92fc93252106738672f915360f8d8399fc19623b80fe4914e7
GET /assets/56.chunk.18188170225d30a20ec9.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
content-length: 1279
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f56.chunk.18188170225d30a20ec9.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931936
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef5981e9056b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/0.chunk.91ce1ceaec0b7c272a75.js | 172.64.147.126 | 200 OK | 569 B |
URL GET HTTP/2www.na-kd.com/assets/0.chunk.91ce1ceaec0b7c272a75.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (660) Hash2882e2ee32b8ae044de1e4443250a48d b49bbad8d2b86a8121a3bbd484f76e0dbf0ce2ef f961ef32bd0f5bfc33ffcb1d2bf7b578367d6fd9d39158058db959ba58a29c38
GET /assets/0.chunk.91ce1ceaec0b7c272a75.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
content-length: 569
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f0.chunk.91ce1ceaec0b7c272a75.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931936
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef5981e9256b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/246.chunk.d8e1b2562c717bff8db9.js | 172.64.147.126 | 200 OK | 2.8 kB |
URL GET HTTP/2www.na-kd.com/assets/246.chunk.d8e1b2562c717bff8db9.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (6513) Hash5e0aa1638c05bb5646ff6955f73b03dd 16ac40ad88f84443c2b8d5ce068464500e67bb4c 1fcbf86f91026bccd6b255d3082d0f215f4d1e5af5752136ee25fe8b2290953e
GET /assets/246.chunk.d8e1b2562c717bff8db9.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
content-length: 2827
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f246.chunk.d8e1b2562c717bff8db9.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931936
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef5981e8c56b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/231.chunk.30bd6ca01f52a3e7aa85.js | 172.64.147.126 | 200 OK | 681 B |
URL GET HTTP/2www.na-kd.com/assets/231.chunk.30bd6ca01f52a3e7aa85.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (686) Hash3fa7384700c417828a9147bb2f201149 a8bb5d0b8154605716b8e98db38d277333c0e8e6 478793940370b3b68ebdf23d86b4b0827045c914c8fd79dc86c05119596c1d0f
GET /assets/231.chunk.30bd6ca01f52a3e7aa85.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
content-length: 681
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f231.chunk.30bd6ca01f52a3e7aa85.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 202628
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef5981e8a56b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/34.chunk.453a07e4c0ea480b55d5.js | 172.64.147.126 | 200 OK | 522 B |
URL GET HTTP/2www.na-kd.com/assets/34.chunk.453a07e4c0ea480b55d5.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (483) Hashc04065de6e14dd2a4010f954a619b39f c8e9dad8a5bff64ba94312f5756bbadc830f7d12 27b53a9c34071782a1b0dc12b7a25b2129a73a472e83fd4d82a3af0f61f50496
GET /assets/34.chunk.453a07e4c0ea480b55d5.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
content-length: 522
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f34.chunk.453a07e4c0ea480b55d5.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931936
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef5981e9456b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/20.chunk.d19f2ec642659b88cf8b.js | 172.64.147.126 | 200 OK | 556 B |
URL GET HTTP/2www.na-kd.com/assets/20.chunk.d19f2ec642659b88cf8b.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (788) Hasha3644e423b9826db3290daac4392099c 3eecde3c6a6530953b17cb4b2a8177557cc20765 d7f9be56790fe4e7e83be86b84582f1b00af8f4f2641d89b5d3daa0b091df7e7
GET /assets/20.chunk.d19f2ec642659b88cf8b.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
content-length: 556
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0d95e974979da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 18 Mar 2024 15:33:14 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f20.chunk.d19f2ec642659b88cf8b.js
x-server-version: 83.2301.9672
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 3137317
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef5981e8f56b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/184.chunk.e02ef158502ac0f65bdc.js | 172.64.147.126 | 200 OK | 2.4 kB |
URL GET HTTP/2www.na-kd.com/assets/184.chunk.e02ef158502ac0f65bdc.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (5804) Hash07d597c10c23a50633206ed572c6478a 423b92b05aee7b964b6964f2d923cfea3a51adea 0718b9f066490a236346c0396e7cbcb3342112256ef940774444086b731f8ece
GET /assets/184.chunk.e02ef158502ac0f65bdc.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
content-length: 2406
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0d95e974979da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 18 Mar 2024 15:33:14 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f184.chunk.e02ef158502ac0f65bdc.js
x-server-version: 83.2301.9672
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 3137317
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef5981e9156b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/252.chunk.1ec241a0c1966b7de7bf.js | 172.64.147.126 | 200 OK | 541 B |
URL GET HTTP/2www.na-kd.com/assets/252.chunk.1ec241a0c1966b7de7bf.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (490) Hashd4478d5f821d72ca177e178e7917b72a b1d4edbb513f1e2bed849d7aa34cf7ede95460ff f3612838409e8ed6b2df5253d23fdd243538cd2ac2a53395ffac83bd4965c854
GET /assets/252.chunk.1ec241a0c1966b7de7bf.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
content-length: 541
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f252.chunk.1ec241a0c1966b7de7bf.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931936
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef5981ea256b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/browser.bundle.26602a7df7698771c842.js | 172.64.147.126 | 200 OK | 259 kB |
URL GET HTTP/2www.na-kd.com/assets/browser.bundle.26602a7df7698771c842.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (65443) Size259 kB (258733 bytes) Hash428f2e4951a9cc0451b13e8278ba0b73 2e84fff79b547fa54898423c2e377174c349cf93 5755f34227fceb962c644eef7bbbaa5b05442056662d6983e99690d3e6d85492
GET /assets/browser.bundle.26602a7df7698771c842.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:54 GMT
content-type: application/x-javascript
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0c5ae5785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:12 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2fbrowser.bundle.26602a7df7698771c842.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931935
cache-control: public, max-age=2356854126
server: cloudflare
cf-ray: 879ef593cac656b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/243.chunk.ec57255adcd0d02a8a3a.js | 172.64.147.126 | 200 OK | 1.6 kB |
URL GET HTTP/2www.na-kd.com/assets/243.chunk.ec57255adcd0d02a8a3a.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (5668) Hashf8df63ecb359764c30f7137163890f30 25bfa091d204ab5760124fceb9268b42b43cf667 7c0ec997a8448c39f3170061b4ec73b07a6c5dafc3b4defe63c5461b66713a30
GET /assets/243.chunk.ec57255adcd0d02a8a3a.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
content-length: 1610
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f243.chunk.ec57255adcd0d02a8a3a.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931936
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef5981ea156b4-OSL
X-Firefox-Spdy: h2
|
|
| api.usercentrics.eu/settings/Jq_Vycyzq/latest/languages.json | 35.241.3.184 | 200 OK | 0 B |
URL GET HTTP/3api.usercentrics.eu/settings/Jq_Vycyzq/latest/languages.json IP35.241.3.184:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerGoogle Trust Services LLC Subjectapi.usercentrics.eu FingerprintD7:F1:2D:F8:F0:A0:80:5C:7E:36:A8:14:72:62:BE:5F:0D:B6:61:13 ValidityWed, 03 Apr 2024 12:18:35 GMT - Tue, 02 Jul 2024 13:12:28 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /settings/Jq_Vycyzq/latest/languages.json HTTP/1.1
Host: api.usercentrics.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.na-kd.com/
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
x-guploader-uploadid: ABPtcPptFab1YpEJ0I2JwSfJhGuRiIlTUV8etSfJaGLAIoVq50zPPINyK-r18TQ89kYu90DKRTwH0AAkQA
access-control-allow-origin: *
access-control-max-age: 3600
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE
access-control-allow-headers: content-type
date: Thu, 25 Apr 2024 14:17:55 GMT
expires: Thu, 25 Apr 2024 14:17:55 GMT
cache-control: private, max-age=0
content-length: 0
server: UploadServer
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=7776000
x-client-geo-location: NO,NO03
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| sc-static.net/scevent.min.js | 54.230.82.240 | 200 OK | 19 kB |
URL GET HTTP/2sc-static.net/scevent.min.js IP54.230.82.240:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerAmazon Subjectsc-static.net FingerprintE4:8A:DF:2D:95:33:E5:93:D4:43:8A:14:06:EA:EA:E8:AD:29:20:0F ValidityThu, 21 Dec 2023 00:00:00 GMT - Sat, 18 Jan 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (28360) Hashb63285518f1bc28f01cfe8bfb4e6ca47 850cf5957261d3d7bc5484797f5ea6f32630f52f dac99c71e943d58b4fac29e7bed45da2fc55ceec4d6627ecce863dec95a520aa
GET /scevent.min.js HTTP/1.1
Host: sc-static.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 19396
server: CloudFront
date: Thu, 25 Apr 2024 14:17:55 GMT
access-control-allow-headers: Content-Type
access-control-allow-origin: *
content-encoding: gzip
cache-control: private, s-maxage=0, max-age=600
set-cookie: X-AB=24b5be485c2747719f2dadcc8288a94b;max-age=86400;expires=Fri, 26 Apr 2024 14:17:55 GMT;Path=/scevent.min.js;Secure;SameSite=None
x-cache: Miss from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: o3wN-YS3H28ebIon8zEIPqNNji_SfNvS2YFiy_HYQSS4s26VhwaFzQ==
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/13.chunk.e885be13a39152f584ac.js | 172.64.147.126 | 200 OK | 2.9 kB |
URL GET HTTP/2www.na-kd.com/assets/13.chunk.e885be13a39152f584ac.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (6399) Hash9758ddeb8676369856799856664c647f 91e30a21b3bab93c61c97c4167b45e099be9bae8 667de20c6133dd868dbc842cf9e8433ceeef7dce864afd6e82fad7760fa9af9e
GET /assets/13.chunk.e885be13a39152f584ac.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
content-length: 2905
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f13.chunk.e885be13a39152f584ac.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931936
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef5982eb056b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/255.chunk.68dc1a1e72814572c5e5.js | 172.64.147.126 | 200 OK | 1.7 kB |
URL GET HTTP/2www.na-kd.com/assets/255.chunk.68dc1a1e72814572c5e5.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (2834) Hash6007eca41ed7d555bce4cbb02714d4ed 4c987ce28437ca3d7b0c6fd6386d0a8ca13003f0 47472649339e3bfb244a35afaa7288d8ae8af39204bab2fb7841b85da9a009f9
GET /assets/255.chunk.68dc1a1e72814572c5e5.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
content-length: 1696
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0d95e974979da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Mon, 18 Mar 2024 15:33:14 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f255.chunk.68dc1a1e72814572c5e5.js
x-server-version: 83.2301.9672
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 3137317
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef5982ead56b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/253.chunk.6956d3c5d429dadc2940.js | 172.64.147.126 | 200 OK | 883 B |
URL GET HTTP/2www.na-kd.com/assets/253.chunk.6956d3c5d429dadc2940.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (1198) Hashd0c4487aab3264175171427ab02b4cec c98d69ce13991f1ad787aec8ba129cf5b0cdb16d e2e8a75ac6d19086d5190f4128c8a1b2f1a27e099a6e0d33b811806866d32b86
GET /assets/253.chunk.6956d3c5d429dadc2940.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
content-length: 883
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f253.chunk.6956d3c5d429dadc2940.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931936
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef5982ebb56b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/257.chunk.1c0ee55bda90f2c6d3b4.js | 172.64.147.126 | 200 OK | 837 B |
URL GET HTTP/2www.na-kd.com/assets/257.chunk.1c0ee55bda90f2c6d3b4.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (1064) Hash3d33cb9dba133e4eb7667f7e0db4a360 87048f9c834ab1c013852ebac5f65cdc1a004fe0 d50d0bd297783fd32d21829174f34538861b77bbcda5ab90319a67e5d0132b6b
GET /assets/257.chunk.1c0ee55bda90f2c6d3b4.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
content-length: 837
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f257.chunk.1c0ee55bda90f2c6d3b4.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931935
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef5983ebe56b4-OSL
X-Firefox-Spdy: h2
|
|
| gishejuy.com/400/7385708 | 139.45.197.242 | | 33 kB |
IP139.45.197.242:0
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash3e441d2f0e0cc968d9b3ee4a0f3b039f 58fc69d24875442d6e81168a3a0ce92c8c713188 b5abd1026c2065ca780d521469f5464efac36b9741226b671d2ba62b1e4769e4
GET /400/7385708 HTTP/1.1
Host: gishejuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.promsteklo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 14:17:44 GMT
content-type: application/javascript
x-trace-id: 2a1bbb4ee5b537584a67851d46c44d80
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
set-cookie: OAID=03004974a38249d7eb266ecc47d0d0cf; expires=Fri, 25 Apr 2025 14:17:44 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/7.chunk.e62010afe17da9e26c11.js | 172.64.147.126 | 200 OK | 837 B |
URL GET HTTP/2www.na-kd.com/assets/7.chunk.e62010afe17da9e26c11.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (983) Hashd392f630d80c2c12173f803a96ae7bbb 88d8649039b3d3fa62cf07f02c15be0a9c7f59f2 381c4b5febff74303a08e41654f49c11285cab533a4eecb5b378f76142bc88ab
GET /assets/7.chunk.e62010afe17da9e26c11.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
content-length: 837
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f7.chunk.e62010afe17da9e26c11.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931935
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef5983ebd56b4-OSL
X-Firefox-Spdy: h2
|
|
| api.usercentrics.eu/settings/Jq_Vycyzq/latest/languages.json | 35.241.3.184 | 200 OK | 82 B |
URL GET HTTP/3api.usercentrics.eu/settings/Jq_Vycyzq/latest/languages.json IP35.241.3.184:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerGoogle Trust Services LLC Subjectapi.usercentrics.eu FingerprintD7:F1:2D:F8:F0:A0:80:5C:7E:36:A8:14:72:62:BE:5F:0D:B6:61:13 ValidityWed, 03 Apr 2024 12:18:35 GMT - Tue, 02 Jul 2024 13:12:28 GMT
Hash50e4be9d62b4ad04e1f6a39dbede80cd 06c9b0a2c473bd50f96307104471bb537b9cd450 73c53f8f6d87773e070db9a633d1d789bd0122adfd88f6e1effad1ed5aa3a234
GET /settings/Jq_Vycyzq/latest/languages.json HTTP/1.1
Host: api.usercentrics.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.na-kd.com/
content-type: application/json
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
x-guploader-uploadid: ABPtcPrM1fkhOaartnB9ZBlDwkhd8sdnU2V5oImEBn79yURsmMsaSfFJaly5o8s3mtWjiU9BpdKorW6Dpg
x-goog-generation: 1714030825967001
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 82
content-encoding: gzip
x-goog-hash: crc32c=92zZKA==, md5=2YdETwD9oIbDKBsoGNhHVA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 82
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 25 Apr 2024 14:16:56 GMT
expires: Thu, 25 Apr 2024 14:17:56 GMT
cache-control: public, max-age=1800, s-maxage=60
age: 59
last-modified: Thu, 25 Apr 2024 13:38:47 GMT
etag: "d987444f00fda086c3281b2818d84754"
content-type: application/json
vary: Accept-Encoding
strict-transport-security: max-age=7776000
x-client-geo-location: NO,NO03
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.na-kd.com/favicons/na-kd/favicon-512x512.png?ref=2 | 172.64.147.126 | 200 OK | 2.5 kB |
URL GET HTTP/2www.na-kd.com/favicons/na-kd/favicon-512x512.png?ref=2 IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeRIFF (little-endian) data, Web/P image Hash69600b1c38fd8ffaef6464cd392e1382 4bb6b99bef74d0ec9fcbc13f6ee7e7b53ba13228 d7f1a33336c091ac710750c96f6ffd5643cb822a2682405aed822c6030b3b5a5
GET /favicons/na-kd/favicon-512x512.png?ref=2 HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: image/webp
content-length: 2548
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
arr-disable-session-affinity: true
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=13523
content-disposition: inline; filename="favicon-512x512.webp"
etag: "0ec2022e56eda1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 05 Mar 2024 10:08:56 GMT
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept
x-actual-url: %2ffavicons%2fna-kd%2ffavicon-512x512.png%3fref%3d2
x-frame-options: SAMEORIGIN
x-server-version: 83.2288.9621
cf-cache-status: HIT
age: 2974697
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef59a186656b4-OSL
X-Firefox-Spdy: h2
|
|
| nakd.api.useinsider.com/ins.js?id=10004432 | 162.159.134.61 | 200 OK | 149 kB |
URL GET HTTP/2nakd.api.useinsider.com/ins.js?id=10004432 IP162.159.134.61:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerCloudflare, Inc. Subjectuseinsider.com FingerprintFB:C4:8D:15:AA:E6:1E:4C:BE:F7:35:86:35:AF:9C:A6:57:31:AA:9A ValidityTue, 05 Dec 2023 00:00:00 GMT - Wed, 04 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size149 kB (148659 bytes) Hash36da0bdbb7cbd1a5a7ea2aedc885e980 bf9b6ece449387906cd0c9f685e5a576015e5020 5e40e3a0b51dc60b8a3f2aa3add364779f693417253d4da893be9a646db7c708
GET /ins.js?id=10004432 HTTP/1.1
Host: nakd.api.useinsider.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
etag: W/"36da0bdbb7cbd1a5a7ea2aedc885e980"
last-modified: Thu, 25 Apr 2024 14:11:59 GMT
pragma: public
strict-transport-security: max-age=31536000; includeSubDomains
x-amz-id-2: lwTTl3uSqtgly9qdddLg+1ZFaE6PiYFl3ORNW4ITs7POFQksfL/YlqC9bEQltyCR4R6EwrHqLSQ=
x-amz-request-id: 0RAE2A60TJN2MD2N
x-amz-version-id: OBWcENqBRX_MxqrLERRTxmjxs_PPhLXO
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1
cf-cache-status: HIT
age: 352
expires: Thu, 25 Apr 2024 14:22:55 GMT
cache-control: public, max-age=300
set-cookie: __cf_bm=LmLdz47SxS0t5t7T3vIHKCCAUybDRgZ8umEzJg_idPk-1714054675-1.0.1.1-frvv04nfbFBmloas50zGGFaRWXHWtqUAYpwuJ_GyZ7.aXll0bJNE2Hp_hogX4Bl0D7RHD5eloM9oW.9bF.UOKA; path=/; expires=Thu, 25-Apr-24 14:47:55 GMT; domain=.useinsider.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
content-security-policy-report-only: connect-src *; default-src 'self'; font-src https://fonts.gstatic.com data: 'self' https://font.static.useinsider.com https://mobilefont.useinsider.com https://assets.api.useinsider.com https://fonts.app.apty.io https://use.fontawesome.com https://at.alicdn.com https://fonts.googleapis.com http://themes.googleusercontent.com; frame-src *.api.useinsider.com; img-src data: 'self' https://panel-assets.useinsider.com *.hsforms.com *.wistia.com https://www.google-analytics.com https://www.googletagmanager.com https://www.google.com.tr https://www.google.ie https://image.useinsider.com https://mobileimg.useinsider.com https://mobile-image.useinsider.com https://wp-log.api.useinsider.com https://bm-rx.atatus.com https://mfe.useinsider.com https://fabek.stripocdnplugin.email https://www.facebook.com/; media-src blob: 'self'; script-src 'unsafe-inline' 'self' 'unsafe-eval' https://fast.wistia.com *.api.useinsider.com https://www.google-analytics.com https://www.googletagmanager.com mfe.useinsider.com https://cdnjs.cloudflare.com https://unpkg.com https://js.hsforms.net https://script.hotjar.com https://static.userguiding.com https://static.hotjar.com https://inone.useinsider.com https://api.useinsider.com https://edge.fullstory.com/s/fs.js https://browser.sentry-cdn.com/ https://edge.fullstory.com https://widget.usersnap.com https://static.getbeamer.com https://client.app.apty.io; style-src assets.api.useinsider.com 'unsafe-inline' 'self' https://fonts.googleapis.com https://unpkg.com; worker-src blob: https://*.inone.useinsider.com; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=ub9G9kDHm761c62ovPugESyDYD6XCaMWFtha9KKScOs-1714054675-1.0.1.1-_MCrv6RL5gqW6nt2OQSZ5DRwgO7ay6nplqNdUo77UOys4dqMzYx1_UA7tZXRcrP.KXIWcnAHfiQgGuXvLVV_jqS34fJ9s5wlPqurzUfpiRIPVViKTG9a1IEI3BE8a1h5gRKxVA4.J4DVrnDN.DvQKXqL9OBZ.f1HVg4BupYHGO_N3Ke.X9Z2D6d.9EHRYIn6cJlB0AOF98GkG_dlTdrbpw; report-to cf-dyedocqakmbkevig
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=ub9G9kDHm761c62ovPugESyDYD6XCaMWFtha9KKScOs-1714054675-1.0.1.1-_MCrv6RL5gqW6nt2OQSZ5DRwgO7ay6nplqNdUo77UOys4dqMzYx1_UA7tZXRcrP.KXIWcnAHfiQgGuXvLVV_jqS34fJ9s5wlPqurzUfpiRIPVViKTG9a1IEI3BE8a1h5gRKxVA4.J4DVrnDN.DvQKXqL9OBZ.f1HVg4BupYHGO_N3Ke.X9Z2D6d.9EHRYIn6cJlB0AOF98GkG_dlTdrbpw"}],"group":"cf-dyedocqakmbkevig","max_age":86400}
server: cloudflare
cf-ray: 879ef598c839b512-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-T2PZB9S3XC&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 104 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-T2PZB9S3XC&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (12216) Size104 kB (103591 bytes) Hash5f368f0a8086aa065db8cb411177daa8 1a8f47d7147bce7e9a1cba5f58068cfcde8ea458 976abc2ed8d2758aa33efdd2e79d287cd93eba9f7fe43a12ed749f1b96e5547e
GET /gtag/js?id=G-T2PZB9S3XC&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 14:17:55 GMT
expires: Thu, 25 Apr 2024 14:17:55 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 103591
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.na-kd.com/resize/contentassets/94df66eb2c234092bcd3b360fa6ab67e/no-dk-dresses.jpg?ref=A30AF277E3&width=1280 | 172.64.147.126 | 200 OK | 221 kB |
URL GET HTTP/2www.na-kd.com/resize/contentassets/94df66eb2c234092bcd3b360fa6ab67e/no-dk-dresses.jpg?ref=A30AF277E3&width=1280 IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1280x676, Scaling: [none]x[none], YUV color, decoders should clamp Size221 kB (220658 bytes) Hash5381e63056ba9c45c1c25aa82b84788d 3601febb68ac6a64f5910ee616f1de527ed86dc1 f8f83436cad9c3ab0d4f9aab06de71868c484952940247984173bee34c65b785
GET /resize/contentassets/94df66eb2c234092bcd3b360fa6ab67e/no-dk-dresses.jpg?ref=A30AF277E3&width=1280 HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: image/webp
content-length: 220658
cf-ray: 879ef59b997556b4-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=42732
etag: "cfCv_H2Xw_4tevDJcjwUJo__BGiAbdZWvHjYzjJHu_DQ:1DA707B2E3EB200"
last-modified: Thu, 07 Mar 2024 10:35:32 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/h q=0 n=14+0 c=15+161 v=2024.4.0 l=220658
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/images/flags/NOR.png?ref=1 | 172.64.147.126 | 301 Moved Permanently | 169 B |
URL GET HTTP/2www.na-kd.com/images/flags/NOR.png?ref=1 IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashb4ea1b3309e5f3280aa6a5e1c5db5777 3f13882d9a47b5aa6a96d0b91149e1fda3422fbe 767eb46f3592fead638529ae7355e77fcbd140477ca31968862d21d8a67d6e89
GET /images/flags/NOR.png?ref=1 HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: text/html; charset=utf-8
content-length: 169
location: https://www.na-kd.com:443/images/flags/nor.png?ref=1
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
cache-control: public, max-age=14400
expires: Thu, 25 Apr 2024 18:17:55 GMT
x-actual-url: %2fimages%2fflags%2fNOR.png%3fref%3d1
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
x-frame-options: SAMEORIGIN
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 879ef59b594b56b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/resize/contentassets/01da5ff1423740fd8f7da3a8d7697320/no-dk-tops.jpg?ref=AEE5C8BDC2&width=1280 | 172.64.147.126 | 200 OK | 215 kB |
URL GET HTTP/2www.na-kd.com/resize/contentassets/01da5ff1423740fd8f7da3a8d7697320/no-dk-tops.jpg?ref=AEE5C8BDC2&width=1280 IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1280x676, Scaling: [none]x[none], YUV color, decoders should clamp Size215 kB (214846 bytes) Hashea13da5dde482f48017b6ce9e15e3a13 612fba6a69ac36f20797bde504d8214f5bd54d86 13514db97f04787fc9a366627981dd7856f307b068c3cc58253a56080a17a8c2
GET /resize/contentassets/01da5ff1423740fd8f7da3a8d7697320/no-dk-tops.jpg?ref=AEE5C8BDC2&width=1280 HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: image/webp
content-length: 214846
cf-ray: 879ef59ba97a56b4-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=43099
etag: "cf4tZ3V0gKalf_owmbI0NZde9ZiAbdZWvHjYzjJHu_DQ:1DA707BCCCB1300"
last-modified: Thu, 07 Mar 2024 10:39:58 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/h q=0 n=44+0 c=14+249 v=2024.4.0 l=214846
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/resize/contentassets/43f099059eeb4adfb6812d9ae8b5a80c/chloe_rose-2.png?ref=D606A45FA1&width=1920&maxheight=3200 | 172.64.147.126 | 200 OK | 431 kB |
URL GET HTTP/2www.na-kd.com/resize/contentassets/43f099059eeb4adfb6812d9ae8b5a80c/chloe_rose-2.png?ref=D606A45FA1&width=1920&maxheight=3200 IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeRIFF (little-endian) data, Web/P image Size431 kB (431334 bytes) Hashaa9c6bdadecd5d5c0d7a115ba93c3ae0 80b0e1fd3fe8d87fe12a6e01645d14b43ce00ee2 de6a539b37463f53b950fe5079404fe3e2eeb439ea4d022e17692fa044615e3b
GET /resize/contentassets/43f099059eeb4adfb6812d9ae8b5a80c/chloe_rose-2.png?ref=D606A45FA1&width=1920&maxheight=3200 HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: image/webp
content-length: 431334
cf-ray: 879ef59bb98c56b4-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=43200
etag: "cfXQFPNKsBZqEu2u5pYEKBqh0UGqil8Qmp-McxIuxPDQ:1DA94C0A1CC3F80"
last-modified: Mon, 22 Apr 2024 14:23:23 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-bgj: imgq:100,h2pri
cf-resized: internal=ram/m q=0 n=0+147 c=0+0 v=2024.4.0 l=431334
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/resize/contentassets/7c21eb91097c44c8b4f0c7699e9cb215/outerwear-h.jpg?ref=3120481C18&quality=80&sharpen=0.3&width=300 | 172.64.147.126 | 200 OK | 13 kB |
URL GET HTTP/2www.na-kd.com/resize/contentassets/7c21eb91097c44c8b4f0c7699e9cb215/outerwear-h.jpg?ref=3120481C18&quality=80&sharpen=0.3&width=300 IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 300x428, Scaling: [none]x[none], YUV color, decoders should clamp Hash30fa16c67dde4a0304a94399a9cabdba f62d5baa601d51f1dcfcf65f3336a2eee89ef304 4b4514dac1896d1803685850178fd690942e876789ee1bba09cdeeb0f41def14
GET /resize/contentassets/7c21eb91097c44c8b4f0c7699e9cb215/outerwear-h.jpg?ref=3120481C18&quality=80&sharpen=0.3&width=300 HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: image/webp
content-length: 13346
cf-ray: 879ef59bc99956b4-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=43200
etag: "cfpcl9GiQOR7pkW_0DOfd4zJ5KBVCE1h_ywagDLynXDQ:1DA94BC7BA4A080"
last-modified: Mon, 22 Apr 2024 13:53:41 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-bgj: imgq:81,h2pri
cf-resized: internal=ram/m q=0 n=0+0 c=8+24 v=2024.4.0 l=13346
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/resize/contentassets/7c21eb91097c44c8b4f0c7699e9cb215/outerwear.jpg?ref=FC8728B870&quality=80&sharpen=0.3&width=300 | 172.64.147.126 | 200 OK | 12 kB |
URL GET HTTP/2www.na-kd.com/resize/contentassets/7c21eb91097c44c8b4f0c7699e9cb215/outerwear.jpg?ref=FC8728B870&quality=80&sharpen=0.3&width=300 IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 300x428, Scaling: [none]x[none], YUV color, decoders should clamp Hash29f69499eca762650410e53ef3c5f791 5b7d4e2ebc9d9d4c88cf114d2f68be3cfb4d8650 dfde122825388049502ef721ce00bb346400615bd037f8e98c2e1b3d6d6c94ab
GET /resize/contentassets/7c21eb91097c44c8b4f0c7699e9cb215/outerwear.jpg?ref=FC8728B870&quality=80&sharpen=0.3&width=300 HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: image/webp
content-length: 12254
cf-ray: 879ef59bb99456b4-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=43194
etag: "cfWqAAUIQhOfIpZvkd3SaPN99DBVCE1h_ywagDLynXDQ:1DA94BC79DADD00"
last-modified: Mon, 22 Apr 2024 13:53:38 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-bgj: imgq:81,h2pri
cf-resized: internal=ok/h q=0 n=22+0 c=4+32 v=2024.4.0 l=12254
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/dresses.jpg?ref=B19E40DB91&quality=80&sharpen=0.3&width=300 | 172.64.147.126 | 200 OK | 14 kB |
URL GET HTTP/2www.na-kd.com/resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/dresses.jpg?ref=B19E40DB91&quality=80&sharpen=0.3&width=300 IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 300x428, Scaling: [none]x[none], YUV color, decoders should clamp Hash7571291ef4799ec7efe34d9feba93cf0 5855bc771b789c9754e8cd7014dbf117c0a76ea1 a09cc942776d75843e6dc79008c2ebc44c7b1f3ee9e93756d369b997c8b7f654
GET /resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/dresses.jpg?ref=B19E40DB91&quality=80&sharpen=0.3&width=300 HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: image/webp
content-length: 13686
cf-ray: 879ef59bc9a056b4-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=43200
etag: "cfF4Y_Vv-4a0DBd7QMS8bhLz2PBVCE1h_ywagDLynXDQ:1DA94BA734B6600"
last-modified: Mon, 22 Apr 2024 13:39:08 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-bgj: imgq:81,h2pri
cf-resized: internal=ram/m q=0 n=0+0 c=6+23 v=2024.4.0 l=13686
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/dresses-h.jpg?ref=73EC70307B&quality=80&sharpen=0.3&width=300 | 172.64.147.126 | 200 OK | 30 kB |
URL GET HTTP/2www.na-kd.com/resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/dresses-h.jpg?ref=73EC70307B&quality=80&sharpen=0.3&width=300 IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 300x428, Scaling: [none]x[none], YUV color, decoders should clamp Hash087825ac080207123de12aa1c7df8c31 b80e314f4099ef1224b49bbb006cb75a776df508 194a7500496665ebf7bfc9d8b1c48ba029a386bf99ab6965eda2aa3312774996
GET /resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/dresses-h.jpg?ref=73EC70307B&quality=80&sharpen=0.3&width=300 HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: image/webp
content-length: 29558
cf-ray: 879ef59c09bf56b4-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=43200
etag: "cfbHafS63E_T2Xd1M9qv9HbTGmBVCE1h_ywagDLynXDQ:1DA94BA75ADC000"
last-modified: Mon, 22 Apr 2024 13:39:12 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-bgj: imgq:81,h2pri
cf-resized: internal=ram/m q=0 n=0+0 c=4+23 v=2024.4.0 l=29558
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/tops.jpg?ref=0ECB88A7F2&quality=80&sharpen=0.3&width=300 | 172.64.147.126 | 200 OK | 9.2 kB |
URL GET HTTP/2www.na-kd.com/resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/tops.jpg?ref=0ECB88A7F2&quality=80&sharpen=0.3&width=300 IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 300x428, Scaling: [none]x[none], YUV color, decoders should clamp Hash53ff95f89f1aabbdd4f0ed3052fca8f6 92e1c7c8ea86a6ec483984bae2d35b35706a9e87 dd6882ce97eeb88836a0087bb9fac9f7bb40e29aca2367c304e877f6f7f3a2b8
GET /resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/tops.jpg?ref=0ECB88A7F2&quality=80&sharpen=0.3&width=300 HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: image/webp
content-length: 9188
cf-ray: 879ef59c39fc56b4-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=43198
etag: "cfj5e5hmIShWab3k4q7FUjcMCQBVCE1h_ywagDLynXDQ:1DA94BA5DD63C00"
last-modified: Mon, 22 Apr 2024 13:38:32 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-bgj: imgq:81,h2pri
cf-resized: internal=ok/h q=0 n=32+0 c=3+31 v=2024.4.0 l=9188
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/siteassets/nakd_logo.jpg?ref=562246FF6E | 172.64.147.126 | 200 OK | 3.3 kB |
URL GET HTTP/2www.na-kd.com/siteassets/nakd_logo.jpg?ref=562246FF6E IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 622x146, Scaling: [none]x[none], YUV color, decoders should clamp Hashec6b01c8345fac4f7d4e350bc3b4337f 96f5995fe9a8287af966bce8455c88e1abd89f99 52ecab6fa1e9a48ee68b9829243ac8de765e2bd95518a5b39cd7344aca7f51aa
GET /siteassets/nakd_logo.jpg?ref=562246FF6E HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: image/webp
content-length: 3278
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
arr-disable-session-affinity: true
cache-control: public, max-age=18078137
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=29608
content-disposition: inline; filename="nakd_logo.webp"
etag: "1D34971FDAD4700"
expires: Wed, 20 Nov 2024 20:00:12 GMT
last-modified: Fri, 20 Oct 2017 07:06:46 GMT
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept
x-actual-url: %2fsiteassets%2fnakd_logo.jpg%3fref%3d562246FF6E
x-frame-options: SAMEORIGIN
x-server-version: 83.2169.9345
cf-cache-status: HIT
age: 13331670
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef59caa4f56b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/siteassets/banners/2024/04-april/30-off-everything/banner/responsive.css?ref=63191A236F | 172.64.147.126 | 200 OK | 1.6 kB |
URL GET HTTP/2www.na-kd.com/siteassets/banners/2024/04-april/30-off-everything/banner/responsive.css?ref=63191A236F IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
Hash0534111e923447ab8e1fcfcc69ebb9e5 68f1145abed5f9318aa1872f6ae2a87c06b7ffe6 c88493e7eb737d0755e215c32709dec80e3bf9e42c0a62cd927da07d55996595
GET /siteassets/banners/2024/04-april/30-off-everything/banner/responsive.css?ref=63191A236F HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: text/css
content-length: 1591
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
cache-control: public, max-age=30659978
content-encoding: gzip
etag: "1DA8F23AE322480"
expires: Tue, 15 Apr 2025 10:57:33 GMT
last-modified: Mon, 15 Apr 2024 10:57:17 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
x-actual-url: %2fsiteassets%2fbanners%2f2024%2f04-april%2f30-off-everything%2fbanner%2fresponsive.css%3fref%3d63191A236F
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 876018
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef59caa5156b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/resize/siteassets/startfeed/2024/04-april/11.04/desktop/desk4.jpg?ref=E2BEFFE1A2&quality=80&sharpen=0.3&width=300 | 172.64.147.126 | 200 OK | 5.1 kB |
URL GET HTTP/2www.na-kd.com/resize/siteassets/startfeed/2024/04-april/11.04/desktop/desk4.jpg?ref=E2BEFFE1A2&quality=80&sharpen=0.3&width=300 IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 300x140, Scaling: [none]x[none], YUV color, decoders should clamp Hash333e1f7c55e5683fe1501e16b23a696b fda335d467ea3612c972639b8f20977deed65464 53ff3dccae4cd52204761b5368f7c14bb3ff02cd521fdd65e50e7425355cc120
GET /resize/siteassets/startfeed/2024/04-april/11.04/desktop/desk4.jpg?ref=E2BEFFE1A2&quality=80&sharpen=0.3&width=300 HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: image/webp
content-length: 5116
cf-ray: 879ef59caa4b56b4-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=31535993
etag: "cfWH207v1mNl7Pw8itsVFzUXO-BVCE1h_ywagDLynXDQ:1DA9544A5090F00"
last-modified: Tue, 23 Apr 2024 06:08:22 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-bgj: imgq:81,h2pri
cf-resized: internal=ram/h q=0 n=0+0 c=32+10 v=2024.4.0 l=5116
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/siteassets/startfeed/2024/04-april/23.04/responsive.css?ref=11C2A854A5 | 172.64.147.126 | 200 OK | 3.6 kB |
URL GET HTTP/2www.na-kd.com/siteassets/startfeed/2024/04-april/23.04/responsive.css?ref=11C2A854A5 IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
Hash5611acf1ac9e9573114e237f35b9e62c 09c7c3c09520836a730cbc49d066bdd5739472ab 9d7c35ebe18ce1eb8afd210b5b59fe733c11d7894e8e25cb3c91eb745807d7dd
GET /siteassets/startfeed/2024/04-april/23.04/responsive.css?ref=11C2A854A5 HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: text/css
content-length: 3630
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
cache-control: public, max-age=31334167
content-encoding: gzip
etag: "1DA95456758B600"
expires: Wed, 23 Apr 2025 06:14:02 GMT
last-modified: Tue, 23 Apr 2024 06:13:48 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
x-actual-url: %2fsiteassets%2fstartfeed%2f2024%2f04-april%2f23.04%2fresponsive.css%3fref%3d11C2A854A5
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 201827
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef59caa5056b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/trousers-h.jpg?ref=BAB48184A7&quality=80&sharpen=0.3&width=300 | 172.64.147.126 | 200 OK | 13 kB |
URL GET HTTP/2www.na-kd.com/resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/trousers-h.jpg?ref=BAB48184A7&quality=80&sharpen=0.3&width=300 IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 300x428, Scaling: [none]x[none], YUV color, decoders should clamp Hashccbaa39816bd7295ff0107f2ce39070f a9b065c9880f6de27258ce25e6e9094dd2d06c61 baaa72d37636dd967d94a43e623f85095e5b1f193f6f2e893a0ee760a75af43d
GET /resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/trousers-h.jpg?ref=BAB48184A7&quality=80&sharpen=0.3&width=300 HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: image/webp
content-length: 13092
cf-ray: 879ef59caa4956b4-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=43200
etag: "cfSaabqdMYnHOjgDUYbg6TlP41BVCE1h_ywagDLynXDQ:1DA94BA6C245800"
last-modified: Mon, 22 Apr 2024 13:38:56 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-bgj: imgq:81,h2pri
cf-resized: internal=ram/m q=0 n=0+0 c=3+25 v=2024.4.0 l=13092
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/resize/siteassets/startfeed/2024/04-april/23.04/desktop/best-seller-desk.jpg?ref=9456638DA9&width=960 | 172.64.147.126 | 200 OK | 227 kB |
URL GET HTTP/2www.na-kd.com/resize/siteassets/startfeed/2024/04-april/23.04/desktop/best-seller-desk.jpg?ref=9456638DA9&width=960 IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 960x1072, Scaling: [none]x[none], YUV color, decoders should clamp Size227 kB (227362 bytes) Hashe99f8199e31e868b1700b5598a7c7fdf 218886151881a0c237b60f2baa07e84b77b59fb0 91b1537ff61886fde1ec7e747182b423babadfb926eca81f168e56fdc5f61d72
GET /resize/siteassets/startfeed/2024/04-april/23.04/desktop/best-seller-desk.jpg?ref=9456638DA9&width=960 HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: image/webp
content-length: 227362
cf-ray: 879ef59caa4d56b4-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=31478023
etag: "cfM9zyvqDVVAAGvELDUr9ooddtz095Rk1plCFTdjCjDQ:1DA94BB890D5B00"
last-modified: Mon, 22 Apr 2024 13:46:54 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/h q=0 n=31+0 c=22+182 v=2024.4.0 l=227362
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/resize/siteassets/startfeed/2024/04-april/23.04/desktop/shoes.jpg?ref=86760ECE10&width=960 | 172.64.147.126 | 200 OK | 60 kB |
URL GET HTTP/2www.na-kd.com/resize/siteassets/startfeed/2024/04-april/23.04/desktop/shoes.jpg?ref=86760ECE10&width=960 IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 960x1072, Scaling: [none]x[none], YUV color, decoders should clamp Hashf3f312e5306b5602a011c6c1cfdc7557 4279a564ccec8c23e2ac0e6ef1abea216afd039c ab5f525d07ff103b6550abfd042a0ffa595686e6afb89044efe4ebb966aeb5df
GET /resize/siteassets/startfeed/2024/04-april/23.04/desktop/shoes.jpg?ref=86760ECE10&width=960 HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: image/webp
content-length: 59514
cf-ray: 879ef59caa4c56b4-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: "cfOysImiCtXyrtXFAWcqNWqt4Nz095Rk1plCFTdjCjDQ:1DA94BB83B01080"
last-modified: Mon, 22 Apr 2024 13:46:45 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-bgj: imgq:86,h2pri
cf-resized: internal=ram/m q=0 n=0+0 c=0+0 v=2024.4.0 l=59514
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/5.chunk.9ef5a24e63e2cabbceab.js | 172.64.147.126 | 200 OK | 2.0 kB |
URL GET HTTP/2www.na-kd.com/assets/5.chunk.9ef5a24e63e2cabbceab.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (3922) Hashd4e4cec20b3cf93a62a41e5654c514b8 d3c8458281ca82a25880c8d0beabefc407add06d d246a86e2c10f5db936dbbd22f72f85b65643f3251ac123aae144ecb8aa6c679
GET /assets/5.chunk.9ef5a24e63e2cabbceab.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
content-length: 2040
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f5.chunk.9ef5a24e63e2cabbceab.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931935
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef59cba6e56b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/8.chunk.b7e377e201fd06dd894d.js | 172.64.147.126 | 200 OK | 369 B |
URL GET HTTP/2www.na-kd.com/assets/8.chunk.b7e377e201fd06dd894d.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text Hash36c4cf4b6e8c8ffaa8c9535e504d7015 a51b39fb9c0bc4402ee171ae7c7f4e9cc7c2efa9 6ef87f3d533c835d51b740773a106bb5404ead079e994c55e48da53c713db37f
GET /assets/8.chunk.b7e377e201fd06dd894d.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
content-length: 369
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f8.chunk.b7e377e201fd06dd894d.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931920
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef59cca7056b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/29.chunk.bbc217f11042244c2bc5.js | 172.64.147.126 | 200 OK | 14 kB |
URL GET HTTP/2www.na-kd.com/assets/29.chunk.bbc217f11042244c2bc5.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (37422) Hash5109d74d85a24d17847666fe751c6e5d 5078e459c162ac93e15400e5a0793586172aedb9 882cfde2cb96ad4d64da8dbfc085fdcc6f54fac4114855747e4b5cc219fe78b5
GET /assets/29.chunk.bbc217f11042244c2bc5.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
content-length: 14182
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f29.chunk.bbc217f11042244c2bc5.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931918
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef59cca7256b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/15.chunk.965fb05ca0758fca2588.js | 172.64.147.126 | 200 OK | 1.5 kB |
URL GET HTTP/2www.na-kd.com/assets/15.chunk.965fb05ca0758fca2588.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (3455) Hash42b2008e8334f4b72738bfc90020087d 198d6427f44ebe52687f2d27b1bf2d8527c590b5 fd57af3bb46f8d4265b3e49ad10b86860dd8be48d772fa1f391701717d4d1ef1
GET /assets/15.chunk.965fb05ca0758fca2588.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
content-length: 1549
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f15.chunk.965fb05ca0758fca2588.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931918
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef59cca7156b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/quick-search.chunk.7f80e8740e463067dc3a.js | 172.64.147.126 | 200 OK | 8.5 kB |
URL GET HTTP/2www.na-kd.com/assets/quick-search.chunk.7f80e8740e463067dc3a.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (21419) Hash6bc3072958c36db969919525345dfaf4 8b568edd22e927670afc91a64b8486ab5e51f0cc 214ebd0c00149f4112634e55fa5c5b44d8276d7ec8d1cd29d8cbf616b84e8224
GET /assets/quick-search.chunk.7f80e8740e463067dc3a.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
content-length: 8517
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2fquick-search.chunk.7f80e8740e463067dc3a.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931924
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef59cca7856b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/footer-shipping-payment.chunk.c789b3b27c26bcb0d291.js | 172.64.147.126 | 200 OK | 907 B |
URL GET HTTP/2www.na-kd.com/assets/footer-shipping-payment.chunk.c789b3b27c26bcb0d291.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (1121) Hash8db75f8d2259130a10ed9d8ffb976df1 6ff4f41b05f09db38248c955b63541048d1954a0 d3cf2ad08dd70b371077896947bcb1e07cdf8727b5be710d77c138c1fe939c48
GET /assets/footer-shipping-payment.chunk.c789b3b27c26bcb0d291.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:56 GMT
content-type: application/x-javascript
content-length: 907
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "032f743e260da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Fri, 16 Feb 2024 14:13:08 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2ffooter-shipping-payment.chunk.c789b3b27c26bcb0d291.js
x-server-version: 83.2270.9551
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 5556840
cache-control: public, max-age=2356854124
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef59d5ae156b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/4.chunk.bbd6a3e123dbebd96539.js | 172.64.147.126 | 200 OK | 2.8 kB |
URL GET HTTP/2www.na-kd.com/assets/4.chunk.bbd6a3e123dbebd96539.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (6491) Hash9fb263e1209085ac9d5c7145296c5b2b 0ef4340c1fabf7871c5829378b76e64fcd01bac5 359a278d92bdcde826ffaa065d3f4dfd94d132cc278e720a5021244cae1111b7
GET /assets/4.chunk.bbd6a3e123dbebd96539.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:56 GMT
content-type: application/x-javascript
content-length: 2811
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f4.chunk.bbd6a3e123dbebd96539.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931935
cache-control: public, max-age=2356854124
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef59d6ae456b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/return-policy-flyout.chunk.551582f8e414b954b312.js | 172.64.147.126 | 200 OK | 1.1 kB |
URL GET HTTP/2www.na-kd.com/assets/return-policy-flyout.chunk.551582f8e414b954b312.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (1724) Hashc35c9d87992d78291aed838467cb5216 c6cf1beb6d5a74106d82c506eab52b52d665ca07 bfb148004d0a9971ce2e65e7ee7862251536db5123b07ea5c56cd3054d7414d9
GET /assets/return-policy-flyout.chunk.551582f8e414b954b312.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:56 GMT
content-type: application/x-javascript
content-length: 1141
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2freturn-policy-flyout.chunk.551582f8e414b954b312.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931935
cache-control: public, max-age=2356854124
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef59d6ae256b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/globalassets/icons/info.svg?ref=E444E9E020&width=1280 | 172.64.147.126 | 200 OK | 1.9 kB |
URL GET HTTP/2www.na-kd.com/globalassets/icons/info.svg?ref=E444E9E020&width=1280 IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeSVG Scalable Vector Graphics image Hash8453a3deb17691e8958eff743bb14650 4856e908a5df734f94e8b1dbc75a8609a3cc7ed6 85c01f1b982c0f708424597cd0853e928ce0e3175b55fd78a83fcd454909b414
GET /globalassets/icons/info.svg?ref=E444E9E020&width=1280 HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: image/svg+xml
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
cache-control: public, max-age=25332157
etag: W/"1DA5E6610A86F00"
expires: Wed, 12 Feb 2025 19:00:32 GMT
last-modified: Tue, 13 Feb 2024 10:19:02 GMT
strict-transport-security: max-age=3600; includeSubDomains
x-actual-url: %2fglobalassets%2ficons%2finfo.svg%3fref%3dE444E9E020%26width%3d1280
x-server-version: 83.2261.9492
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 6203841
vary: Accept-Encoding
server: cloudflare
cf-ray: 879ef59ba98356b4-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/12.chunk.5c2ae6b58eb08b9d2a30.js | 172.64.147.126 | 200 OK | 6.8 kB |
URL GET HTTP/2www.na-kd.com/assets/12.chunk.5c2ae6b58eb08b9d2a30.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (16428) Hash5d2ef737abf2e69315e7776cec9a835c 8b0aba0e4dc09a0184006cb39d5d9dbe3e593782 a481c1be2b73ede1a1d3020ebfa806a7307b6e40b089e84f4c60cdffdc129874
GET /assets/12.chunk.5c2ae6b58eb08b9d2a30.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:56 GMT
content-type: application/x-javascript
content-length: 6807
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f12.chunk.5c2ae6b58eb08b9d2a30.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931935
cache-control: public, max-age=2356854124
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef59d6aea56b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/login-container.chunk.7aaa73ac63217f7de0c3.js | 172.64.147.126 | 200 OK | 13 kB |
URL GET HTTP/2www.na-kd.com/assets/login-container.chunk.7aaa73ac63217f7de0c3.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (33661) Hash88a1e5c8aeca6d0db0f5d648bc317313 4fca5c8677c03c848dd9bc1dfe14b118170fd69f d39679f508009f14784e810df5433ff0894a2b79496b2dfbff06f220f6f9b895
GET /assets/login-container.chunk.7aaa73ac63217f7de0c3.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:56 GMT
content-type: application/x-javascript
content-length: 13055
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2flogin-container.chunk.7aaa73ac63217f7de0c3.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931935
cache-control: public, max-age=2356854124
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef59d6aeb56b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/resize/contentassets/7c21eb91097c44c8b4f0c7699e9cb215/outerwear.jpg?ref=FC8728B870&quality=80&sharpen=0.3&width=374 | 172.64.147.126 | 200 OK | 17 kB |
URL GET HTTP/2www.na-kd.com/resize/contentassets/7c21eb91097c44c8b4f0c7699e9cb215/outerwear.jpg?ref=FC8728B870&quality=80&sharpen=0.3&width=374 IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 374x534, Scaling: [none]x[none], YUV color, decoders should clamp Hashe224dbe06055aaf9ef0940b3e5834c72 75846365ccb4614f32db7975568cf12a999c2b2b 35c874379db6dc72a4e2c57d812728b59485776328f44102213bc490f408c7aa
GET /resize/contentassets/7c21eb91097c44c8b4f0c7699e9cb215/outerwear.jpg?ref=FC8728B870&quality=80&sharpen=0.3&width=374 HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:56 GMT
content-type: image/webp
content-length: 16944
cf-ray: 879ef59d6aef56b4-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=43194
etag: "cfWqAAUIQhOfIpZvkd3SaPN99Dj6L2MQeLgpgEtaqVDQ:1DA94BC79DADD00"
last-modified: Mon, 22 Apr 2024 13:53:38 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-bgj: imgq:81,h2pri
cf-resized: internal=ram/h q=0 n=0+0 c=5+40 v=2024.4.0 l=16944
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/resize/contentassets/7c21eb91097c44c8b4f0c7699e9cb215/outerwear-h.jpg?ref=3120481C18&quality=80&sharpen=0.3&width=374 | 172.64.147.126 | 200 OK | 21 kB |
URL GET HTTP/2www.na-kd.com/resize/contentassets/7c21eb91097c44c8b4f0c7699e9cb215/outerwear-h.jpg?ref=3120481C18&quality=80&sharpen=0.3&width=374 IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 374x534, Scaling: [none]x[none], YUV color, decoders should clamp Hashfd9eaefffb355509ec9e48577e3bab57 5c301c98ee19900ade38d19157180409b49d3338 d2cb54ac34e00e3a447382356d236acc24771f4755f31e6e5499247e66bf060d
GET /resize/contentassets/7c21eb91097c44c8b4f0c7699e9cb215/outerwear-h.jpg?ref=3120481C18&quality=80&sharpen=0.3&width=374 HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:56 GMT
content-type: image/webp
content-length: 20660
cf-ray: 879ef59d6af356b4-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=39923
etag: "cfawLSHt02bfAhr4PTK-zq9qu9j6L2MQeLgpgEtaqVDQ:1DA94BC7BA4A080"
last-modified: Mon, 22 Apr 2024 13:53:41 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-bgj: imgq:81,h2pri
cf-resized: internal=ram/h q=0 n=0+0 c=5+34 v=2024.4.0 l=20660
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/dresses.jpg?ref=B19E40DB91&quality=80&sharpen=0.3&width=374 | 172.64.147.126 | 200 OK | 19 kB |
URL GET HTTP/2www.na-kd.com/resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/dresses.jpg?ref=B19E40DB91&quality=80&sharpen=0.3&width=374 IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 374x534, Scaling: [none]x[none], YUV color, decoders should clamp Hash6ac6e29d9173ad9405435413e0cd60ae 9aaae29298ce2a73799a81a6bb65a47ee4ba9fa8 9aefe9a90fdc378a38156e3f2dc8229d702fa4e83242ea3d5fba3ac362058e4d
GET /resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/dresses.jpg?ref=B19E40DB91&quality=80&sharpen=0.3&width=374 HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:56 GMT
content-type: image/webp
content-length: 19074
cf-ray: 879ef59d7af856b4-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=39889
etag: "cfcK8yLRCpJgZ3kPsQhT4f9pfcj6L2MQeLgpgEtaqVDQ:1DA94BA734B6600"
last-modified: Mon, 22 Apr 2024 13:39:08 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-bgj: imgq:81,h2pri
cf-resized: internal=ok/h q=0 n=30+0 c=3+28 v=2024.4.0 l=19074
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/tops-h.jpg?ref=63FC47E357&quality=80&sharpen=0.3&width=374 | 172.64.147.126 | 200 OK | 9.5 kB |
URL GET HTTP/2www.na-kd.com/resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/tops-h.jpg?ref=63FC47E357&quality=80&sharpen=0.3&width=374 IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 374x534, Scaling: [none]x[none], YUV color, decoders should clamp Hashfd2da419361ba05637f35bb34419ddf9 34cf1eab54f48a04c59907e49607f10ec152b6d8 0e65705c340aed8e8594e00b8d97e8af308a92444c19db088b4e6772bab81c77
GET /resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/tops-h.jpg?ref=63FC47E357&quality=80&sharpen=0.3&width=374 HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:56 GMT
content-type: image/webp
content-length: 9472
cf-ray: 879ef59d7b0256b4-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=43170
etag: "cfuZQzjZSOd4K1lPg6CLV1XVKSj6L2MQeLgpgEtaqVDQ:1DA94BA60D12C80"
last-modified: Mon, 22 Apr 2024 13:38:37 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-bgj: imgq:81,h2pri
cf-resized: internal=ram/h q=0 n=0+0 c=3+35 v=2024.4.0 l=9472
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/trousers.jpg?ref=871B182EE4&quality=80&sharpen=0.3&width=374 | 172.64.147.126 | 200 OK | 28 kB |
URL GET HTTP/2www.na-kd.com/resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/trousers.jpg?ref=871B182EE4&quality=80&sharpen=0.3&width=374 IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 374x534, Scaling: [none]x[none], YUV color, decoders should clamp Hash908154b06a69d76ea5686f9874ec4c8b 4e83f778228843bd058673d5ccbc2012090b9553 b3c8bb8b8f75eec64a6af02cc6ea79eb376da5732c77781fbea74fd5a3d5af7c
GET /resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/trousers.jpg?ref=871B182EE4&quality=80&sharpen=0.3&width=374 HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:56 GMT
content-type: image/webp
content-length: 27832
cf-ray: 879ef59d7b0356b4-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=43200
etag: "cfRZQn3e1bqD7KHgiyFB7Swwlhj6L2MQeLgpgEtaqVDQ:1DA94BA6A5A9480"
last-modified: Mon, 22 Apr 2024 13:38:53 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-bgj: imgq:81,h2pri
cf-resized: internal=ram/m q=0 n=0+0 c=6+55 v=2024.4.0 l=27832
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/trousers-h.jpg?ref=BAB48184A7&quality=80&sharpen=0.3&width=374 | 172.64.147.126 | 200 OK | 19 kB |
URL GET HTTP/2www.na-kd.com/resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/trousers-h.jpg?ref=BAB48184A7&quality=80&sharpen=0.3&width=374 IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 374x534, Scaling: [none]x[none], YUV color, decoders should clamp Hash93d759b7a224689e83b8091900d6bc67 b9ed5bfb93244ad331e83547811aa1e78e92e28c cb872974bf5a9fb06eb702861b7b5c35d907b9ae45e2f247121ec779c367cab9
GET /resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/trousers-h.jpg?ref=BAB48184A7&quality=80&sharpen=0.3&width=374 HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:56 GMT
content-type: image/webp
content-length: 19190
cf-ray: 879ef59d7b0756b4-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=43200
etag: "cfSaabqdMYnHOjgDUYbg6TlP41j6L2MQeLgpgEtaqVDQ:1DA94BA6C245800"
last-modified: Mon, 22 Apr 2024 13:38:56 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-bgj: imgq:81,h2pri
cf-resized: internal=ram/m q=0 n=0+0 c=4+37 v=2024.4.0 l=19190
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/tops.jpg?ref=0ECB88A7F2&quality=80&sharpen=0.3&width=374 | 172.64.147.126 | 200 OK | 12 kB |
URL GET HTTP/2www.na-kd.com/resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/tops.jpg?ref=0ECB88A7F2&quality=80&sharpen=0.3&width=374 IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 374x534, Scaling: [none]x[none], YUV color, decoders should clamp Hashd2c1e1529c677f05228f36e0b39128c8 67285857fb9e1a73d2f99721bf6c23fec6714a85 f87e096e5b6b905bad8f2c1f3c0b6856379ba85d74bea28e35d17bbdccf54b04
GET /resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/tops.jpg?ref=0ECB88A7F2&quality=80&sharpen=0.3&width=374 HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:56 GMT
content-type: image/webp
content-length: 11984
cf-ray: 879ef59d7b0056b4-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=43198
etag: "cfj5e5hmIShWab3k4q7FUjcMCQj6L2MQeLgpgEtaqVDQ:1DA94BA5DD63C00"
last-modified: Mon, 22 Apr 2024 13:38:32 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-bgj: imgq:81,h2pri
cf-resized: internal=ram/h q=0 n=0+0 c=3+44 v=2024.4.0 l=11984
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/dresses-h.jpg?ref=73EC70307B&quality=80&sharpen=0.3&width=374 | 172.64.147.126 | 200 OK | 43 kB |
URL GET HTTP/2www.na-kd.com/resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/dresses-h.jpg?ref=73EC70307B&quality=80&sharpen=0.3&width=374 IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 374x534, Scaling: [none]x[none], YUV color, decoders should clamp Hash1fd19bc3f7065ee9a43e4068a197cf70 39c879912f5b81bc17d40eb730ebea5a12331ccb 818d5de56ddf138fb8c74f2e148445ba135602655796c3b11abfc0329049601f
GET /resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/dresses-h.jpg?ref=73EC70307B&quality=80&sharpen=0.3&width=374 HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:56 GMT
content-type: image/webp
content-length: 42996
cf-ray: 879ef59d7afb56b4-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=42567
etag: "cfINx2AKGjLG9VhhU1b2kZu8ssj6L2MQeLgpgEtaqVDQ:1DA94BA75ADC000"
last-modified: Mon, 22 Apr 2024 13:39:12 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-bgj: imgq:81,h2pri
cf-resized: internal=ok/h q=0 n=15+0 c=5+36 v=2024.4.0 l=42996
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/resize/siteassets/startfeed/2024/04-april/11.04/desktop/desk4.jpg?ref=E2BEFFE1A2&quality=80&sharpen=0.3&width=1280 | 172.64.147.126 | 200 OK | 61 kB |
URL GET HTTP/2www.na-kd.com/resize/siteassets/startfeed/2024/04-april/11.04/desktop/desk4.jpg?ref=E2BEFFE1A2&quality=80&sharpen=0.3&width=1280 IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1280x600, Scaling: [none]x[none], YUV color, decoders should clamp Hashf1c70a1cabd5cea9df28767c1f8a133d 1b248bb9120d62342361283fef5890148209076c a562afdd7ae652b31ea260ce1f5e7e73c5c6800a1ca57d64419cd3004df676c3
GET /resize/siteassets/startfeed/2024/04-april/11.04/desktop/desk4.jpg?ref=E2BEFFE1A2&quality=80&sharpen=0.3&width=1280 HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:56 GMT
content-type: image/webp
content-length: 61340
cf-ray: 879ef59d8b2256b4-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=31535018
etag: "cfWH207v1mNl7Pw8itsVFzUXO--JxfYwihDSRXfSDGDQ:1DA9544A5090F00"
last-modified: Tue, 23 Apr 2024 06:08:22 GMT
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept, Accept-Encoding
cf-bgj: imgq:81,h2pri
cf-resized: internal=ok/h q=0 n=29+0 c=39+152 v=2024.4.0 l=61340
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/accountlikedproducts/get | 172.64.147.126 | 200 OK | 22 B |
URL GET HTTP/2www.na-kd.com/accountlikedproducts/get IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
Hashd751713988987e9331980363e24189ce 97d170e1550eee4afc0af065b78cda302a97674c 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
GET /accountlikedproducts/get HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
content-type: application/json
request-id: |8331da9a0a9c4317b03c19c42de60cf8.4ac47218acc6498c
traceparent: 00-8331da9a0a9c4317b03c19c42de60cf8-4ac47218acc6498c-01
x-client-version: 83.2316.9721
x-requested-with: XMLHttpRequest
DNT: 1
Connection: keep-alive
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:56 GMT
content-type: application/json; charset=utf-8
content-length: 22
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
expires: -1
pragma: no-cache
set-cookie: ApptusSessionId=c6cc0f5afdc04b9a844e37c40bae10e1; path=/; SameSite=Lax
ApptusCustomerKey=1490c37e-1ef4-4ae5-affc-9cb0c04671d7; expires=Fri, 25-Apr-2025 14:17:56 GMT; path=/; SameSite=Lax
strict-transport-security: max-age=3600; includeSubDomains
x-actual-url: %2faccountlikedproducts%2fget
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 879ef59dbb4756b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/accountlikedproducts/get | 172.64.147.126 | 200 OK | 22 B |
URL GET HTTP/2www.na-kd.com/accountlikedproducts/get IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
Hashd751713988987e9331980363e24189ce 97d170e1550eee4afc0af065b78cda302a97674c 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
GET /accountlikedproducts/get HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
content-type: application/json
request-id: |8331da9a0a9c4317b03c19c42de60cf8.32f3679504f04d7c
traceparent: 00-8331da9a0a9c4317b03c19c42de60cf8-32f3679504f04d7c-01
x-client-version: 83.2316.9721
x-requested-with: XMLHttpRequest
DNT: 1
Connection: keep-alive
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:56 GMT
content-type: application/json; charset=utf-8
content-length: 22
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
expires: -1
pragma: no-cache
set-cookie: ApptusSessionId=b4bd657bbc4b410193054711758105b8; path=/; SameSite=Lax
ApptusCustomerKey=14fc468e-ca91-4439-9a8b-77ffba311356; expires=Fri, 25-Apr-2025 14:17:56 GMT; path=/; SameSite=Lax
strict-transport-security: max-age=3600; includeSubDomains
x-actual-url: %2faccountlikedproducts%2fget
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 879ef59d9b2b56b4-OSL
X-Firefox-Spdy: h2
|
|
| use.typekit.net/af/2555e1/00000000000000007735e603/30/l?primer=3569ea2f7b7e0cfe53d24d1a326acf279d1b715ca67e789775350bc602cbb2ab&fvd=n7&v=3 | 23.36.76.186 | 200 OK | 31 kB |
URL GET HTTP/2use.typekit.net/af/2555e1/00000000000000007735e603/30/l?primer=3569ea2f7b7e0cfe53d24d1a326acf279d1b715ca67e789775350bc602cbb2ab&fvd=n7&v=3 IP23.36.76.186:443 ASN#20940 Akamai International B.V.
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerDigiCert Inc Subjectuse.typekit.net Fingerprint15:AD:3F:8A:55:B7:BC:20:D8:70:5B:06:E0:D2:92:7C:BE:C6:E0:56 ValidityThu, 01 Feb 2024 00:00:00 GMT - Mon, 03 Mar 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), CFF, length 31216, version 1.0 Hash7baf570a2e01af403ad49431fc482bb0 034b0921cc2467a6ab362ea340f2bd3acbf181a0 22d7ccae4d7a65a5024282da9af0b70e4cdd6bf2335a95606675587cf2798100
GET /af/2555e1/00000000000000007735e603/30/l?primer=3569ea2f7b7e0cfe53d24d1a326acf279d1b715ca67e789775350bc602cbb2ab&fvd=n7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 31216
etag: "1a9bb0e9ef9f4612dbfd194281f15ba36005b2c3"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Thu, 25 Apr 2024 14:17:56 GMT
X-Firefox-Spdy: h2
|
|
| use.typekit.net/af/78aca8/00000000000000007735e60d/30/l?primer=3569ea2f7b7e0cfe53d24d1a326acf279d1b715ca67e789775350bc602cbb2ab&fvd=n6&v=3 | 23.36.76.186 | 200 OK | 30 kB |
URL GET HTTP/2use.typekit.net/af/78aca8/00000000000000007735e60d/30/l?primer=3569ea2f7b7e0cfe53d24d1a326acf279d1b715ca67e789775350bc602cbb2ab&fvd=n6&v=3 IP23.36.76.186:443 ASN#20940 Akamai International B.V.
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerDigiCert Inc Subjectuse.typekit.net Fingerprint15:AD:3F:8A:55:B7:BC:20:D8:70:5B:06:E0:D2:92:7C:BE:C6:E0:56 ValidityThu, 01 Feb 2024 00:00:00 GMT - Mon, 03 Mar 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), CFF, length 30276, version 1.0 Hash631952abed5fd4941f417b9dc1df2cd8 43db9fc31a6cc230fc0803766790c1d17173f66c d953be327e07dc9229e3116008b568a167e320ac0cb791565693eee7c793895b
GET /af/78aca8/00000000000000007735e60d/30/l?primer=3569ea2f7b7e0cfe53d24d1a326acf279d1b715ca67e789775350bc602cbb2ab&fvd=n6&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 30276
etag: "b1a13f6c2589f3ae380acecdceca87435c589346"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Thu, 25 Apr 2024 14:17:56 GMT
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/accountlikedproducts/getcodes | 172.64.147.126 | 200 OK | 22 B |
URL GET HTTP/2www.na-kd.com/accountlikedproducts/getcodes IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
Hashd751713988987e9331980363e24189ce 97d170e1550eee4afc0af065b78cda302a97674c 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
GET /accountlikedproducts/getcodes HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
content-type: application/json
request-id: |8331da9a0a9c4317b03c19c42de60cf8.03b9f6a74af54e99
traceparent: 00-8331da9a0a9c4317b03c19c42de60cf8-03b9f6a74af54e99-01
x-client-version: 83.2316.9721
x-requested-with: XMLHttpRequest
DNT: 1
Connection: keep-alive
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:56 GMT
content-type: application/json; charset=utf-8
content-length: 22
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
expires: -1
pragma: no-cache
strict-transport-security: max-age=3600; includeSubDomains
x-actual-url: %2faccountlikedproducts%2fgetcodes
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 879ef59dbb4956b4-OSL
X-Firefox-Spdy: h2
|
|
| use.typekit.net/af/3322cc/00000000000000007735e616/30/l?primer=3569ea2f7b7e0cfe53d24d1a326acf279d1b715ca67e789775350bc602cbb2ab&fvd=i4&v=3 | 23.36.76.186 | 200 OK | 32 kB |
URL GET HTTP/2use.typekit.net/af/3322cc/00000000000000007735e616/30/l?primer=3569ea2f7b7e0cfe53d24d1a326acf279d1b715ca67e789775350bc602cbb2ab&fvd=i4&v=3 IP23.36.76.186:443 ASN#20940 Akamai International B.V.
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerDigiCert Inc Subjectuse.typekit.net Fingerprint15:AD:3F:8A:55:B7:BC:20:D8:70:5B:06:E0:D2:92:7C:BE:C6:E0:56 ValidityThu, 01 Feb 2024 00:00:00 GMT - Mon, 03 Mar 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), CFF, length 32080, version 1.0 Hashcd23d5a844ae4b1fb350b87519e00c91 7d1cac5077ceb970f0591b4e750fa663c2f0cd91 ae64195842187919bff95b58bb00d0297fa516e000cd243725231d60c621bb35
GET /af/3322cc/00000000000000007735e616/30/l?primer=3569ea2f7b7e0cfe53d24d1a326acf279d1b715ca67e789775350bc602cbb2ab&fvd=i4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 32080
etag: "948583582c35a11fbdea0332c6ab5fd761a90861"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Thu, 25 Apr 2024 14:17:56 GMT
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/138.chunk.283ade200284b1eadca5.js | 172.64.147.126 | 200 OK | 1.5 kB |
URL GET HTTP/2www.na-kd.com/assets/138.chunk.283ade200284b1eadca5.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (2171) Hashce921f729d1b18eb82c0dce87c0361a4 1590341ea94a3a2039d0f81cb98f7aff84d55cc4 89f2424b2bb93f2bd18fb408a3f5472331e586c07d72b00f80269c7083769ded
GET /assets/138.chunk.283ade200284b1eadca5.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z; ApptusSessionId=b4bd657bbc4b410193054711758105b8; ApptusCustomerKey=14fc468e-ca91-4439-9a8b-77ffba311356
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:56 GMT
content-type: application/x-javascript
content-length: 1535
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f138.chunk.283ade200284b1eadca5.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931865
cache-control: public, max-age=2356854124
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef59ecc5256b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/sitelayout-full-cart.chunk.feae1ab21d25768be9e4.js | 172.64.147.126 | 200 OK | 110 kB |
URL GET HTTP/2www.na-kd.com/assets/sitelayout-full-cart.chunk.feae1ab21d25768be9e4.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typegzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT) Size110 kB (110406 bytes) Hash97813505a9c30c53618aa58542c2fa18 5579999be8e2d5b9013d3e490d802b5755c3b222 1b05d7e07d87533aaae5e3a5888d840fb0aac580485c804c174bbacd0fe5f246
GET /assets/sitelayout-full-cart.chunk.feae1ab21d25768be9e4.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:56 GMT
content-type: application/x-javascript
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0c5ae5785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:12 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2fsitelayout-full-cart.chunk.feae1ab21d25768be9e4.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931925
cache-control: public, max-age=2356854124
server: cloudflare
cf-ray: 879ef59d5ad856b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/no/sok/searchhistory | 172.64.147.126 | 200 OK | 125 B |
URL GET HTTP/2www.na-kd.com/no/sok/searchhistory IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
Hash086c2f6df0be3689ea6853cf9bbd13eb 865f9c2555cbc39d0e495a6941e084f5eddc063f 32d0ffc3cde9119fa44bcf98fadd77e4dc38c1e0a525a71020b78c940c3d6a57
GET /no/sok/searchhistory HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
request-id: |8331da9a0a9c4317b03c19c42de60cf8.9e6ce8c8f8684c6d
traceparent: 00-8331da9a0a9c4317b03c19c42de60cf8-9e6ce8c8f8684c6d-01
DNT: 1
Connection: keep-alive
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z; ApptusSessionId=b4bd657bbc4b410193054711758105b8; ApptusCustomerKey=14fc468e-ca91-4439-9a8b-77ffba311356
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:56 GMT
content-type: application/json; charset=utf-8
content-length: 125
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
expires: -1
pragma: no-cache
strict-transport-security: max-age=3600; includeSubDomains
x-actual-url: %2fno%2fsok%2fsearchhistory
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 879ef59e9c2456b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/siteassets/startfeed/2024/04-april/21.04/desktop/sf_desktop.mp4?ref=EEBD3A26DC | 172.64.147.126 | 206 Partial Content | 5.7 MB |
URL GET HTTP/2www.na-kd.com/siteassets/startfeed/2024/04-april/21.04/desktop/sf_desktop.mp4?ref=EEBD3A26DC IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeISO Media, MP4 v2 [ISO 14496-14] Size5.7 MB (5703145 bytes) Hashc0535bca1b0c6435cb168390c2cd9cc4 a2476b10290d6d35cfdb1a522a1e297080630334 ecf66f506872e24624f8d3bc656cb1b44c7cbcab13cbe7860a3a0f5baf2691e9
GET /siteassets/startfeed/2024/04-april/21.04/desktop/sf_desktop.mp4?ref=EEBD3A26DC HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z; ApptusSessionId=b4bd657bbc4b410193054711758105b8; ApptusCustomerKey=14fc468e-ca91-4439-9a8b-77ffba311356
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 206 Partial Content
date: Thu, 25 Apr 2024 14:17:56 GMT
content-type: video/mp4
content-length: 5703145
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
cache-control: public, max-age=86400
etag: "1DA923CC6B08080"
expires: Fri, 26 Apr 2024 14:17:56 GMT
last-modified: Fri, 19 Apr 2024 09:34:29 GMT
strict-transport-security: max-age=3600; includeSubDomains
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-actual-url: %2fsiteassets%2fstartfeed%2f2024%2f04-april%2f21.04%2fdesktop%2fsf_desktop.mp4%3fref%3dEEBD3A26DC
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 24337
content-range: bytes 0-5703144/5703145
vary: Accept-Encoding
server: cloudflare
cf-ray: 879ef59ebc3e56b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/16.chunk.e6426bb39431d26893c7.js | 172.64.147.126 | 200 OK | 173 kB |
URL GET HTTP/2www.na-kd.com/assets/16.chunk.e6426bb39431d26893c7.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (65449) Size173 kB (172748 bytes) Hashcfbda9d349528246085858a3c569356d ee9394ff993431078c032c7c75a274d9abea3d48 0cad1520f6722745e18beeed108b98393a3b122f45b7a7186ab0de851050578e
GET /assets/16.chunk.e6426bb39431d26893c7.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:56 GMT
content-type: application/x-javascript
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0daffc49274da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 12 Mar 2024 15:34:28 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f16.chunk.e6426bb39431d26893c7.js
x-server-version: 83.2295.9651
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 3729479
cache-control: public, max-age=2356854124
server: cloudflare
cf-ray: 879ef59d5ad756b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/resolvedynamicdata?d=%5B%7Bt%3A%22Avensia.Common.Features.Cart.Models.CartViewModel%2CAvensia.Common%22%7D%5D | 172.64.147.126 | 200 OK | 4.8 kB |
URL GET HTTP/2www.na-kd.com/resolvedynamicdata?d=%5B%7Bt%3A%22Avensia.Common.Features.Cart.Models.CartViewModel%2CAvensia.Common%22%7D%5D IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
Hash0565f850c1c7280e3df1b501d326902c 3ad1f24175c802dec46e5de3c2a08837b3696e9e 2c9568306a99ff10deee0dbe4c28e64c7f6858e5bd10ba2b3f7115ce46f8e180
GET /resolvedynamicdata?d=%5B%7Bt%3A%22Avensia.Common.Features.Cart.Models.CartViewModel%2CAvensia.Common%22%7D%5D HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
request-id: |8331da9a0a9c4317b03c19c42de60cf8.5df32147d291424a
traceparent: 00-8331da9a0a9c4317b03c19c42de60cf8-5df32147d291424a-01
DNT: 1
Connection: keep-alive
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z; ApptusSessionId=b4bd657bbc4b410193054711758105b8; ApptusCustomerKey=14fc468e-ca91-4439-9a8b-77ffba311356
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:56 GMT
content-type: application/json; charset=utf-8
content-length: 4807
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
expires: -1
pragma: no-cache
strict-transport-security: max-age=3600; includeSubDomains
x-actual-url: %2fresolvedynamicdata%3fd%3d%255B%257Bt%253A%2522Avensia.Common.Features.Cart.Models.CartViewModel%252CAvensia.Common%2522%257D%255D
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 879ef5a0fe0856b4-OSL
X-Firefox-Spdy: h2
|
|
| nakd.api.useinsider.com/worker-new.html | 162.159.134.61 | 200 OK | 12 kB |
URL GET HTTP/2nakd.api.useinsider.com/worker-new.html IP162.159.134.61:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerCloudflare, Inc. Subjectuseinsider.com FingerprintFB:C4:8D:15:AA:E6:1E:4C:BE:F7:35:86:35:AF:9C:A6:57:31:AA:9A ValidityTue, 05 Dec 2023 00:00:00 GMT - Wed, 04 Dec 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (9926) Hash0a655ab17b2a60fe7ff63e7c141a891b 997e63a271d06d85aa15ef874af71d23c0ce9856 fce22a8b7b99a6606618b81a12cb93b5479f6a06f9afcc675e5c0bcdce192934
GET /worker-new.html HTTP/1.1
Host: nakd.api.useinsider.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/
Cookie: __cf_bm=LmLdz47SxS0t5t7T3vIHKCCAUybDRgZ8umEzJg_idPk-1714054675-1.0.1.1-frvv04nfbFBmloas50zGGFaRWXHWtqUAYpwuJ_GyZ7.aXll0bJNE2Hp_hogX4Bl0D7RHD5eloM9oW.9bF.UOKA
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:56 GMT
content-type: text/html
access-control-allow-origin: *
last-modified: Mon, 22 Apr 2024 14:02:48 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 352
expires: Thu, 09 May 2024 14:17:56 GMT
cache-control: public, max-age=1209600
content-security-policy-report-only: connect-src *; default-src 'self'; font-src https://fonts.gstatic.com data: 'self' https://font.static.useinsider.com https://mobilefont.useinsider.com https://assets.api.useinsider.com https://fonts.app.apty.io https://use.fontawesome.com https://at.alicdn.com https://fonts.googleapis.com http://themes.googleusercontent.com; frame-src *.api.useinsider.com; img-src data: 'self' https://panel-assets.useinsider.com *.hsforms.com *.wistia.com https://www.google-analytics.com https://www.googletagmanager.com https://www.google.com.tr https://www.google.ie https://image.useinsider.com https://mobileimg.useinsider.com https://mobile-image.useinsider.com https://wp-log.api.useinsider.com https://bm-rx.atatus.com https://mfe.useinsider.com https://fabek.stripocdnplugin.email https://www.facebook.com/; media-src blob: 'self'; script-src 'unsafe-inline' 'self' 'unsafe-eval' https://fast.wistia.com *.api.useinsider.com https://www.google-analytics.com https://www.googletagmanager.com mfe.useinsider.com https://cdnjs.cloudflare.com https://unpkg.com https://js.hsforms.net https://script.hotjar.com https://static.userguiding.com https://static.hotjar.com https://inone.useinsider.com https://api.useinsider.com https://edge.fullstory.com/s/fs.js https://browser.sentry-cdn.com/ https://edge.fullstory.com https://widget.usersnap.com https://static.getbeamer.com https://client.app.apty.io; style-src assets.api.useinsider.com 'unsafe-inline' 'self' https://fonts.googleapis.com https://unpkg.com; worker-src blob: https://*.inone.useinsider.com; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=CfQQhK.PIWMw9iqyOODUTVTV3Ms0joxp8hu0lMvgYmE-1714054676-1.0.1.1-2Yv4Sg3IxkwmZH8Ouy9qR.FsqIa7IahwUT305OQtz12jkdHtNiycn9dS4aUgUW4ZiF1ZYA6qwb2wxVLqq01lI0leNZxTIUT6PcgbfiKpufcCnCfYt1IzyIkfkd7qEj6ddbSgz2cRB9_tXwsTzPGOz4iFl5.vaOuPP7knmG_5z5pHibl9LtmHMnrZ4KoyeYiSmhhOiWhJULWHxdBZcdAaOQ; report-to cf-dqdsmiuppnafbpmm
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=CfQQhK.PIWMw9iqyOODUTVTV3Ms0joxp8hu0lMvgYmE-1714054676-1.0.1.1-2Yv4Sg3IxkwmZH8Ouy9qR.FsqIa7IahwUT305OQtz12jkdHtNiycn9dS4aUgUW4ZiF1ZYA6qwb2wxVLqq01lI0leNZxTIUT6PcgbfiKpufcCnCfYt1IzyIkfkd7qEj6ddbSgz2cRB9_tXwsTzPGOz4iFl5.vaOuPP7knmG_5z5pHibl9LtmHMnrZ4KoyeYiSmhhOiWhJULWHxdBZcdAaOQ"}],"group":"cf-dqdsmiuppnafbpmm","max_age":86400}
server: cloudflare
cf-ray: 879ef59fef76b512-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| app.usercentrics.eu/session/1px.png?settingsId=Jq_Vycyzq | 35.190.14.188 | | 522 B |
URL GET app.usercentrics.eu/session/1px.png?settingsId=Jq_Vycyzq IP35.190.14.188:0
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerGoogle Trust Services LLC Subjectapp.usercentrics.eu FingerprintD5:5D:9C:F8:B9:AC:2F:EC:92:B7:EF:9A:3A:DC:85:5E:69:60:DB:D5 ValidityFri, 05 Apr 2024 03:25:56 GMT - Thu, 04 Jul 2024 04:20:10 GMT
File typePNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced Hash0c0bbf7da9c699fbf4bd1c2932bd2347 a81a4434bf5462e0388c2aa303628705612d1a72 009a4cf1623ff76804e55d59a17f680f77d8c76ada674500997ff44cc7ac0741
GET /session/1px.png?settingsId=Jq_Vycyzq HTTP/1.1
Host: app.usercentrics.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
x-guploader-uploadid: ABPtcPrFsosRa2osV-wCVblV_BswPjp9uulkSaFV0mt8r1dUSSS4mlzTR_vv2Dyf4s8aRmuLUx0
x-goog-generation: 1588928773413784
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 522
content-encoding: gzip
x-goog-hash: crc32c=pFwm0Q==, md5=NwKtpzuJUQF7hFHL1qllIw==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 522
server: UploadServer
date: Thu, 25 Apr 2024 13:55:59 GMT
expires: Thu, 25 Apr 2024 14:25:59 GMT
cache-control: public,max-age=1800,no-transform
age: 1318
last-modified: Fri, 08 May 2020 09:06:13 GMT
etag: "3702ada73b8951017b8451cbd6a96523"
content-type: image/png
strict-transport-security: max-age=7776000
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| app.usercentrics.eu/browser-ui/3.41.0/DefaultData-417db911-e5ac960c.js | 35.190.14.188 | 200 OK | 969 B |
URL GET HTTP/3app.usercentrics.eu/browser-ui/3.41.0/DefaultData-417db911-e5ac960c.js IP35.190.14.188:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerGoogle Trust Services LLC Subjectapp.usercentrics.eu FingerprintD5:5D:9C:F8:B9:AC:2F:EC:92:B7:EF:9A:3A:DC:85:5E:69:60:DB:D5 ValidityFri, 05 Apr 2024 03:25:56 GMT - Thu, 04 Jul 2024 04:20:10 GMT
File typeJavaScript source, ASCII text, with very long lines (2216) Hashab95e9a102b26c3964747269fe1ee3b8 872ffb9c03bcfcc92195859e763389c621e67287 bd7be8509109ef4148d80240a7c824174ba895d747133d4ede1a3c8e15cdf7e4
GET /browser-ui/3.41.0/DefaultData-417db911-e5ac960c.js HTTP/1.1
Host: app.usercentrics.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Referer: https://app.usercentrics.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
x-guploader-uploadid: ABPtcPrylfXnEmNFNgtXEU_bKE0PgcA5Lde605-ixsP37hXVQk8sU9RI_RmvPPLc6IwHbQU5pnk
x-goog-generation: 1712657557476059
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 969
content-encoding: gzip
x-goog-hash: crc32c=QB+xyw==, md5=jkFNASjeRcCC46M/XDbz7Q==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 969
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Tue, 09 Apr 2024 10:17:06 GMT
expires: Wed, 09 Apr 2025 10:17:06 GMT
cache-control: public, max-age=31536000, no-transform
last-modified: Tue, 09 Apr 2024 10:12:37 GMT
etag: "8e414d0128de45c082e3a33f5c36f3ed"
content-type: text/javascript
age: 1396851
strict-transport-security: max-age=7776000
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| api.usercentrics.eu/translations/translations-en.json | 35.241.3.184 | 200 OK | 0 B |
URL OPTIONS HTTP/3api.usercentrics.eu/translations/translations-en.json IP35.241.3.184:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerGoogle Trust Services LLC Subjectapi.usercentrics.eu FingerprintD7:F1:2D:F8:F0:A0:80:5C:7E:36:A8:14:72:62:BE:5F:0D:B6:61:13 ValidityWed, 03 Apr 2024 12:18:35 GMT - Tue, 02 Jul 2024 13:12:28 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /translations/translations-en.json HTTP/1.1
Host: api.usercentrics.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.na-kd.com/
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
x-guploader-uploadid: ABPtcPpJEFddYR3P8hFjwoGA5NCA4u0mgoF9Cjo71kK01qQdEnE5zlX_lTQo0pIwhROJy6-DIcY
access-control-allow-origin: *
access-control-max-age: 3600
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE
access-control-allow-headers: content-type
date: Thu, 25 Apr 2024 14:17:57 GMT
expires: Thu, 25 Apr 2024 14:17:57 GMT
cache-control: private, max-age=0
content-length: 0
server: UploadServer
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=7776000
x-client-geo-location: NO,NO03
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| dc.services.visualstudio.com/v2/track | 20.50.88.242 | 204 No Content | 0 B |
URL OPTIONS HTTP/2dc.services.visualstudio.com/v2/track IP20.50.88.242:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerMicrosoft Corporation Subjectprod.ai.ingestion.msftcloudes.com Fingerprint12:D8:AC:E4:A5:52:FC:5B:79:93:44:5A:E0:45:8D:7E:96:0C:38:E5 ValidityWed, 10 Apr 2024 20:43:52 GMT - Sat, 05 Apr 2025 20:43:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v2/track HTTP/1.1
Host: dc.services.visualstudio.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,sdk-context
Referer: https://www.na-kd.com/
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
server: Microsoft-HTTPAPI/2.0
strict-transport-security: max-age=31536000
access-control-allow-origin: *
access-control-allow-headers: Origin,X-Requested-With,Content-Name,Content-Type,Accept,Cache-Control,Sdk-Context
access-control-allow-methods: POST
access-control-max-age: 3600
date: Thu, 25 Apr 2024 14:17:56 GMT
X-Firefox-Spdy: h2
|
|
| api.usercentrics.eu/translations/translations-en.json | 35.241.3.184 | 200 OK | 2.4 kB |
URL OPTIONS HTTP/3api.usercentrics.eu/translations/translations-en.json IP35.241.3.184:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerGoogle Trust Services LLC Subjectapi.usercentrics.eu FingerprintD7:F1:2D:F8:F0:A0:80:5C:7E:36:A8:14:72:62:BE:5F:0D:B6:61:13 ValidityWed, 03 Apr 2024 12:18:35 GMT - Tue, 02 Jul 2024 13:12:28 GMT
Hashc8252f21ac52425f3868ef4265ad425d b8448eea67b66e875abeda0eadd20e2627526db6 ca61f2ecdd14c962119c00d8eb5f4912e6b400b4817e41fd27a3765fec580c00
GET /translations/translations-en.json HTTP/1.1
Host: api.usercentrics.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.na-kd.com/
content-type: application/json
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
x-guploader-uploadid: ABPtcPp4-MNH7nvxxdKYsT0TxL17irBsQlduv99NsAJpsGpO7bC13tP2O6IeBaiiwq6d0_9PCwHyaNe2eQ
x-goog-generation: 1706613862451010
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 2381
content-encoding: gzip
x-goog-hash: crc32c=VhV9Rg==, md5=DjkJG18msXa+ljQABByY9g==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 2381
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
date: Thu, 25 Apr 2024 10:22:49 GMT
expires: Fri, 26 Apr 2024 10:22:49 GMT
cache-control: public, max-age=86400, s-maxage=86400
age: 14108
last-modified: Tue, 30 Jan 2024 11:24:22 GMT
etag: "0e39091b5f26b176be963400041c98f6"
content-type: application/json
vary: Accept-Encoding
strict-transport-security: max-age=7776000
x-client-geo-location: NO,NO03
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| app.usercentrics.eu/browser-ui/3.41.0/DefaultUI-1e32865a-1d94abc7.js | 35.190.14.188 | 200 OK | 759 B |
URL GET HTTP/3app.usercentrics.eu/browser-ui/3.41.0/DefaultUI-1e32865a-1d94abc7.js IP35.190.14.188:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerGoogle Trust Services LLC Subjectapp.usercentrics.eu FingerprintD5:5D:9C:F8:B9:AC:2F:EC:92:B7:EF:9A:3A:DC:85:5E:69:60:DB:D5 ValidityFri, 05 Apr 2024 03:25:56 GMT - Thu, 04 Jul 2024 04:20:10 GMT
File typeJava source, ASCII text, with very long lines (1732) Hash827e156cdf882b50ecac2ca86ae55200 ed9f3173dabc47ca1bc6521d40d68ad2ec4c3e07 7a75407ddcaf2eeda7da84cdac0baaf5dcaf43e5adbde7b638984cff79788b53
GET /browser-ui/3.41.0/DefaultUI-1e32865a-1d94abc7.js HTTP/1.1
Host: app.usercentrics.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Referer: https://app.usercentrics.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
x-guploader-uploadid: ABPtcPpxopGvV58-Di3oQ-lt6Pc3DbHd4n42SOJu6DrkbeeN-BwxmZYV_4FTq5jp5L0h-QYT4sg
x-goog-generation: 1712657557962924
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 759
content-encoding: gzip
x-goog-hash: crc32c=dtYc5A==, md5=0F4uwI5Y7kICNf71IWLjYA==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 759
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Tue, 09 Apr 2024 10:18:26 GMT
expires: Wed, 09 Apr 2025 10:18:26 GMT
cache-control: public, max-age=31536000, no-transform
last-modified: Tue, 09 Apr 2024 10:12:37 GMT
etag: "d05e2ec08e58ee420235fef52162e360"
content-type: text/javascript
age: 1396771
strict-transport-security: max-age=7776000
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| app.usercentrics.eu/browser-ui/3.41.0/FirstLayerCustomization-ed87720c-786bef74.js | 35.190.14.188 | 200 OK | 1.1 kB |
URL GET HTTP/3app.usercentrics.eu/browser-ui/3.41.0/FirstLayerCustomization-ed87720c-786bef74.js IP35.190.14.188:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerGoogle Trust Services LLC Subjectapp.usercentrics.eu FingerprintD5:5D:9C:F8:B9:AC:2F:EC:92:B7:EF:9A:3A:DC:85:5E:69:60:DB:D5 ValidityFri, 05 Apr 2024 03:25:56 GMT - Thu, 04 Jul 2024 04:20:10 GMT
File typeJava source, ASCII text, with very long lines (2948) Hash6445bd4e45fb60ea0a5a0e0e5783be3a 1b3761dc5506ce8b8862f339cf92580c45780b72 08979d805f74b296598422b81a04d9c28f967fe1119c85a8cda546fbfc8ea681
GET /browser-ui/3.41.0/FirstLayerCustomization-ed87720c-786bef74.js HTTP/1.1
Host: app.usercentrics.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Referer: https://app.usercentrics.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
x-guploader-uploadid: ABPtcPpRo7DPyY3Y5hY2JYoh0uV4pMmx1XyqM5FzWkj0ylqtE-clBc060EoQ-fRu4yJkE7-FKw
x-goog-generation: 1712657558452470
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1083
content-encoding: gzip
x-goog-hash: crc32c=KHlLqw==, md5=MVd1wBFYD9uWWhSqmQcn9A==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 1083
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Tue, 09 Apr 2024 10:17:06 GMT
expires: Wed, 09 Apr 2025 10:17:06 GMT
cache-control: public, max-age=31536000, no-transform
last-modified: Tue, 09 Apr 2024 10:12:38 GMT
etag: "315775c011580fdb965a14aa990727f4"
content-type: text/javascript
age: 1396851
strict-transport-security: max-age=7776000
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| app.usercentrics.eu/browser-ui/3.41.0/ButtonsCustomization-10e183a4-819af262.js | 35.190.14.188 | 200 OK | 235 B |
URL GET HTTP/3app.usercentrics.eu/browser-ui/3.41.0/ButtonsCustomization-10e183a4-819af262.js IP35.190.14.188:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerGoogle Trust Services LLC Subjectapp.usercentrics.eu FingerprintD5:5D:9C:F8:B9:AC:2F:EC:92:B7:EF:9A:3A:DC:85:5E:69:60:DB:D5 ValidityFri, 05 Apr 2024 03:25:56 GMT - Thu, 04 Jul 2024 04:20:10 GMT
File typeJava source, ASCII text, with very long lines (472) Hash5e7c0d4c2ad3ca1526e988fb4b95ee07 ccdfebd9a533a83f5cbcc91ac4d47020c16548f8 c59c67e371590615365dad338299f0ee7116a571d4a049c41d0201721e0d266d
GET /browser-ui/3.41.0/ButtonsCustomization-10e183a4-819af262.js HTTP/1.1
Host: app.usercentrics.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Referer: https://app.usercentrics.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
x-guploader-uploadid: ABPtcPq4Jts4q0Fub9jFElPbo2mpCk5AFocAkzdgxKpX52MkoKsylFmQ6TjgZmiKfjBsuduFOH0
x-goog-generation: 1712657556727343
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 235
content-encoding: gzip
x-goog-hash: crc32c=vH6Ucw==, md5=4WNhgjO0n1yU9pbyoWrsIQ==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 235
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Tue, 09 Apr 2024 10:17:06 GMT
expires: Wed, 09 Apr 2025 10:17:06 GMT
cache-control: public, max-age=31536000, no-transform
last-modified: Tue, 09 Apr 2024 10:12:36 GMT
etag: "e163618233b49f5c94f696f2a16aec21"
content-type: text/javascript
age: 1396851
strict-transport-security: max-age=7776000
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| app.usercentrics.eu/browser-ui/3.41.0/SecondLayerUI-6a58c729-97df8fba.js | 35.190.14.188 | 200 OK | 322 B |
URL GET HTTP/3app.usercentrics.eu/browser-ui/3.41.0/SecondLayerUI-6a58c729-97df8fba.js IP35.190.14.188:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerGoogle Trust Services LLC Subjectapp.usercentrics.eu FingerprintD5:5D:9C:F8:B9:AC:2F:EC:92:B7:EF:9A:3A:DC:85:5E:69:60:DB:D5 ValidityFri, 05 Apr 2024 03:25:56 GMT - Thu, 04 Jul 2024 04:20:10 GMT
File typeJava source, ASCII text, with very long lines (576) Hash435d980d3b15c0924cb2f7cac5f9514a 59384eb1bbfbbea67bddd4947b57e96d56780ce5 54795ec7d81b386fd21fc0b81a67ce4bfcfdcbc28d8905dc6b31cfebea81992e
GET /browser-ui/3.41.0/SecondLayerUI-6a58c729-97df8fba.js HTTP/1.1
Host: app.usercentrics.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Referer: https://app.usercentrics.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
x-guploader-uploadid: ABPtcPrn-IYwpImknNJRSGw2Luztw7nWIfbYfW4wg0ejKr2CutnvkOzUBn8gnv2i7uM84AUP5XrNT9ejTw
x-goog-generation: 1712657559532503
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 322
content-encoding: gzip
x-goog-hash: crc32c=5vr6Eg==, md5=Oto0q7NWakHmMLO1emn3RQ==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 322
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Tue, 09 Apr 2024 10:18:26 GMT
expires: Wed, 09 Apr 2025 10:18:26 GMT
cache-control: public, max-age=31536000, no-transform
last-modified: Tue, 09 Apr 2024 10:12:39 GMT
etag: "3ada34abb3566a41e630b3b57a69f745"
content-type: text/javascript
age: 1396771
strict-transport-security: max-age=7776000
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| app.usercentrics.eu/browser-ui/3.41.0/Taglogger-c28eb335-3b8988c6.js | 35.190.14.188 | 200 OK | 689 B |
URL GET HTTP/3app.usercentrics.eu/browser-ui/3.41.0/Taglogger-c28eb335-3b8988c6.js IP35.190.14.188:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerGoogle Trust Services LLC Subjectapp.usercentrics.eu FingerprintD5:5D:9C:F8:B9:AC:2F:EC:92:B7:EF:9A:3A:DC:85:5E:69:60:DB:D5 ValidityFri, 05 Apr 2024 03:25:56 GMT - Thu, 04 Jul 2024 04:20:10 GMT
File typeJavaScript source, ASCII text, with very long lines (1274) Hasha862ef2cad029a2a9d907fdf047394b9 4f1b97e6880afa751975ff604a0a64cd7cd9ca45 f59973ae8aa50c92dcdbbdcb5710f5058319fede48f02651ec1c675b968827da
GET /browser-ui/3.41.0/Taglogger-c28eb335-3b8988c6.js HTTP/1.1
Host: app.usercentrics.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Referer: https://app.usercentrics.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
x-guploader-uploadid: ABPtcPpJo7EJUmS2DfZmYxPFwP04DiQB4ga_OaJpgLwW8gHnk3t9hDWSnFrXjGk-NTcWkeRx-j8
x-goog-generation: 1712657560077766
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 689
content-encoding: gzip
x-goog-hash: crc32c=JQSLUg==, md5=l+OXYnFK/udxyQrk+AAdVw==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 689
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Tue, 09 Apr 2024 10:17:06 GMT
expires: Wed, 09 Apr 2025 10:17:06 GMT
cache-control: public, max-age=31536000, no-transform
last-modified: Tue, 09 Apr 2024 10:12:40 GMT
etag: "97e39762714afee771c90ae4f8001d57"
content-type: text/javascript
age: 1396851
strict-transport-security: max-age=7776000
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| app.usercentrics.eu/browser-ui/3.41.0/PrivacyButton-cc16177f.js | 35.190.14.188 | 200 OK | 2.4 kB |
URL GET HTTP/3app.usercentrics.eu/browser-ui/3.41.0/PrivacyButton-cc16177f.js IP35.190.14.188:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerGoogle Trust Services LLC Subjectapp.usercentrics.eu FingerprintD5:5D:9C:F8:B9:AC:2F:EC:92:B7:EF:9A:3A:DC:85:5E:69:60:DB:D5 ValidityFri, 05 Apr 2024 03:25:56 GMT - Thu, 04 Jul 2024 04:20:10 GMT
File typeJava source, ASCII text, with very long lines (5490) Hash535ef3030cfb90759c9f053845c36a13 b84d170a062f599db26412b441962480bb9491ee d6ed57528e4162443c7b65911a3a9ca969f670d9266d76e64c6898d421072bc9
GET /browser-ui/3.41.0/PrivacyButton-cc16177f.js HTTP/1.1
Host: app.usercentrics.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Referer: https://app.usercentrics.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
x-guploader-uploadid: ABPtcPr6tWY4z-_CwiHDyxaabvVgjMA9hci9ygvwsfiLsCVWmsfiNi7Yyum4FdwsOZaU0quTDBbR8F0QuA
x-goog-generation: 1712657558727947
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 2449
content-encoding: gzip
x-goog-hash: crc32c=AszcZg==, md5=yrGYbwCkO7sO7DLSRNw7+g==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 2449
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Tue, 09 Apr 2024 10:18:25 GMT
expires: Wed, 09 Apr 2025 10:18:25 GMT
cache-control: public, max-age=31536000, no-transform
last-modified: Tue, 09 Apr 2024 10:12:38 GMT
etag: "cab1986f00a43bbb0eec32d244dc3bfa"
content-type: text/javascript
age: 1396772
strict-transport-security: max-age=7776000
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| app.usercentrics.eu/browser-ui/3.41.0/index-bf2b386b.js | 35.190.14.188 | 200 OK | 809 B |
URL GET HTTP/3app.usercentrics.eu/browser-ui/3.41.0/index-bf2b386b.js IP35.190.14.188:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerGoogle Trust Services LLC Subjectapp.usercentrics.eu FingerprintD5:5D:9C:F8:B9:AC:2F:EC:92:B7:EF:9A:3A:DC:85:5E:69:60:DB:D5 ValidityFri, 05 Apr 2024 03:25:56 GMT - Thu, 04 Jul 2024 04:20:10 GMT
File typeJava source, ASCII text, with very long lines (1739) Hashda7bbf1a7ba563b91e2d7726c935606d 4f4b24f295cb22ca213a6f3f76209b3fcf379f25 01610333c813a38bec0354ad25abf405b7a343d2521cd1c73e77a26ef17c9679
GET /browser-ui/3.41.0/index-bf2b386b.js HTTP/1.1
Host: app.usercentrics.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Referer: https://app.usercentrics.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
x-guploader-uploadid: ABPtcPqkuQ7yktgGI6ImjpPUp8qEKfvGlGjrCUhAprI1ILw1Lx4fLy-oX6RXXRU65HkYysvZnEMOZL6fKw
x-goog-generation: 1712657566096068
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 809
content-encoding: gzip
x-goog-hash: crc32c=JYPPew==, md5=DFY+MebNPxic4qD2rUrXyg==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 809
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Tue, 09 Apr 2024 10:18:25 GMT
expires: Wed, 09 Apr 2025 10:18:25 GMT
cache-control: public, max-age=31536000, no-transform
last-modified: Tue, 09 Apr 2024 10:12:46 GMT
etag: "0c563e31e6cd3f189ce2a0f6ad4ad7ca"
content-type: text/javascript
age: 1396772
strict-transport-security: max-age=7776000
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| app.usercentrics.eu/browser-ui/3.41.0/index-3e0b1033.js | 35.190.14.188 | 200 OK | 2.1 kB |
URL GET HTTP/3app.usercentrics.eu/browser-ui/3.41.0/index-3e0b1033.js IP35.190.14.188:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerGoogle Trust Services LLC Subjectapp.usercentrics.eu FingerprintD5:5D:9C:F8:B9:AC:2F:EC:92:B7:EF:9A:3A:DC:85:5E:69:60:DB:D5 ValidityFri, 05 Apr 2024 03:25:56 GMT - Thu, 04 Jul 2024 04:20:10 GMT
File typeJava source, ASCII text, with very long lines (5054) Hash3cb8636556e88c2379b68e01921a430b 02fb74d4bafca161f6d5fff0d9a0e84fb73d1b87 e5373765a7f2c725fdd4217dff3466a408b1fe57a2cb95de9de300f9c503fbb9
GET /browser-ui/3.41.0/index-3e0b1033.js HTTP/1.1
Host: app.usercentrics.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Referer: https://app.usercentrics.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
x-guploader-uploadid: ABPtcPql2BVdYZrnCUKg8p2fASLNYc49VXPk7hMTTignPhvf6LAO11cNKpDbAMvJyNN1XQ98NWSwMvEGDA
x-goog-generation: 1712657564840989
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 2061
content-encoding: gzip
x-goog-hash: crc32c=5z774Q==, md5=IkMN+zk8wVuc1/YziAOz4A==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 2061
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Tue, 09 Apr 2024 10:18:25 GMT
expires: Wed, 09 Apr 2025 10:18:25 GMT
cache-control: public, max-age=31536000, no-transform
age: 1396772
last-modified: Tue, 09 Apr 2024 10:12:44 GMT
etag: "22430dfb393cc15b9cd7f6338803b3e0"
content-type: text/javascript
strict-transport-security: max-age=7776000
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| app.usercentrics.eu/browser-ui/3.41.0/SaveButton-7cc30e6e.js | 35.190.14.188 | 200 OK | 618 B |
URL GET HTTP/3app.usercentrics.eu/browser-ui/3.41.0/SaveButton-7cc30e6e.js IP35.190.14.188:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerGoogle Trust Services LLC Subjectapp.usercentrics.eu FingerprintD5:5D:9C:F8:B9:AC:2F:EC:92:B7:EF:9A:3A:DC:85:5E:69:60:DB:D5 ValidityFri, 05 Apr 2024 03:25:56 GMT - Thu, 04 Jul 2024 04:20:10 GMT
File typeJava source, ASCII text, with very long lines (1512) Hashfb39a593baf9c3cbc1b5fd442cb1462c 6cade3b504dbca37146b4834054fe34aa27f15c8 cb9aa93806e5208a758155c845675fe39fdc026c1f4fec2617ae4085be15cb41
GET /browser-ui/3.41.0/SaveButton-7cc30e6e.js HTTP/1.1
Host: app.usercentrics.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Referer: https://app.usercentrics.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
x-guploader-uploadid: ABPtcPrkwLuy9peNpLZVtijkKcX_8WSH0d5i5zQVPRjrwTWwHs1YpGDjxmKVVeuYg_PIyge4RPRIE3h9xA
x-goog-generation: 1712657559246746
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 618
content-encoding: gzip
x-goog-hash: crc32c=wxDx/Q==, md5=mLrnnK+++ByugZnC9OOsRQ==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 618
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Tue, 09 Apr 2024 10:18:25 GMT
expires: Wed, 09 Apr 2025 10:18:25 GMT
cache-control: public, max-age=31536000, no-transform
last-modified: Tue, 09 Apr 2024 10:12:39 GMT
etag: "98bae79cafbef81cae8199c2f4e3ac45"
content-type: text/javascript
age: 1396772
strict-transport-security: max-age=7776000
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| app.usercentrics.eu/browser-ui/3.41.0/DefaultTabs-98684779.js | 35.190.14.188 | 200 OK | 1.7 kB |
URL GET HTTP/3app.usercentrics.eu/browser-ui/3.41.0/DefaultTabs-98684779.js IP35.190.14.188:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerGoogle Trust Services LLC Subjectapp.usercentrics.eu FingerprintD5:5D:9C:F8:B9:AC:2F:EC:92:B7:EF:9A:3A:DC:85:5E:69:60:DB:D5 ValidityFri, 05 Apr 2024 03:25:56 GMT - Thu, 04 Jul 2024 04:20:10 GMT
File typeJavaScript source, ASCII text, with very long lines (4398) Hashf5ef16517eccdef6dcfd56c14035fe22 f3aa96d2ff448a063cc866df6d098d29821bcc96 c319507affe035f30a152636f3dea2648b5a3eb9d39fa2364e127680e5719f93
GET /browser-ui/3.41.0/DefaultTabs-98684779.js HTTP/1.1
Host: app.usercentrics.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Referer: https://app.usercentrics.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
x-guploader-uploadid: ABPtcPqrGEpX9hebIZnov2dGWPWcck94waIUYTkTo0a6T-CyKTZcyh7c_ZoXpH-GhHuflW3FPEnX2P7bEA
x-goog-generation: 1712657557717784
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1697
content-encoding: gzip
x-goog-hash: crc32c=gKQgaQ==, md5=n6K3VVL0kt3olKu2ijobvA==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 1697
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Tue, 09 Apr 2024 10:18:25 GMT
expires: Wed, 09 Apr 2025 10:18:25 GMT
cache-control: public, max-age=31536000, no-transform
age: 1396772
last-modified: Tue, 09 Apr 2024 10:12:37 GMT
etag: "9fa2b75552f492dde894abb68a3a1bbc"
content-type: text/javascript
strict-transport-security: max-age=7776000
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| consent-api.service.consent.usercentrics.eu/consent/uw/3 | 35.201.111.240 | 204 No Content | 0 B |
URL OPTIONS HTTP/2consent-api.service.consent.usercentrics.eu/consent/uw/3 IP35.201.111.240:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerGoogle Trust Services LLC Subjectconsent-api.service.consent.usercentrics.eu Fingerprint77:21:17:86:90:78:00:23:48:78:B9:A7:8B:E4:B1:20:6D:80:F5:4B ValiditySat, 06 Apr 2024 13:59:33 GMT - Fri, 05 Jul 2024 14:53:07 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /consent/uw/3 HTTP/1.1
Host: consent-api.service.consent.usercentrics.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: access-control-allow-origin,content-type,x-request-id
Referer: https://www.na-kd.com/
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
vary: Origin, Access-Control-Request-Headers
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-headers: access-control-allow-origin,content-type,x-request-id
access-control-max-age: 86400
x-cloud-trace-context: aadff9e100e302ee00e76decd9b1abe3
date: Thu, 25 Apr 2024 14:17:57 GMT
content-type: text/html
server: Google Frontend
content-length: 0
via: 1.1 google
strict-transport-security: max-age=7776000
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| app.usercentrics.eu/browser-ui/3.41.0/VirtualServiceItem-18a4d364.js | 35.190.14.188 | 200 OK | 49 kB |
URL GET HTTP/3app.usercentrics.eu/browser-ui/3.41.0/VirtualServiceItem-18a4d364.js IP35.190.14.188:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerGoogle Trust Services LLC Subjectapp.usercentrics.eu FingerprintD5:5D:9C:F8:B9:AC:2F:EC:92:B7:EF:9A:3A:DC:85:5E:69:60:DB:D5 ValidityFri, 05 Apr 2024 03:25:56 GMT - Thu, 04 Jul 2024 04:20:10 GMT
File typeUnicode text, UTF-8 text, with very long lines (65533), with no line terminators Hash0f33920061e2a6e3790361391bd4b272 8d11dfccf4de6331580578b3a01238c3b1c94571 5e3cd5423cac2513449fc1fb2d72f178b7fac032da3e162a1b5776e26d9eed67
GET /browser-ui/3.41.0/VirtualServiceItem-18a4d364.js HTTP/1.1
Host: app.usercentrics.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Referer: https://app.usercentrics.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
x-guploader-uploadid: ABPtcPobqnWlUzLvwc0bBwu4oVUeIgH4cFn18LZ5YikfQj-4xhtrXmVjx12zi60Mj57wApqW5n-5C7chQg
x-goog-generation: 1712657560958909
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 48640
content-encoding: gzip
x-goog-hash: crc32c=17dm6w==, md5=unE7lAJyLa8E4aBmHqe+gg==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 48640
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Tue, 09 Apr 2024 10:18:25 GMT
expires: Wed, 09 Apr 2025 10:18:25 GMT
cache-control: public, max-age=31536000, no-transform
last-modified: Tue, 09 Apr 2024 10:12:40 GMT
etag: "ba713b9402722daf04e1a0661ea7be82"
content-type: text/javascript
age: 1396772
strict-transport-security: max-age=7776000
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| consent-api.service.consent.usercentrics.eu/consent/uw/3 | 35.201.111.240 | 204 No Content | 0 B |
URL OPTIONS HTTP/2consent-api.service.consent.usercentrics.eu/consent/uw/3 IP35.201.111.240:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerGoogle Trust Services LLC Subjectconsent-api.service.consent.usercentrics.eu Fingerprint77:21:17:86:90:78:00:23:48:78:B9:A7:8B:E4:B1:20:6D:80:F5:4B ValiditySat, 06 Apr 2024 13:59:33 GMT - Fri, 05 Jul 2024 14:53:07 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /consent/uw/3 HTTP/1.1
Host: consent-api.service.consent.usercentrics.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.na-kd.com/
content-type: application/json
Access-Control-Allow-Origin: *
X-Request-ID: f228500f-c0df-4023-9f99-bd548c64f892
Content-Length: 3219
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 201 Created
vary: Origin
access-control-allow-origin: *
x-cloud-trace-context: 6cc2e3616137af662abbb5b0c3ccf766
date: Thu, 25 Apr 2024 14:17:57 GMT
content-type: text/html
server: Google Frontend
content-length: 0
via: 1.1 google
strict-transport-security: max-age=7776000
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| nakd.api.useinsider.com/ins.js?id=10004432 | 162.159.134.61 | 200 OK | 148 kB |
URL GET HTTP/2nakd.api.useinsider.com/ins.js?id=10004432 IP162.159.134.61:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerCloudflare, Inc. Subjectuseinsider.com FingerprintFB:C4:8D:15:AA:E6:1E:4C:BE:F7:35:86:35:AF:9C:A6:57:31:AA:9A ValidityTue, 05 Dec 2023 00:00:00 GMT - Wed, 04 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size148 kB (148532 bytes) Hash36da0bdbb7cbd1a5a7ea2aedc885e980 bf9b6ece449387906cd0c9f685e5a576015e5020 5e40e3a0b51dc60b8a3f2aa3add364779f693417253d4da893be9a646db7c708
GET /ins.js?id=10004432 HTTP/1.1
Host: nakd.api.useinsider.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/
Cookie: __cf_bm=LmLdz47SxS0t5t7T3vIHKCCAUybDRgZ8umEzJg_idPk-1714054675-1.0.1.1-frvv04nfbFBmloas50zGGFaRWXHWtqUAYpwuJ_GyZ7.aXll0bJNE2Hp_hogX4Bl0D7RHD5eloM9oW.9bF.UOKA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:57 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
etag: W/"36da0bdbb7cbd1a5a7ea2aedc885e980"
last-modified: Thu, 25 Apr 2024 14:11:59 GMT
pragma: public
strict-transport-security: max-age=31536000; includeSubDomains
x-amz-id-2: lwTTl3uSqtgly9qdddLg+1ZFaE6PiYFl3ORNW4ITs7POFQksfL/YlqC9bEQltyCR4R6EwrHqLSQ=
x-amz-request-id: 0RAE2A60TJN2MD2N
x-amz-version-id: OBWcENqBRX_MxqrLERRTxmjxs_PPhLXO
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1
cf-cache-status: HIT
age: 354
expires: Thu, 25 Apr 2024 14:22:57 GMT
cache-control: public, max-age=300
vary: Accept-Encoding
content-security-policy-report-only: connect-src *; default-src 'self'; font-src https://fonts.gstatic.com data: 'self' https://font.static.useinsider.com https://mobilefont.useinsider.com https://assets.api.useinsider.com https://fonts.app.apty.io https://use.fontawesome.com https://at.alicdn.com https://fonts.googleapis.com http://themes.googleusercontent.com; frame-src *.api.useinsider.com; img-src data: 'self' https://panel-assets.useinsider.com *.hsforms.com *.wistia.com https://www.google-analytics.com https://www.googletagmanager.com https://www.google.com.tr https://www.google.ie https://image.useinsider.com https://mobileimg.useinsider.com https://mobile-image.useinsider.com https://wp-log.api.useinsider.com https://bm-rx.atatus.com https://mfe.useinsider.com https://fabek.stripocdnplugin.email https://www.facebook.com/; media-src blob: 'self'; script-src 'unsafe-inline' 'self' 'unsafe-eval' https://fast.wistia.com *.api.useinsider.com https://www.google-analytics.com https://www.googletagmanager.com mfe.useinsider.com https://cdnjs.cloudflare.com https://unpkg.com https://js.hsforms.net https://script.hotjar.com https://static.userguiding.com https://static.hotjar.com https://inone.useinsider.com https://api.useinsider.com https://edge.fullstory.com/s/fs.js https://browser.sentry-cdn.com/ https://edge.fullstory.com https://widget.usersnap.com https://static.getbeamer.com https://client.app.apty.io; style-src assets.api.useinsider.com 'unsafe-inline' 'self' https://fonts.googleapis.com https://unpkg.com; worker-src blob: https://*.inone.useinsider.com; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=N2voFvNEuGoNiba.0.7Ul3vAGrgbZLQ2bMhaYtpUYEQ-1714054677-1.0.1.1-K80ZmXZuvA040xoVhT3XByj08Yh_n0Ve_1RdBmBkydZUPdlBDlYGN9wdLEuRyz2FnVOmXN5MmCGJba88d3vWr._f5ZBLgf6s10kbWPesM0orGiCapmcAieUCOH0rpO8gSfoyprGxIrOTl29A3s5Ti_ggGF0kypweu6ryncsId1EbNNNVDlKEfZDIT5Ap23O_vmqC85ED62DCq4gl2QkQsQ; report-to cf-wkbaoxmbnjlohmgn
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=N2voFvNEuGoNiba.0.7Ul3vAGrgbZLQ2bMhaYtpUYEQ-1714054677-1.0.1.1-K80ZmXZuvA040xoVhT3XByj08Yh_n0Ve_1RdBmBkydZUPdlBDlYGN9wdLEuRyz2FnVOmXN5MmCGJba88d3vWr._f5ZBLgf6s10kbWPesM0orGiCapmcAieUCOH0rpO8gSfoyprGxIrOTl29A3s5Ti_ggGF0kypweu6ryncsId1EbNNNVDlKEfZDIT5Ap23O_vmqC85ED62DCq4gl2QkQsQ"}],"group":"cf-wkbaoxmbnjlohmgn","max_age":86400}
server: cloudflare
cf-ray: 879ef5a81895b512-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| carrier.useinsider.com/y/v2/z | 162.159.133.61 | 200 OK | 0 B |
URL POST HTTP/2carrier.useinsider.com/y/v2/z IP162.159.133.61:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerCloudflare, Inc. Subjectuseinsider.com FingerprintFB:C4:8D:15:AA:E6:1E:4C:BE:F7:35:86:35:AF:9C:A6:57:31:AA:9A ValidityTue, 05 Dec 2023 00:00:00 GMT - Wed, 04 Dec 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /y/v2/z HTTP/1.1
Host: carrier.useinsider.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,partner
Referer: https://www.na-kd.com/
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Thu, 25 Apr 2024 14:18:00 GMT
access-control-allow-headers: content-type,partner
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: *
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=rN9c0y7fvNL3ZKP77Q5pZCkZapLC8JBiYdv9sWBLmtk-1714054680-1.0.1.1-FYnzTBlMf5asW92FiAGmdCKT.IRP362qlxukAF_0mV__uydErAVt4v2JXlJPJqr_wgl2anbXBgmGViRBjp8NLA; path=/; expires=Thu, 25-Apr-24 14:48:00 GMT; domain=.useinsider.com; HttpOnly; Secure; SameSite=None
content-security-policy-report-only: connect-src *; default-src 'self'; font-src https://fonts.gstatic.com data: 'self' https://font.static.useinsider.com https://mobilefont.useinsider.com https://assets.api.useinsider.com https://fonts.app.apty.io https://use.fontawesome.com https://at.alicdn.com https://fonts.googleapis.com http://themes.googleusercontent.com; frame-src *.api.useinsider.com; img-src data: 'self' https://panel-assets.useinsider.com *.hsforms.com *.wistia.com https://www.google-analytics.com https://www.googletagmanager.com https://www.google.com.tr https://www.google.ie https://image.useinsider.com https://mobileimg.useinsider.com https://mobile-image.useinsider.com https://wp-log.api.useinsider.com https://bm-rx.atatus.com https://mfe.useinsider.com https://fabek.stripocdnplugin.email https://www.facebook.com/; media-src blob: 'self'; script-src 'unsafe-inline' 'self' 'unsafe-eval' https://fast.wistia.com *.api.useinsider.com https://www.google-analytics.com https://www.googletagmanager.com mfe.useinsider.com https://cdnjs.cloudflare.com https://unpkg.com https://js.hsforms.net https://script.hotjar.com https://static.userguiding.com https://static.hotjar.com https://inone.useinsider.com https://api.useinsider.com https://edge.fullstory.com/s/fs.js https://browser.sentry-cdn.com/ https://edge.fullstory.com https://widget.usersnap.com https://static.getbeamer.com https://client.app.apty.io; style-src assets.api.useinsider.com 'unsafe-inline' 'self' https://fonts.googleapis.com https://unpkg.com; worker-src blob: https://*.inone.useinsider.com; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=d.MLovtJp7V5TQqytYA5qIOHsEb8iDqjQ_ttQz6P2jM-1714054680-1.0.1.1-1QOCRrhR51ZdFPQYZvE4nkydv2BWIYzIlgvSkcmN60HTQpzKpLIwpZ.Wxr66xZo_B1kuJr1Rz28o_l7MOmPVqfWb1UUr1bTdz1.UmbJls5jSJhgDykF0MlZ6XEZLnyMGUpQXh.CsaT.H5wctVU.BCdaCQMpyTYQ_KvP3anaxWp6eXalCJFK3gA_lWrusGt7FX0c2XA6FaFjxCGHzlfjWDw; report-to cf-xsqxldurjryzhyqh
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=d.MLovtJp7V5TQqytYA5qIOHsEb8iDqjQ_ttQz6P2jM-1714054680-1.0.1.1-1QOCRrhR51ZdFPQYZvE4nkydv2BWIYzIlgvSkcmN60HTQpzKpLIwpZ.Wxr66xZo_B1kuJr1Rz28o_l7MOmPVqfWb1UUr1bTdz1.UmbJls5jSJhgDykF0MlZ6XEZLnyMGUpQXh.CsaT.H5wctVU.BCdaCQMpyTYQ_KvP3anaxWp6eXalCJFK3gA_lWrusGt7FX0c2XA6FaFjxCGHzlfjWDw"}],"group":"cf-xsqxldurjryzhyqh","max_age":86400}
server: cloudflare
cf-ray: 879ef5b94ff3b517-OSL
X-Firefox-Spdy: h2
|
|
| log.api.useinsider.com/v2/collect?p=eyJyZWYiOiJodHRwczovL2Nsa2RlLnRyYWRlZG91Ymxlci5jb20vIiwicmVmZXJlciI6Imh0dHBzOi8vY2xrZGUudHJhZGVkb3VibGVyLmNvbS8iLCJ1c2VySWQiOiIxNzE0MDU0NjgwNTA5NDQzNTYzNDBiYy4yYWM2ODc3MiIsInBsYXRmb3JtIjoid2ViIiwiY3VzdG9tU2VnbWVudElkIjo0LCJsb2dUeXBlIjoiaW1wcmVzc2lvbiJ9&t=cs&pn=nakd | 162.159.134.61 | 200 OK | 42 B |
URL GET HTTP/2log.api.useinsider.com/v2/collect?p=eyJyZWYiOiJodHRwczovL2Nsa2RlLnRyYWRlZG91Ymxlci5jb20vIiwicmVmZXJlciI6Imh0dHBzOi8vY2xrZGUudHJhZGVkb3VibGVyLmNvbS8iLCJ1c2VySWQiOiIxNzE0MDU0NjgwNTA5NDQzNTYzNDBiYy4yYWM2ODc3MiIsInBsYXRmb3JtIjoid2ViIiwiY3VzdG9tU2VnbWVudElkIjo0LCJsb2dUeXBlIjoiaW1wcmVzc2lvbiJ9&t=cs&pn=nakd IP162.159.134.61:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerCloudflare, Inc. Subjectuseinsider.com FingerprintFB:C4:8D:15:AA:E6:1E:4C:BE:F7:35:86:35:AF:9C:A6:57:31:AA:9A ValidityTue, 05 Dec 2023 00:00:00 GMT - Wed, 04 Dec 2024 23:59:59 GMT
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /v2/collect?p=eyJyZWYiOiJodHRwczovL2Nsa2RlLnRyYWRlZG91Ymxlci5jb20vIiwicmVmZXJlciI6Imh0dHBzOi8vY2xrZGUudHJhZGVkb3VibGVyLmNvbS8iLCJ1c2VySWQiOiIxNzE0MDU0NjgwNTA5NDQzNTYzNDBiYy4yYWM2ODc3MiIsInBsYXRmb3JtIjoid2ViIiwiY3VzdG9tU2VnbWVudElkIjo0LCJsb2dUeXBlIjoiaW1wcmVzc2lvbiJ9&t=cs&pn=nakd HTTP/1.1
Host: log.api.useinsider.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/
Cookie: __cf_bm=LmLdz47SxS0t5t7T3vIHKCCAUybDRgZ8umEzJg_idPk-1714054675-1.0.1.1-frvv04nfbFBmloas50zGGFaRWXHWtqUAYpwuJ_GyZ7.aXll0bJNE2Hp_hogX4Bl0D7RHD5eloM9oW.9bF.UOKA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:18:00 GMT
content-type: image/gif
content-length: 42
cache-control: no-cache, no-store, must-revalidate
cf-cache-status: DYNAMIC
content-security-policy-report-only: connect-src *; default-src 'self'; font-src https://fonts.gstatic.com data: 'self' https://font.static.useinsider.com https://mobilefont.useinsider.com https://assets.api.useinsider.com https://fonts.app.apty.io https://use.fontawesome.com https://at.alicdn.com https://fonts.googleapis.com http://themes.googleusercontent.com; frame-src *.api.useinsider.com; img-src data: 'self' https://panel-assets.useinsider.com *.hsforms.com *.wistia.com https://www.google-analytics.com https://www.googletagmanager.com https://www.google.com.tr https://www.google.ie https://image.useinsider.com https://mobileimg.useinsider.com https://mobile-image.useinsider.com https://wp-log.api.useinsider.com https://bm-rx.atatus.com https://mfe.useinsider.com https://fabek.stripocdnplugin.email https://www.facebook.com/; media-src blob: 'self'; script-src 'unsafe-inline' 'self' 'unsafe-eval' https://fast.wistia.com *.api.useinsider.com https://www.google-analytics.com https://www.googletagmanager.com mfe.useinsider.com https://cdnjs.cloudflare.com https://unpkg.com https://js.hsforms.net https://script.hotjar.com https://static.userguiding.com https://static.hotjar.com https://inone.useinsider.com https://api.useinsider.com https://edge.fullstory.com/s/fs.js https://browser.sentry-cdn.com/ https://edge.fullstory.com https://widget.usersnap.com https://static.getbeamer.com https://client.app.apty.io; style-src assets.api.useinsider.com 'unsafe-inline' 'self' https://fonts.googleapis.com https://unpkg.com; worker-src blob: https://*.inone.useinsider.com; report-uri /cdn-cgi/script_monitor/report?m=WbaBqlvAc2ifArNWd2B5fkqmysJ955VonhFnmOLvNzw-1714054680-1.0.1.1-wx1LUBc5MYTWXY2QdTrsMOfRCjiNQ5fhz3QWJ912JD_esoTeHaCKbVmXoEzjzhlnKwacFkKet0LyrwRd8TJfhmz.Ay07caQWykDMEtl1rbiF1H8LqVWz7lb.dBRFO68fxESghBzBXldBIcnrzdOSri6fumZNATFM6h49FdgvPJI41uZHh9GTQbEk.aLy7V5PuCmPNwpXEjZ44WMS6JkWJg; report-to cf-iletaknqqdnmivik
report-to: {"endpoints":[{"url":"\/cdn-cgi\/script_monitor\/report?m=WbaBqlvAc2ifArNWd2B5fkqmysJ955VonhFnmOLvNzw-1714054680-1.0.1.1-wx1LUBc5MYTWXY2QdTrsMOfRCjiNQ5fhz3QWJ912JD_esoTeHaCKbVmXoEzjzhlnKwacFkKet0LyrwRd8TJfhmz.Ay07caQWykDMEtl1rbiF1H8LqVWz7lb.dBRFO68fxESghBzBXldBIcnrzdOSri6fumZNATFM6h49FdgvPJI41uZHh9GTQbEk.aLy7V5PuCmPNwpXEjZ44WMS6JkWJg"}],"group":"cf-iletaknqqdnmivik","max_age":86400}
server: cloudflare
cf-ray: 879ef5b97ad7b512-OSL
X-Firefox-Spdy: h2
|
|
| hit.api.useinsider.com/hit | 162.159.133.61 | 200 OK | 16 B |
URL POST HTTP/2hit.api.useinsider.com/hit IP162.159.133.61:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerCloudflare, Inc. Subjectuseinsider.com FingerprintFB:C4:8D:15:AA:E6:1E:4C:BE:F7:35:86:35:AF:9C:A6:57:31:AA:9A ValidityTue, 05 Dec 2023 00:00:00 GMT - Wed, 04 Dec 2024 23:59:59 GMT
Hash7363e85fe9edee6f053a4b319588c086 a15e2127145548437173fc17f3e980e3f3dee2d0 c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97
POST /hit HTTP/1.1
Host: hit.api.useinsider.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1448
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:18:01 GMT
content-type: text/plain; charset=UTF-8
content-length: 16
access-control-allow-methods: GET
access-control-allow-origin: *
request-id: a04c059e-29f4-4cb5-9aa4-5e8ceb651bf2
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=fdKVXzl7D7MjYNjarCaGw8YIHrRhxuj6CbVn9OLZvGw-1714054681-1.0.1.1-9lFrxYVq3icfq.oxAG9uv3shrHkg0G4N7oK5jO7qjyzemnXeXteN.TwC2KRT_Z5l2GK617unx_GwiRzAXFUXag; path=/; expires=Thu, 25-Apr-24 14:48:01 GMT; domain=.useinsider.com; HttpOnly; Secure; SameSite=None
content-security-policy-report-only: connect-src *; default-src 'self'; font-src https://fonts.gstatic.com data: 'self' https://font.static.useinsider.com https://mobilefont.useinsider.com https://assets.api.useinsider.com https://fonts.app.apty.io https://use.fontawesome.com https://at.alicdn.com https://fonts.googleapis.com http://themes.googleusercontent.com; frame-src *.api.useinsider.com; img-src data: 'self' https://panel-assets.useinsider.com *.hsforms.com *.wistia.com https://www.google-analytics.com https://www.googletagmanager.com https://www.google.com.tr https://www.google.ie https://image.useinsider.com https://mobileimg.useinsider.com https://mobile-image.useinsider.com https://wp-log.api.useinsider.com https://bm-rx.atatus.com https://mfe.useinsider.com https://fabek.stripocdnplugin.email https://www.facebook.com/; media-src blob: 'self'; script-src 'unsafe-inline' 'self' 'unsafe-eval' https://fast.wistia.com *.api.useinsider.com https://www.google-analytics.com https://www.googletagmanager.com mfe.useinsider.com https://cdnjs.cloudflare.com https://unpkg.com https://js.hsforms.net https://script.hotjar.com https://static.userguiding.com https://static.hotjar.com https://inone.useinsider.com https://api.useinsider.com https://edge.fullstory.com/s/fs.js https://browser.sentry-cdn.com/ https://edge.fullstory.com https://widget.usersnap.com https://static.getbeamer.com https://client.app.apty.io; style-src assets.api.useinsider.com 'unsafe-inline' 'self' https://fonts.googleapis.com https://unpkg.com; worker-src blob: https://*.inone.useinsider.com; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=wB.nAjeXMfW1.Jza.buOrmPbNSF5mCN.WbrHtbUlrpU-1714054681-1.0.1.1-z0eM7jJEjJm5AxTLZ5ZjYSOVi3RaGvjfyS06M1v5KnGvEozwyyJtkw4vx7xGTdvZicHfAW65gHkQcVt9vHtlsIMWETMyDv5.xMkGUGj2kXIOyhonxMP3eKy7KDOBhMC5B5XK2unBEypO1_k6g68DSWShURR1IID.c6u_kLAGQfo9Q0hdOo2NkCMbmqUCjHMkXZT8A1LmTHpW786Z5BE6yA; report-to cf-hiwqgcqvkyzirgvc
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=wB.nAjeXMfW1.Jza.buOrmPbNSF5mCN.WbrHtbUlrpU-1714054681-1.0.1.1-z0eM7jJEjJm5AxTLZ5ZjYSOVi3RaGvjfyS06M1v5KnGvEozwyyJtkw4vx7xGTdvZicHfAW65gHkQcVt9vHtlsIMWETMyDv5.xMkGUGj2kXIOyhonxMP3eKy7KDOBhMC5B5XK2unBEypO1_k6g68DSWShURR1IID.c6u_kLAGQfo9Q0hdOo2NkCMbmqUCjHMkXZT8A1LmTHpW786Z5BE6yA"}],"group":"cf-hiwqgcqvkyzirgvc","max_age":86400}
server: cloudflare
cf-ray: 879ef5bc5ad7b517-OSL
X-Firefox-Spdy: h2
|
|
| locationv2.api.useinsider.com/?v=2&pId=10004432& | 162.159.133.61 | 200 OK | 179 B |
URL GET HTTP/2locationv2.api.useinsider.com/?v=2&pId=10004432& IP162.159.133.61:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerCloudflare, Inc. Subjectuseinsider.com FingerprintFB:C4:8D:15:AA:E6:1E:4C:BE:F7:35:86:35:AF:9C:A6:57:31:AA:9A ValidityTue, 05 Dec 2023 00:00:00 GMT - Wed, 04 Dec 2024 23:59:59 GMT
Hashab6b8d2e35239c262f40ea6c52af845b 75b56f45616aeacc88747eb1f970e941ec76a732 c0204e85d6de33f10958a6ead965847d7c9fed184221801ec5aabb979fdf7305
GET /?v=2&pId=10004432& HTTP/1.1
Host: locationv2.api.useinsider.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:18:00 GMT
content-type: application/json; charset=UTF-8
access-control-allow-origin: *
vary: Origin
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=U8mEdpqji0d_VkNZBbPDqyIZpX.SudZEf1BLS.049PA-1714054680-1.0.1.1-XWFt6zsm99B8H2IxCCGFJK3kGBCabBL14DueY_lWXW3DY567FgDp7vXnR__7C6h.evSJl_26awWr0jU2pkPtyw; path=/; expires=Thu, 25-Apr-24 14:48:00 GMT; domain=.useinsider.com; HttpOnly; Secure; SameSite=None
content-security-policy-report-only: connect-src *; default-src 'self'; font-src https://fonts.gstatic.com data: 'self' https://font.static.useinsider.com https://mobilefont.useinsider.com https://assets.api.useinsider.com https://fonts.app.apty.io https://use.fontawesome.com https://at.alicdn.com https://fonts.googleapis.com http://themes.googleusercontent.com; frame-src *.api.useinsider.com; img-src data: 'self' https://panel-assets.useinsider.com *.hsforms.com *.wistia.com https://www.google-analytics.com https://www.googletagmanager.com https://www.google.com.tr https://www.google.ie https://image.useinsider.com https://mobileimg.useinsider.com https://mobile-image.useinsider.com https://wp-log.api.useinsider.com https://bm-rx.atatus.com https://mfe.useinsider.com https://fabek.stripocdnplugin.email https://www.facebook.com/; media-src blob: 'self'; script-src 'unsafe-inline' 'self' 'unsafe-eval' https://fast.wistia.com *.api.useinsider.com https://www.google-analytics.com https://www.googletagmanager.com mfe.useinsider.com https://cdnjs.cloudflare.com https://unpkg.com https://js.hsforms.net https://script.hotjar.com https://static.userguiding.com https://static.hotjar.com https://inone.useinsider.com https://api.useinsider.com https://edge.fullstory.com/s/fs.js https://browser.sentry-cdn.com/ https://edge.fullstory.com https://widget.usersnap.com https://static.getbeamer.com https://client.app.apty.io; style-src assets.api.useinsider.com 'unsafe-inline' 'self' https://fonts.googleapis.com https://unpkg.com; worker-src blob: https://*.inone.useinsider.com; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=C3MzjqL08SeOZ3EaWKOTZAjbkAarLEAAT5kGMkV8Pmw-1714054680-1.0.1.1-RAKzcxF1Ws8fUY_eINVKKWh_r__f8BVcXnHwIiVHIt4TJZd70LAOOtOVnD4WSVffcppdZ7j2WQbKRcQWNQWJ5.en17G1mchpVBQw4M16GOVRSAB3nTbf4wsyv4s72.OyLSbEogTZM9U7EQd5z12juG6VoFbxex1qKJ8UJ6RaX6.n6BnByiSQTcYCFA9Vb7ua._09qV6oviS1llfm.aMBMhA0WHqNlH0V68YBISozrE8; report-to cf-biullhvniqjklyyq
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=C3MzjqL08SeOZ3EaWKOTZAjbkAarLEAAT5kGMkV8Pmw-1714054680-1.0.1.1-RAKzcxF1Ws8fUY_eINVKKWh_r__f8BVcXnHwIiVHIt4TJZd70LAOOtOVnD4WSVffcppdZ7j2WQbKRcQWNQWJ5.en17G1mchpVBQw4M16GOVRSAB3nTbf4wsyv4s72.OyLSbEogTZM9U7EQd5z12juG6VoFbxex1qKJ8UJ6RaX6.n6BnByiSQTcYCFA9Vb7ua._09qV6oviS1llfm.aMBMhA0WHqNlH0V68YBISozrE8"}],"group":"cf-biullhvniqjklyyq","max_age":86400}
server: cloudflare
cf-ray: 879ef5bb9a1fb517-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| carrier.useinsider.com/v2/contact/ucd/update | 162.159.133.61 | 202 Accepted | 0 B |
URL POST HTTP/2carrier.useinsider.com/v2/contact/ucd/update IP162.159.133.61:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerCloudflare, Inc. Subjectuseinsider.com FingerprintFB:C4:8D:15:AA:E6:1E:4C:BE:F7:35:86:35:AF:9C:A6:57:31:AA:9A ValidityTue, 05 Dec 2023 00:00:00 GMT - Wed, 04 Dec 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v2/contact/ucd/update HTTP/1.1
Host: carrier.useinsider.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,encoded,partner
Referer: https://www.na-kd.com/
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Thu, 25 Apr 2024 14:18:03 GMT
access-control-allow-headers: content-type,encoded,partner
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: *
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=f.kmz6zyl.Jk4Xn69gWKaXnBh0D6NM85y5R.9Jz7Mxc-1714054683-1.0.1.1-pUSaH_A2YUE_ZOC4yVlNgrjnNlaIUsW1EfTZ_dq95ZLasvZBtTLVB2tO9sg2ZJSLqzLHciQR2FTBXsb1kvbCOA; path=/; expires=Thu, 25-Apr-24 14:48:03 GMT; domain=.useinsider.com; HttpOnly; Secure; SameSite=None
content-security-policy-report-only: connect-src *; default-src 'self'; font-src https://fonts.gstatic.com data: 'self' https://font.static.useinsider.com https://mobilefont.useinsider.com https://assets.api.useinsider.com https://fonts.app.apty.io https://use.fontawesome.com https://at.alicdn.com https://fonts.googleapis.com http://themes.googleusercontent.com; frame-src *.api.useinsider.com; img-src data: 'self' https://panel-assets.useinsider.com *.hsforms.com *.wistia.com https://www.google-analytics.com https://www.googletagmanager.com https://www.google.com.tr https://www.google.ie https://image.useinsider.com https://mobileimg.useinsider.com https://mobile-image.useinsider.com https://wp-log.api.useinsider.com https://bm-rx.atatus.com https://mfe.useinsider.com https://fabek.stripocdnplugin.email https://www.facebook.com/; media-src blob: 'self'; script-src 'unsafe-inline' 'self' 'unsafe-eval' https://fast.wistia.com *.api.useinsider.com https://www.google-analytics.com https://www.googletagmanager.com mfe.useinsider.com https://cdnjs.cloudflare.com https://unpkg.com https://js.hsforms.net https://script.hotjar.com https://static.userguiding.com https://static.hotjar.com https://inone.useinsider.com https://api.useinsider.com https://edge.fullstory.com/s/fs.js https://browser.sentry-cdn.com/ https://edge.fullstory.com https://widget.usersnap.com https://static.getbeamer.com https://client.app.apty.io; style-src assets.api.useinsider.com 'unsafe-inline' 'self' https://fonts.googleapis.com https://unpkg.com; worker-src blob: https://*.inone.useinsider.com; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=bwKx6wos__ptMy10KeiqIPKCe4usl3FrKQeGfk9YjRE-1714054683-1.0.1.1-f7rt5Sh.fClUHp6hxtLVA2dnNrUBXYDgjqg6tdxOCywIQ2jsmRKt.6xY3sKAgsO5pFTN4aiZBAXA9oJni.KxBw0Azwg2pbqTAbGIkaldX_yRYQ4ai3YsKSejXDXtwfdmEEvH5zLY4UWHz.2e0flejUFKwAlL6aSXrz3ebyrQ5w6kTadXOcK6k7zb8r8q_g1YVJkMiNYdvXvh6aKDbmePOw; report-to cf-mnwxjvcnfzstsqdg
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=bwKx6wos__ptMy10KeiqIPKCe4usl3FrKQeGfk9YjRE-1714054683-1.0.1.1-f7rt5Sh.fClUHp6hxtLVA2dnNrUBXYDgjqg6tdxOCywIQ2jsmRKt.6xY3sKAgsO5pFTN4aiZBAXA9oJni.KxBw0Azwg2pbqTAbGIkaldX_yRYQ4ai3YsKSejXDXtwfdmEEvH5zLY4UWHz.2e0flejUFKwAlL6aSXrz3ebyrQ5w6kTadXOcK6k7zb8r8q_g1YVJkMiNYdvXvh6aKDbmePOw"}],"group":"cf-mnwxjvcnfzstsqdg","max_age":86400}
server: cloudflare
cf-ray: 879ef5ccc9f8b517-OSL
X-Firefox-Spdy: h2
|
|
| carrier.useinsider.com/v2/contact/ucd/update | 162.159.133.61 | 202 Accepted | 46 B |
URL POST HTTP/2carrier.useinsider.com/v2/contact/ucd/update IP162.159.133.61:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerCloudflare, Inc. Subjectuseinsider.com FingerprintFB:C4:8D:15:AA:E6:1E:4C:BE:F7:35:86:35:AF:9C:A6:57:31:AA:9A ValidityTue, 05 Dec 2023 00:00:00 GMT - Wed, 04 Dec 2024 23:59:59 GMT
Hash34589766d32c6e061897ad814b45988a f1e9dec5c4a679b4fe620c448b3d5f7853a37411 de274cae44ccac066e64e2df29e9e9f3c8c8d227b753ce560a94053101f779e1
POST /v2/contact/ucd/update HTTP/1.1
Host: carrier.useinsider.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
partner: nakd
encoded: true
Content-Length: 3464
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 202 Accepted
date: Thu, 25 Apr 2024 14:18:03 GMT
content-type: application/json; charset=UTF-8
content-length: 46
access-control-allow-origin: *
vary: Origin
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=rXvrRBmykdkC1b6yBMOfeWFDfVi.PPd8lXe.78x_u.I-1714054683-1.0.1.1-QK6hNTo.vbgdtLJb8_9HQA.Rl3sJfV5d9C543kePFO1fBIUGfT5KNFugVU.h73tGfyPQTehos0p0cLc67hkZ6Q; path=/; expires=Thu, 25-Apr-24 14:48:03 GMT; domain=.useinsider.com; HttpOnly; Secure; SameSite=None
content-security-policy-report-only: connect-src *; default-src 'self'; font-src https://fonts.gstatic.com data: 'self' https://font.static.useinsider.com https://mobilefont.useinsider.com https://assets.api.useinsider.com https://fonts.app.apty.io https://use.fontawesome.com https://at.alicdn.com https://fonts.googleapis.com http://themes.googleusercontent.com; frame-src *.api.useinsider.com; img-src data: 'self' https://panel-assets.useinsider.com *.hsforms.com *.wistia.com https://www.google-analytics.com https://www.googletagmanager.com https://www.google.com.tr https://www.google.ie https://image.useinsider.com https://mobileimg.useinsider.com https://mobile-image.useinsider.com https://wp-log.api.useinsider.com https://bm-rx.atatus.com https://mfe.useinsider.com https://fabek.stripocdnplugin.email https://www.facebook.com/; media-src blob: 'self'; script-src 'unsafe-inline' 'self' 'unsafe-eval' https://fast.wistia.com *.api.useinsider.com https://www.google-analytics.com https://www.googletagmanager.com mfe.useinsider.com https://cdnjs.cloudflare.com https://unpkg.com https://js.hsforms.net https://script.hotjar.com https://static.userguiding.com https://static.hotjar.com https://inone.useinsider.com https://api.useinsider.com https://edge.fullstory.com/s/fs.js https://browser.sentry-cdn.com/ https://edge.fullstory.com https://widget.usersnap.com https://static.getbeamer.com https://client.app.apty.io; style-src assets.api.useinsider.com 'unsafe-inline' 'self' https://fonts.googleapis.com https://unpkg.com; worker-src blob: https://*.inone.useinsider.com; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=j_hjjRYxuv9GLJkVHVtWEhZYTPgprSe6rWlyaaqmN60-1714054683-1.0.1.1-io3Y5vPyCsMsVEN5o9dVvf7u5RXa9vBewY_ITKwT1Fk4duVZnLHJMjKbAqluIO7qv0w5iSlHBLzPdmc.pcNa3N9IIhi5qmfLZur3XFJHbvTaylvtlzc1B42Me90xgKs50Y4brbsSZhCEfVr2vXM4U0egjDSdDF7M56rqloprQbO9cYFm.87GnQkR8T6t83JsWwBSn0i_Y.jekP7.yenNkA; report-to cf-ndkzzhekddbjptnn
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=j_hjjRYxuv9GLJkVHVtWEhZYTPgprSe6rWlyaaqmN60-1714054683-1.0.1.1-io3Y5vPyCsMsVEN5o9dVvf7u5RXa9vBewY_ITKwT1Fk4duVZnLHJMjKbAqluIO7qv0w5iSlHBLzPdmc.pcNa3N9IIhi5qmfLZur3XFJHbvTaylvtlzc1B42Me90xgKs50Y4brbsSZhCEfVr2vXM4U0egjDSdDF7M56rqloprQbO9cYFm.87GnQkR8T6t83JsWwBSn0i_Y.jekP7.yenNkA"}],"group":"cf-ndkzzhekddbjptnn","max_age":86400}
server: cloudflare
cf-ray: 879ef5cd3a56b517-OSL
X-Firefox-Spdy: h2
|
|
| services.addons.mozilla.org/api/v4/addons/search/?guid=default-theme%40mozilla.org%2Caddons-search-detection%40mozilla.com%2Cgoogle%40search.mozilla.org%2Cwikipedia%40search.mozilla.org%2Cbing%40search.mozilla.org%2Cddg%40search.mozilla.org%2Cfirefox-compact-light%40mozilla.org%2Cfirefox-compact-dark%40mozilla.org%2Cfirefox-alpenglow%40mozilla.org%2Camazon%40search.mozilla.org&lang=en-US | 52.85.243.123 | | 82 B |
URL services.addons.mozilla.org/api/v4/addons/search/?guid=default-theme%40mozilla.org%2Caddons-search-detection%40mozilla.com%2Cgoogle%40search.mozilla.org%2Cwikipedia%40search.mozilla.org%2Cbing%40search.mozilla.org%2Cddg%40search.mozilla.org%2Cfirefox-compact-light%40mozilla.org%2Cfirefox-compact-dark%40mozilla.org%2Cfirefox-alpenglow%40mozilla.org%2Camazon%40search.mozilla.org&lang=en-US IP52.85.243.123:0
Hash4f822d39c269d2c47e3174b6c6bad3b7 d56bd07959c766e9c18faa9cf1070548f9236b65 cda00e555c758b1c13b6cbd17049ca8471057d16c60f08f551dbc331308eecf3
GET /api/v4/addons/search/?guid=default-theme%40mozilla.org%2Caddons-search-detection%40mozilla.com%2Cgoogle%40search.mozilla.org%2Cwikipedia%40search.mozilla.org%2Cbing%40search.mozilla.org%2Cddg%40search.mozilla.org%2Cfirefox-compact-light%40mozilla.org%2Cfirefox-compact-dark%40mozilla.org%2Cfirefox-alpenglow%40mozilla.org%2Camazon%40search.mozilla.org&lang=en-US HTTP/1.1
Host: services.addons.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
content-length: 82
server: openresty
date: Thu, 25 Apr 2024 13:44:57 GMT
allow: GET, HEAD, OPTIONS
x-amo-request-id: bf98bb83ebf6480aa4a9b6a36821d202
content-security-policy: img-src 'self' blob: data: https://addons.mozilla.org/static-server/ https://addons.mozilla.org/user-media/; font-src 'self' https://addons.mozilla.org/static-server/; form-action 'self'; style-src 'unsafe-inline' https://addons.mozilla.org/static-server/; media-src https://videos.cdn.mozilla.net; default-src 'none'; frame-src https://www.recaptcha.net/recaptcha/; object-src 'none'; script-src https://www.google-analytics.com/analytics.js https://www.googletagmanager.com/gtag/js https://www.recaptcha.net/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://addons.mozilla.org/static-server/; connect-src 'self' https://*.google-analytics.com; child-src https://www.recaptcha.net/recaptcha/; report-uri /__cspreport__
x-frame-options: DENY
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
referrer-policy: same-origin
cross-origin-opener-policy: same-origin
cache-control: max-age=3600
public-key-pins: max-age=5184000; includeSubDomains; pin-sha256="WoiWRyIOVNa9ihaBciRSC7XHjliYS9VwUGOIud4PB18="; pin-sha256="r/mIkG3eEpVdm+u/ko/cwxzOMo1bk4TyHIlByibiA5E="
via: 1.1 google, 1.1 b475a5f7d95ff68ca0dc588e3c9a3230.cloudfront.net (CloudFront)
etag: "4f822d39c269d2c47e3174b6c6bad3b7"
vary: origin,X-Country-Code,Accept-Language
x-cache: Hit from cloudfront
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: 7o823LHcUaegtCvSADBl3Rw_nd7t05xpA1IjXWmIR91jTwn1p59D-A==
age: 1992
X-Firefox-Spdy: h2
|
|
| aus5.mozilla.org/update/3/SystemAddons/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml | 35.244.181.201 | | 42 B |
URL aus5.mozilla.org/update/3/SystemAddons/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml IP35.244.181.201:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeXML 1.0 document, ASCII text Hashf8f24fa0c857d8f2ee493e131b85ab62 cb6049f830a54d14a19d4104fc0bb5ab5fdedbe6 e0dadbc9cd1f1bd8ce3118cc3383e0d0f6d147f055265d498d99deea956ba00f
GET /update/3/SystemAddons/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 42
rule-id: unknown
rule-data-version: unknown
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: MISS
via: 1.1 google
date: Thu, 25 Apr 2024 14:18:00 GMT
content-type: text/xml; charset=utf-8
age: 9
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/10.chunk.8fd147f109dc3e306c4f.js | 172.64.147.126 | 200 OK | 652 B |
URL GET HTTP/2www.na-kd.com/assets/10.chunk.8fd147f109dc3e306c4f.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeASCII text, with very long lines (677), with no line terminators Hash8d7ed7472321d5d02674e2a3cafe196d 75e020738bffb08dd76b6218d19bea86f51b0b67 f598f00a9cd259843b9eb96f1d6cf38e9ac687957d921a4b269e60a47357cab3
GET /assets/10.chunk.8fd147f109dc3e306c4f.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:56 GMT
content-type: application/x-javascript
content-length: 601
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f10.chunk.8fd147f109dc3e306c4f.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931935
cache-control: public, max-age=2356854124
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef59d6ae856b4-OSL
X-Firefox-Spdy: h2
|
|
| uct.service.usercentrics.eu/uct?v=1&sid=Jq_Vycyzq&t=1&abv=&r=https%3A%2F%2Fwww.na-kd.com%2Fno&cb=1714054677810 | 34.95.108.180 | 200 OK | 35 B |
URL GET HTTP/2uct.service.usercentrics.eu/uct?v=1&sid=Jq_Vycyzq&t=1&abv=&r=https%3A%2F%2Fwww.na-kd.com%2Fno&cb=1714054677810 IP34.95.108.180:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerGoogle Trust Services LLC Subjectuct.service.usercentrics.eu Fingerprint7D:54:79:42:2D:AD:5C:44:31:EB:9F:7B:3B:7E:95:10:83:09:EB:08 ValidityFri, 22 Mar 2024 11:32:22 GMT - Thu, 20 Jun 2024 12:26:36 GMT
File typeGIF image data, version 89a, 1 x 1 Hashc2196de8ba412c60c22ab491af7b1409 5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b 6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /uct?v=1&sid=Jq_Vycyzq&t=1&abv=&r=https%3A%2F%2Fwww.na-kd.com%2Fno&cb=1714054677810 HTTP/1.1
Host: uct.service.usercentrics.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-powered-by: Express
content-type: image/gif
cache-control: no-store
function-execution-id: 93zsfc8dcywp
x-cloud-trace-context: 6b7d875d22426dfac65ce1a8c537f72c
date: Thu, 25 Apr 2024 14:17:57 GMT
server: Google Frontend
content-length: 35
via: 1.1 google
strict-transport-security: max-age=7776000
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/images/flags/nor.png?ref=1 | 172.64.147.126 | 200 OK | 174 B |
URL GET HTTP/2www.na-kd.com/images/flags/nor.png?ref=1 IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeRIFF (little-endian) data, Web/P image Hashb4795b53a03a045ea1000f25b6dcafe8 62155a64c266229bcffa47ea0d674a2d106c9347 2bdb0d043a5e2820e3ab56be504817eaa75635dd77da86fda87ef2dcc708615c
GET /images/flags/nor.png?ref=1 HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
DNT: 1
Connection: keep-alive
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z; ApptusSessionId=b4bd657bbc4b410193054711758105b8; ApptusCustomerKey=14fc468e-ca91-4439-9a8b-77ffba311356
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:56 GMT
content-type: image/webp
content-length: 174
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
arr-disable-session-affinity: true
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=334
content-disposition: inline; filename="nor.webp"
etag: "07132618111da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 07 Nov 2023 13:50:34 GMT
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept
x-actual-url: %2fimages%2fflags%2fnor.png%3fref%3d1
x-frame-options: SAMEORIGIN
x-server-version: 83.2169.9345
cf-cache-status: HIT
age: 12900988
cache-control: public, max-age=2356854124
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef59ecc5456b4-OSL
X-Firefox-Spdy: h2
|
|
| api.usercentrics.eu/settings/Jq_Vycyzq/latest/en.json | 35.241.3.184 | 200 OK | 35 kB |
URL GET HTTP/3api.usercentrics.eu/settings/Jq_Vycyzq/latest/en.json IP35.241.3.184:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerGoogle Trust Services LLC Subjectapi.usercentrics.eu FingerprintD7:F1:2D:F8:F0:A0:80:5C:7E:36:A8:14:72:62:BE:5F:0D:B6:61:13 ValidityWed, 03 Apr 2024 12:18:35 GMT - Tue, 02 Jul 2024 13:12:28 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /settings/Jq_Vycyzq/latest/en.json HTTP/1.1
Host: api.usercentrics.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.na-kd.com/
content-type: application/json
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
x-guploader-uploadid: ABPtcPqdMICY9d0KmN5WzvoEUZl4z0F1KZ6l2JVp0DRCn5ERzp-UlQ3fiRMdYPOk0wJwQf80PBw
x-goog-generation: 1714052327632402
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 8544
content-encoding: gzip
x-goog-hash: crc32c=vg6eZw==, md5=gpDFp7ZhstG7rtRH/ua5pw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 8544
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 25 Apr 2024 14:17:08 GMT
expires: Thu, 25 Apr 2024 14:18:08 GMT
cache-control: public, max-age=1800, s-maxage=60
age: 49
last-modified: Thu, 25 Apr 2024 13:38:47 GMT
etag: "8290c5a7b661b2d1bbaed447fee6b9a7"
content-type: application/json
vary: Accept-Encoding
strict-transport-security: max-age=7776000
x-client-geo-location: NO,NO03
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.na-kd.com/assets/256.chunk.441f1d0dd6cc6750bde2.js | 172.64.147.126 | 200 OK | 701 B |
URL GET HTTP/2www.na-kd.com/assets/256.chunk.441f1d0dd6cc6750bde2.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeASCII text, with very long lines (704), with no line terminators Hashab2111af5644ec34b5029ce1496f1bfa 1e6f8b1759058bda1a21054bed46fb6cd0f95868 8ae2905055cf8c95d47ef58ddf91228409a36c9b25c3ca78a8895369239e5dfa
GET /assets/256.chunk.441f1d0dd6cc6750bde2.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
content-length: 633
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f256.chunk.441f1d0dd6cc6750bde2.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931936
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef5982ea656b4-OSL
X-Firefox-Spdy: h2
|
|
| segment.api.useinsider.com/v4/segments/171405468050944356340bc.2ac68772?partnerid=10004432&fields=909d36cb12998ece1c341b5a56af7380,a77dff1809640c0e8bbafdbe4e6a5fc6,b9cb94e8217f6ff37192c51ac0d66a29,957ff347e8c00339760cd9f473fdfda7& | 162.159.133.61 | 200 OK | 965 B |
URL GET HTTP/2segment.api.useinsider.com/v4/segments/171405468050944356340bc.2ac68772?partnerid=10004432&fields=909d36cb12998ece1c341b5a56af7380,a77dff1809640c0e8bbafdbe4e6a5fc6,b9cb94e8217f6ff37192c51ac0d66a29,957ff347e8c00339760cd9f473fdfda7& IP162.159.133.61:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerCloudflare, Inc. Subjectuseinsider.com FingerprintFB:C4:8D:15:AA:E6:1E:4C:BE:F7:35:86:35:AF:9C:A6:57:31:AA:9A ValidityTue, 05 Dec 2023 00:00:00 GMT - Wed, 04 Dec 2024 23:59:59 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (1023), with no line terminators Hash4dede9fee17e8e17a089b7f3ec92d909 91c3599fba1431044ac899a415bddeeae8e42b16 839e1fd9354d521b49d97ae9e7d06c50b6724320b91e4b4e5208e6d5ce87ae4b
GET /v4/segments/171405468050944356340bc.2ac68772?partnerid=10004432&fields=909d36cb12998ece1c341b5a56af7380,a77dff1809640c0e8bbafdbe4e6a5fc6,b9cb94e8217f6ff37192c51ac0d66a29,957ff347e8c00339760cd9f473fdfda7& HTTP/1.1
Host: segment.api.useinsider.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:18:00 GMT
content-type: application/json
access-control-allow-methods: GET
access-control-allow-origin: *
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=2cQAGkWjgI3sY_ukuazoDFH4CkwNakQ0t1PyEtrF2FI-1714054680-1.0.1.1-q8Gyb0rYWfD5KZ0LZSaNE2gkYaxNmDERKuX11PuyZJbQ5dqkOwZqECtIObLvop4jcdDfSDbg3cI1g_wQRCXhxw; path=/; expires=Thu, 25-Apr-24 14:48:00 GMT; domain=.useinsider.com; HttpOnly; Secure; SameSite=None
content-security-policy-report-only: connect-src *; default-src 'self'; font-src https://fonts.gstatic.com data: 'self' https://font.static.useinsider.com https://mobilefont.useinsider.com https://assets.api.useinsider.com https://fonts.app.apty.io https://use.fontawesome.com https://at.alicdn.com https://fonts.googleapis.com http://themes.googleusercontent.com; frame-src *.api.useinsider.com; img-src data: 'self' https://panel-assets.useinsider.com *.hsforms.com *.wistia.com https://www.google-analytics.com https://www.googletagmanager.com https://www.google.com.tr https://www.google.ie https://image.useinsider.com https://mobileimg.useinsider.com https://mobile-image.useinsider.com https://wp-log.api.useinsider.com https://bm-rx.atatus.com https://mfe.useinsider.com https://fabek.stripocdnplugin.email https://www.facebook.com/; media-src blob: 'self'; script-src 'unsafe-inline' 'self' 'unsafe-eval' https://fast.wistia.com *.api.useinsider.com https://www.google-analytics.com https://www.googletagmanager.com mfe.useinsider.com https://cdnjs.cloudflare.com https://unpkg.com https://js.hsforms.net https://script.hotjar.com https://static.userguiding.com https://static.hotjar.com https://inone.useinsider.com https://api.useinsider.com https://edge.fullstory.com/s/fs.js https://browser.sentry-cdn.com/ https://edge.fullstory.com https://widget.usersnap.com https://static.getbeamer.com https://client.app.apty.io; style-src assets.api.useinsider.com 'unsafe-inline' 'self' https://fonts.googleapis.com https://unpkg.com; worker-src blob: https://*.inone.useinsider.com; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=szT3xH4c7Ppj4e1pS0RAynVXHr11QQoNteVvwO9tk6A-1714054680-1.0.1.1-_1n3LnpE7xFKtZExdinzd.XQaOvyze6jpH0CAwSj05ZH13KdDD8cyovUc5vQmer4GBslAVogPqLsR2WC09QiE0ZZrc5y1bu0LZKM_46Mv4tLI.Jos6_iTMybVhbEa5pHUAGTdbTyqVOy1eUZnKc41cDkJkP6gVovBzQsGDxdQzoHg7y.X6Mil4uQFn3EQVMW96XOA.3Ln2cb0Hyzb6Ficw; report-to cf-dpchbggtvkkfcubb
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=szT3xH4c7Ppj4e1pS0RAynVXHr11QQoNteVvwO9tk6A-1714054680-1.0.1.1-_1n3LnpE7xFKtZExdinzd.XQaOvyze6jpH0CAwSj05ZH13KdDD8cyovUc5vQmer4GBslAVogPqLsR2WC09QiE0ZZrc5y1bu0LZKM_46Mv4tLI.Jos6_iTMybVhbEa5pHUAGTdbTyqVOy1eUZnKc41cDkJkP6gVovBzQsGDxdQzoHg7y.X6Mil4uQFn3EQVMW96XOA.3Ln2cb0Hyzb6Ficw"}],"group":"cf-dpchbggtvkkfcubb","max_age":86400}
server: cloudflare
cf-ray: 879ef5b95805b517-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/tops-h.jpg?ref=63FC47E357&quality=80&sharpen=0.3&width=300 | 0.0.0.0 | | 0 B |
URL GET www.na-kd.com/resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/tops-h.jpg?ref=63FC47E357&quality=80&sharpen=0.3&width=300 IP0.0.0.0:0
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/tops-h.jpg?ref=63FC47E357&quality=80&sharpen=0.3&width=300 HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| www.na-kd.com/assets/249.chunk.003b503abbeae08926f9.js | 172.64.147.126 | 200 OK | 338 B |
URL GET HTTP/2www.na-kd.com/assets/249.chunk.003b503abbeae08926f9.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeASCII text, with very long lines (341), with no line terminators Hashfb53f140e8ada3f518bdbc59c5186077 4a22b96ffdfe1c624dba4fe59692365ff203346b 39f4c4ea9ccd67386c29874dfe4370833337ef8baa61aeef864d9f36da126112
GET /assets/249.chunk.003b503abbeae08926f9.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
content-length: 403
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f249.chunk.003b503abbeae08926f9.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 202628
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef597be3c56b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/favicons/na-kd/favicon-16x16.png?ref=2 | 172.64.147.126 | 200 OK | 162 B |
URL GET HTTP/2www.na-kd.com/favicons/na-kd/favicon-16x16.png?ref=2 IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeRIFF (little-endian) data, Web/P image Hashc0c9396b7d77dfd680f5c7d698ab2f4f 5c6d840d7a0cdfb09d1f9b6bec69b015bae4a5f9 585d04ec33a569ee7a728bb0765cf47fb9eb8ccc7505e29c1ed49e8e7d189029
GET /favicons/na-kd/favicon-16x16.png?ref=2 HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: image/webp
content-length: 162
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
arr-disable-session-affinity: true
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=370
content-disposition: inline; filename="favicon-16x16.webp"
etag: "063165c8e74da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 12 Mar 2024 15:02:54 GMT
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
strict-transport-security: max-age=3600; includeSubDomains
vary: Accept
x-actual-url: %2ffavicons%2fna-kd%2ffavicon-16x16.png%3fref%3d2
x-frame-options: SAMEORIGIN
x-server-version: 83.2295.9651
cf-cache-status: HIT
age: 2917284
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef59a186756b4-OSL
X-Firefox-Spdy: h2
|
|
| tatrck.com/v1/go/?deeplink=http%3A%2F%2Fclkde.tradedoubler.com%2Fclick%3Fp%3D270172%26a%3D3335102%26g%3D0%26epi%3D3CejOUnVtcff2LSXxu2BAiJVkNCtLJ24uW1LAJ8E6G8kXv%26epi2%3D246201&p=jFiej8HRuo | 188.114.96.1 | 200 OK | 2.2 kB |
URL User Request GET HTTP/2tatrck.com/v1/go/?deeplink=http%3A%2F%2Fclkde.tradedoubler.com%2Fclick%3Fp%3D270172%26a%3D3335102%26g%3D0%26epi%3D3CejOUnVtcff2LSXxu2BAiJVkNCtLJ24uW1LAJ8E6G8kXv%26epi2%3D246201&p=jFiej8HRuo IP188.114.96.1:443
CertificateIssuerGoogle Trust Services LLC Subjecttatrck.com FingerprintA6:A6:3C:30:ED:60:B5:2C:37:F3:6B:22:9B:E4:14:AA:72:61:61:6A ValiditySat, 06 Apr 2024 13:13:06 GMT - Fri, 05 Jul 2024 13:13:05 GMT
File typeHTML document, ASCII text, with very long lines (2226), with no line terminators Hashbe8e1c0ba693c274c1fdae10aec37d0c c57cacfd82ccec791333b2f8de1a84d759a634bb 389895410e77ab24bac3ef0f9ed4bfcd0d1d40cd641b7f7ba818c3e696ca6be3
GET /v1/go/?deeplink=http%3A%2F%2Fclkde.tradedoubler.com%2Fclick%3Fp%3D270172%26a%3D3335102%26g%3D0%26epi%3D3CejOUnVtcff2LSXxu2BAiJVkNCtLJ24uW1LAJ8E6G8kXv%26epi2%3D246201&p=jFiej8HRuo HTTP/1.1
Host: tatrck.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.shoptastic.io/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:53 GMT
content-type: text/html
last-modified: Mon, 13 Nov 2023 12:55:49 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vyClqoKfXLHfxPfUcu4aT2Kzh2dbm7pzhyowBGVpq2RmU9C2vPIvcXE9epeRW%2F%2BK%2F2ZKHNHnue%2BlYdd%2F8ywDaQ4mcRY2MMwrQdRHC4%2FXetXW94yAN1M8BX0leePB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879ef58adce15688-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| analytics.na-kd.com/g/collect?v=2&tid=G-T2PZBXXXXX>m=45je44o0z877669451za200&_p=1714054674714&gcs=G100&gcd=13p3p3p2p5&npa=1&dma_cps=-&dma=1&cid=1040489186.1714054677&ecid=2130077961&ul=en-us&sr=1280x1024&_fplc=0&ur=NO-03&pscdl=denied&ec_mode=c&sst.rnd=348882013.1714054677&sst.etld=google.no&sst.gcsub=region1&sst.gcd=13p3p3p2p5&sst.adr=1&sst.tft=1714054674714&sst.ude=0&_s=1&sid=1714054675&sct=1&seg=0&dl=https%3A%2F%2Fwww.na-kd.com%2Fno%3Futm_source%3Dtradedoubler_no%26utm_medium%3Daffiliate%26utm_campaign%3DTakeads%2BGmbH%2BNO&dr=https%3A%2F%2Fclkde.tradedoubler.com%2F&dt=Fine%20kl%C3%A6r%20p%C3%A5%20nett%20-%20Kj%C3%B8p%20damekl%C3%A6r%20online%20%7C%20NA-KD&en=page_view&_fv=1&_nsi=1&_ss=1&ep.event_id=1714054674717gtm.js&ep.user_data.email_address=&ep.user_data._tag_mode=MANUAL&tfd=3014&richsstsse | 216.239.32.21 | 200 OK | 65 B |
URL GET HTTP/2analytics.na-kd.com/g/collect?v=2&tid=G-T2PZBXXXXX>m=45je44o0z877669451za200&_p=1714054674714&gcs=G100&gcd=13p3p3p2p5&npa=1&dma_cps=-&dma=1&cid=1040489186.1714054677&ecid=2130077961&ul=en-us&sr=1280x1024&_fplc=0&ur=NO-03&pscdl=denied&ec_mode=c&sst.rnd=348882013.1714054677&sst.etld=google.no&sst.gcsub=region1&sst.gcd=13p3p3p2p5&sst.adr=1&sst.tft=1714054674714&sst.ude=0&_s=1&sid=1714054675&sct=1&seg=0&dl=https%3A%2F%2Fwww.na-kd.com%2Fno%3Futm_source%3Dtradedoubler_no%26utm_medium%3Daffiliate%26utm_campaign%3DTakeads%2BGmbH%2BNO&dr=https%3A%2F%2Fclkde.tradedoubler.com%2F&dt=Fine%20kl%C3%A6r%20p%C3%A5%20nett%20-%20Kj%C3%B8p%20damekl%C3%A6r%20online%20%7C%20NA-KD&en=page_view&_fv=1&_nsi=1&_ss=1&ep.event_id=1714054674717gtm.js&ep.user_data.email_address=&ep.user_data._tag_mode=MANUAL&tfd=3014&richsstsse IP216.239.32.21:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerGoogle Trust Services LLC Subjectanalytics.na-kd.com FingerprintF6:9E:78:FB:FE:0F:4C:B7:D0:3B:8F:CD:04:84:53:DB:E0:DB:59:53 ValidityTue, 23 Apr 2024 04:32:11 GMT - Mon, 22 Jul 2024 05:16:39 GMT
File typeASCII text, with no line terminators Hash09e2b0b335a8a3fe7af59bc95afb7805 ce618c52e5e3e2e4d0151e76c21f4df73d1ee9c5 ad1d4f9f8632a757694e89ac2387e5719b475b295a228ed119e49a809f86f476
GET /g/collect?v=2&tid=G-T2PZBXXXXX>m=45je44o0z877669451za200&_p=1714054674714&gcs=G100&gcd=13p3p3p2p5&npa=1&dma_cps=-&dma=1&cid=1040489186.1714054677&ecid=2130077961&ul=en-us&sr=1280x1024&_fplc=0&ur=NO-03&pscdl=denied&ec_mode=c&sst.rnd=348882013.1714054677&sst.etld=google.no&sst.gcsub=region1&sst.gcd=13p3p3p2p5&sst.adr=1&sst.tft=1714054674714&sst.ude=0&_s=1&sid=1714054675&sct=1&seg=0&dl=https%3A%2F%2Fwww.na-kd.com%2Fno%3Futm_source%3Dtradedoubler_no%26utm_medium%3Daffiliate%26utm_campaign%3DTakeads%2BGmbH%2BNO&dr=https%3A%2F%2Fclkde.tradedoubler.com%2F&dt=Fine%20kl%C3%A6r%20p%C3%A5%20nett%20-%20Kj%C3%B8p%20damekl%C3%A6r%20online%20%7C%20NA-KD&en=page_view&_fv=1&_nsi=1&_ss=1&ep.event_id=1714054674717gtm.js&ep.user_data.email_address=&ep.user_data._tag_mode=MANUAL&tfd=3014&richsstsse HTTP/1.1
Host: analytics.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/
Cookie: _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:57 GMT
content-type: text/plain
vary: Accept-Encoding
set-cookie: _fbp=fb.1.1714054677699.1564700130; Max-Age=7776000; Domain=na-kd.com; Path=/; SameSite=Lax; Secure
cache-control: no-cache
x-content-type-options: nosniff
access-control-allow-origin: https://www.na-kd.com
access-control-allow-credentials: true
content-encoding: gzip
via: 1.1 google
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/112.chunk.5c5d06667118a25d6fdb.js | 172.64.147.126 | 200 OK | 156 kB |
URL GET HTTP/2www.na-kd.com/assets/112.chunk.5c5d06667118a25d6fdb.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (65448) Size156 kB (155815 bytes) Hashc6ac2e5f18a30be0d93ebe3cb0671930 0857e4874104176a72cd5c5c7d62b96c194442dd 5c26536eb5aa49cea4cf2fb8cfe90f4e534255bae3148871b43c2570ee99f340
GET /assets/112.chunk.5c5d06667118a25d6fdb.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0c5ae5785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:12 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f112.chunk.5c5d06667118a25d6fdb.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931936
cache-control: public, max-age=2356854125
server: cloudflare
cf-ray: 879ef5981e9556b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/6.chunk.5899fa971b5110a28347.js | 172.64.147.126 | 200 OK | 3.9 kB |
URL GET HTTP/2www.na-kd.com/assets/6.chunk.5899fa971b5110a28347.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (3927), with no line terminators Hashef70dc3e9a3c520fa54680b0d84937ca 780923af2309f24141be44c60ebd9ac9ef119b91 2d43f8f08821f229142a6218f46dddc80c1584cd24919617418b0488b1f6e2b6
GET /assets/6.chunk.5899fa971b5110a28347.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
content-length: 1900
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f6.chunk.5899fa971b5110a28347.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931936
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef5976dfb56b4-OSL
X-Firefox-Spdy: h2
|
|
| www.na-kd.com/assets/vendor.chunk.d665ddea969793ec3548.js | 172.64.147.126 | 200 OK | 491 kB |
URL GET HTTP/2www.na-kd.com/assets/vendor.chunk.d665ddea969793ec3548.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (65445) Size491 kB (491076 bytes) Hasha85dc569e2c7ded8bc3e6a65478236e8 a873333c6b2d0b8602ace661851e57330154ddf2 cf28f42b4796153d8cb38bc68141752120621d341479a68fa65bcf9c46f70c32
GET /assets/vendor.chunk.d665ddea969793ec3548.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:54 GMT
content-type: application/x-javascript
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0c5ae5785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:12 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2fvendor.chunk.d665ddea969793ec3548.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931935
cache-control: public, max-age=2356854126
server: cloudflare
cf-ray: 879ef593cacd56b4-OSL
X-Firefox-Spdy: h2
|
|
| api.usercentrics.eu/settings/Jq_Vycyzq/latest/en.json | 35.241.3.184 | 200 OK | 0 B |
URL OPTIONS HTTP/3api.usercentrics.eu/settings/Jq_Vycyzq/latest/en.json IP35.241.3.184:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerGoogle Trust Services LLC Subjectapi.usercentrics.eu FingerprintD7:F1:2D:F8:F0:A0:80:5C:7E:36:A8:14:72:62:BE:5F:0D:B6:61:13 ValidityWed, 03 Apr 2024 12:18:35 GMT - Tue, 02 Jul 2024 13:12:28 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /settings/Jq_Vycyzq/latest/en.json HTTP/1.1
Host: api.usercentrics.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.na-kd.com/
Origin: https://www.na-kd.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
x-guploader-uploadid: ABPtcPoiAn1T94Hpb2iOdYj3xn6Pj6yv1KZ4LB0w_XwQgwfsJ-MZB2W6tu9Kkva9NN3v1pRiyU0
access-control-allow-origin: *
access-control-max-age: 3600
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE
access-control-allow-headers: content-type
date: Thu, 25 Apr 2024 14:17:56 GMT
expires: Thu, 25 Apr 2024 14:17:56 GMT
cache-control: private, max-age=0
content-length: 0
server: UploadServer
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=7776000
x-client-geo-location: NO,NO03
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.na-kd.com/resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/trousers.jpg?ref=871B182EE4&quality=80&sharpen=0.3&width=300 | 0.0.0.0 | | 0 B |
URL GET www.na-kd.com/resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/trousers.jpg?ref=871B182EE4&quality=80&sharpen=0.3&width=300 IP0.0.0.0:0
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /resize/contentassets/0ff82a0d07154647a28c561ec8d60e8f/trousers.jpg?ref=871B182EE4&quality=80&sharpen=0.3&width=300 HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=; _scid=98ad6ae3-9ac1-4222-8d26-9764497b5c28; _scid_r=98ad6ae3-9ac1-4222-8d26-9764497b5c28; ai_user=xBJjeUbiJYZwyGgZ/3+79S|2024-04-25T14:17:55.630Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| www.na-kd.com/assets/14.chunk.57cbdc44d843ec48e555.js | 172.64.147.126 | 200 OK | 4.7 kB |
URL GET HTTP/2www.na-kd.com/assets/14.chunk.57cbdc44d843ec48e555.js IP172.64.147.126:443
Requested byhttps://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO CertificateIssuerLet's Encrypt Subjectwww.na-kd.com Fingerprint48:87:E9:E2:EF:37:FC:67:83:F2:52:B6:50:C7:E8:B8:10:05:31:E7 ValidityFri, 22 Mar 2024 01:02:17 GMT - Thu, 20 Jun 2024 01:02:16 GMT
File typeJavaScript source, ASCII text, with very long lines (4826), with no line terminators Hash22a966692e34f02f7445a93fb56f676c 0d76de750d7f6f70f4c7c7f81711c424be82a2e3 013f596c84d6e39535bbb27ec0917ef1d9a1115ed6e2775fa2c295d37232fc1c
GET /assets/14.chunk.57cbdc44d843ec48e555.js HTTP/1.1
Host: www.na-kd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.na-kd.com/no?utm_source=tradedoubler_no&utm_medium=affiliate&utm_campaign=Takeads+GmbH+NO
Cookie: TiPMix=13.858893623510971; x-ms-routing-name=self; Culture=nb-NO; .ASPXANONYMOUS=AIRxWmFKUC_Z7zcrs5bMjfYresZapmctoVDHcFQWkFVvHQvm8oa6FIoUr5eQqN_C92x8t9tzAfKYvYmhDewKyrd_4iEZJtgUKg8nMJFs6feo4RUYcPZB8b2rMw_KLbFaKk-_5g2; EPi:StateMarker=true; CountryCode=NOR; OptimizelyUserKey=e12fdded-3de1-47ba-8cf5-f101359c2d77; __XSRF2=datUr4Sy3lsYs7415+NgubSrJvb5cQr0Kxr9Vqx0LbI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 14:17:55 GMT
content-type: application/x-javascript
content-length: 1972
access-control-allow-headers: Access-Control-Allow-Origin, Origin, X-Requested-With, Content-Type, Accept, Authorization, ApiKey,x-includeappshelldata, x-client-version, x-resolvedynamicdata
access-control-allow-origin: *
access-control-expose-headers: Request-Context, x-server-version, x-actual-url, x-currentlanguage, x-languageurlprefixes
content-encoding: gzip
etag: "0df28e4785da1:0"
expires: Thu, 01 Jan 2099 00:00:00 GMT
last-modified: Tue, 02 Apr 2024 14:13:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=3600; includeSubDomains
service-worker-allowed: /
x-actual-url: %2fassets%2f14.chunk.57cbdc44d843ec48e555.js
x-server-version: 83.2316.9721
arr-disable-session-affinity: true
request-context: appId=cid-v1:f1f7ce9c-4689-4fbd-8927-c68fe885c5ae
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 1931936
cache-control: public, max-age=2356854125
accept-ranges: bytes
server: cloudflare
cf-ray: 879ef5982eb956b4-OSL
X-Firefox-Spdy: h2
|
|