enhotssureemed.com/a6b850fa-b973-4047-9889-d3802c60a2fd/2
302 0 B URL HTTP/1.1 enhotssureemed.com/a6b850fa-b973-4047-9889-d3802c60a2fd/2
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /a6b850fa-b973-4047-9889-d3802c60a2fd/2 HTTP/1.1
Host: enhotssureemed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302
Server: nginx
Date: Thu, 02 Feb 2023 17:13:34 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://shopswiz.com/click/lb?country=NO&ts=PropellerAds%20Pop&c=&tg=http://s.click.aliexpress.com/e/_ABCzN9
Pragma: no-cache
Set-Cookie: a6b850fa-b973-4047-9889-d3802c60a2fd-v4=PExCpb9w8pDzjNJrIJHwl-lj1blapty5JauoVVswAMg; Max-Age=86400; Expires=Fri, 03-Feb-2023 17:13:34 GMT; Domain=enhotssureemed.com; Path=/; HttpOnly
cc-v4=rwBx%2BoQM90%2F83JPZhYm6QLQOCj3WyRMhpOLZXepE9%2B%2BiVLBbl94dQd5F8uAPQfKJLYSrAVBhvCkUHnWZ7vAw9DAux1l6lGm47uJ%2Ft60maxli%2F7ljTWt6uHUIRd3%2FAPEQ1kGHYEmFAAta6%2BmGJTSabw%3D%3D; Max-Age=31536000; Expires=Fri, 02-Feb-2024 17:13:34 GMT; Domain=enhotssureemed.com; Path=/; HttpOnly
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2233
Expires: Thu, 02 Feb 2023 17:50:47 GMT
Date: Thu, 02 Feb 2023 17:13:34 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7562
Expires: Thu, 02 Feb 2023 19:19:36 GMT
Date: Thu, 02 Feb 2023 17:13:34 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 16:36:06 GMT
content-type: application/json
age: 2248
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a8d45deaa7ebfcd996c2055dae592ab8
55befe074589fe7b39757c145968058162a8fc6b
50d7d516f446458145a304b288a0a39d391cd37ea50dabea36ae48d291c65ba7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50D7D516F446458145A304B288A0A39D391CD37EA50DABEA36AE48D291C65BA7"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7014
Expires: Thu, 02 Feb 2023 19:10:28 GMT
Date: Thu, 02 Feb 2023 17:13:34 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Xl0wN8PtkesLqUqiD27hxQihl+AZ8YgnHZ46aOhjpdx2zuhWjGMewmnF9HnyQKjGNrcBs3Zxjp4=
x-amz-request-id: KT57VGRN8B8R8ADR
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 16:23:10 GMT
age: 3024
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/skIZ4BuOZdE
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/skIZ4BuOZdE
IP
Hash 1d9594f6f74fd967ce0632a09dfe510f
8987c3fce2ac88b68d440a63ccd77230d0a9ea80
dd261d62d753bb681421d0d787f7469b9a1c5fcf0ae63fec7e7225ed60164f13
POST /s/gts1p5/skIZ4BuOZdE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 17:13:34 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 17:13:34 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
shopswiz.com/click/lb?country=NO&ts=PropellerAds%20Pop&c=&tg=http://s.click.aliexpress.com/e/_ABCzN9
301 Moved Permanently 329 B URL HTTP/2 shopswiz.com/click/lb?country=NO&ts=PropellerAds%20Pop&c=&tg=http://s.click.aliexpress.com/e/_ABCzN9
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e7bc85ac7838c947a7d38c7023473260
553f48db65417687827b809322c626789d59adb8
37a0ca33eb49b8846b67bc679a58e388462f3945ed76a566c4f8102af9621429
GET /click/lb?country=NO&ts=PropellerAds%20Pop&c=&tg=http://s.click.aliexpress.com/e/_ABCzN9 HTTP/1.1
Host: shopswiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Thu, 02 Feb 2023 17:13:34 GMT
content-type: text/html; charset=iso-8859-1
location: http://shopswiz.com/click/lb/?country=NO&ts=PropellerAds%20Pop&c=&tg=http://s.click.aliexpress.com/e/_ABCzN9
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iRePBrWWAJCUBXYqtS8R0cz3Zl8p76TUbNwuCnauj1YvcJGwMj4Eb%2FPU2OwBI%2Bb4XiTqoQHW%2BYmQfgv176quk5WEBiBBd%2Fyyc7m30snS5enI7nGupF47PcHYrD8HEaE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79348ee85f4eb4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/skIZ4BuOZdE
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/skIZ4BuOZdE
IP
Hash 1d9594f6f74fd967ce0632a09dfe510f
8987c3fce2ac88b68d440a63ccd77230d0a9ea80
dd261d62d753bb681421d0d787f7469b9a1c5fcf0ae63fec7e7225ed60164f13
POST /s/gts1p5/skIZ4BuOZdE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 17:13:34 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
enhotssureemed.com/7e69e883-5b0f-4646-b93f-cf300bd635dd?target=A&merchant=fammenocpc&market=NO&trafficsource=PropellerAds%20Pop&cost=&l=ZmFtbWVub2NwYyxodHRwczovL2xrYngubWUvSUJTbg==
302 Found 0 B URL HTTP/2 enhotssureemed.com/7e69e883-5b0f-4646-b93f-cf300bd635dd?target=A&merchant=fammenocpc&market=NO&trafficsource=PropellerAds%20Pop&cost=&l=ZmFtbWVub2NwYyxodHRwczovL2xrYngubWUvSUJTbg==
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /7e69e883-5b0f-4646-b93f-cf300bd635dd?target=A&merchant=fammenocpc&market=NO&trafficsource=PropellerAds%20Pop&cost=&l=ZmFtbWVub2NwYyxodHRwczovL2xrYngubWUvSUJTbg== HTTP/1.1
Host: enhotssureemed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shopswiz.com/
Connection: keep-alive
Cookie: cc-v4=fvHQbkVQe1o0WsTabr6HGQrULwb%2F5pQpsPHsKZFixdjNmzRjuRpZdEBU5V40JnSiDwCr%2BGtj81dmtYUdlMaaK%2Bt02hNATPbdfTXXAHlhHu1QieEto3qQpcYqeRB6bSxD5SpUL2oL4HpimV6mFIrJ%2Bg%3D%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Thu, 02 Feb 2023 17:13:35 GMT
content-length: 0
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://shopswiz.com/click/lb/rd?placementId=wg3r0g04ok01thbm2v9tgqi2&market=NO&merchant=fammenocpc&l=ZmFtbWVub2NwYyxodHRwczovL2xrYngubWUvSUJTbg%3D%3D
pragma: no-cache
set-cookie: 7e69e883-5b0f-4646-b93f-cf300bd635dd-v4=8XMaOhcNiHtE3C6YBa7gi4TX9p5UhLp5nEH_WcvtfCo; Max-Age=86400; Expires=Fri, 03-Feb-2023 17:13:35 GMT; Domain=enhotssureemed.com; Path=/; Secure; HttpOnly;SameSite=None
cc-v4=upBLFK9VLnz2IzOMICWSi6ALLTMU3CJ%2Fr9DEshp%2FBFOzRbwKS%2Bc9DSWrdVerYTjTZqAxaA2jphaQSZcbnshLvcxRTuctsTt4wGkoYf20EM9hoBdmG6UP%2F%2BQhMyQdUse3Q0IABqBnQtGAX313sQh07Q%3D%3D; Max-Age=31536000; Expires=Fri, 02-Feb-2024 17:13:35 GMT; Domain=enhotssureemed.com; Path=/; Secure; HttpOnly;SameSite=None
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 16:49:05 GMT
age: 1470
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
shopswiz.com/click/lb/rd/?placementId=wg3r0g04ok01thbm2v9tgqi2&market=NO&merchant=fammenocpc&l=ZmFtbWVub2NwYyxodHRwczovL2xrYngubWUvSUJTbg%3D%3D
301 Moved Permanently 0 B URL HTTP/1.1 shopswiz.com/click/lb/rd/?placementId=wg3r0g04ok01thbm2v9tgqi2&market=NO&merchant=fammenocpc&l=ZmFtbWVub2NwYyxodHRwczovL2xrYngubWUvSUJTbg%3D%3D
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click/lb/rd/?placementId=wg3r0g04ok01thbm2v9tgqi2&market=NO&merchant=fammenocpc&l=ZmFtbWVub2NwYyxodHRwczovL2xrYngubWUvSUJTbg%3D%3D HTTP/1.1
Host: shopswiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: https://shopswiz.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 02 Feb 2023 17:13:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 02 Feb 2023 18:13:35 GMT
Location: https://shopswiz.com/click/lb/rd/?placementId=wg3r0g04ok01thbm2v9tgqi2&market=NO&merchant=fammenocpc&l=ZmFtbWVub2NwYyxodHRwczovL2xrYngubWUvSUJTbg%3D%3D
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cJVmsqvDzQVUoVkp1A0vnGCE5SfljW2b7ipOd7O1%2FAI01OvcSMoX1PkMV1RmXYfc%2B81w5EXowAgYJI%2BLMpYDfcgx1D7VChZmRhyvcz0cwdOJIKehUxWsFMZ5sXuSU0Y%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79348eeb88210b65-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11895
Expires: Thu, 02 Feb 2023 20:31:50 GMT
Date: Thu, 02 Feb 2023 17:13:35 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: UZxPrIvsnwBBneAJ5Rg3Xg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: raPVq1bxxRKjInNoyENa0Mv71HQ=
ocsp.digicert.com/
200 OK 471 B IP
Hash dfda9a2fcfe64f859cea9d705825e9ff
a3136a99d1d292fbd229a596a84c822939f57ee5
7a91e55683acd885fd64a61008e2cca5918a8e0920ced5059a1e5e94ce260a7e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4535
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 17:13:35 GMT
Last-Modified: Thu, 02 Feb 2023 15:58:01 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 713d64834d87899a15ac4d92c51167bb
b82fcbfaac3fada3383a0c3a0a27c112065967b0
60641a57de005a8efc5e3482b83c2086ff1d5df6d487dbe58cef975ab109341c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60641A57DE005A8EFC5E3482B83C2086FF1D5DF6D487DBE58CEF975AB109341C"
Last-Modified: Thu, 02 Feb 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10510
Expires: Thu, 02 Feb 2023 20:08:46 GMT
Date: Thu, 02 Feb 2023 17:13:36 GMT
Connection: keep-alive
api.kelkoogroup.net/publisher/shopping/v2/link-monetizer/link?country=no&id=e4ef5dec-03eb-11eb-bf21-ba5ec25d7100&merchantUrl=https%3A%2F%2Fwww.famme.no&custom1=b4be9086265e0a8a2e19bcca3134aac5a166ea8fe6bfeb31188b44e06d190eb5&custom2=bKfEkwiMh6z8&custom3=false
200 OK 33 kB URL HTTP/2 api.kelkoogroup.net/publisher/shopping/v2/link-monetizer/link?country=no&id=e4ef5dec-03eb-11eb-bf21-ba5ec25d7100&merchantUrl=https%3A%2F%2Fwww.famme.no&custom1=b4be9086265e0a8a2e19bcca3134aac5a166ea8fe6bfeb31188b44e06d190eb5&custom2=bKfEkwiMh6z8&custom3=false
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (12878)
Hash bb99d9df8db92c55c4e3121ec9d1763b
b3d1b3b9ff696f51e7e7bd4e0fb1cc258449eba5
b235f350a64fc1d0c6e307f14e04e05a6e99c7ec1efb99499a57385d4b4a14ab
GET /publisher/shopping/v2/link-monetizer/link?country=no&id=e4ef5dec-03eb-11eb-bf21-ba5ec25d7100&merchantUrl=https%3A%2F%2Fwww.famme.no&custom1=b4be9086265e0a8a2e19bcca3134aac5a166ea8fe6bfeb31188b44e06d190eb5&custom2=bKfEkwiMh6z8&custom3=false HTTP/1.1
Host: api.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lkbx.me/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 33370
x-gravitee-transaction-id: 1823d9b0-dae5-44a8-a3d9-b0dae544a8ec
x-gravitee-request-id: 1823d9b0-dae5-44a8-a3d9-b0dae544a8ec
leadid: dc1-kls-prod-ls-02.prod.dc1.kelkoo.net_1675358016754_100064
clickid: 107698148_1675358016723_490076
country: no
accept-ch: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
set-cookie: datadome=3H~ZjwcehDWLAJK0Cvyes5D4ic3hMJon9Uyv8nfDSonG-ZoI3n8zBgk9GwVb7ElVkhYpR8FWfO8IGL3jUpAA4vehWVGw35l88lG8q6V9Jd_xqeCHxjwI_TBGeDvxLXsW; Max-Age=31536000; Expires=Fri, 02 Feb 2024 17:13:36 GMT; SameSite=Lax; Path=/; Domain=.kelkoo.net; Secure
kelkooID=a4c6294-186131e94d3-eff4; Max-Age=31536000; Expires=Fri, 02 Feb 2024 17:13:36 GMT; SameSite=None; Path=/; Domain=kelkoogroup.net; Secure; HTTPOnly
x-datadome: protected
request-time: PT0.036509S
x-robots-tag: noindex,nofollow
referrer-policy: origin-when-cross-origin
x-frame-options: DENY
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-permitted-cross-domain-policies: master-only
date: Thu, 02 Feb 2023 17:13:36 GMT
x-cache: Miss from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5tVutfOHnpM2IkURbsVfelgL4kIz8Nzjv04qOcb0aPEqBh_0Dtsa0Q==
X-Firefox-Spdy: h2
status.thawte.com/
200 OK 471 B IP
Hash 414c88b354812c9c91fb32ac25316331
1ccff66240a2b3c2d2aa5776f244fe5bcae636c1
650a59d16d4413047b91bfea001c8a20105afc1bd36b89f4b83a56a740069260
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4781
Cache-Control: max-age=92211
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 17:13:36 GMT
Etag: "63daa1c6-1d7"
Expires: Fri, 03 Feb 2023 18:50:27 GMT
Last-Modified: Wed, 01 Feb 2023 17:30:46 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9007
Expires: Thu, 02 Feb 2023 19:43:43 GMT
Date: Thu, 02 Feb 2023 17:13:36 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9007
Expires: Thu, 02 Feb 2023 19:43:43 GMT
Date: Thu, 02 Feb 2023 17:13:36 GMT
Connection: keep-alive
status.thawte.com/
200 OK 471 B IP
Hash 414c88b354812c9c91fb32ac25316331
1ccff66240a2b3c2d2aa5776f244fe5bcae636c1
650a59d16d4413047b91bfea001c8a20105afc1bd36b89f4b83a56a740069260
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4783
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 17:13:36 GMT
Last-Modified: Thu, 02 Feb 2023 15:53:53 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9007
Expires: Thu, 02 Feb 2023 19:43:43 GMT
Date: Thu, 02 Feb 2023 17:13:36 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C1kqthy0eZop0UZfG3_op5xeBOVGiPLYfia4uS1l4-kchEzV6ccE9w==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 07:28:37 GMT
age: 35099
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg
200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0f85742f336de59ca88f7f964a8b33f4
0fc7177f8cb06421a8807e93989f651bda743567
fbd5fd39c39c218b0fa956f8cb8050cbdbfcb109a92303f6175d73cc8c339526
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8642
x-amzn-requestid: 79840c68-3e99-428d-9c01-9e4a93a34486
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdUzH1-oAMFiwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc1e-5bb93c5126aaff474900da63;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Mc8C-oesi4njIn2K2f56GKuyt6erRJAqCU-B4InhTD8oIoqo4s5-Fg==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:18:43 GMT
age: 68093
etag: "0fc7177f8cb06421a8807e93989f651bda743567"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg
200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash df4a4906103a8f409c066b1cded71384
22847e3926db3e3d5f6b529297a4abe8b377c3a6
84a14b73b2cc7f4641eaa5539cbee0a109ae2b05cf88d06797a2b00c8d4f0c43
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9221
x-amzn-requestid: 209c2ad4-7a1f-4867-bf98-4ca8621111a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdTBFv5IAMFgqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc13-1627a9d603c69f7760ad013b;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kAkcQOKAvuq3k-X081MLCqon-cnQJqGryVeE0fwX0a7bcXgJlySIvg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:12:07 GMT
age: 68489
etag: "22847e3926db3e3d5f6b529297a4abe8b377c3a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d335250-c4ff-42af-b9c2-48711573ab39.jpeg
200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d335250-c4ff-42af-b9c2-48711573ab39.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 86664b4d1fc27ba7b5bff8a245604326
b8c7ef73101a497b6c78ad59aafe66a391fdc3fa
e4596faadf14051299036a79632951d90183dd0635293687edef11985799a752
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d335250-c4ff-42af-b9c2-48711573ab39.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4814
x-amzn-requestid: 90da23ab-2c54-40ec-8e26-bdf4eeb1e27b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdKWFpvoAMFyPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadbdb-70c4cb89413ed6bd44731d76;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:38:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: htcecPD3kYwCPwPPCqgVuXnCuKo6TTKntzaB2xFID5fvBXpZQe463A==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:59:38 GMT
age: 69238
etag: "b8c7ef73101a497b6c78ad59aafe66a391fdc3fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 395bb0f71f9eba82f5ca23548d08900f
b1fada280c7ea3eb775a6fa46ce173a51eb045f5
7443babb69532e1ee3ee779e05ad4f62de2c5bf62548bcb5702f8290a527664c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11367
x-amzn-requestid: 67702c15-9a68-46ec-95e5-efb57f08e2f1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5OGfBoAMF3Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6e-033182ba55fdd0230ad5a270;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: H1HIK6zdv95V96NxqSfHCqYtDQNPZ9NLAwG5oM5mwRr3nAUR0BPxlg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:25:11 GMT
age: 67705
etag: "b1fada280c7ea3eb775a6fa46ce173a51eb045f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7c823f1d6bf1c50d58eb263b85e6e37c
a7b74d11494fb3254df907e5cc1eead070d84617
b2706961eb756383e0988dfdb501dc424aea59697aedd1e4a6c294c314a31935
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5356
x-amzn-requestid: fef22c83-35a4-4990-9008-af5853f838d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BEB6oAMFczg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-68d3017555c069bc3107d150;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XyDZc0F-b0rxwoS5wvSXBuBfYE7JljMmuXseBjLOBk4HvxU5gE7Oqg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:18:55 GMT
age: 68081
etag: "a7b74d11494fb3254df907e5cc1eead070d84617"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
no-go.kelkoogroup.net/fp?country=no&k=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
200 OK 0 B URL HTTP/1.1 no-go.kelkoogroup.net/fp?country=no&k=612f7a9541cd6ea61eb554c0e4cff43751c4e6ff4b34703f59267ef246260421f4827f4949792eaa64a6dd4cbd38d0b5d725b6e1109b726352d0aba333904308f24a04a952ffcc421927bd90cdde253dd5e17ae28749d1be4a4ff87cdde5a6d479222d5013480feeb4d16188ca5bd8020beb537d1a722f46a066c362cef498fce47a574d872601a6f2517101540bba8b04ff28a3be2543797fa611697f3338483012af4349171e81ed932f8f02194575277b619270eeba2cb87c0b4f9fe5510ccbb44f2085ffc380055f555e92a54ee156ce4b491d7381b74755ecbe094d91801bccb72c542392c4fb56963c1fdb510c1c5d7525c4d8c790448956de007babb21d378b6c97ee961d9c548a1d3baec7f0641881069322a55b0556f759b16f245dfb4e667efe64da735c9be97a2bd6dcf2dae7299bbbd2d6638ddb49be69610fc1cb3dc2dd1ee79b908b0fe0fb7f82193474858ae2cd598aa2808e8ff52e6acfe14248acdf2b9f15f3cc683b065e10138394516108fd13ad05386e2a1b32058a85c29ac67610765edb
IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /fp?country=no&k=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 HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://api.kelkoogroup.net/
Content-Type: text/plain;charset=utf-8
Content-Length: 524
Origin: https://api.kelkoogroup.net
Connection: keep-alive
Cookie: kelkooID=a4c6294-186131e94d3-eff4; _ga=GA1.2.1082849737.1675358043; _gid=GA1.2.187081954.1675358043
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
leadId: dc1-kls-prod-ls-02.prod.dc1.kelkoo.net_1675358016754_100064
clickId: 107698148_1675358016723_490076
country: no
Request-Time: PT0.002236S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: ALLOWALL
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Date: Thu, 02 Feb 2023 17:13:36 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 0
no-go.kelkoogroup.net/redirect?country=no&k=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&url=https%3A%2F%2Fwww.famme.no%3Fkk%3Da4c6294-186131e94d3-eff4%26utm_campaign%3DNO%2520-%2520multiple%2520google%2520shopping%2520feed%26utm_medium%3Dorganic%26utm_source%3Dgoogle
303 See Other 0 B URL HTTP/1.1 no-go.kelkoogroup.net/redirect?country=no&k=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&url=https%3A%2F%2Fwww.famme.no%3Fkk%3Da4c6294-186131e94d3-eff4%26utm_campaign%3DNO%2520-%2520multiple%2520google%2520shopping%2520feed%26utm_medium%3Dorganic%26utm_source%3Dgoogle
IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect?country=no&k=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&url=https%3A%2F%2Fwww.famme.no%3Fkk%3Da4c6294-186131e94d3-eff4%26utm_campaign%3DNO%2520-%2520multiple%2520google%2520shopping%2520feed%26utm_medium%3Dorganic%26utm_source%3Dgoogle HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://api.kelkoogroup.net/
Connection: keep-alive
Cookie: kelkooID=a4c6294-186131e94d3-eff4; _ga=GA1.2.1082849737.1675358043; _gid=GA1.2.187081954.1675358043
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/1.1 303 See Other
leadId: dc1-kls-prod-ls-02.prod.dc1.kelkoo.net_1675358016754_100064
clickId: 107698148_1675358016723_490076
country: no
Location: https://www.famme.no?kk=a4c6294-186131e94d3-eff4&utm_campaign=NO%20-%20multiple%20google%20shopping%20feed&utm_medium=organic&utm_source=google
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
Set-Cookie: datadome=rI6RKPM~o7CIL_vUpmSexse7f_rnRCO5bE3Mj5gHXUy5PM0PUv0UJenn9CLOT1S6d_JcXH4WjEVyHxKZf76p-CyiBje11DMyanIIVY8f_9_ol1sXzQIdC17uH9O7HfE; Max-Age=31536000; Expires=Fri, 02 Feb 2024 17:13:37 GMT; SameSite=Lax; Path=/; Domain=.kelkoogroup.net; Secure
X-DataDome: protected
Request-Time: PT0.011915S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: ALLOWALL
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Date: Thu, 02 Feb 2023 17:13:37 GMT
Content-Length: 0
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 857824947f19c93d4ddcc8c5884e4c1e
c00e743ecb16bdd355d759ee279831594af26801
20dee515a08290518c32f69923f93e0ebe2c613bb0ccef467e07e374f8f692d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "20DEE515A08290518C32F69923F93E0EBE2C613BB0CCEF467E07E374F8F692D5"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21595
Expires: Thu, 02 Feb 2023 23:13:32 GMT
Date: Thu, 02 Feb 2023 17:13:37 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 857824947f19c93d4ddcc8c5884e4c1e
c00e743ecb16bdd355d759ee279831594af26801
20dee515a08290518c32f69923f93e0ebe2c613bb0ccef467e07e374f8f692d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "20DEE515A08290518C32F69923F93E0EBE2C613BB0CCEF467E07E374F8F692D5"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21595
Expires: Thu, 02 Feb 2023 23:13:32 GMT
Date: Thu, 02 Feb 2023 17:13:37 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 602c26493dae79ae2e025cade0a4beae
6cd5696c19866aea5bfb2f148da4096fc164b805
9649e80202d51e1ad0ffed9c5b375dc403475b572cdddeaab6e56a5d7093ce31
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9649E80202D51E1AD0FFED9C5B375DC403475B572CDDDEAAB6E56A5D7093CE31"
Last-Modified: Tue, 31 Jan 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18411
Expires: Thu, 02 Feb 2023 22:20:28 GMT
Date: Thu, 02 Feb 2023 17:13:37 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 17:13:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 602c26493dae79ae2e025cade0a4beae
6cd5696c19866aea5bfb2f148da4096fc164b805
9649e80202d51e1ad0ffed9c5b375dc403475b572cdddeaab6e56a5d7093ce31
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9649E80202D51E1AD0FFED9C5B375DC403475B572CDDDEAAB6E56A5D7093CE31"
Last-Modified: Tue, 31 Jan 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18411
Expires: Thu, 02 Feb 2023 22:20:28 GMT
Date: Thu, 02 Feb 2023 17:13:37 GMT
Connection: keep-alive
www.google-analytics.com/collect?v=1&_v=j96&t=pageview&_s=1&dl=https%3A%2F%2Fapi.kelkoogroup.net%2Fpublisher%2Fshopping%2Fv2%2Flink-monetizer%2Flink%3Fcountry%3Dno%26id%3De4ef5dec-03eb-11eb-bf21-ba5ec25d7100%26merchantUrl%3Dhttps%253A%252F%252Fwww.famme.no%26custom1%3Db4be9086265e0a8a2e19bcca3134aac5a166ea8fe6bfeb31188b44e06d190eb5%26custom2%3DbKfEkwiMh6z8%26custom3%3Dfalse&dr=https%3A%2F%2Flkbx.me%2F&dp=%2F%7C100519078%7C&ul=en-us&de=UTF-8&dt=Du%20sendes%20videre%20til%20famme.no&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=QACAAAABAAAAAC~&cid=1082849737.1675358043&tid=UA-168544891-6&_gid=187081954.1675358043&_r=1&cd1=&cd2=dc1-kls-prod-ls-02.prod.dc1.kelkoo.net_1675358016754_100064&cd3=100519078&cd4=a4c6294-186131e94d3-eff4&cd5=&cd6=%7C100519078%7C&z=1138416619
200 OK 35 B URL HTTP/2 www.google-analytics.com/collect?v=1&_v=j96&t=pageview&_s=1&dl=https%3A%2F%2Fapi.kelkoogroup.net%2Fpublisher%2Fshopping%2Fv2%2Flink-monetizer%2Flink%3Fcountry%3Dno%26id%3De4ef5dec-03eb-11eb-bf21-ba5ec25d7100%26merchantUrl%3Dhttps%253A%252F%252Fwww.famme.no%26custom1%3Db4be9086265e0a8a2e19bcca3134aac5a166ea8fe6bfeb31188b44e06d190eb5%26custom2%3DbKfEkwiMh6z8%26custom3%3Dfalse&dr=https%3A%2F%2Flkbx.me%2F&dp=%2F%7C100519078%7C&ul=en-us&de=UTF-8&dt=Du%20sendes%20videre%20til%20famme.no&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=QACAAAABAAAAAC~&cid=1082849737.1675358043&tid=UA-168544891-6&_gid=187081954.1675358043&_r=1&cd1=&cd2=dc1-kls-prod-ls-02.prod.dc1.kelkoo.net_1675358016754_100064&cd3=100519078&cd4=a4c6294-186131e94d3-eff4&cd5=&cd6=%7C100519078%7C&z=1138416619
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
POST /collect?v=1&_v=j96&t=pageview&_s=1&dl=https%3A%2F%2Fapi.kelkoogroup.net%2Fpublisher%2Fshopping%2Fv2%2Flink-monetizer%2Flink%3Fcountry%3Dno%26id%3De4ef5dec-03eb-11eb-bf21-ba5ec25d7100%26merchantUrl%3Dhttps%253A%252F%252Fwww.famme.no%26custom1%3Db4be9086265e0a8a2e19bcca3134aac5a166ea8fe6bfeb31188b44e06d190eb5%26custom2%3DbKfEkwiMh6z8%26custom3%3Dfalse&dr=https%3A%2F%2Flkbx.me%2F&dp=%2F%7C100519078%7C&ul=en-us&de=UTF-8&dt=Du%20sendes%20videre%20til%20famme.no&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=QACAAAABAAAAAC~&cid=1082849737.1675358043&tid=UA-168544891-6&_gid=187081954.1675358043&_r=1&cd1=&cd2=dc1-kls-prod-ls-02.prod.dc1.kelkoo.net_1675358016754_100064&cd3=100519078&cd4=a4c6294-186131e94d3-eff4&cd5=&cd6=%7C100519078%7C&z=1138416619 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://api.kelkoogroup.net
Connection: keep-alive
Referer: https://api.kelkoogroup.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
access-control-allow-origin: https://api.kelkoogroup.net
date: Thu, 02 Feb 2023 17:13:37 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
x-content-type-options: nosniff
access-control-allow-credentials: true
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b8ab867e6005f1cd323eae9f98fed36f
a9b6fc6d69ddc6c3abddc06eb395becf1350ba5e
8763c06fd7ef48de71c0594d782aad17845ddf264d4f01c93a379072f2f78cd5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8763C06FD7EF48DE71C0594D782AAD17845DDF264D4F01C93A379072F2F78CD5"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2113
Expires: Thu, 02 Feb 2023 17:48:50 GMT
Date: Thu, 02 Feb 2023 17:13:37 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 17:13:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b8ab867e6005f1cd323eae9f98fed36f
a9b6fc6d69ddc6c3abddc06eb395becf1350ba5e
8763c06fd7ef48de71c0594d782aad17845ddf264d4f01c93a379072f2f78cd5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8763C06FD7EF48DE71C0594D782AAD17845DDF264D4F01C93A379072F2F78CD5"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8615
Expires: Thu, 02 Feb 2023 19:37:12 GMT
Date: Thu, 02 Feb 2023 17:13:37 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8b46cee661d32a1ad210f70b19a67077
9d75722edd3e44b16792d5d3af149ec373b4ec66
33975623a480032bc86013f5b2457cc8117263502ec1f4cd361cee8244de066e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "33975623A480032BC86013F5B2457CC8117263502EC1F4CD361CEE8244DE066E"
Last-Modified: Tue, 31 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5984
Expires: Thu, 02 Feb 2023 18:53:21 GMT
Date: Thu, 02 Feb 2023 17:13:37 GMT
Connection: keep-alive
cdn.shopify.com/s/files/1/0076/6033/9297/t/97/compiled_assets/styles.css?16210
200 OK 1 B URL HTTP/2 cdn.shopify.com/s/files/1/0076/6033/9297/t/97/compiled_assets/styles.css?16210
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type very short file (no magic)
Hash 68b329da9893e34099c7d8ad5cb9c940
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
GET /s/files/1/0076/6033/9297/t/97/compiled_assets/styles.css?16210 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:37 GMT
content-type: text/css
content-length: 1
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0076/6033/9297/t/97/compiled_assets/styles.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 3dc1cad8-4c15-4851-86c6-ad075c737b7d
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
last-modified: Wed, 01 Feb 2023 13:37:43 GMT
cf-cache-status: HIT
age: 99354
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8Lk9pG8I3h1ZLxCBhsGUkLJcP51X7CfhNpfNqGBhT%2FHlKfnwHhftSCZrvVLUjPR%2BhP2dqfaPvFnQLVOXigGjGxJm9dih%2FlS62D9I9h4Sq10K9rBgSCjNXaW%2FfP8oKGtm%2Bg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=56.102, imageryFetch;dur=55.363, cfRequestDuration;dur=125.999928
server: cloudflare
cf-ray: 79348efa7ba8b51b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0076/6033/9297/files/famme-logo.png?v=1645194686&width=500
200 OK 4.8 kB URL HTTP/2 cdn.shopify.com/s/files/1/0076/6033/9297/files/famme-logo.png?v=1645194686&width=500
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash 9055093405239661324132a7097b3f0d
3e110cecba11dd5b6e66602ffe0938f489b9a93f
e68482335a5684241a9215dd3671665d754259156e30b6026d91892b64572896
GET /s/files/1/0076/6033/9297/files/famme-logo.png?v=1645194686&width=500 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:37 GMT
content-type: image/avif
content-length: 4760
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0076/6033/9297/files/famme-logo.png>; rel="canonical"
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 338aac0a-2a00-4e59-b391-fb87edd67c66
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Mon, 26 Sep 2022 14:58:37 GMT
cf-cache-status: HIT
age: 11153700
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Gz5%2BAMycl5KTjIK2m0CU1U%2FojD0lTKaleSEHo%2Fn3ZWx06wIokLdaSm5%2Be15Y2c9ikqTPFgJcVRoix5o5%2B4h%2BIDC%2BIrHBG3qfM5AiLlgi6xWaZDscUuUY8zAWm44upDdMFA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=909.229, imageryFetch;dur=26.225, imageryProcess;dur=880.755;desc="image", cfRequestDuration;dur=9.999990
server: cloudflare
cf-ray: 79348efa8bc4b51b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b8ab867e6005f1cd323eae9f98fed36f
a9b6fc6d69ddc6c3abddc06eb395becf1350ba5e
8763c06fd7ef48de71c0594d782aad17845ddf264d4f01c93a379072f2f78cd5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8763C06FD7EF48DE71C0594D782AAD17845DDF264D4F01C93A379072F2F78CD5"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8615
Expires: Thu, 02 Feb 2023 19:37:12 GMT
Date: Thu, 02 Feb 2023 17:13:37 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b8ab867e6005f1cd323eae9f98fed36f
a9b6fc6d69ddc6c3abddc06eb395becf1350ba5e
8763c06fd7ef48de71c0594d782aad17845ddf264d4f01c93a379072f2f78cd5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8763C06FD7EF48DE71C0594D782AAD17845DDF264D4F01C93A379072F2F78CD5"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8615
Expires: Thu, 02 Feb 2023 19:37:12 GMT
Date: Thu, 02 Feb 2023 17:13:37 GMT
Connection: keep-alive
famme.no/?kk=a4c6294-186131e94d3-eff4&utm_campaign=NO%20-%20multiple%20google%20shopping%20feed&utm_medium=organic&utm_source=google
200 OK 40 kB URL HTTP/2 famme.no/?kk=a4c6294-186131e94d3-eff4&utm_campaign=NO%20-%20multiple%20google%20shopping%20feed&utm_medium=organic&utm_source=google
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2870)
Hash e181455cefcbc7ae7523fa576f851577
c47a3f3fc91538d7ec67957290e26c6f6597f269
9ff23a1e65ef3fac5978c44a7e62e0241cc81579faec66904c461324ec5b0446
GET /?kk=a4c6294-186131e94d3-eff4&utm_campaign=NO%20-%20multiple%20google%20shopping%20feed&utm_medium=organic&utm_source=google HTTP/1.1
Host: famme.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://api.kelkoogroup.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:37 GMT
content-type: text/html; charset=utf-8
x-sorting-hat-podid: 173
x-sorting-hat-shopid: 7660339297
x-storefront-renderer-rendered: 1
set-cookie: keep_alive=c9988445-e52d-4cad-98c0-c3db9e0fb8b5; path=/; expires=Thu, 02 Feb 2023 17:43:37 GMT; HttpOnly; SameSite=Lax
secure_customer_sig=; path=/; expires=Fri, 02 Feb 2024 17:13:37 GMT; secure; HttpOnly; SameSite=Lax
localization=NO; path=/; expires=Fri, 02 Feb 2024 17:13:37 GMT
cart_currency=NOK; path=/; expires=Thu, 16 Feb 2023 17:13:37 GMT
_cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22merchant_geo%22%3A%22DK%22%2C%22sale_of_data_region%22%3Afalse%7D; domain=famme.no; path=/; expires=Fri, 03 Feb 2023 17:13:37 GMT; SameSite=Lax
_orig_referrer=https%3A%2F%2Fapi.kelkoogroup.net%2F; Expires=Thu, 16-Feb-23 17:13:37 GMT; Domain=famme.no; Path=/; HttpOnly; SameSite=Lax
_landing_page=%2F%3Fkk%3Da4c6294-186131e94d3-eff4%26utm_campaign%3DNO%2520-%2520multiple%2520google%2520shopping%2520feed%26utm_medium%3Dorganic%26utm_source%3Dgoogle; Expires=Thu, 16-Feb-23 17:13:37 GMT; Domain=famme.no; Path=/; HttpOnly; SameSite=Lax
_y=4266db4f-2e1f-447b-9d52-3f1507b2d285; Expires=Fri, 02-Feb-24 17:13:37 GMT; Domain=famme.no; Path=/; SameSite=Lax
_s=2733ed9d-a9b6-4a69-aca9-82a90e98422c; Expires=Thu, 02-Feb-23 17:43:37 GMT; Domain=famme.no; Path=/; SameSite=Lax
_shopify_y=4266db4f-2e1f-447b-9d52-3f1507b2d285; Expires=Fri, 02-Feb-24 17:13:37 GMT; Domain=famme.no; Path=/; SameSite=Lax
_shopify_s=2733ed9d-a9b6-4a69-aca9-82a90e98422c; Expires=Thu, 02-Feb-23 17:43:37 GMT; Domain=famme.no; Path=/; SameSite=Lax
link: <https://cdn.shopify.com>; rel="preconnect", <https://cdn.shopify.com>; rel="preconnect"; crossorigin
x-alternate-cache-key: cacheable:f9202c113f8493338e469390970c7334
x-cache: hit, server
x-frame-options: DENY
content-security-policy: block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
strict-transport-security: max-age=7889238
x-shopid: 7660339297
x-shardid: 173
vary: Accept
content-language: nb
x-shopify-stage: production
x-dc: gcp-europe-north1,gcp-europe-west1,gcp-europe-west1
x-request-id: 2748883f-b4a6-41dc-8de4-10a4f9dab50d
x-xss-protection: 1; mode=block
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KgCJC4x%2Ft1St%2FyB6o%2B96rmjBrqO84YkZAym%2BPT%2B507PY8Ju92%2F4Cl6H85tF0Xrb8mjWzhoxO%2Fq0NZ%2BNcCsLrZLDKY%2B2jhT4FgIfhbW0BHaCF75nU1Igjdzy9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79348ef89b80b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
server-timing: processing;dur=25, db;dur=13, asn;desc="50304", edge;desc="OSL", country;desc="NO", cfRequestDuration;dur=122.000217, earlyhints
X-Firefox-Spdy: h2
fonts.shopifycdn.com/roboto/roboto_n4.da808834c2315f31dd3910e2ae6b1a895d7f73f5.woff2?h10=Y2EuZmFtbWVzcG9ydHN3ZWFyLmNvbQ&h11=ZmFtbWUtaW50ZXJuYXRpb25hbC5hY2NvdW50Lm15c2hvcGlmeS5jb20&h1=ZmFtbWUubm8&h2=ZmFtbWUuc2U&h3=ZmFtbWUuZmk&h4=ZmFtbWVzdG9yZS5kaw&h5=ZmFtbWVzcG9ydHN3ZWFyLmNvbQ&h6=YXUuZmFtbWVzcG9ydHN3ZWFyLmNvbQ&h7=bnouZmFtbWVzcG9ydHN3ZWFyLmNvbQ&h8=dWsuZmFtbWVzcG9ydHN3ZWFyLmNvbQ&h9=ZXUuZmFtbWVzcG9ydHN3ZWFyLmNvbQ&hmac=8d89e039070de434b926b347d97d6a6fe1363f7df8335db25c0ecb238a0eeffd
200 OK 20 kB URL HTTP/2 fonts.shopifycdn.com/roboto/roboto_n4.da808834c2315f31dd3910e2ae6b1a895d7f73f5.woff2?h10=Y2EuZmFtbWVzcG9ydHN3ZWFyLmNvbQ&h11=ZmFtbWUtaW50ZXJuYXRpb25hbC5hY2NvdW50Lm15c2hvcGlmeS5jb20&h1=ZmFtbWUubm8&h2=ZmFtbWUuc2U&h3=ZmFtbWUuZmk&h4=ZmFtbWVzdG9yZS5kaw&h5=ZmFtbWVzcG9ydHN3ZWFyLmNvbQ&h6=YXUuZmFtbWVzcG9ydHN3ZWFyLmNvbQ&h7=bnouZmFtbWVzcG9ydHN3ZWFyLmNvbQ&h8=dWsuZmFtbWVzcG9ydHN3ZWFyLmNvbQ&h9=ZXUuZmFtbWVzcG9ydHN3ZWFyLmNvbQ&hmac=8d89e039070de434b926b347d97d6a6fe1363f7df8335db25c0ecb238a0eeffd
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), TrueType, length 20448, version 2.8978\012- data
Hash c32845986a55e184047e928fbede46bb
da808834c2315f31dd3910e2ae6b1a895d7f73f5
2deee13a48ba2fddd9440dd1b711193236285f8cc73ed5692055527a100cb35b
GET /roboto/roboto_n4.da808834c2315f31dd3910e2ae6b1a895d7f73f5.woff2?h10=Y2EuZmFtbWVzcG9ydHN3ZWFyLmNvbQ&h11=ZmFtbWUtaW50ZXJuYXRpb25hbC5hY2NvdW50Lm15c2hvcGlmeS5jb20&h1=ZmFtbWUubm8&h2=ZmFtbWUuc2U&h3=ZmFtbWUuZmk&h4=ZmFtbWVzdG9yZS5kaw&h5=ZmFtbWVzcG9ydHN3ZWFyLmNvbQ&h6=YXUuZmFtbWVzcG9ydHN3ZWFyLmNvbQ&h7=bnouZmFtbWVzcG9ydHN3ZWFyLmNvbQ&h8=dWsuZmFtbWVzcG9ydHN3ZWFyLmNvbQ&h9=ZXUuZmFtbWVzcG9ydHN3ZWFyLmNvbQ&hmac=8d89e039070de434b926b347d97d6a6fe1363f7df8335db25c0ecb238a0eeffd HTTP/1.1
Host: fonts.shopifycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://famme.no
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:37 GMT
content-type: font/woff2
content-length: 20448
cf-ray: 79348efaab671bfa-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 858829
cache-control: max-age=2629800, immutable
last-modified: Mon, 23 Jan 2023 18:39:45 GMT
link: <https://imagery4-fonts.shopifysvc.com/premium-fonts/roboto/roboto_n4.da808834c2315f31dd3910e2ae6b1a895d7f73f5.woff2>; rel="canonical"
strict-transport-security: max-age=15552000; includeSubDomains; preload
cf-cache-status: HIT
timing-allow-origin: *
x-content-type-options: nosniff
x-dc: gcp-us-east1,gcp-us-central1
x-request-id: a691f9c8-9bd9-4f8a-9b45-c6db460422e4
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pMm8RuAf%2BFWNyKWYUm1gLH%2FmKs%2BDvOfcFwCbPxEk7ZpO%2Bhz1%2FcgIG1YKSB2r5h9xbh12sxsFfYrqR9owj1WZKUai0XQQwofdsw1iRAXBX81SD5ieOL3CpZJ%2FSdTPI5NMuBaJzDLC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=57.264, imageryFetch;dur=56.936, cfRequestDuration;dur=7.999897, cfRequestDuration;dur=151.999950
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/klaviyo.js?company_id=NRZMaR
200 OK 919 B URL HTTP/2 static.klaviyo.com/onsite/js/klaviyo.js?company_id=NRZMaR
IP
File type ASCII text, with very long lines (2028)
Hash de41afde0a12c59c81f321a639236ec9
a1b77c9d01878f747de4a476cd8697a95a91b253
061ac2e3ceba4d64cd4ca5506f1893326ce10fbb649f28f6a6cc9cf37cb2a6b3
GET /onsite/js/klaviyo.js?company_id=NRZMaR HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers:
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
allow: GET, OPTIONS
cache-control: max-age=1, stale-while-revalidate=10800
content-encoding: gzip
content-type: application/javascript
etag: W/"c04ee2923001b678f0efd47e2c0ae523"
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 02 Feb 2023 17:13:37 GMT
age: 244
x-served-by: cache-lga21937-LGA, cache-bma1660-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1675358018.711018,VS0,VE11
vary: Accept-Encoding
content-length: 919
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js
200 OK 3.7 kB URL HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (10292), with no line terminators
Hash b834bec7b126f8201751398feb025617
ad739393418fd651f16b14d2a32281fcdb7c3e54
31189ba7bc1f110aaacd865cd4796d2e0a4ba9fdfdefa3c4b658e5d62597753d
GET /shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://famme.no
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:37 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/storefront/load_feature-e154599399e6b8b29dcb1102cc76eb199fa33a09af4fa78d15e8f8544ee64fcd.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 5abd43ea-3411-4a62-b327-ed19b1bb3b03
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Wed, 04 Jan 2023 20:07:01 GMT
cf-cache-status: HIT
age: 2495196
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i3iulAKyS3TUVDhEmCMz5A%2Bxg8jBEQCUdahyTRBY6hXNffMWazrDui4aUEfS0IznpuHFRzlv91U3nCg4LVPZo%2Bl11WD%2BvMqP1a5A1i3oisgI4wwxA1WKNgY0ADC2%2BqRjiA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=24.068, imageryFetch;dur=23.834, cfRequestDuration;dur=148.999929
server: cloudflare
cf-ray: 79348efa6abab50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/section-multicolumn.css?v=5570303816404364161647629149
200 OK 1.5 kB URL HTTP/2 cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/section-multicolumn.css?v=5570303816404364161647629149
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (3719)
Hash 55dc72d87b5be29e1d220590415e447b
517503f4e6a4dcd612c52f030d0f0d070c53687d
e82c2adb0568b019c09b2795c4b756cd92b2ded54fafac299cb55008c7e78136
GET /s/files/1/0076/6033/9297/t/97/assets/section-multicolumn.css?v=5570303816404364161647629149 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:37 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/section-multicolumn.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: ea04fcc0-a7de-40a5-ae98-79b9e0b05383
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Fri, 02 Sep 2022 07:21:30 GMT
cf-cache-status: HIT
age: 4300765
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0qOhRVRY1QfLejVARqILZMpuITQcuMJZB4qj3%2ByGI9tQQfqos%2FYeOxw%2BCcSGdQCuHZOIFSbQZTlTcbHtTYveOvX8HQRmH%2BlXQVWLrkgOHoICP6xY4kas25x%2Bed7YUCYKEw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=72.959, imageryFetch;dur=71.813, cfRequestDuration;dur=16.000032
server: cloudflare
cf-ray: 79348efa7bb2b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-TJ4V6TV
200 OK 43 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-TJ4V6TV
IP
File type ASCII text, with very long lines (7914)
Hash 848a1dd6662c042822c26033dd612f52
d1fb6484a4966501a7a3d10eed8a489d4befd5d8
51ffa348132a0b582b4d792689a6c2c3d101764c4a88cd3003cb083c3b88f9c8
GET /gtm.js?id=GTM-TJ4V6TV HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 Feb 2023 17:13:37 GMT
expires: Thu, 02 Feb 2023 17:13:37 GMT
cache-control: private, max-age=900
last-modified: Thu, 02 Feb 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43423
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/runtime.8c184955a7a6fe4ce4a8.js?cb=1
200 OK 8.1 kB URL HTTP/2 static.klaviyo.com/onsite/js/runtime.8c184955a7a6fe4ce4a8.js?cb=1
IP
File type ASCII text, with very long lines (19473), with no line terminators
Hash 0bfa5456347cd54654c3f1d42f7f342a
359e04c98caf7699616301882b207a2dae554d5f
f078d26a518c9567f25955df4109259c95604299a8ae9bae936397183e2eab29
GET /onsite/js/runtime.8c184955a7a6fe4ce4a8.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://famme.no
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: XNCpk0Wf+0kNQoZn0WqLyXd5A0kmJTcSkjMOJcjDhQeXfG2L3C5wC6Pi4IySNR01ph9VbnLPNGM=
x-amz-request-id: K44T61YS7N6H1N4W
last-modified: Tue, 31 Jan 2023 19:58:24 GMT
etag: "b328f6ba1ae6daf7f77d0626cbe4faf2"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: dP3XE6gd0EW9ELGahXlBHoemygSvLtyK
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Thu, 02 Feb 2023 17:13:37 GMT
age: 246
x-served-by: cache-lga21965-LGA, cache-bma1656-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 150
vary: Accept-Encoding
content-length: 8050
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js
200 OK 27 kB URL HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (32755)
Hash 67fdab3a1237153c379781688085c358
4eb9dbeb6c2de701fdda11510fd07a78f19a72ba
b45bebef3e5cbda138707cd6d1718354e35188a22abfc89b4318fb897c150d97
GET /shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://famme.no
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:37 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/storefront/features-87e8399988880142f2c62771b9d8f2ff6c290b3ff745dd426eb0dfe0db9d1dae.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: b98b9732-f64e-4363-a5d5-bec216948d87
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Fri, 26 Aug 2022 03:53:38 GMT
cf-cache-status: HIT
age: 13871527
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DtpvfjfBn4AO%2B%2F2HXGyVRs6%2Bzsvcao4az4Y7yLgAr%2BxKOCkTObX8QVA0RHMYlA2VXddbvycyMgk47gCsarLFMOXWNX4QoXWEwY%2BYcy7ScqSjRxuNfHNucvSTmZOp1k8bXg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=23.333, imageryFetch;dur=23.087, cfRequestDuration;dur=12.000084
server: cloudflare
cf-ray: 79348efa7acdb50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/details-modal.js?v=4511761896672669691634992062
200 OK 5.9 kB URL HTTP/2 cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/details-modal.js?v=4511761896672669691634992062
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 8ef80f445b3f3b97a93b4c754371ab96
d5f0eaf75bf4ebe1a567005a136c6ffbb943593c
38907656d00100a1b449046d1824d1c85b4804f0230ca1240f3805311ae14bc4
GET /s/files/1/0076/6033/9297/t/97/assets/details-modal.js?v=4511761896672669691634992062 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:37 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/details-modal.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 47d3b828-dcfb-45d9-ae7a-6e18efb0f031
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Wed, 11 May 2022 21:44:23 GMT
cf-cache-status: HIT
age: 13885874
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DirjHqO%2BFgUk8YcdXOeK9k9DJe0G6e6%2FiRj0od%2BKEWDOvYAmJfdlX6Fi5he9gkLHcBu1o7S%2FNzvh0NaXn3tnMj38KD%2FUYPHJZ4CyHZbiUZDIlCCpFLUcyJOFmrKQh9XEOQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=58.573, imageryFetch;dur=57.913, cfRequestDuration;dur=10.999918
server: cloudflare
cf-ray: 79348efa7bacb51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/extensions/83069ba5-6edf-4464-9d2d-1fdefc694ad7/0.4.0/assets/styles.css
200 OK 1.5 kB URL HTTP/2 cdn.shopify.com/extensions/83069ba5-6edf-4464-9d2d-1fdefc694ad7/0.4.0/assets/styles.css
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 2d6748866cd1366d4369a74aaa38434d
50501156f7b205823bfe19d44fa6a96379617388
c62dc31ee722493affddc67b57eb4b08c423dc42a816225e4f2d68d6cfcb9312
GET /extensions/83069ba5-6edf-4464-9d2d-1fdefc694ad7/0.4.0/assets/styles.css HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:37 GMT
content-type: text/css
access-control-allow-origin: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/extensions/83069ba5-6edf-4464-9d2d-1fdefc694ad7/0.4.0/assets/styles.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 0860ef63-1a7f-484b-b6a1-fba109570f66
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Tue, 10 Jan 2023 15:07:11 GMT
cf-cache-status: HIT
age: 1994649
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XDPx%2BoZueUGmZ7lBt%2Bllh1NhjQAwKg4kNwV%2Fo7dsTW%2FiNBXglG8YOUHU9MRALqdfQn6lG%2B3ILKf8XqoBsHEF4yaweEH%2FNzmdSRWPz5cBN0s%2BFqNeFaVub5%2Be5bpaH9PETg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=107.253, imageryFetch;dur=107.059, cfRequestDuration;dur=16.000032
server: cloudflare
cf-ray: 79348efaac00b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0076/6033/9297/t/97/compiled_assets/scripts.js?16210
200 OK 68 kB URL HTTP/2 cdn.shopify.com/s/files/1/0076/6033/9297/t/97/compiled_assets/scripts.js?16210
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 774e97ed3eee33bc249b0af685b146a9
46ce9419c5ab6dd197ff666b0ee6642dd5eef4e5
3b0b22dcc187375c9b8ab3a60499d9d700692fff1bdcb3bdfa56cbaa5c3f7b94
GET /s/files/1/0076/6033/9297/t/97/compiled_assets/scripts.js?16210 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:37 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0076/6033/9297/t/97/compiled_assets/scripts.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: af19802b-12fa-4c0e-b32b-57540968d395
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
last-modified: Wed, 01 Feb 2023 13:37:42 GMT
cf-cache-status: HIT
age: 99355
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=evCjytCouCFoQWVk0IfounTnhhgOP89RppbscHWr3cnOWV1FGLpacom1mjqxHNvfy1IfSk6IVVgpe%2FXcZp0pa3fDeGBbxfa8dDG09TLqVOWM8YxmkNVYA6AQE19ezLJmyw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=52.947, imageryFetch;dur=51.055, cfRequestDuration;dur=11.999846
server: cloudflare
cf-ray: 79348efaac09b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/global.js?v=136321192988092657831666950328
200 OK 50 kB URL HTTP/2 cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/global.js?v=136321192988092657831666950328
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 7afb41304f89cce4e43b6af144b124e1
a48c1ab879684899fda20830617091ecf270f63e
afa77e45fe3318831f1d0ec0be70ac66d7e274dc5c3931ab365c6c02a3e1392d
GET /s/files/1/0076/6033/9297/t/97/assets/global.js?v=136321192988092657831666950328 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:37 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/global.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 15769b3f-44e8-4c85-98cc-45c1d6003056
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Fri, 28 Oct 2022 09:46:02 GMT
cf-cache-status: HIT
age: 8407655
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FcwiQ4PX1Eeb7LwIn4bLx%2F7GWpByO0I1IuEjTa1ilYOgptI%2FJcXye5%2F3swdv9XgX21Pjrd5pcdsJeoVeVvlFkXEexNG0XQWsJlcwMPGq%2FX8ry48zvu%2FW6184cTokYqGkAA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=90.644, imageryFetch;dur=83.878, cfRequestDuration;dur=10.999918
server: cloudflare
cf-ray: 79348efacc2eb51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.shopifycdn.com/roboto/roboto_n4.a512c7b68cd7f12c72e1a5fd58e7f7315c552e93.woff?h10=Y2EuZmFtbWVzcG9ydHN3ZWFyLmNvbQ&h11=ZmFtbWUtaW50ZXJuYXRpb25hbC5hY2NvdW50Lm15c2hvcGlmeS5jb20&h1=ZmFtbWUubm8&h2=ZmFtbWUuc2U&h3=ZmFtbWUuZmk&h4=ZmFtbWVzdG9yZS5kaw&h5=ZmFtbWVzcG9ydHN3ZWFyLmNvbQ&h6=YXUuZmFtbWVzcG9ydHN3ZWFyLmNvbQ&h7=bnouZmFtbWVzcG9ydHN3ZWFyLmNvbQ&h8=dWsuZmFtbWVzcG9ydHN3ZWFyLmNvbQ&h9=ZXUuZmFtbWVzcG9ydHN3ZWFyLmNvbQ&hmac=8363fa2228e354b220b534d9d6d9b1741e31dc409865e9e8095c030e601703b2
200 OK 20 kB URL HTTP/2 fonts.shopifycdn.com/roboto/roboto_n4.a512c7b68cd7f12c72e1a5fd58e7f7315c552e93.woff?h10=Y2EuZmFtbWVzcG9ydHN3ZWFyLmNvbQ&h11=ZmFtbWUtaW50ZXJuYXRpb25hbC5hY2NvdW50Lm15c2hvcGlmeS5jb20&h1=ZmFtbWUubm8&h2=ZmFtbWUuc2U&h3=ZmFtbWUuZmk&h4=ZmFtbWVzdG9yZS5kaw&h5=ZmFtbWVzcG9ydHN3ZWFyLmNvbQ&h6=YXUuZmFtbWVzcG9ydHN3ZWFyLmNvbQ&h7=bnouZmFtbWVzcG9ydHN3ZWFyLmNvbQ&h8=dWsuZmFtbWVzcG9ydHN3ZWFyLmNvbQ&h9=ZXUuZmFtbWVzcG9ydHN3ZWFyLmNvbQ&hmac=8363fa2228e354b220b534d9d6d9b1741e31dc409865e9e8095c030e601703b2
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), TrueType, length 20436, version 1.0\012- data
Hash 7a42034e2ccf72254ff858734ca87b90
d8651a5109f037b79376da081c06964139dffde3
c0fbd07c229cf48906e9ea1b4bce02f0b7a0bffee7973193c2f8915895042196
GET /roboto/roboto_n4.a512c7b68cd7f12c72e1a5fd58e7f7315c552e93.woff?h10=Y2EuZmFtbWVzcG9ydHN3ZWFyLmNvbQ&h11=ZmFtbWUtaW50ZXJuYXRpb25hbC5hY2NvdW50Lm15c2hvcGlmeS5jb20&h1=ZmFtbWUubm8&h2=ZmFtbWUuc2U&h3=ZmFtbWUuZmk&h4=ZmFtbWVzdG9yZS5kaw&h5=ZmFtbWVzcG9ydHN3ZWFyLmNvbQ&h6=YXUuZmFtbWVzcG9ydHN3ZWFyLmNvbQ&h7=bnouZmFtbWVzcG9ydHN3ZWFyLmNvbQ&h8=dWsuZmFtbWVzcG9ydHN3ZWFyLmNvbQ&h9=ZXUuZmFtbWVzcG9ydHN3ZWFyLmNvbQ&hmac=8363fa2228e354b220b534d9d6d9b1741e31dc409865e9e8095c030e601703b2 HTTP/1.1
Host: fonts.shopifycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://famme.no
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:37 GMT
content-type: font/woff2
content-length: 20436
cf-ray: 79348efbdccb1bfa-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 1242479
cache-control: max-age=2629800, immutable
last-modified: Sat, 24 Dec 2022 08:10:28 GMT
link: <https://imagery4-fonts.shopifysvc.com/premium-fonts/roboto/roboto_n4.a512c7b68cd7f12c72e1a5fd58e7f7315c552e93.woff>; rel="canonical"
strict-transport-security: max-age=15552000; includeSubDomains; preload
cf-cache-status: HIT
timing-allow-origin: *
x-content-type-options: nosniff
x-dc: gcp-us-east1,us-east1
x-request-id: 4b870a24-9a10-4b72-8d82-ed3c9fb42c3c
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EnjW7eu32BWXGY1MeuddxpEiMnZrteEZ6wEpNo%2Fbl%2B09bSv8oD0QI4kuP%2BBkFbikoUPe0%2Fm0T9cFM4XIwLn7PA%2Fnfq91hEuNWA%2B%2Be69%2Bw4YnU64WVhQs3I84kD9%2FweBwGC9TZy3v"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server-timing: imagery;dur=166.597, imageryFetch;dur=53.411, imageryProcess;dur=112.770;desc="font", cfRequestDuration;dur=9.000063, cfRequestDuration;dur=21.999836
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/component-card.css?v=13116108056750117421666878110
200 OK 38 kB URL HTTP/2 cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/component-card.css?v=13116108056750117421666878110
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (5889)
Hash 61bebb52e48e253d9f12f1c7ccd384c8
6b97f63de4a1f120e1cba8d33303621f099f4f5a
4432447b81b20ef3360f798a54a94d72e999979205409bd13722d69c343a477b
GET /s/files/1/0076/6033/9297/t/97/assets/component-card.css?v=13116108056750117421666878110 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:37 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/component-card.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 31bba810-9dfb-4ba7-86f7-4928893b8fe9
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Thu, 27 Oct 2022 13:43:08 GMT
cf-cache-status: HIT
age: 8479829
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EPisF2dgNkQj5muZHGiBOswLgqIyPYhxSl2ZH41Ky0Q7trA%2Bur4LeN1fq5ANWp2gTJgyYEPc9au%2F%2FmNIz2lmszY9O%2BfocMZH%2FDjna3Fix2iIgnsMN2gX%2FLttZSwlcMYNQA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=52.706, imageryFetch;dur=51.439, cfRequestDuration;dur=14.999866
server: cloudflare
cf-ray: 79348efa7bb4b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 07304039cef7e38bd3d13c7a4d034b8b
c62c73bd75693fe5d80b97db0292a923c6194d18
504b869a8cda81ca71aecc14eec1299ea70ec9c7ddffbb3604a2fb9a214961a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "504B869A8CDA81CA71AECC14EEC1299EA70EC9C7DDFFBB3604A2FB9A214961A3"
Last-Modified: Tue, 31 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13099
Expires: Thu, 02 Feb 2023 20:51:56 GMT
Date: Thu, 02 Feb 2023 17:13:37 GMT
Connection: keep-alive
static.klaviyo.com/onsite/js/klaviyo.js?company_id=NRZMaR
304 Not Modified 1.3 kB URL HTTP/2 static.klaviyo.com/onsite/js/klaviyo.js?company_id=NRZMaR
IP
Hash dae940568d388070b35b0102e501d407
7544b541e8b985a15085e5f252e8d97cb024bed2
c80e2accefbb5539a44a5ddf201582bee5ea135b4bbce3733f0966296435ad2c
GET /onsite/js/klaviyo.js?company_id=NRZMaR HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: W/"c04ee2923001b678f0efd47e2c0ae523"
Cache-Control: max-age=0
TE: trailers
HTTP/2 304 Not Modified
date: Thu, 02 Feb 2023 17:13:38 GMT
via: 1.1 varnish
cache-control: max-age=1, stale-while-revalidate=10800
etag: W/"c04ee2923001b678f0efd47e2c0ae523"
age: 244
x-served-by: cache-bma1660-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1675358018.048252,VS0,VE0
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 792 B IP
Hash cda311cbb08c479127d9002b8bd74ecb
6dcabaf02420069bbee0e92880fe16e319f7cb25
07d2b0a15f8ca5d98e48dbcd71d632bf5c4713a9da8bbbf8804e898eae98174b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6546
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 17:13:38 GMT
Last-Modified: Thu, 02 Feb 2023 15:24:32 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/newsletter-section.css?v=62410470717655853621643474440
200 OK 349 B URL HTTP/2 cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/newsletter-section.css?v=62410470717655853621643474440
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (729)
Hash 91b3221accf9b300937835757e8efe47
f7a566a5f3a6fe4eedefee587b94935e154b37fa
f1b801ed6b5b99faa02f5f19f6187d5f293b625db90bfbb36d5169ddfe8c3db1
GET /s/files/1/0076/6033/9297/t/97/assets/newsletter-section.css?v=62410470717655853621643474440 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:37 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/newsletter-section.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: a4ae66e9-e92b-4496-a6cd-f45a9f970cf2
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Tue, 10 May 2022 02:57:18 GMT
cf-cache-status: HIT
age: 13869970
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1z3x3HqbPC8WA%2BYwomLA8TpzMzIFanKup90%2Bz8mKoco%2F6%2BuT4EBz4rZJwkF%2Fth1C4BjXI0Ja7RppFGQWRdFeC95EUXUMTps%2FNnIOhbaFQXMD0oE4wwnu9QreMHq7IlFQ9g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=72.703, imageryFetch;dur=72.014, cfRequestDuration;dur=10.999918
server: cloudflare
cf-ray: 79348efa7bbab51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 07304039cef7e38bd3d13c7a4d034b8b
c62c73bd75693fe5d80b97db0292a923c6194d18
504b869a8cda81ca71aecc14eec1299ea70ec9c7ddffbb3604a2fb9a214961a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "504B869A8CDA81CA71AECC14EEC1299EA70EC9C7DDFFBB3604A2FB9A214961A3"
Last-Modified: Tue, 31 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13098
Expires: Thu, 02 Feb 2023 20:51:56 GMT
Date: Thu, 02 Feb 2023 17:13:38 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 312 B IP
Hash 0357ce1eaac9d331781303579d73b50c
2f84b8aef61ded4d952b62558ecf0b4869fa3905
72222d88f13cf90b534ac445d8a0ab59c14dd5935f798a472ffea10b3eae48d6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3830
Cache-Control: max-age=157523
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 17:13:38 GMT
Etag: "63dba49f-138"
Expires: Sat, 04 Feb 2023 12:59:01 GMT
Last-Modified: Thu, 02 Feb 2023 11:55:11 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 312
sc-static.net/scevent.min.js
200 OK 13 kB URL HTTP/2 sc-static.net/scevent.min.js
IP
File type ASCII text, with very long lines (30923), with no line terminators
Hash 957d65dfa972893511879b4d2abce54b
a0106f59c171c72c527a88cc3b06263af186a5c4
24cae1a14856e2642826fe9d960b0e61ae60fa45a778ec61f2b7d862dc3af603
GET /scevent.min.js HTTP/1.1
Host: sc-static.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 13270
server: CloudFront
date: Thu, 02 Feb 2023 17:13:38 GMT
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Content-Type
cache-control: private, s-maxage=0, max-age=600
set-cookie: X-AB=0d6e407936704bd380072f5891d28b0e;max-age=86400;expires=Fri, 03 Feb 2023 16:42:03 GMT;Path=/scevent.min.js; Secure; SameSite=None
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cp-kPbUMJsvvM2827R_AI7qkcla_JLYW3qGe23Wvzx4cJ39lpl45lQ==
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 0d04839d9138da77aed5cf703c2c16e7
7b6b62a15c3bddf98339f4e9fabb2478dbf60b83
dc598b7da440b4cdac491feabbbe7ca8943d95a51fdd89c438e7614dd82791dc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2163
Cache-Control: max-age=137490
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 17:13:38 GMT
Etag: "63db5ce2-1d7"
Expires: Sat, 04 Feb 2023 07:25:08 GMT
Last-Modified: Thu, 02 Feb 2023 06:49:06 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash 0d04839d9138da77aed5cf703c2c16e7
7b6b62a15c3bddf98339f4e9fabb2478dbf60b83
dc598b7da440b4cdac491feabbbe7ca8943d95a51fdd89c438e7614dd82791dc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2163
Cache-Control: max-age=137490
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 17:13:38 GMT
Etag: "63db5ce2-1d7"
Expires: Sat, 04 Feb 2023 07:25:08 GMT
Last-Modified: Thu, 02 Feb 2023 06:49:06 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash 0d04839d9138da77aed5cf703c2c16e7
7b6b62a15c3bddf98339f4e9fabb2478dbf60b83
dc598b7da440b4cdac491feabbbe7ca8943d95a51fdd89c438e7614dd82791dc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2662
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 17:13:38 GMT
Last-Modified: Thu, 02 Feb 2023 16:29:16 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
pkg.covet.pics/@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/covet-pics-widget.esm.js
200 OK 3.7 kB URL HTTP/2 pkg.covet.pics/@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/covet-pics-widget.esm.js
IP
File type ASCII text, with very long lines (13985)
Hash 0c7be0d384bc05ca7ca63a957e5ccdd6
e198a188a718920578c53817aaf0f43f31576f4d
240dfb92fda9b618bfddb2936ec612119d828104de1ef43f2f48003ea6921829
GET /@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/covet-pics-widget.esm.js HTTP/1.1
Host: pkg.covet.pics
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://famme.no
Referer: https://famme.no/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:38 GMT
content-type: application/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=14036
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"36d4-GVpeYyoVswQaZwXotb9q2VaGXbA"
fly-request-id: 01GPXHNRQA19HVKFGC7CYF7MW5-lga
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 fly.io
x-content-type-options: nosniff
cf-cache-status: HIT
age: 4674
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SNRNUUPHzoXBCmH4W6r5yzJT0%2BJ2%2B2Mac3fBx8gZlE5kOpsajibDdGQ1XVEGBkwofvpMOzgzVpbvtVxrkObGRcgTg1%2FG4lBOhgF2uNVcznW4MjlxDQuqjklHGxH63PaG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79348efe085eb51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
tr.snapchat.com/config/no/5e5ae1d1-ed2f-45e6-bdd8-f5df0b64e854.js
200 OK 620 B URL HTTP/2 tr.snapchat.com/config/no/5e5ae1d1-ed2f-45e6-bdd8-f5df0b64e854.js
IP
Hash 00c64f31e4d23ddaeaf951a0134f3270
931d13ed36dfbea754d7da1d3050ff33d32eb988
9777a8e48bf2fcf6c052fc3c1b3fb0fc1fce3d20f21dd18639425113584e3dc5
GET /config/no/5e5ae1d1-ed2f-45e6-bdd8-f5df0b64e854.js HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://famme.no
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:38 GMT
access-control-allow-origin: https://famme.no
content-type: application/javascript
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-envoy-upstream-service-time: 0
content-encoding: gzip
vary: Accept-Encoding
server: API Gateway
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tr.snapchat.com/p
200 OK 68 B IP
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
POST /p HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 581
Origin: https://famme.no
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:38 GMT
access-control-allow-origin: https://famme.no
cache-control: no-cache, no-transform
set-cookie: sc_at=v2|H4sIAAAAAAAAAAXBiREAIAgDsIm4Q8vTdUDdguFNzo6CwgV8KcZ+QtstrpW3YVXImRXpcOri6AfWIPk7MgAAAA==;SameSite=None;Version=1;Comment=;Domain=.snapchat.com;Path=/;Max-Age=33696000;Secure
content-type: text/html
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 68
x-envoy-upstream-service-time: 35
server: API Gateway
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 1f85c966a70f946597019b1b862f3531
211885141ca08a203c1f18009b796b169d65219c
2668e60cf29c1101ce726fb62b6fca947d852981365d6981eacf6b8753a90c47
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=119654
Date: Thu, 02 Feb 2023 17:13:38 GMT
Etag: "63db0727-1d7"
Expires: Sat, 04 Feb 2023 02:27:52 GMT
Last-Modified: Thu, 02 Feb 2023 00:43:19 GMT
Server: ECS (bsa/EB1B)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: smJ5CTmsvONPJsz6_vJJFdjlQexbIN11hV4VnQmo-ih8fXBKSaQImQ==
Age: 6273
pkg.covet.pics/@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-d6d36b2e.js
200 OK 577 B URL HTTP/2 pkg.covet.pics/@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-d6d36b2e.js
IP
File type ASCII text, with very long lines (325)
Hash f13837356d657ba50a8fe35becc54c9a
520a8d0e114521ae1ec5dc78d147aa6e3aebf816
c52598f47113c85b2b7d5e0eaeef4069e699ec4ab7319a28afc672395400b9da
GET /@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-d6d36b2e.js HTTP/1.1
Host: pkg.covet.pics
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://famme.no
Connection: keep-alive
Referer: https://pkg.covet.pics/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:38 GMT
content-type: application/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=376
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"178-B0E0o5MdZGIoDFR42+OHLm3j5lg"
fly-request-id: 01GPXHP3KZN850RC4D9JZCNYP8-lga
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 fly.io
x-content-type-options: nosniff
cf-cache-status: HIT
age: 4674
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VaZoqB2sanorxU%2FOrrXfoG8P2p0hwYp0ZyoUQ8QRYhxaiequ4j%2FcHudIUsaRSmsiR5JbWLM2vKeeszhKldctxlMDkm8o5LIffx3EPHOjm%2BIVEb5gHX0xgz1KEMM2QbMc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79348efeb954b51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
pkg.covet.pics/@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-2cda0406.entry.js
200 OK 7.5 kB URL HTTP/2 pkg.covet.pics/@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-2cda0406.entry.js
IP
File type ASCII text, with very long lines (22791)
Hash 6a23495d058574de575e68be80e32eb3
a531eeb5142d62f6fbd4e7512c8244bd239eff4d
5f23d78e8a8a8ecb3ed83906e005c2f6ccb12bc400fd50bde6d09e57808b26d4
GET /@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-2cda0406.entry.js HTTP/1.1
Host: pkg.covet.pics
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://famme.no
Connection: keep-alive
Referer: https://pkg.covet.pics/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:38 GMT
content-type: application/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=22842
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"593a-LNoEBjRznEvnWaSBwGlTgQtk4d0"
fly-request-id: 01GQ5PY8QAR4RHG2VS8JWP8VAK-lga
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 fly.io
x-content-type-options: nosniff
cf-cache-status: HIT
age: 4674
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hU%2F%2F0JrW3qiU0nTbkeeMDUEmTWqk942ZxS%2F1eTXn6M1hdzzOXHLq0MKLvHANP8dyogxHsN5cfbPFme9sA9jyBXzwMoGIRnXqLs5TDDfCBfr7RZES3ZCigdxviKmXJW%2BB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79348efe78fab51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=C5GR69CL92TS5S0624OG&lib=ttq
200 OK 1.2 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=C5GR69CL92TS5S0624OG&lib=ttq
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2333)
Hash 7d0532569c36020ce772ef691da73662
c1d238e166f28944bedc4e7bebfd5518761a83fc
718e34446a56489581597999d3e01c4561783fe1268070c4cc1b1a949bd9ffd4
GET /i18n/pixel/events.js?sdkid=C5GR69CL92TS5S0624OG&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202302021713388F47034591D81A32978E
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf600abfded03f52e527228925ae696ca9b5265bfd15b489624a3ecb4d3197b1a1f8bd24d9ebb9b7f03407e64a8185d554896ee32249ac498d8ce4aa370402d555cdfa9ffb623df4a9a5108af7f29d5bec879ca2243c47e268af789a39d5b5f66650
content-encoding: gzip
content-length: 1152
x-origin-response-time: 7,23.218.222.81
x-akamai-request-id: 6fa21d73.addd956c
expires: Thu, 02 Feb 2023 17:13:38 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 02 Feb 2023 17:13:38 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
set-cookie: _ttp=2LBww6R2zmow5mZLZJjlRGH1way; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-218-222-81.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=99, origin; dur=7, inner; dur=2
x-parent-response-time: 106,23.36.79.13
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/main.MWE2YWY2YTgzMg.js
200 OK 69 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/main.MWE2YWY2YTgzMg.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (21891)
Hash 74c3f327c4b3002fde5ef788129d6245
f99cd82f3208a2750f5be61301719411d3456ea0
c56110fcf0f726745765a3708a795b832279b24811675e6d757a8d84c3a4b144
GET /i18n/pixel/static/main.MWE2YWY2YTgzMg.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Cookie: _ttp=2LBww6R2zmow5mZLZJjlRGH1way
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20230112175825CE9047AAB28A1A92E1C9
x-tt-trace-host: 012b38305f60bfa8a9f04bdd846fde846b507e69fff233d9a114d447ebe9f93c0f0d03b7468ad8b1cb3b9a087e8ba0c9271348d0471c1aab4c6b5f4ed91206a643c3d77d2de7d14e7830204a6ea5a19be4f4e8a330ae4e711c3e2cbdf6ca25d12c
content-encoding: gzip
content-length: 68835
date: Thu, 02 Feb 2023 17:13:38 GMT
x-cache: TCP_MEM_HIT from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: addd9737
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/predictive-search.js?v=31278710863581584031635269082
200 OK 2.1 kB URL HTTP/2 cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/predictive-search.js?v=31278710863581584031635269082
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 6591b329c3128cc8c37f2e0b938f6be4
4e6732991932c8f6155294133dda423563b2f191
fad054a39fe00c045dd3231636e3e801743d85377d6adba6e17fa3de5b6685d5
GET /s/files/1/0076/6033/9297/t/97/assets/predictive-search.js?v=31278710863581584031635269082 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:37 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/predictive-search.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 7fdf3b56-e7b5-4dab-b803-ae19b332aad6
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Thu, 12 May 2022 02:29:08 GMT
cf-cache-status: HIT
age: 13869883
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CXY3kjH3S%2BdC9qV7UASd7QTkf5z1K9vTzzjjeBApvVWqWbiRroHgxfceeyOc1jW2aRoVgnncSiGiPn5Thl8mXQ0ACvYqYlMygtCYWfrZ2EfrFFMPZcTkD4DX0cWwK6k36Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=59.417, imageryFetch;dur=56.996, cfRequestDuration;dur=22.000074
server: cloudflare
cf-ray: 79348efa7bbfb51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 314 B IP
Hash 1fa4a1bbc4eef369c1062f928bce8021
93c8b2e83d7238394892d83005f899ec7b1ab3db
549ad164c2c23cbee22a33358e6d837f9546466b11f996adf713b543b11becfc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1728
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 17:13:38 GMT
Last-Modified: Thu, 02 Feb 2023 16:44:51 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 314
cdn.shopify.com/shopifycloud/consent-tracking-api/v0.1/consent-tracking-api.js
200 OK 5.2 kB URL HTTP/2 cdn.shopify.com/shopifycloud/consent-tracking-api/v0.1/consent-tracking-api.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (491)
Hash 99f97a8011ac3596411ef45e9f5a7df7
46eda4fb1693d26cec42c0ed084a754b15bd5656
87c2e55263ca16eac5afb0663cdef6ca11a65450a4f4d8167253391561114598
GET /shopifycloud/consent-tracking-api/v0.1/consent-tracking-api.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://famme.no
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:38 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=1800, must-revalidate
link: <https://cdn.shopify.com/shopifycloud/consent-tracking-api/v0.1/consent-tracking-api.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 30ce59e7-17b8-4b47-9a16-2612a9a4fcc5
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-central1
last-modified: Thu, 02 Feb 2023 16:33:42 GMT
cf-cache-status: HIT
age: 585
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mGZ3r3ryXn%2BiEjtyHNeaRwifGZDRtvEOxTU%2BLlvzUNgiJcVQOq9gbWeSbFYC%2FCgJXiNsCqAjhR64%2BKzCDjDryeHwXj29QDAES6H31%2BQ4VqD7GI%2FGy0dsPRmswZY2U46gyg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=19.144, imageryFetch;dur=18.904, cfRequestDuration;dur=9.999990
server: cloudflare
cf-ray: 79348efc7de0b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pkg.covet.pics/@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-52267d29.js
200 OK 257 B URL HTTP/2 pkg.covet.pics/@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-52267d29.js
IP
File type ASCII text, with very long lines (384)
Hash e1a90d2c67b308d07f9b4c0773027f39
6b5d261f1dde0146593926d28de15412c648c40d
b7ab5b1f1a2f627795e84f966a1cfadc9689ff5b140678f18f3967288dd38c2c
GET /@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-52267d29.js HTTP/1.1
Host: pkg.covet.pics
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://famme.no
Connection: keep-alive
Referer: https://pkg.covet.pics/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:38 GMT
content-type: application/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=435
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"1b3-b5YXCgePzov5muJUzzvUu6iOBpE"
fly-request-id: 01GPXHP3NNXR1FDBCXWS7MD6C9-lga
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 fly.io
x-content-type-options: nosniff
cf-cache-status: HIT
age: 4674
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XNVE1t3%2F4b8lcRRBMt5x1aRuOfgPLWSj5nVvRhtM%2BcnsYNoslh2vJN1vpo6i7Dwz848jEK91NA6BXAL0rackd7VOZxo6QrOAmcXrxPgvdxBKKmtzuK0Lj%2BHNsKm0u%2ByT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79348efe993cb51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
pkg.covet.pics/@covet-pics/covet-pics-widget@latest/dist/covet-pics-widget/covet-pics-widget.esm.js
302 Found 1.3 kB URL HTTP/2 pkg.covet.pics/@covet-pics/covet-pics-widget@latest/dist/covet-pics-widget/covet-pics-widget.esm.js
IP
Hash a0b7158bc110aa1d8c2496e740c7b497
c5b0c36fe32c37bebfd0df0636b7e3207a07c942
3b5fd3154d47a4882631c8c28fd21f74e3595d7f6ad89c183ab6cdaef9faa1ac
GET /@covet-pics/covet-pics-widget@latest/dist/covet-pics-widget/covet-pics-widget.esm.js HTTP/1.1
Host: pkg.covet.pics
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://famme.no
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 02 Feb 2023 17:13:38 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=600
location: /@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/covet-pics-widget.esm.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GR9HJ695260XZD8RVHYN9GPE-lga
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=95nLADMIxC%2FhTj5%2FigMRTcx%2FdwPaTwv%2FI5n%2F0sjAkAxpOENU6EdvvwK7yEn0Hh2zIWe5eur06Hsoxj4qsK5T8a8BW0Suu8MNnxW45cP6vhJNAFiUXq4%2FtTUe07UknWDA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79348efcef0bb51b-OSL
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
200 OK 31 kB URL HTTP/2 gem.gbc.criteo.com/newidsd
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash eee9b25e19c58d1b55b00cdba1de7131
5dfce693731dd11721e234b324e19ac7e70728b5
1f1a11ee19126879f41b27c33236cd5426d0b2d618b87d30db06ad58ae4553fa
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:38 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 56837
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash ede42358dbe8cf2e6b7e6a2653774d01
5dc8ca0b929f04fb15c7ff81d0a9decda023b7fb
8e841815d41c4ade06e328cb1ffb9be342640167ec6acb658f6b4b373e23a52a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2212
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 17:13:38 GMT
Last-Modified: Thu, 02 Feb 2023 16:36:46 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Thu, 02 Feb 2023 15:45:20 GMT
expires: Thu, 02 Feb 2023 17:45:20 GMT
cache-control: public, max-age=7200
age: 5298
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: Mg+yKJ3BKNi/Id/pSy9y9v4e4uJ/oqDcX8CVQec88zKfuK65+O8aPmH7oOC41yQ72Eak8LSL8M34HRNNQT9N7Q==
priority: u=3,i
content-length: 27843
x-fb-trip-id: 1904183273
date: Thu, 02 Feb 2023 17:13:38 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9bfd33253208c9d034988400d66abd5d
8811fd76d9bc56c15431433f8f08d648185992ed
6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 17:13:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash bc23c882647ea07c04c92567de9c4d13
2bd4183622e2e183dd6eb295740dad5699003b75
07d5564eb20422c1cf402d4371625c87016a56f27a503ecf73964dad0dc1f426
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4763
Cache-Control: max-age=86076
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 17:13:38 GMT
Etag: "63da89e3-1d7"
Expires: Fri, 03 Feb 2023 17:08:14 GMT
Last-Modified: Wed, 01 Feb 2023 15:48:51 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
googleads.g.doubleclick.net/pagead/viewthroughconversion/825752971/?random=1675358045259&cv=11&fst=1675358045259&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&tiba=Famme%20-%20treningskl%C3%A6r%20og%20hverdagskl%C3%A6r%20til%20dame%20p%C3%A5%20nett&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Ffamme.no%2F%3Fkk%3Da4c6294-186131e94d3-eff4%26utm_campaign%3DNO%2520-%2520multiple%2520google%2520shopping%2520feed%26utm_medium%3Dorganic%26utm_source%3Dgoogle&ref=https%3A%2F%2Fapi.kelkoogroup.net%2F&auid=789513424.1675358045&data=event%3Dpage_view%3Bpage_path%3D%2F&rfmt=3&fmt=4
200 OK 1.0 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/825752971/?random=1675358045259&cv=11&fst=1675358045259&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&tiba=Famme%20-%20treningskl%C3%A6r%20og%20hverdagskl%C3%A6r%20til%20dame%20p%C3%A5%20nett&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Ffamme.no%2F%3Fkk%3Da4c6294-186131e94d3-eff4%26utm_campaign%3DNO%2520-%2520multiple%2520google%2520shopping%2520feed%26utm_medium%3Dorganic%26utm_source%3Dgoogle&ref=https%3A%2F%2Fapi.kelkoogroup.net%2F&auid=789513424.1675358045&data=event%3Dpage_view%3Bpage_path%3D%2F&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (2377), with no line terminators
Hash 2d3312f9e0f51ffa012e143bc5ffb70b
38e304a4fc253dabb974598b7a7142c1d10eb7f9
ff9be11dbd37a757f1d39241b653244355afcaefac74ee5d77d2935925758e98
GET /pagead/viewthroughconversion/825752971/?random=1675358045259&cv=11&fst=1675358045259&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&tiba=Famme%20-%20treningskl%C3%A6r%20og%20hverdagskl%C3%A6r%20til%20dame%20p%C3%A5%20nett&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Ffamme.no%2F%3Fkk%3Da4c6294-186131e94d3-eff4%26utm_campaign%3DNO%2520-%2520multiple%2520google%2520shopping%2520feed%26utm_medium%3Dorganic%26utm_source%3Dgoogle&ref=https%3A%2F%2Fapi.kelkoogroup.net%2F&auid=789513424.1675358045&data=event%3Dpage_view%3Bpage_path%3D%2F&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 17:13:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1021
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 02-Feb-2023 17:28:38 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
200 OK 511 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP
Hash 1bc9b96a32fb4c634572506085264ae9
6d83ff0d866983775774847fcc4781b5e12f17d5
4ebb64dbefc36f2ae33560a350d67f44281c725d22a8095b1aa22c7956b4debc
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:38 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 75659
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 17:13:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
analytics.tiktok.com/api/v2/pixel
200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 965
Origin: https://famme.no
Connection: keep-alive
Referer: https://famme.no/
Cookie: _ttp=2LBww6R2zmow5mZLZJjlRGH1way
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202302021713380177DAD30BA84B2A7713
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60b294eb1ae32bfdb0da8bf1819280156a52751557e5c1995817bcc262a49b246442b906253f0a8d9f678f952d0e59770370ee6bd33269b6a1f1c21072de6dbd38214ba950d11895455b167c422b25e89f
expires: Thu, 02 Feb 2023 17:13:38 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 02 Feb 2023 17:13:38 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=25, cdn-cache; desc=MISS, edge; dur=5, origin; dur=121
x-origin-response-time: 121,23.36.79.13
x-akamai-request-id: addd9876
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash df4a6d84addba49571d9f6ae44c61a3f
28c8093de27e27645cf6dfd5ae93a62fc77b9be5
cb6623b08b6245ea11bb871729613e453046d427d738a8c6431c5da8347e6e05
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 17:13:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/component-rating.css?v=24573085263941240431630000069
200 OK 690 B URL HTTP/2 cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/component-rating.css?v=24573085263941240431630000069
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (889)
Hash 24b1a0cafbc76a1ddd9238f0bf4844ce
9148de9fc519550d4868cdff7d1062d9618657e8
b3b9b2a88d4c1f7542c40fc5d4038549db0ebdae1c6b5db12e3ac4f832bcf656
GET /s/files/1/0076/6033/9297/t/97/assets/component-rating.css?v=24573085263941240431630000069 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:37 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/component-rating.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 942088fe-d969-4ee8-a7e1-b528dd2e9f62
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Mon, 02 May 2022 19:23:20 GMT
cf-cache-status: HIT
age: 13866067
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F1M6KFZj6FGwNuCTwJhmEYV5Pi%2F1%2BcjVJyAbBSXO1cCwYqe2psP%2BBLDw5XluBF%2FqjHAN5AWJy3M2ODbLcWgqGQhKbFS0Zh0eTGnYyPW86U857QrtJrzGYXMFqTzNuvCFjw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=85.660, imageryFetch;dur=84.919, cfRequestDuration;dur=14.999866
server: cloudflare
cf-ray: 79348efa7bb7b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/825752971/?random=1675358045259&cv=11&fst=1675357200000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&tiba=Famme%20-%20treningskl%C3%A6r%20og%20hverdagskl%C3%A6r%20til%20dame%20p%C3%A5%20nett&frm=0&url=https%3A%2F%2Ffamme.no%2F%3Fkk%3Da4c6294-186131e94d3-eff4%26utm_campaign%3DNO%2520-%2520multiple%2520google%2520shopping%2520feed%26utm_medium%3Dorganic%26utm_source%3Dgoogle&ref=https%3A%2F%2Fapi.kelkoogroup.net%2F&data=event%3Dpage_view%3Bpage_path%3D%2F&fmt=3&is_vtc=1&random=2632161278&rmt_tld=1&ipr=y
200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/825752971/?random=1675358045259&cv=11&fst=1675357200000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&tiba=Famme%20-%20treningskl%C3%A6r%20og%20hverdagskl%C3%A6r%20til%20dame%20p%C3%A5%20nett&frm=0&url=https%3A%2F%2Ffamme.no%2F%3Fkk%3Da4c6294-186131e94d3-eff4%26utm_campaign%3DNO%2520-%2520multiple%2520google%2520shopping%2520feed%26utm_medium%3Dorganic%26utm_source%3Dgoogle&ref=https%3A%2F%2Fapi.kelkoogroup.net%2F&data=event%3Dpage_view%3Bpage_path%3D%2F&fmt=3&is_vtc=1&random=2632161278&rmt_tld=1&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/825752971/?random=1675358045259&cv=11&fst=1675357200000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&tiba=Famme%20-%20treningskl%C3%A6r%20og%20hverdagskl%C3%A6r%20til%20dame%20p%C3%A5%20nett&frm=0&url=https%3A%2F%2Ffamme.no%2F%3Fkk%3Da4c6294-186131e94d3-eff4%26utm_campaign%3DNO%2520-%2520multiple%2520google%2520shopping%2520feed%26utm_medium%3Dorganic%26utm_source%3Dgoogle&ref=https%3A%2F%2Fapi.kelkoogroup.net%2F&data=event%3Dpage_view%3Bpage_path%3D%2F&fmt=3&is_vtc=1&random=2632161278&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 17:13:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/825752971/?random=1675358045259&cv=11&fst=1675357200000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&tiba=Famme%20-%20treningskl%C3%A6r%20og%20hverdagskl%C3%A6r%20til%20dame%20p%C3%A5%20nett&frm=0&url=https%3A%2F%2Ffamme.no%2F%3Fkk%3Da4c6294-186131e94d3-eff4%26utm_campaign%3DNO%2520-%2520multiple%2520google%2520shopping%2520feed%26utm_medium%3Dorganic%26utm_source%3Dgoogle&ref=https%3A%2F%2Fapi.kelkoogroup.net%2F&data=event%3Dpage_view%3Bpage_path%3D%2F&fmt=3&is_vtc=1&random=2632161278&rmt_tld=0&ipr=y
200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/825752971/?random=1675358045259&cv=11&fst=1675357200000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&tiba=Famme%20-%20treningskl%C3%A6r%20og%20hverdagskl%C3%A6r%20til%20dame%20p%C3%A5%20nett&frm=0&url=https%3A%2F%2Ffamme.no%2F%3Fkk%3Da4c6294-186131e94d3-eff4%26utm_campaign%3DNO%2520-%2520multiple%2520google%2520shopping%2520feed%26utm_medium%3Dorganic%26utm_source%3Dgoogle&ref=https%3A%2F%2Fapi.kelkoogroup.net%2F&data=event%3Dpage_view%3Bpage_path%3D%2F&fmt=3&is_vtc=1&random=2632161278&rmt_tld=0&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/825752971/?random=1675358045259&cv=11&fst=1675357200000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&tiba=Famme%20-%20treningskl%C3%A6r%20og%20hverdagskl%C3%A6r%20til%20dame%20p%C3%A5%20nett&frm=0&url=https%3A%2F%2Ffamme.no%2F%3Fkk%3Da4c6294-186131e94d3-eff4%26utm_campaign%3DNO%2520-%2520multiple%2520google%2520shopping%2520feed%26utm_medium%3Dorganic%26utm_source%3Dgoogle&ref=https%3A%2F%2Fapi.kelkoogroup.net%2F&data=event%3Dpage_view%3Bpage_path%3D%2F&fmt=3&is_vtc=1&random=2632161278&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 17:13:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 17:13:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 17:13:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pkg.covet.pics/@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-658e52dc.js
200 OK 3.1 kB URL HTTP/2 pkg.covet.pics/@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-658e52dc.js
IP
File type ASCII text, with very long lines (7091)
Hash 789c506b7fa6e096da809421ad56aae4
b62051c7b455dd7fe2e0ecf7077e0d375031b734
d83cc63f90e5a4a98a112b5a720e7c49e3b08ee5586ebf5f70a17648861ade8a
GET /@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-658e52dc.js HTTP/1.1
Host: pkg.covet.pics
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://famme.no
Connection: keep-alive
Referer: https://pkg.covet.pics/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:38 GMT
content-type: application/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=7142
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"1be6-8HCQXeY+mCodmJvEiWqvez46RA4"
fly-request-id: 01GPXHP3KJM8NH9TT9W4CTQYM2-lga
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 fly.io
x-content-type-options: nosniff
cf-cache-status: HIT
age: 4674
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LlsFq%2Fln%2FgXrK6wCPbBdUo4rZuKms77nR6Xpd8x9y5sQUPdF%2BCiOWw7lCUTuAxZmT3wcbhDm3hor%2Fgq9kBY06FRQXL3tMeAVusKeSocRB%2FpMcrvigIN4csxnqL4VbpAJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79348efe9929b51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
pkg.covet.pics/@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-d8cc6267.js
200 OK 1.5 kB URL HTTP/2 pkg.covet.pics/@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-d8cc6267.js
IP
File type ASCII text, with very long lines (2247)
Hash 1e430fcb3c37d2a641c00a9d30ca1254
12d0f733a17487ebdb9bdb36abc8c6db4a5797f8
174902e2f4c9db29eab435f1edd9bfaba3ebcf04dd53530b8fbff494958a486b
GET /@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-d8cc6267.js HTTP/1.1
Host: pkg.covet.pics
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://famme.no
Connection: keep-alive
Referer: https://pkg.covet.pics/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:38 GMT
content-type: application/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=2298
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"8fa-ZKm0VTTcVEWm2W030aymxJhJuEQ"
fly-request-id: 01GPXHPHY1BCANFKFEAB9580FP-lga
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 fly.io
x-content-type-options: nosniff
cf-cache-status: HIT
age: 4673
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Dj3dXaRE7OsZC8hf0%2Bf5cJGt55Vhy6sc35jRW5QO50qPpPh%2FtVBHuZrvRSw30mA17Chw9G2cdGwW4bRW8khEROpd2%2BerX%2F9bqhjyyVnspJIxfkKThO1BjND20fqZ9zNQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79348f014cbeb51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-85535869-2&cid=1920038053.1675358046&jid=775060239&_u=YGBAgEABBAAAAEgCIAB~&z=708865206
200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-85535869-2&cid=1920038053.1675358046&jid=775060239&_u=YGBAgEABBAAAAEgCIAB~&z=708865206
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-85535869-2&cid=1920038053.1675358046&jid=775060239&_u=YGBAgEABBAAAAEgCIAB~&z=708865206 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 17:13:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Montserrat:wght@300;400;600;700&display=swap
200 OK 111 kB URL HTTP/2 fonts.googleapis.com/css2?family=Montserrat:wght@300;400;600;700&display=swap
IP
File type ASCII text, with very long lines (57583)
Size 111 kB (110795 bytes)
Hash 0e8638aa9191967d7f1d86ce39480fac
56a7bf625e9fd2400e77422154ed42e2229dd271
4cb9a539e2d848b1528a4e3614d2e110e17e67a2dffc4d39afaecd28b2e9f5df
GET /css2?family=Montserrat:wght@300;400;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 Feb 2023 17:13:38 GMT
date: Thu, 02 Feb 2023 17:13:38 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pkg.covet.pics/@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-9c18decb.js
200 OK 24 kB URL HTTP/2 pkg.covet.pics/@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-9c18decb.js
IP
File type ASCII text, with very long lines (65488)
Hash a60d9c91152ea54fa095f4511ddfd19b
924b0b28fc447cc376e4f1b63a4cab85bc43d1b5
33309ef6d7062406f30822458b972b923d429502f463084a766a691462e3dd11
GET /@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-9c18decb.js HTTP/1.1
Host: pkg.covet.pics
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://famme.no
Connection: keep-alive
Referer: https://pkg.covet.pics/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:38 GMT
content-type: application/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=78099
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"13113-W00jsDlxb06RreZHKA8jnwk2U8w"
fly-request-id: 01GPXHPEQAKW9ECHQ72C9MEZKC-lga
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 fly.io
x-content-type-options: nosniff
cf-cache-status: HIT
age: 4673
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fab3IJ3jjDtK%2FeEkoy%2BRt4l2YCo1iMSb4hdkm8XisvzvjnYHWGToeCL0SiQfSPRXVkctDx3zo%2BVC7qwW5fo8m5tZMBd%2Fpg7aeADM0%2F3D9rLQLrbZk4mFxQkm2Xq%2Bzj4k"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79348f013cbab51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 992 B IP
Hash 9e0bc825fac54b2594972cdc9b7f56f7
bd7fe598628e89795ca18cae6292d215da7ee1a2
96d44d0de1cd9f9cebfd82b957dc49fee2f6d21163fd78a7b70a3c67482a1422
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 17:13:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.facebook.com/tr/?id=535017443720355&ev=PageView&dl=https%3A%2F%2Ffamme.no%2F%3Fkk%3Da4c6294-186131e94d3-eff4%26utm_campaign%3DNO%2520-%2520multiple%2520google%2520shopping%2520feed%26utm_medium%3Dorganic%26utm_source%3Dgoogle&rl=https%3A%2F%2Fapi.kelkoogroup.net%2F&if=false&ts=1675358046055&sw=1280&sh=1024&v=2.9.95&r=stable&a=shopify&ec=0&o=30&fbp=fb.1.1675358046054.55167850&it=1675358045720&coo=false&eid=131f0862-978A-4CFA-5FF4-2BAB9D558FB0&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=535017443720355&ev=PageView&dl=https%3A%2F%2Ffamme.no%2F%3Fkk%3Da4c6294-186131e94d3-eff4%26utm_campaign%3DNO%2520-%2520multiple%2520google%2520shopping%2520feed%26utm_medium%3Dorganic%26utm_source%3Dgoogle&rl=https%3A%2F%2Fapi.kelkoogroup.net%2F&if=false&ts=1675358046055&sw=1280&sh=1024&v=2.9.95&r=stable&a=shopify&ec=0&o=30&fbp=fb.1.1675358046054.55167850&it=1675358045720&coo=false&eid=131f0862-978A-4CFA-5FF4-2BAB9D558FB0&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=535017443720355&ev=PageView&dl=https%3A%2F%2Ffamme.no%2F%3Fkk%3Da4c6294-186131e94d3-eff4%26utm_campaign%3DNO%2520-%2520multiple%2520google%2520shopping%2520feed%26utm_medium%3Dorganic%26utm_source%3Dgoogle&rl=https%3A%2F%2Fapi.kelkoogroup.net%2F&if=false&ts=1675358046055&sw=1280&sh=1024&v=2.9.95&r=stable&a=shopify&ec=0&o=30&fbp=fb.1.1675358046054.55167850&it=1675358045720&coo=false&eid=131f0862-978A-4CFA-5FF4-2BAB9D558FB0&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 02 Feb 2023 17:13:39 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6393e72be4a67737d5d598ad60372ae8
045badf6e1b220335f012a42d834a7fed65bdcb8
706148b4c0eceb6b69ccf3bd1b18c7392de5fc29d9ee404000a63c68111e5e3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "706148B4C0ECEB6B69CCF3BD1B18C7392DE5FC29D9EE404000A63C68111E5E3F"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5063
Expires: Thu, 02 Feb 2023 18:38:02 GMT
Date: Thu, 02 Feb 2023 17:13:39 GMT
Connection: keep-alive
cdn.pushowl.com/latest/sdks/pushowl-shopify.js?subdomain=famme-international&environment=production&guid=038435e1-ff7f-45c9-89a1-7dbe3ea50376&shop=famme-international.myshopify.com
200 OK 38 kB URL HTTP/2 cdn.pushowl.com/latest/sdks/pushowl-shopify.js?subdomain=famme-international&environment=production&guid=038435e1-ff7f-45c9-89a1-7dbe3ea50376&shop=famme-international.myshopify.com
IP
File type Unicode text, UTF-8 text, with very long lines (65524), with no line terminators
Hash dbd23fa37357f3d0b61660028490313e
2b0efaaad0d83b37255056f058a36834c7464825
9864b147a02f55dc3c532532f10b1761c36db95151552c1bf867407485ea2f95
GET /latest/sdks/pushowl-shopify.js?subdomain=famme-international&environment=production&guid=038435e1-ff7f-45c9-89a1-7dbe3ea50376&shop=famme-international.myshopify.com HTTP/1.1
Host: cdn.pushowl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
x-request-id: 5a97138f-bec1-4f05-b51c-5abe37edabfc
x-server: ImageKit.io
access-control-allow-origin: *
timing-allow-origin: *
cache-control: max-age=31536000
etag: W/"26572-mLLokrv2MGEVUeXn0hloxOgiowE"
date: Mon, 30 Jan 2023 11:53:14 GMT
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: QYd41yXHxjeyinatqqNo0FLYAyDHw_Zsof9AOLvAs9PHWkWKaa3NdQ==
age: 278425
X-Firefox-Spdy: h2
tr.snapchat.com/scs/shopify
200 OK 0 B URL HTTP/2 tr.snapchat.com/scs/shopify
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /scs/shopify HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://famme.no/
Content-Type: application/x-www-form-urlencoded
Origin: https://famme.no
Content-Length: 96
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:39 GMT
access-control-allow-origin: https://famme.no
cache-control: no-cache, no-transform
content-type: text/html
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 0
x-envoy-upstream-service-time: 0
server: API Gateway
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pkg.covet.pics/@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-79c455aa.entry.js
200 OK 30 kB URL HTTP/2 pkg.covet.pics/@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-79c455aa.entry.js
IP
File type ASCII text, with very long lines (39528)
Hash 2812be37dd20d12ff07588f964f7f877
7be85fc69f5c7a379cd2d33434da9f3f6740e2b7
17dc7ec6ff614c634312ed656966ab64e67595dd408b6092f651d75d306c67b0
GET /@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-79c455aa.entry.js HTTP/1.1
Host: pkg.covet.pics
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://famme.no
Connection: keep-alive
Referer: https://pkg.covet.pics/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:38 GMT
content-type: application/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=119289
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"1d1f9-ecRVqt2GvhvCkHnF+H4NIOz1JUI"
fly-request-id: 01GPXHPCDX9F677G7F361HVSAN-lga
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 fly.io
x-content-type-options: nosniff
cf-cache-status: HIT
age: 4673
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nzu3SdiwQCkyq0D9hbdB2Y5O%2BF7jDCyJJbzeEiM8g1XBuAtKvk78QNXhv4kh3klqE6ovUPaf8rShr60AfK%2BY3sXyhGOEuYIxxKi2NFh2fz5C7GgeLGz%2FVKO6wcHBdKfQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79348f010c56b51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
affiliatepluginintegration.cj.com/getPluginJS?shop=famme-international.myshopify.com
200 OK 6.3 kB URL HTTP/2 affiliatepluginintegration.cj.com/getPluginJS?shop=famme-international.myshopify.com
IP
File type ASCII text, with very long lines (6270)
Hash 29f1c4c467bbd985ff7ea21a4cbd520d
34d2f1f4bccf4a6f75e5d45bd6997c84005b13d6
ad6a2caf015543d0e56f484fc28d907061338219073e66b0fe3dfe851040e07e
GET /getPluginJS?shop=famme-international.myshopify.com HTTP/1.1
Host: affiliatepluginintegration.cj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 6319
server: CloudFront
date: Thu, 02 Feb 2023 16:54:19 GMT
cache-control: max-age=1800
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DhSXHvmSfZ4NSDfq0CCh9BbqqV5zd1HMqcKva8R2iUcc0YD_Agkueg==
age: 1160
X-Firefox-Spdy: h2
tools.luckyorange.com/core/lo.js?site-id=f478dbd6&shop=famme-international.myshopify.com
200 OK 4.3 kB URL HTTP/2 tools.luckyorange.com/core/lo.js?site-id=f478dbd6&shop=famme-international.myshopify.com
IP
File type ASCII text, with very long lines (11708), with no line terminators
Hash 2075b89590bf11cc6811b6515dfdb4e1
26f1b83430fbb52d08b7229386d1e77227bd030c
2a59913b8737ee1fa7951311503e636dd99fce9f838c6453887bb1160a7021cf
GET /core/lo.js?site-id=f478dbd6&shop=famme-international.myshopify.com HTTP/1.1
Host: tools.luckyorange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 4324
last-modified: Tue, 31 Jan 2023 17:16:34 GMT
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
date: Thu, 02 Feb 2023 16:17:33 GMT
cache-control: max-age=3600
etag: "2075b89590bf11cc6811b6515dfdb4e1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 42xKAgF3s-4VIZ6itwraOrXQX8dGFWr4EPvYuRpdnfcXAnspHt52lA==
age: 3366
X-Firefox-Spdy: h2
www.mczbf.com/tags/262291359993/tag.js
200 OK 17 kB URL HTTP/1.1 www.mczbf.com/tags/262291359993/tag.js
IP
File type ASCII text, with very long lines (53831)
Hash f2a456e74beddc3361ffeb0261405b96
11fab24481f06b3ac9cc6299178343bfe319e10c
7ae270a0884a2e3445bbbf465fc40f40171541ee5eefb6d214581ac3fa50d7ce
GET /tags/262291359993/tag.js HTTP/1.1
Host: www.mczbf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Thu, 02 Feb 2023 16:45:29 GMT
X-Request-ID: 007c2838-a319-11ed-a7af-c95371150f48
Server: nginx
Cache-Control: max-age=1800
Content-Encoding: gzip
X-Cache: Hit from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: gp4kwUeIXW-dijQm7iE4b17VEVYzzvo-AVIxDtAQ9w-iXhqMqW8qUQ==
Age: 1690
r3.o.lencr.org/
200 OK 4.1 kB IP
ASN #20940 Akamai International B.V.
Hash a0e5d54c3cc624b4ab5ba0cfbb2e422b
87cebd64b3cab681134428c5ded2a0247bce5bf0
f760f6c930e9d523063aa4ccb8c44707b8e6483b75aa1ab1df7541facdb11e8f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D5ABA69D545B5D714331716832F87B25A9CD6AA6A084E04E7468F0775A99C685"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10693
Expires: Thu, 02 Feb 2023 20:11:52 GMT
Date: Thu, 02 Feb 2023 17:13:39 GMT
Connection: keep-alive
matching.ivitrack.com/sync?realm=criteo&uid=k-oj1yjiFktOigGp2TauA9vvTiyw8jU_OKE_yXKw
200 OK 15 kB URL HTTP/2 matching.ivitrack.com/sync?realm=criteo&uid=k-oj1yjiFktOigGp2TauA9vvTiyw8jU_OKE_yXKw
IP
Hash de2cfcff8d87a6b0c966f166fdfd1dc0
9317cc2a41ca307cd8dfd955d06b6294bda96810
be84177717ba0860692097403bdd1f2d110cdc8e78d11143e178a231bdf3f0fe
GET /sync?realm=criteo&uid=k-oj1yjiFktOigGp2TauA9vvTiyw8jU_OKE_yXKw HTTP/1.1
Host: matching.ivitrack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: istio-envoy
date: Thu, 02 Feb 2023 17:13:39 GMT
content-type: image/gif
content-length: 42
cache-control: public, max-age=86400
x-envoy-upstream-service-time: 0
x-envoy-decorator-operation: tag-manager.programmatic.svc.cluster.local:3000/*
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.sjwoe.com/policy
200 OK 594 B IP
Hash 6b2fadc0b90ac3e28b04bc95824af0e8
7fdc4f9bfaf0a47558d551652f6ed3fd765087a1
227be9389fc7c5ad6e656d18bd8fc02a93417037be22f8d6045ff26550d0b955
GET /policy HTTP/1.1
Host: www.sjwoe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://famme.no
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
content-length: 47
date: Wed, 01 Feb 2023 20:34:00 GMT
x-amzn-requestid: 5a9a5221-1fe5-4a98-95cc-5e46dd85e015
access-control-allow-origin: *
x-amz-apigw-id: frTs4G4HIAMFYXQ=
cache-control: max-age=3600
x-amzn-trace-id: Root=1-63daccb8-438c279f6791e3371488f88d;Sampled=0
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: THsgQ0SH0wtJ0sYUWiOliv2N7pntuC8MQ3wEKpT_m3Xy5AiDDX9c1A==
age: 74379
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5904751600df6994f62eab99197a8705
e65bc6e3799d93b307201a5b290780f92a8066e0
d5aba69d545b5d714331716832f87b25a9cd6aa6a084e04e7468f0775a99c685
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D5ABA69D545B5D714331716832F87B25A9CD6AA6A084E04E7468F0775A99C685"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10693
Expires: Thu, 02 Feb 2023 20:11:52 GMT
Date: Thu, 02 Feb 2023 17:13:39 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 287d1fc73f27e47f9d060418271e768b
1cd1b36a2a017cd79f6b069a3d4b172f5263c434
696b343140a8eea495958c569ca99a7899daf679b39fcaaaa575aa2f3bd1e300
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "696B343140A8EEA495958C569CA99A7899DAF679B39FCAAAA575AA2F3BD1E300"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4701
Expires: Thu, 02 Feb 2023 18:32:00 GMT
Date: Thu, 02 Feb 2023 17:13:39 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 287d1fc73f27e47f9d060418271e768b
1cd1b36a2a017cd79f6b069a3d4b172f5263c434
696b343140a8eea495958c569ca99a7899daf679b39fcaaaa575aa2f3bd1e300
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "696B343140A8EEA495958C569CA99A7899DAF679B39FCAAAA575AA2F3BD1E300"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4701
Expires: Thu, 02 Feb 2023 18:32:00 GMT
Date: Thu, 02 Feb 2023 17:13:39 GMT
Connection: keep-alive
sc-static.net/js-sha256-v1.min.js
200 OK 106 kB URL HTTP/2 sc-static.net/js-sha256-v1.min.js
IP
Size 106 kB (105631 bytes)
Hash 9acf54ddeb02013979b12854bb49dc5f
7cab1752fbd4f128bf7df7136158e77c92d21804
b987a9ed7b6f38f1790da1ab66b04e031fd2f6a57651d1518d75945bf3894443
GET /js-sha256-v1.min.js HTTP/1.1
Host: sc-static.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://famme.no
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 01 Feb 2023 21:06:35 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-expose-headers: Content-Type
last-modified: Fri, 05 Apr 2019 00:32:08 GMT
cache-control: public, s-maxage=86400, max-age=600
server: AmazonS3
content-encoding: gzip
etag: W/"68f2467c84878293c9ee497dbc99a17f"
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: F7o8WKzTf1AkRQpAiDrQW_nZTKx2Ps9B9rULDwUK6dWWVIQNdIjBXQ==
age: 72425
X-Firefox-Spdy: h2
www.mczbf.com/262291359993/pageInfo
200 OK 68 B URL HTTP/1.1 www.mczbf.com/262291359993/pageInfo
IP
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash 91e42db1c66c0b276abf6234dc50b2eb
c1986af3c26609b8b7d8933f99c51c1a89e9ea6b
63ef318d96b5d0d0ceba6e04a4e622b1158335cdc67c49e27839132c6f655058
POST /262291359993/pageInfo HTTP/1.1
Host: www.mczbf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://famme.no/
Content-Type: application/x-www-form-urlencoded
Origin: https://famme.no
Content-Length: 400
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 68
Connection: keep-alive
Date: Thu, 02 Feb 2023 17:13:39 GMT
X-Request-ID: eff02d55-a31c-11ed-9a88-8b5367dfbe3c
Server: nginx
Access-Control-Allow-Origin: *
Cache-Control: no-store
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: QFHTZnRfZrSPX8365GGfluhLrHy7oq36TxGuSuLpE3o2xzgchjjgsw==
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash cd23c3f93e23a261d897f5cb6d9088b6
03c0b0f45c06b8650abf92047c393902106bd2cf
8eb76c3e07e90551163289e4b05de3981276ade959547c960a49d1f825b99946
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=131375
Date: Thu, 02 Feb 2023 17:13:39 GMT
Etag: "63db47ad-1d7"
Expires: Sat, 04 Feb 2023 05:43:14 GMT
Last-Modified: Thu, 02 Feb 2023 05:18:37 GMT
Server: ECS (nyb/1D32)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 0ilT059wi80hKcCWpGS8WfVTfsJwyhPIf8InJPJvxq3R8_XA-NBOQw==
Age: 1477
gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Thu, 02 Feb 2023 17:13:39 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://dpm.demdex.net/ibs:dpid=28645&dpuuid=
server-processing-duration-in-ticks: 1014390
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-3ACXDCFktOigGp2TauA9vvTiyw-dsE5WyaN3Sg&google_cm&google_hm=ay0zQUNYRENGa3RPaWdHcDJUYXVBOXZ2VGl5dy1kc0U1V3lhTjNTZw
302 Found 440 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-3ACXDCFktOigGp2TauA9vvTiyw-dsE5WyaN3Sg&google_cm&google_hm=ay0zQUNYRENGa3RPaWdHcDJUYXVBOXZ2VGl5dy1kc0U1V3lhTjNTZw
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash c9b118a4e4d8289b635760ab5da6f712
fcf9bdff588f73ac26b045a6176589253a4ae151
7d228cc4f4a3d238a09fd6e732ae59b2cf7126647a57cc938dec08b3cc27284f
GET /pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-3ACXDCFktOigGp2TauA9vvTiyw-dsE5WyaN3Sg&google_cm&google_hm=ay0zQUNYRENGa3RPaWdHcDJUYXVBOXZ2VGl5dy1kc0U1V3lhTjNTZw HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-3ACXDCFktOigGp2TauA9vvTiyw-dsE5WyaN3Sg&google_cm=&google_hm=ay0zQUNYRENGa3RPaWdHcDJUYXVBOXZ2VGl5dy1kc0U1V3lhTjNTZw&google_tc=
date: Thu, 02 Feb 2023 17:13:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 440
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 02-Feb-2023 17:28:39 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-3ACXDCFktOigGp2TauA9vvTiyw-dsE5WyaN3Sg&google_cm=&google_hm=ay0zQUNYRENGa3RPaWdHcDJUYXVBOXZ2VGl5dy1kc0U1V3lhTjNTZw&google_tc=
302 Found 332 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-3ACXDCFktOigGp2TauA9vvTiyw-dsE5WyaN3Sg&google_cm=&google_hm=ay0zQUNYRENGa3RPaWdHcDJUYXVBOXZ2VGl5dy1kc0U1V3lhTjNTZw&google_tc=
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 8d02f4e614571c28ad3c23b3c0985746
156ad1d277075cdd16c09c66017737f0c5eb2e3f
c0e3badfc4a5308101706e054fd1c1e5e78c56fc08a9f7d1b547a45040804ed8
GET /pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-3ACXDCFktOigGp2TauA9vvTiyw-dsE5WyaN3Sg&google_cm=&google_hm=ay0zQUNYRENGa3RPaWdHcDJUYXVBOXZ2VGl5dy1kc0U1V3lhTjNTZw&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-3ACXDCFktOigGp2TauA9vvTiyw-dsE5WyaN3Sg&google_error=3
date: Thu, 02 Feb 2023 17:13:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 332
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 313 B IP
Hash 23692097ca31908592060984aae6cc6e
3e06e4c092a9d9dd647d76ee58291528934df221
d7c4a696b9dd736862a5065352d3c9b37ae045a08452e40df7edf46c249983b8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6568
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 17:13:40 GMT
Last-Modified: Thu, 02 Feb 2023 15:24:12 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 313
ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Thu, 02 Feb 2023 17:13:40 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
AN-X-Request-Uuid: e07186e1-0900-480c-ab11-d588f660359a
Set-Cookie: uuid2=8353316202373426414; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 03-May-2023 17:13:40 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1002.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
criteo-sync.teads.tv/um?eid=80&uid=k-yaVKXiFktOigGp2TauA9vvTiyw-gDZDV2piQ7Q
200 OK 23 B URL HTTP/2 criteo-sync.teads.tv/um?eid=80&uid=k-yaVKXiFktOigGp2TauA9vvTiyw-gDZDV2piQ7Q
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash da5b449fff36752a93779fa4067cd2eb
71a96eea77f21ab5f1819b96c4cedd5cd34476ca
328e90a318268aea96180cc31666ae6d6f79d90d078c123bc3d98ee08a192fb7
GET /um?eid=80&uid=k-yaVKXiFktOigGp2TauA9vvTiyw-gDZDV2piQ7Q HTTP/1.1
Host: criteo-sync.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
server: akka-http/10.2.9
content-length: 23
expires: Thu, 02 Feb 2023 17:13:40 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 02 Feb 2023 17:13:40 GMT
X-Firefox-Spdy: h2
rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-K8XF-yFktOigGp2TauA9vvTiyw-TCHPjxMyTxw
200 OK 43 B URL HTTP/1.1 rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-K8XF-yFktOigGp2TauA9vvTiyw-TCHPjxMyTxw
IP
ASN #201081 SmartAdServer SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /redir/?partnerid=79&partneruserid=k-K8XF-yFktOigGp2TauA9vvTiyw-TCHPjxMyTxw HTTP/1.1
Host: rtb-csync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: image/gif
date: Thu, 02 Feb 2023 17:13:39 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: pid=6650611658312714500; expires=Sat, 02 Mar 2024 17:13:40 GMT; domain=smartadserver.com; path=/
TestIfCookieP=ok; expires=Sat, 02 Mar 2024 17:13:40 GMT; domain=smartadserver.com; path=/
csync=79:k-K8XF-yFktOigGp2TauA9vvTiyw-TCHPjxMyTxw; expires=Fri, 02 Feb 2024 17:13:40 GMT; domain=smartadserver.com; path=/
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 05a3526b6f2eb8cec35f02075b255817
4563626ad9cc06ab3a3d3e0b0327c67eb3ac8a6f
33598c05fbc5da20f356fc48c7d6cd91d41306bbdf17ff9a1fce72bde0b62c67
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=113497
Date: Thu, 02 Feb 2023 17:13:40 GMT
Etag: "63db05b8-1d7"
Expires: Sat, 04 Feb 2023 00:45:17 GMT
Last-Modified: Thu, 02 Feb 2023 00:37:12 GMT
Server: ECS (bsa/EB17)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: BMrrPVoEBBA8mfSYfyQ_2QThIkbuOkH6XifBofe-p1aBZAAuXcI9hw==
Age: 485
settings.luckyorange.com/f478dbd6
200 OK 149 B URL HTTP/2 settings.luckyorange.com/f478dbd6
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 4b55007426e1800ecf8927efa4450fff
83b2dcc6c121ceca70856eb89bde4a87d336374a
9baff7bd3170b7c1937d9a4e3b0a1ba03bbc3e5b4f01340427af78e36b49be8a
GET /f478dbd6 HTTP/1.1
Host: settings.luckyorange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://famme.no/
x-lucky-uid: undefined
x-lucky-referrer: https://api.kelkoogroup.net/
Origin: https://famme.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://famme.no
access-control-allow-credentials: true
content-type: application/json; charset=utf-8
content-length: 149
vary: Accept-Encoding
date: Thu, 02 Feb 2023 17:13:40 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-j4p1xiFktOigGp2TauA9vvTiyw8VbnqxpwZuJg
302 Found 0 B URL HTTP/2 ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-j4p1xiFktOigGp2TauA9vvTiyw8VbnqxpwZuJg
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?publisher_dsp_id=38&external_user_id=k-j4p1xiFktOigGp2TauA9vvTiyw8VbnqxpwZuJg HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 02 Feb 2023 17:13:40 GMT
content-type: text/plain
content-length: 0
location: https://ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-j4p1xiFktOigGp2TauA9vvTiyw8VbnqxpwZuJg
set-cookie: tuuid=c0674411-6ade-46a5-a233-c1c508085c46; Expires=Wed, 03 May 2023 17:13:40 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1675358020; Expires=Wed, 03 May 2023 17:13:40 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash ad70a6f450827dd5acc92719f20df8c5
d094c2828d19e11ffac158ffb1321787a64dc65d
74caf4fc02d200a1b3037cad1015f58aa53534797b3dd3d5ff44647a7514cad3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2342
Cache-Control: max-age=117139
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 17:13:40 GMT
Etag: "63db0cb1-1d7"
Expires: Sat, 04 Feb 2023 01:45:59 GMT
Last-Modified: Thu, 02 Feb 2023 01:06:57 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-c6iyFyFktOigGp2TauA9vvTiyw-XpcITfoWZqA
200 OK 237 B URL HTTP/2 contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-c6iyFyFktOigGp2TauA9vvTiyw-XpcITfoWZqA
IP
File type GIF image data, version 87a, 1 x 1\012- data
Hash 74378edf31ef26cd97c236ad08d05fa3
fdd52cdbf193d1dfd1031978667689f3414b49ed
11cb2c0e70f91c6a0326cf4a4f9fa1b177c14efba6b56bf7535624b9c7bce990
GET /cksync.php?cs=3&type=crt&ovsid=k-c6iyFyFktOigGp2TauA9vvTiyw-XpcITfoWZqA HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-length: 237
content-type: image/gif
set-cookie: visitor-id=3183596203580206000V10; Expires=Fri, 02 Feb 2024 17:13:40 GMT; domain=.media.net; Path=/;
data-c-ts=1675358020;Expires=Sat, 04 Mar 2023 17:13:40 GMT;path=/;domain=.media.net;
data-c=k-c6iyFyFktOigGp2TauA9vvTiyw-XpcITfoWZqA~~3;Expires=Sat, 04 Mar 2023 17:13:40 GMT;path=/;domain=.media.net;
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-mnet-hl2: E
expires: Thu, 02 Feb 2023 17:13:40 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 02 Feb 2023 17:13:40 GMT
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 53fd2508651071c609df9b0a254cdaa9
da7e1d58ac34ebb7b87eadf6294a411a286d5b31
97d44a3fb368d8e4a166a9240bac2d965cd3408effbba5504391af0f7a6d6a53
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=162767
Date: Thu, 02 Feb 2023 17:13:40 GMT
Etag: "63dbb40a-1d7"
Expires: Sat, 04 Feb 2023 14:26:27 GMT
Last-Modified: Thu, 02 Feb 2023 13:00:58 GMT
Server: ECS (nyb/1D27)
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: nl6cdxBm6A39iozVkQbEf1MT3ehYcdzRZxGbIPPWNMr1ireQ6Y5b_A==
Age: 5129
eb2.3lift.com/xuid?mid=2711&xuid=k-u0DghyFktOigGp2TauA9vvTiyw9wv36BVW-P5A&dongle=013b
200 OK 37 B URL HTTP/2 eb2.3lift.com/xuid?mid=2711&xuid=k-u0DghyFktOigGp2TauA9vvTiyw9wv36BVW-P5A&dongle=013b
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /xuid?mid=2711&xuid=k-u0DghyFktOigGp2TauA9vvTiyw9wv36BVW-P5A&dongle=013b HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:40 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-GjugQSFktOigGp2TauA9vvTiyw80J2C7zbVnrQ&expires=30
204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-GjugQSFktOigGp2TauA9vvTiyw80J2C7zbVnrQ&expires=30
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=6434&nid=2149&put=k-GjugQSFktOigGp2TauA9vvTiyw80J2C7zbVnrQ&expires=30 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 19600bc21eacf9565125744d917cac10
Content-Type: image/gif
exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-wvqHACFktOigGp2TauA9vvTiyw_Ymgw1J-2qNbd9THoRc6Np
200 OK 807 B URL HTTP/2 exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-wvqHACFktOigGp2TauA9vvTiyw_Ymgw1J-2qNbd9THoRc6Np
IP
Hash fb90278678c0b3ccfb489aa075752cfd
bd522ac15ce37c1d7e4a59fd219542f6d84b1fe1
25711c68fe5eb415726d91fee1f8f8ba89fde30fad49a1c38ba37ab58fd9a197
GET /usersync/push?partner=criteo&partnerId=k-wvqHACFktOigGp2TauA9vvTiyw_Ymgw1J-2qNbd9THoRc6Np HTTP/1.1
Host: exchange.mediavine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:39 GMT
content-type: text/html; charset=utf-8
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
cache-control: private, no-cache
set-cookie: mv_tokens=%7B%22mv_uuid%22%3A%22eff647a0-a31c-11ed-84f0-2d322df0658c%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Thu, 16 Feb 2023 17:13:39 GMT; Secure; SameSite=None
mv_tokens_eu-v1=%7B%22mv_uuid%22%3A%22eff647a0-a31c-11ed-84f0-2d322df0658c%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Thu, 16 Feb 2023 17:13:39 GMT; Secure; SameSite=None
am_tokens=%7B%22mv_uuid%22%3A%22eff647a0-a31c-11ed-84f0-2d322df0658c%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Thu, 16 Feb 2023 17:13:39 GMT; Secure; SameSite=None
am_tokens_eu-v1=%7B%22mv_uuid%22%3A%22eff647a0-a31c-11ed-84f0-2d322df0658c%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Thu, 16 Feb 2023 17:13:39 GMT; Secure; SameSite=None
criteo=%7B%22id%22%3A%22k-wvqHACFktOigGp2TauA9vvTiyw_Ymgw1J-2qNbd9THoRc6Np%22%2C%22version%22%3A%22criteo%22%7D; Path=/; Expires=Thu, 16 Feb 2023 17:13:39 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 287d1fc73f27e47f9d060418271e768b
1cd1b36a2a017cd79f6b069a3d4b172f5263c434
696b343140a8eea495958c569ca99a7899daf679b39fcaaaa575aa2f3bd1e300
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "696B343140A8EEA495958C569CA99A7899DAF679B39FCAAAA575AA2F3BD1E300"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4700
Expires: Thu, 02 Feb 2023 18:32:00 GMT
Date: Thu, 02 Feb 2023 17:13:40 GMT
Connection: keep-alive
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Thu, 02 Feb 2023 17:13:40 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
AN-X-Request-Uuid: 699aab9d-4e4a-4856-af59-de49aaec7ac2
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1002.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.digicert.com/
200 OK 471 B IP
Hash 55b4ee1e8085d69a3c3f5fa9bed4fa31
583064bea4fd4307f77e23d897c543bc52c5e7a6
be070ad520a613ce88a67fd4b3c5ee4352c6e3b8ab9064c96e454339ab49af10
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3192
Cache-Control: max-age=167641
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 17:13:40 GMT
Etag: "63dbcea5-1d7"
Expires: Sat, 04 Feb 2023 15:47:41 GMT
Last-Modified: Thu, 02 Feb 2023 14:54:29 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 279 B IP
Hash aaa7b61d8ac1f6808fd6e2f665d2c19e
9c07288ce99e1d262382e55db985e2cc207bd107
f13310af6517c6586346bc0cd0a405ec866427fc14a8e47ea118e52e6ccc3c0d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5353
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 17:13:40 GMT
Last-Modified: Thu, 02 Feb 2023 15:44:27 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
200 OK 471 B IP
Hash 376568ad565582b9a012526b079e1d15
8a3d0933e4ad5e6b4942abc856e2b06bd518cb86
8638da6b826ab2e28955fa6963b3fbac2fb85c937e5eb0e629b8a10b3e029498
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5199
Cache-Control: max-age=137993
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 17:13:40 GMT
Etag: "63db52fe-1d7"
Expires: Sat, 04 Feb 2023 07:33:33 GMT
Last-Modified: Thu, 02 Feb 2023 06:06:54 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 37c26fb09f8a09fdc910d20b97d6f079
5d7848dc1152b81bf53c10fee9e26e20a01b0f02
740e3d2348357db713554ff75471d18ad9d2a2e810f71b3bab61984b026295fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "740E3D2348357DB713554FF75471D18AD9D2A2E810F71B3BAB61984B026295FD"
Last-Modified: Thu, 02 Feb 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2390
Expires: Thu, 02 Feb 2023 17:53:30 GMT
Date: Thu, 02 Feb 2023 17:13:40 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash e339189bc4891a9cb9a0fc8ec190631b
1dd91331f11362eb68fcb826719588ee9836863b
dbde8dc20b088d4aa1bf3810d589f39c8e3a2563662a419a679ae37a39090f33
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 17:13:40 GMT
Last-Modified: Thu, 02 Feb 2023 15:52:36 GMT
Server: ECS (bsa/EB17)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8vF1Ix5pm0UyPplphLZjBi2RZ4F13p88H-tf6LTD_ZFHBz_1TQFvGw==
Age: 4864
d3hw6dc1ow8pp2.cloudfront.net/reviewsWidget.min.js?shop=famme-international.myshopify.com
200 OK 79 kB URL HTTP/2 d3hw6dc1ow8pp2.cloudfront.net/reviewsWidget.min.js?shop=famme-international.myshopify.com
IP
Hash 40d1849ef5a68cfe2c93c66c32ed9263
44612ec6b82f68c73664296de484bb567df0c3a0
6c483c421a8b49ff5dc9c063f896a02af6a838db077e78b05302cda28eff5ce3
GET /reviewsWidget.min.js?shop=famme-international.myshopify.com HTTP/1.1
Host: d3hw6dc1ow8pp2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 12 Jan 2023 03:26:55 GMT
server: AmazonS3
content-encoding: gzip
date: Thu, 02 Feb 2023 17:09:52 GMT
cache-control: max-age=300
etag: W/"2b2d23da7809ee5695a3e34cec90a06a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Gzj8OzJd5Rp80a7qZA52AuxhxVyZdGA2REzHj9a3Xc__RWnJAC2uOg==
age: 228
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash 7a37d5f14346f4c2d32067a67ed9cbf2
9364052ccda00fe675fe8cc3f2f244161f2a2f69
c0f55cbfc7ce76856115b4557edefe0c45f2b2979ed89b39fd92d185fddb8682
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 17:13:40 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 13:56:49 GMT
Expires: Tue, 07 Feb 2023 13:56:48 GMT
Etag: "9364052ccda00fe675fe8cc3f2f244161f2a2f69"
Cache-Control: max-age=419587,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79348f08fb9db500-OSL
ocsp.digicert.com/
200 OK 471 B IP
Hash aeea9e144cc0f54034a171c595f109db
10492fe44c12c2ac14e85aabab86ce062c2fbb2a
32d7b2564e83e3e9b695af9b7237949dbbaf5b0012b5f2a5ad314483ea02b3af
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1550
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 17:13:40 GMT
Last-Modified: Thu, 02 Feb 2023 16:47:50 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash d3086d8d034e73524985d684fee6783f
f39b9547e1f35059098b50009cc046df58be4c2a
66576161abe2d955800d9947dcd6ac4c04fe82c1857e3e8565565968acf1b8b1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6022
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 17:13:40 GMT
Last-Modified: Thu, 02 Feb 2023 15:33:18 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
id5-sync.com/s/966/9.gif?puid=k-V2zskSFktOigGp2TauA9vvTiyw_ifa0Wla11Dg
200 43 B URL HTTP/1.1 id5-sync.com/s/966/9.gif?puid=k-V2zskSFktOigGp2TauA9vvTiyw_ifa0Wla11Dg
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /s/966/9.gif?puid=k-V2zskSFktOigGp2TauA9vvTiyw_ifa0Wla11Dg HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: cf=; Max-Age=300; Expires=Thu, 02-Feb-2023 17:18:40 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cip=; Max-Age=300; Expires=Thu, 02-Feb-2023 17:18:40 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cnac=; Max-Age=300; Expires=Thu, 02-Feb-2023 17:18:40 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
car=; Max-Age=300; Expires=Thu, 02-Feb-2023 17:18:40 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
gdpr=; Max-Age=300; Expires=Thu, 02-Feb-2023 17:18:40 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
callback=; Max-Age=300; Expires=Thu, 02-Feb-2023 17:18:40 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
content-type: image/gif;charset=UTF-8
transfer-encoding: chunked
date: Thu, 02 Feb 2023 17:13:39 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-OB6nOSFktOigGp2TauA9vvTiyw_MoBtpMWKVpg
204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-OB6nOSFktOigGp2TauA9vvTiyw_MoBtpMWKVpg
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-OB6nOSFktOigGp2TauA9vvTiyw_MoBtpMWKVpg HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 17:13:40 GMT
X-Firefox-Spdy: h2
dpm.demdex.net/ibs:dpid=28645&dpuuid=
302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=28645&dpuuid=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-2-v045-0284b356a.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=48928144855462901860748927812971799020; Max-Age=15552000; Expires=Tue, 01 Aug 2023 17:13:40 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: 8SNCLbDQToI=
Content-Length: 0
Connection: keep-alive
ad.yieldlab.net/m?dt_id=8664&ext_id=k--p3zRSFktOigGp2TauA9vvTiyw9bsAOunyxLEA
204 No Content 0 B URL HTTP/1.1 ad.yieldlab.net/m?dt_id=8664&ext_id=k--p3zRSFktOigGp2TauA9vvTiyw9bsAOunyxLEA
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m?dt_id=8664&ext_id=k--p3zRSFktOigGp2TauA9vvTiyw9bsAOunyxLEA HTTP/1.1
Host: ad.yieldlab.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
x-application-context: application
Cache-Control: no-store,no-cache,max-age=-3600,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Wed, 01 Feb 2023 17:13:40 GMT
Date: Thu, 02 Feb 2023 17:13:40 GMT
Connection: keep-alive
Set-Cookie: id=d6e419e6-0193-4cad-9ea3-fcb77f4442b8; Path=/; Domain=prod.svc.y6b.de; Expires=Fri, 02-Feb-2024 17:13:40 GMT; Max-Age=31536000; Secure; SameSite=None
sslwidget.criteo.com/event?a=94683&v=5.13.0&p0=e%3Dce%26m%3D%255B%255D&p1=e%3Dexd%26z%3D%26site_type%3Dd%26ref%3Dhttps%253A%252F%252Fapi.kelkoogroup.net&p2=e%3Dvh%26tms%3Dgtm-ee-1.1.0&p3=e%3Ddis&adce=1&bundle=eGM4YF9KeHNUdlF3WUVuNE0xeWdUeWdhJTJCeXJ5RUZRRncxcVhZM2NTMzR3OE5yeVVUbzhXb3lHcW1JVTRsejB5MzZjJTJGbzVwbGd3NGclMkYxVmgxczMzeDE0YmJscDFadjJMS2xJMVJrVlVUMTVHelJ2andzVm16cWcyRFBCNWZhNXBrNll2Ng&tld=famme.no&dy=1&fu=https%253A%252F%252Ffamme.no%252F%253Fkk%253Da4c6294-186131e94d3-eff4%2526utm_campaign%253DNO%252520-%252520multiple%252520google%252520shopping%252520feed%2526utm_medium%253Dorganic%2526utm_source%253Dgoogle&pu=https%253A%252F%252Fapi.kelkoogroup.net%252F&dtycbr=37903
200 OK 3.8 kB URL HTTP/2 sslwidget.criteo.com/event?a=94683&v=5.13.0&p0=e%3Dce%26m%3D%255B%255D&p1=e%3Dexd%26z%3D%26site_type%3Dd%26ref%3Dhttps%253A%252F%252Fapi.kelkoogroup.net&p2=e%3Dvh%26tms%3Dgtm-ee-1.1.0&p3=e%3Ddis&adce=1&bundle=eGM4YF9KeHNUdlF3WUVuNE0xeWdUeWdhJTJCeXJ5RUZRRncxcVhZM2NTMzR3OE5yeVVUbzhXb3lHcW1JVTRsejB5MzZjJTJGbzVwbGd3NGclMkYxVmgxczMzeDE0YmJscDFadjJMS2xJMVJrVlVUMTVHelJ2andzVm16cWcyRFBCNWZhNXBrNll2Ng&tld=famme.no&dy=1&fu=https%253A%252F%252Ffamme.no%252F%253Fkk%253Da4c6294-186131e94d3-eff4%2526utm_campaign%253DNO%252520-%252520multiple%252520google%252520shopping%252520feed%2526utm_medium%253Dorganic%2526utm_source%253Dgoogle&pu=https%253A%252F%252Fapi.kelkoogroup.net%252F&dtycbr=37903
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (5839)
Hash 35e821a2aeb2b090444bf46346183345
2b36b2ea8d235787f9d406e1ad890ea50b7e9a51
56db3e2847de4232398463d45d5ab5c98c11092e042b9e747221c03c61d6773f
GET /event?a=94683&v=5.13.0&p0=e%3Dce%26m%3D%255B%255D&p1=e%3Dexd%26z%3D%26site_type%3Dd%26ref%3Dhttps%253A%252F%252Fapi.kelkoogroup.net&p2=e%3Dvh%26tms%3Dgtm-ee-1.1.0&p3=e%3Ddis&adce=1&bundle=eGM4YF9KeHNUdlF3WUVuNE0xeWdUeWdhJTJCeXJ5RUZRRncxcVhZM2NTMzR3OE5yeVVUbzhXb3lHcW1JVTRsejB5MzZjJTJGbzVwbGd3NGclMkYxVmgxczMzeDE0YmJscDFadjJMS2xJMVJrVlVUMTVHelJ2andzVm16cWcyRFBCNWZhNXBrNll2Ng&tld=famme.no&dy=1&fu=https%253A%252F%252Ffamme.no%252F%253Fkk%253Da4c6294-186131e94d3-eff4%2526utm_campaign%253DNO%252520-%252520multiple%252520google%252520shopping%252520feed%2526utm_medium%253Dorganic%2526utm_source%253Dgoogle&pu=https%253A%252F%252Fapi.kelkoogroup.net%252F&dtycbr=37903 HTTP/1.1
Host: sslwidget.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:38 GMT
content-type: application/x-javascript
server: Kestrel
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
p3p: NON DSP COR CURa PSA PSD OUR BUS NAV STA
timing-allow-origin: *
server-processing-duration-in-ticks: 26918387
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
x.bidswitch.net/sync?dsp_id=46&user_id=k-BqRJpyFktOigGp2TauA9vvTiyw9688wmeNgp9g&expires=30
302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=46&user_id=k-BqRJpyFktOigGp2TauA9vvTiyw9688wmeNgp9g&expires=30
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=46&user_id=k-BqRJpyFktOigGp2TauA9vvTiyw9688wmeNgp9g&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 02 Feb 2023 17:13:40 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-BqRJpyFktOigGp2TauA9vvTiyw9688wmeNgp9g&expires=30
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=543cde63-6958-47df-9985-e308d27c03da; path=/; expires=Fri, 02-Feb-2024 17:13:40 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675358020; path=/; expires=Fri, 02-Feb-2024 17:13:40 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675358020; path=/; expires=Fri, 02-Feb-2024 17:13:40 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675358020; path=/; expires=Fri, 02-Feb-2024 17:13:40 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-Sj15jyFktOigGp2TauA9vvTiyw-Cg_wH8D95mA
200 OK 42 B URL HTTP/2 simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-Sj15jyFktOigGp2TauA9vvTiyw-Cg_wH8D95mA
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-Sj15jyFktOigGp2TauA9vvTiyw-Cg_wH8D95mA HTTP/1.1
Host: simage2.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 17:13:39 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_97=3385-uid:k-Sj15jyFktOigGp2TauA9vvTiyw-Cg_wH8D95mA&KRTB&23144-uid:k-Sj15jyFktOigGp2TauA9vvTiyw-Cg_wH8D95mA&KRTB&23286-uid:k-Sj15jyFktOigGp2TauA9vvTiyw-Cg_wH8D95mA&KRTB&23287-uid:k-Sj15jyFktOigGp2TauA9vvTiyw-Cg_wH8D95mA; domain=pubmatic.com; secure; expires=Sat, 04-Mar-2023 17:13:39 GMT; path=/
PugT=1675358019; domain=pubmatic.com; secure; expires=Sat, 04-Mar-2023 17:13:39 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-L4A5uyFktOigGp2TauA9vvTiyw9XoahY_jt44A
302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-L4A5uyFktOigGp2TauA9vvTiyw9XoahY_jt44A
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-L4A5uyFktOigGp2TauA9vvTiyw9XoahY_jt44A HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 02 Feb 2023 17:13:40 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-L4A5uyFktOigGp2TauA9vvTiyw9XoahY_jt44A&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBETv22MCEBdj4nDe8IkQOzzQN2m8T_wFEgEBAQFA3WPlYwAAAAAA_eMAAA&S=AQAAAuu3pXw5sqFk-KkQ0ii6ucY; Expires=Fri, 2 Feb 2024 23:13:40 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-2-v045-083f91df3.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: gxDPdpsSTrA=
Content-Length: 59
Connection: keep-alive
x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-BqRJpyFktOigGp2TauA9vvTiyw9688wmeNgp9g&expires=30
200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-BqRJpyFktOigGp2TauA9vvTiyw9688wmeNgp9g&expires=30
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync?dsp_id=46&user_id=k-BqRJpyFktOigGp2TauA9vvTiyw9688wmeNgp9g&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:40 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash aaa7b61d8ac1f6808fd6e2f665d2c19e
9c07288ce99e1d262382e55db985e2cc207bd107
f13310af6517c6586346bc0cd0a405ec866427fc14a8e47ea118e52e6ccc3c0d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6007
Cache-Control: max-age=105340
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 17:13:40 GMT
Etag: "63dad049-117"
Expires: Fri, 03 Feb 2023 22:29:20 GMT
Last-Modified: Wed, 01 Feb 2023 20:49:13 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-L4A5uyFktOigGp2TauA9vvTiyw9XoahY_jt44A&verify=true
204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-L4A5uyFktOigGp2TauA9vvTiyw9XoahY_jt44A&verify=true
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-L4A5uyFktOigGp2TauA9vvTiyw9XoahY_jt44A&verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 17:13:40 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBETv22MCEOGZ8hphc0W55MiJe8_qZ6sFEgEBAQFA3WPlYwAAAAAA_eMAAA&S=AQAAAiW1mBl8LxSwf26BMWVMtys; Expires=Fri, 2 Feb 2024 23:13:40 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-pIGwASFktOigGp2TauA9vvTiyw9O0RCZaQFFTw&C=1
200 OK 43 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-pIGwASFktOigGp2TauA9vvTiyw9O0RCZaQFFTw&C=1
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /rum?cm_dsp_id=20&external_user_id=k-pIGwASFktOigGp2TauA9vvTiyw9O0RCZaQFFTw&C=1 HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:40 GMT
content-type: image/gif
content-length: 43
cf-ray: 79348f0ad91db506-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y0eA3Os1jB6gJrM7Ba9WJ6oLGbjipj5A0FixX8xszeDUO1d3ALW%2BCKzJttcbrzULfUWKaefKy0QLmUuCY2ZFQ7HbKYtVn59lhQ%2BrlTohQ8tcsqe66pDP2yhAUjMtcjmiAxL2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash 005622e59568cb632684a1cd2880c97e
31333726c45ed676daec90ecde21654791c06a9d
02b0023deb129dda05ec64f305ddd4f0aba5a3d0e7bf91a099f6acc1de7b15a3
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 02 Feb 2023 17:13:40 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 15036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 01 Feb 2023 21:29:42 GMT
Expires: Thu, 02 Feb 2023 21:29:42 GMT
ETag: "31333726c45ed676daec90ecde21654791c06a9d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Thu, 02 Feb 2023 17:13:39 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
server-processing-duration-in-ticks: 774254
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 43030f3d6872c114931f12d793a3bb17
81918b93fe2b78d40334c184571e20ae2f9d68d8
c988d04156ff1363a4e3272dc0cfc9b2c8624d5743ce8c3ea722ba02a0041f85
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=91387
Date: Thu, 02 Feb 2023 17:13:40 GMT
Etag: "63da9db3-1d7"
Expires: Fri, 03 Feb 2023 18:36:47 GMT
Last-Modified: Wed, 01 Feb 2023 17:13:23 GMT
Server: ECS (nyb/1D0D)
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: jVgnzuNp1Wr3RNFc3IF7gz_XVccPjqbZw_VOeptJZgqTs25O96ts8w==
Age: 5004
e1.emxdgt.com/put?d=d53&uid=k-DXhpiiFktOigGp2TauA9vvTiyw-1Om4UphOcvp58JRU4XjeQ
204 No Content 0 B URL HTTP/2 e1.emxdgt.com/put?d=d53&uid=k-DXhpiiFktOigGp2TauA9vvTiyw-1Om4UphOcvp58JRU4XjeQ
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /put?d=d53&uid=k-DXhpiiFktOigGp2TauA9vvTiyw-1Om4UphOcvp58JRU4XjeQ HTTP/1.1
Host: e1.emxdgt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
content-type: text/html
date: Thu, 02 Feb 2023 17:13:40 GMT
content-length: 0
X-Firefox-Spdy: h2
sync.outbrain.com/cookie-sync?p=criteo&uid=k-tawUmCFktOigGp2TauA9vvTiyw8dQMwAWwYy0Q
200 OK 408 B URL HTTP/1.1 sync.outbrain.com/cookie-sync?p=criteo&uid=k-tawUmCFktOigGp2TauA9vvTiyw8dQMwAWwYy0Q
IP
File type JSON data\012- , ASCII text, with very long lines (408), with no line terminators
Hash d3575267967e9f2540aba1c9c3ed6362
6a04e3d744e60f816f99851282d82cd8cdf634fa
f1029d45a947f53028d92c289cf806c187b457acddda25d2c1cfb1367f5bd195
GET /cookie-sync?p=criteo&uid=k-tawUmCFktOigGp2TauA9vvTiyw8dQMwAWwYy0Q HTTP/1.1
Host: sync.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 17:13:40 GMT
Content-Type: application/json
Content-Length: 408
Cache-Control: no-cache
X-TraceId: 2a9621e8d75f0e8391f7a393c0aa6993
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash a7df5d45ea2192f07372dcd8502bd736
4b09a037cf4f275f5973b523dace070a79402b89
e9fdcb7c683e4e6cd4fda06c138e9df10ca265335b0ab2593acb3a083387ade4
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 17:13:40 GMT
Last-Modified: Thu, 02 Feb 2023 17:02:35 GMT
Server: ECS (bsa/EB20)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: z7GR_bw53iaG-7QA8apHkN-cqT1hSRQs-Ea_NCc4eP4ydxmKSNPRDw==
Age: 665
sync-criteo.ads.yieldmo.com/sync?id=k-Ds2yoyFktOigGp2TauA9vvTiyw-kFf8gJCRNIQ&pn_id=criteo&ext=1
200 OK 43 B URL HTTP/2 sync-criteo.ads.yieldmo.com/sync?id=k-Ds2yoyFktOigGp2TauA9vvTiyw-kFf8gJCRNIQ&pn_id=criteo&ext=1
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?id=k-Ds2yoyFktOigGp2TauA9vvTiyw-kFf8gJCRNIQ&pn_id=criteo&ext=1 HTTP/1.1
Host: sync-criteo.ads.yieldmo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:40 GMT
content-type: image/gif
content-length: 43
set-cookie: yieldmo_id=g787584943f370d8de01%7C1675358020422%7C0%7C; Domain=.yieldmo.com; Expires=Fri, 02-Feb-2024 17:13:40 GMT; Path=/; Secure; SameSite=None; Secure
ptrcriteo=k-Ds2yoyFktOigGp2TauA9vvTiyw-kFf8gJCRNIQ; Domain=ads.yieldmo.com; Expires=Fri, 02-Feb-2024 17:13:40 GMT; Path=/; Secure; SameSite=None; Secure
access-control-allow-origin: *
access-control-request-headers: Cache-Control, Pragma
access-control-allow-methods: GET, OPTIONS
pragma: no-cache
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash 4a7a8b974724310f7ae84caf23caa1cb
05ed54af50a0ae5b18294590b56b3de980e73c08
cf947c42522a4406ba62cad6e23967316f25179ed52caa141e731fab3a61a8f1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 17:13:40 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 03:11:55 GMT
Expires: Wed, 08 Feb 2023 03:11:54 GMT
Etag: "05ed54af50a0ae5b18294590b56b3de980e73c08"
Cache-Control: max-age=467293,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79348f0a7d77b500-OSL
cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/tms-translator.js?v=118226042761107722251662950123
200 OK 70 kB URL HTTP/2 cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/tms-translator.js?v=118226042761107722251662950123
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (56670), with LF, NEL line terminators
Hash 3b7f0421c18234467a8386b5c588af7d
98d45e8c37e2455eaa58481c15001d99945e9ed8
e42df79fd378bb57cf0bfe028acf54f6c08dd5cc31fc924d14462f7b3fc9951c
GET /s/files/1/0076/6033/9297/t/97/assets/tms-translator.js?v=118226042761107722251662950123 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:37 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/tms-translator.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: f2e1a541-31fe-4239-a7ea-417f31dd4834
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Mon, 12 Sep 2022 02:35:44 GMT
cf-cache-status: HIT
age: 12407870
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CI%2BmHwUMZmzxMNhKqI%2BqjRRxb7xA8ItUp74fvaZcvoFj7JFEU9FBPnwDbYoW2DUU%2BrHQpbZtS%2F%2BWqB0HbUeDk88J45XkAt9TwwhyKQazurreb5ONhMYVrRJL22Dz2wYDHA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=114.760, imageryFetch;dur=43.567, cfRequestDuration;dur=13.000011
server: cloudflare
cf-ray: 79348efa7bc2b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 5acd4872900c23a7ab9c969bfd8bb4a8
b0fd0cd44561a1ec91ce77acb9fc35b27bd462bc
9f8f5a1896a6984e62cedf30d252f9d7632a6e749ffcc7d2cebaa460111e19c3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4436
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 17:13:40 GMT
Last-Modified: Thu, 02 Feb 2023 15:59:44 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
204 No Content 0 B URL HTTP/2 beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch.gif?partner=criteo&partner_uid= HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 17:13:40 GMT
set-cookie: _kuid_=PWxnfcD2; Expires=Tue, 01-Aug-23 17:13:40 GMT; Max-Age=15552000; Domain=.krxd.net; Path=/
cache-control: private, no-cache, no-store
p3p: policyref="https://cdn.krxd.net/kruxcontent/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
x-served-by: beacon-n023-dub-prod.krxd.net
x-request-time: D=39 t=1675358020
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Thu, 02 Feb 2023 17:13:40 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://s.thebrighttag.com/cs?btt=0&tp=cr&uid=
server-processing-duration-in-ticks: 514305
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.entrust.net/
200 OK 1.6 kB IP
Hash 5e9c99687a8f74c1e2415c2fbf2cdd36
679c6968bc42e8f90cbfdb56397a53165b551a80
b4a9434efa05f881695a2e7091b3a7d68d39c5887108ed8a5796829de1d59efe
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "B4A9434EFA05F881695A2E7091B3A7D68D39C5887108ED8A5796829DE1D59EFE"
Last-Modified: Thu, 02 Feb 2023 08:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3599
Expires: Thu, 02 Feb 2023 18:13:39 GMT
Date: Thu, 02 Feb 2023 17:13:40 GMT
Connection: keep-alive
s.thebrighttag.com/cs?btt=0&tp=cr&uid=
200 OK 35 B URL HTTP/2 s.thebrighttag.com/cs?btt=0&tp=cr&uid=
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /cs?btt=0&tp=cr&uid= HTTP/1.1
Host: s.thebrighttag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:41 GMT
content-type: image/gif
content-length: 35
x-bt-requestid: f0a99210-a31c-11ed-a88f-0000ac17024f
cache-control: private, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin:
server: nginx
p3p: CP=NOI DSP COR NID
X-Firefox-Spdy: h2
sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-gFa7eiFktOigGp2TauA9vvTiyw9cBkJsPagUQw
200 OK 8.9 kB URL HTTP/2 sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-gFa7eiFktOigGp2TauA9vvTiyw9cBkJsPagUQw
IP
ASN #200478 Taboola.com ltd
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b9af1fd56c0de8f128ddce88d49c1b4d
e3bb3d4950f7c0267f4476eef21872da332831aa
908153182f76362ff329803d9c11c06c66181e85e8e51dabd927f1f1ac630d5c
GET /sg/criteortb-network/1/rtb-h/?taboola_hm=k-gFa7eiFktOigGp2TauA9vvTiyw9cBkJsPagUQw HTTP/1.1
Host: sync-t1.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 17:13:40 GMT
x-fastly-to-nlb-rtt: 21784
access-control-allow-credentials: true
X-Firefox-Spdy: h2
dynamic.criteo.com/js/ld/ld.js?a=94683
200 OK 0 B URL HTTP/2 dynamic.criteo.com/js/ld/ld.js?a=94683
IP
GET /js/ld/ld.js?a=94683 HTTP/1.1
Host: dynamic.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:37 GMT
content-type: application/javascript; charset=utf-8
server: Kestrel
cache-control: public,max-age=10800
content-encoding: br
vary: Origin, Accept-Encoding
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/section-image-banner.css?v=170916557215809668651656015097
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/section-image-banner.css?v=170916557215809668651656015097
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0076/6033/9297/t/97/assets/section-image-banner.css?v=170916557215809668651656015097 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:37 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/section-image-banner.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 7ac5c5a4-0151-48f9-afe7-7ac631ec4bdc
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Thu, 23 Jun 2022 20:13:19 GMT
cf-cache-status: HIT
age: 13871716
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IiIAQJxxcoFZPdQiuaXJ2qdDp18aDGU10tzsfLBMd2yLvfBcIFIzkdmMUFyLlFXmDu%2FzHUEAZadnLBj2MwkDcP8cmWCG0aViTS0bpLPsIh%2FuO5teguhgv%2BlvYh0ERP4bDw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=53.346, imageryFetch;dur=51.960, cfRequestDuration;dur=13.000011
server: cloudflare
cf-ray: 79348efa7bafb51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pkg.covet.pics/@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-ae8aaed8.js
200 OK 0 B URL HTTP/2 pkg.covet.pics/@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-ae8aaed8.js
IP
GET /@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-ae8aaed8.js HTTP/1.1
Host: pkg.covet.pics
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://famme.no
Connection: keep-alive
Referer: https://pkg.covet.pics/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:38 GMT
content-type: application/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=612
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"264-W2EooMI1gHD+XZBQftKPaBLw8s4"
fly-request-id: 01GPXHK4RY93BTA8PYSMEQKMYS-lga
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 fly.io
x-content-type-options: nosniff
cf-cache-status: HIT
age: 4674
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3Lh0uHbmPxpTo9EHFMZIOeFw5Ogu12wlVM5FNVUTckjzgRL%2BOmk2yA0XtHE9M3Wb2%2F14136oarr7Thrx4gdc32RSxuQurpWULTKL%2BKjK4FFTQ9m2VS2t44lrJz4V2%2Fru"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79348efe288bb51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
pkg.covet.pics/@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-419d38b7.js
200 OK 0 B URL HTTP/2 pkg.covet.pics/@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-419d38b7.js
IP
GET /@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-419d38b7.js HTTP/1.1
Host: pkg.covet.pics
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://famme.no
Connection: keep-alive
Referer: https://pkg.covet.pics/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:38 GMT
content-type: application/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=697
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"2b9-C7xpKUYFjnTgkovHenm+ezcOfYY"
fly-request-id: 01GPXHPEY2FXPYS618JS4GFFVM-lga
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 fly.io
x-content-type-options: nosniff
cf-cache-status: HIT
age: 4673
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KNniZfFHRRmy8o6NIQz3ejx2vXYIvXhgD7aMWJd1s4yARaU%2FDjkNH6V6cnpse%2FnAJIvN8RfDpPp5JX4LZ4AOW81F3ni6wutne57EcgNiW6KNGDBosSNaiWoQGu5CqKn2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79348f013cb7b51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
pkg.covet.pics/@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-355a97d9.js
200 OK 0 B URL HTTP/2 pkg.covet.pics/@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-355a97d9.js
IP
GET /@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-355a97d9.js HTTP/1.1
Host: pkg.covet.pics
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://famme.no
Connection: keep-alive
Referer: https://pkg.covet.pics/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:38 GMT
content-type: application/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=19277
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"4b4d-XSEHlCpp+Aj8FlPOedWfCEOvZwQ"
fly-request-id: 01GPXHP3KXTDCM3KD1GQEGKVE6-lga
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 fly.io
x-content-type-options: nosniff
cf-cache-status: HIT
age: 4673
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wbzHv0paPncuhxdNj%2BMZpHCE9AJVffE4Hxfq3r%2Fn3zCY4a19y7UisK9b3wfJoaM4ceKMBi9WqN26gni8U3%2FQE6jlyJFJpLj6llje64JJWtwvYqRe0hFW9IN85FNrW6iw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79348efe992db51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
pkg.covet.pics/@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-34f7794a.js
200 OK 0 B URL HTTP/2 pkg.covet.pics/@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-34f7794a.js
IP
GET /@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-34f7794a.js HTTP/1.1
Host: pkg.covet.pics
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://famme.no
Connection: keep-alive
Referer: https://pkg.covet.pics/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:38 GMT
content-type: application/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=9986
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"2702-qFdzzpKuvClTLXZDi/mJ6RBXGWI"
fly-request-id: 01GPXHJR66Q1GVMXMW8HBYVQAZ-lga
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 fly.io
x-content-type-options: nosniff
cf-cache-status: HIT
age: 4674
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uDQei%2FNYTnbeIHGWiEoPWIKV9fRty9nNFrx2Upf7RzwCHUaiprtkKDH43HTYKC4IFQXgDCpw1AllUs3L2yDm3Ii0tuz0gOeyhHwm15IGczQVCqL5qEnLOLnzHhu46KoY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79348efe2886b51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.famme.no/?kk=a4c6294-186131e94d3-eff4&utm_campaign=NO%20-%20multiple%20google%20shopping%20feed&utm_medium=organic&utm_source=google
301 Moved Permanently 0 B URL HTTP/2 www.famme.no/?kk=a4c6294-186131e94d3-eff4&utm_campaign=NO%20-%20multiple%20google%20shopping%20feed&utm_medium=organic&utm_source=google
IP
GET /?kk=a4c6294-186131e94d3-eff4&utm_campaign=NO%20-%20multiple%20google%20shopping%20feed&utm_medium=organic&utm_source=google HTTP/1.1
Host: www.famme.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://api.kelkoogroup.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Thu, 02 Feb 2023 17:13:37 GMT
content-type: text/html; charset=utf-8
location: https://famme.no/?kk=a4c6294-186131e94d3-eff4&utm_campaign=NO%20-%20multiple%20google%20shopping%20feed&utm_medium=organic&utm_source=google
x-sorting-hat-podid: 173
x-sorting-hat-shopid: 7660339297
x-storefront-renderer-rendered: 1
x-redirect-reason: canonical_host_redirection
x-frame-options: DENY
content-security-policy: block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
strict-transport-security: max-age=7889238
x-shopid: 7660339297
x-shardid: 173
vary: Accept
x-shopify-stage: production
x-dc: gcp-europe-north1,gcp-europe-west1,gcp-europe-west1
x-request-id: bf7d9607-8d86-4940-9514-23367220efcb
x-xss-protection: 1; mode=block
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WOFSkUkBQsl3Hjh4seEWhoZrJlwiSpQlN6AQVsoqLExGpe%2BcxL5qkmchcjkSx4CYyYgfwkGnerX2Baw9A9r%2FFB7qR%2Bq8SldgQWeNdbi5CgptOUMp0AHFw79D8XvFsg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: processing;dur=17, db;dur=8, asn;desc="50304", edge;desc="OSL", country;desc="NO", cfRequestDuration;dur=255.000114
server: cloudflare
cf-ray: 79348ef7cfb9b4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dnacdn.net/dna
200 OK 0 B IP
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=zeL2AV80M0RITmhlJTJCZkMwOUJGQlhaMUN2c3hjJTJGanFxT2RGNmE4NUNaJTJGek10c0RMRHhiTnBtaFFaNFBPdHQzb3NoZTFw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:38 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=w3Qnhl80M0RITmhlJTJCZkMwOUJGQlhaMUN2c3hjJTJGanFxT2RGNmE4NUNaJTJGek10c0RKblNUSUtFWnpZTGpmQ1VRNyUyQlF2YWI; expires=Tue, 27 Feb 2024 17:13:38 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 287635
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/cart-notification.js?v=160453272920806432391666878108
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/cart-notification.js?v=160453272920806432391666878108
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0076/6033/9297/t/97/assets/cart-notification.js?v=160453272920806432391666878108 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:37 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/cart-notification.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 0c57f24c-ae94-40c2-98b4-c065bef6cf70
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Thu, 27 Oct 2022 13:43:05 GMT
cf-cache-status: HIT
age: 8479832
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ssy7HAVG2GNYN5XHM7SvrJ3UJ4%2B7kudbJ3%2FqipcGz6m%2BjtSTCrL8%2FAhazHFodP%2BYLNu5mrRE5g1TIrGAmnKyZzssPnnsZTvd1nLkXHa9vQX08ybGl8oqfLiGOts6uwacvg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=51.199, imageryFetch;dur=50.114, cfRequestDuration;dur=13.000011
server: cloudflare
cf-ray: 79348efa7badb51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/base.css?v=88290808517547527771666878108
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/base.css?v=88290808517547527771666878108
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0076/6033/9297/t/97/assets/base.css?v=88290808517547527771666878108 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:37 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/base.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 8138bfdc-8ead-4703-bbba-c3229fe15a0d
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Thu, 27 Oct 2022 13:43:04 GMT
cf-cache-status: HIT
age: 8479833
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yG1F9Dm%2Fc0Ub67RMK4ZXNScYsCImUYiEV6sxNxJpiNp3g1BLIHWKiIiovITExjyi6Jx67DD4zTRt%2FGOVwQ0kMdxJ5RRbVB7lDGt8qpsB%2FH7NGOQDYiIS4TRPnXvYqqGRGw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=87.975, imageryFetch;dur=80.224, cfRequestDuration;dur=18.000126
server: cloudflare
cf-ray: 79348efadc47b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pkg.covet.pics/@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-9e0a8e8f.js
200 OK 0 B URL HTTP/2 pkg.covet.pics/@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-9e0a8e8f.js
IP
GET /@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-9e0a8e8f.js HTTP/1.1
Host: pkg.covet.pics
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://famme.no
Connection: keep-alive
Referer: https://pkg.covet.pics/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:38 GMT
content-type: application/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=332
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"14c-IWZCwljD+iCmyJGswsIBgFhW3uM"
fly-request-id: 01GPXHP3NRHXZ475GDJCHZ4C8Z-lga
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 fly.io
x-content-type-options: nosniff
cf-cache-status: HIT
age: 4674
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rBrj2Ei7ivwh%2Bvyt7z4lDBHbt%2BPFKnkbEU4A5TAMoYu5tmcn6r0Qxpypo4eKfyK3hVUtZ1xBTT5jHN8DeIiHnxXtQs5tU34B3aaVV5xmoNKXHAPtqV88iJc2ULCJ7y4j"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79348efea93eb51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
pkg.covet.pics/@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-2909b6f3.js
200 OK 0 B URL HTTP/2 pkg.covet.pics/@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-2909b6f3.js
IP
GET /@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-2909b6f3.js HTTP/1.1
Host: pkg.covet.pics
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://famme.no
Connection: keep-alive
Referer: https://pkg.covet.pics/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:38 GMT
content-type: application/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=1115
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"45b-7alSKL8sowd7jd/ztqP11vEbyaA"
fly-request-id: 01GPXHPM9Q7FRDGHJ5HD50KAB5-lga
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 fly.io
x-content-type-options: nosniff
cf-cache-status: HIT
age: 4672
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YBWYrx1I0HLa%2Fed3GfZ3qDA%2FMXnUJbgH9LvJavBk7Ck5M6TF26hcBB8GNQaCQN4VQYQHLnthh9Z8CVX1v3nfe6UZyLziRJ7wNTF%2BiiemepJXvsdxpg5EboOqqYtoHZk%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79348f025eb9b51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
shopswiz.com/click/lb/?country=NO&ts=PropellerAds%20Pop&c=&tg=http://s.click.aliexpress.com/e/_ABCzN9
200 OK 0 B URL HTTP/2 shopswiz.com/click/lb/?country=NO&ts=PropellerAds%20Pop&c=&tg=http://s.click.aliexpress.com/e/_ABCzN9
IP
GET /click/lb/?country=NO&ts=PropellerAds%20Pop&c=&tg=http://s.click.aliexpress.com/e/_ABCzN9 HTTP/1.1
Host: shopswiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:34 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.26
referrer-policy: origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2Gy34OVkN2h2MY%2F5v%2FgxQ2QO7mhyIo%2FPvkoqvB3fp1keX83abJdS57Uod%2F2EOGc8%2BT0ZvyP1gnDvB7%2BR3Y5FKzRGLcTHiiFFVLeX67zGK%2FWmDSzphC4YWKHeNX1IV68%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79348ee8dffdb4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pkg.covet.pics/@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-a1b9fb06.entry.js
200 OK 0 B URL HTTP/2 pkg.covet.pics/@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-a1b9fb06.entry.js
IP
GET /@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-a1b9fb06.entry.js HTTP/1.1
Host: pkg.covet.pics
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://famme.no
Connection: keep-alive
Referer: https://pkg.covet.pics/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:38 GMT
content-type: application/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=304988
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"4a75c-obn7BmJk0Y7Xnd0N7X/ckaEDQ+g"
fly-request-id: 01GPXHPKMT72F08YQMP4Y6ENFC-lga
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 fly.io
x-content-type-options: nosniff
cf-cache-status: HIT
age: 4673
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pfzFIou4rL%2BBhSIorUenlCNiWxe%2BEpltHsYz7ystnBuvLjDd3RWzY%2F5hXbdF8eTxd0dA988mmagiGNkRZAPwAbucxwTXF8dZFbZk0jXFg4oCaQXerWiyyqtCdZ%2FmjYwH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79348f01edd6b51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/custom.css?v=79555732854395865921673333009
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/custom.css?v=79555732854395865921673333009
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0076/6033/9297/t/97/assets/custom.css?v=79555732854395865921673333009 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:37 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/custom.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: eb47de56-a675-4eec-ba9a-149a53c18c98
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Tue, 10 Jan 2023 06:43:36 GMT
cf-cache-status: HIT
age: 2024996
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aSkd%2FQ75yQzasqwNv3r%2FG8lSVNszQINMj0Ipy0XaM80uXgmyFAfzB8G47MiUif%2FQ%2F7hHo0WYKFjAGljuR%2B3BUkyUhD%2F92tCMFSIQNN1DfGoHQfU%2FPm5h0GI1dpNhQZjIiw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=79.969, imageryFetch;dur=78.292, cfRequestDuration;dur=14.000177
server: cloudflare
cf-ray: 79348efa7bbdb51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
api.yadore.com/v2/d?market=no&projectId=bKfEkwiMh6z8&url=https%3A%2F%2Fwww.famme.no&placementId=lb-l1sj7h-s-2681-1-wg3r0g04ok01thbm2v9tgqi2
302 Found 0 B URL HTTP/2 api.yadore.com/v2/d?market=no&projectId=bKfEkwiMh6z8&url=https%3A%2F%2Fwww.famme.no&placementId=lb-l1sj7h-s-2681-1-wg3r0g04ok01thbm2v9tgqi2
IP
ASN #24940 Hetzner Online GmbH
GET /v2/d?market=no&projectId=bKfEkwiMh6z8&url=https%3A%2F%2Fwww.famme.no&placementId=lb-l1sj7h-s-2681-1-wg3r0g04ok01thbm2v9tgqi2 HTTP/1.1
Host: api.yadore.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lkbx.me/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
access-control-allow-credentials: true
access-control-allow-headers: Origin, Content-Type, Accept, API-Key
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: *
access-control-max-age: 86400
content-type: text/html; charset=UTF-8
date: Thu, 02 Feb 2023 17:13:36 GMT
location: https://api.kelkoogroup.net/publisher/shopping/v2/link-monetizer/link?country=no&id=e4ef5dec-03eb-11eb-bf21-ba5ec25d7100&merchantUrl=https%3A%2F%2Fwww.famme.no&custom1=b4be9086265e0a8a2e19bcca3134aac5a166ea8fe6bfeb31188b44e06d190eb5&custom2=bKfEkwiMh6z8&custom3=false
server: nginx
x-powered-by: PHP/8.0.27
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-3ACXDCFktOigGp2TauA9vvTiyw-dsE5WyaN3Sg&google_error=3
200 OK 0 B URL HTTP/2 dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-3ACXDCFktOigGp2TauA9vvTiyw-dsE5WyaN3Sg&google_error=3
IP
GET /dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-3ACXDCFktOigGp2TauA9vvTiyw-dsE5WyaN3Sg&google_error=3 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:40 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 172273
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pkg.covet.pics/@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-2f2b9b02.js
200 OK 0 B URL HTTP/2 pkg.covet.pics/@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-2f2b9b02.js
IP
GET /@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-2f2b9b02.js HTTP/1.1
Host: pkg.covet.pics
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://famme.no
Connection: keep-alive
Referer: https://pkg.covet.pics/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:38 GMT
content-type: application/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=699
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"2bb-CyTdELuQsAFBE+gnS++KOoXa4YQ"
fly-request-id: 01GPXHP3NRPM4TEEJA7MS9PXFS-lga
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 fly.io
x-content-type-options: nosniff
cf-cache-status: HIT
age: 4674
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3jknW3YcnYF6BwppDHtjB9xGs5xvVxenXMaECSJ0AjsDYURP9%2Fej6zBxUi%2FxjRZhsj5J%2BnVtT5vpr6FHUMm8hhEjtItoH838Z0vCC2lFaSETYa8ninYGoag%2FHiAOzmw9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79348efea951b51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/details-disclosure.js?v=153497636716254413831650088914
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/details-disclosure.js?v=153497636716254413831650088914
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0076/6033/9297/t/97/assets/details-disclosure.js?v=153497636716254413831650088914 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:37 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/details-disclosure.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: fcc4dfcc-3115-411f-a4a2-eddecd177294
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Fri, 26 Aug 2022 03:11:08 GMT
cf-cache-status: HIT
age: 1254328
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3Bs%2B%2Fq6uq9YsvDlJvtjdIQcBsyfa77ssBHdvOcDemjbJN87%2BgnqBmKXN2f2o2BHCm5wF8gvroPqw1NtqGekT1jesCFlFh7rLQXtjx0ckYQTb6NQ%2BG92tRVTSAOfHNiznVw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=50.593, imageryFetch;dur=49.728, cfRequestDuration;dur=14.000177
server: cloudflare
cf-ray: 79348efa7baab51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pkg.covet.pics/@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-9f44deb4.entry.js
200 OK 0 B URL HTTP/2 pkg.covet.pics/@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-9f44deb4.entry.js
IP
GET /@covet-pics/covet-pics-widget@0.115.0/dist/covet-pics-widget/p-9f44deb4.entry.js HTTP/1.1
Host: pkg.covet.pics
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://famme.no
Connection: keep-alive
Referer: https://pkg.covet.pics/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:38 GMT
content-type: application/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=388822
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"5eed6-n0TetCraZC3B2bKa3pAAr++egWc"
fly-request-id: 01GPXHPM8QAM7D91TV48FTE84W-lga
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 fly.io
x-content-type-options: nosniff
cf-cache-status: HIT
age: 4673
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J6zO9EC17jJrTkKyNhW2WyWAGtKjFXAQDMu19QNJ3ntxRe3K5ABzK5xPv2tuCFj684sL6h5KE75xIjtaQyLgEt2F00HyglyonPAuC2lF%2FsX%2BAvDnGqq5R7%2B9f%2FTlRMWZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79348f01bd67b51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/section-footer.css?v=83777583229853969691645802740
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/section-footer.css?v=83777583229853969691645802740
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0076/6033/9297/t/97/assets/section-footer.css?v=83777583229853969691645802740 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:37 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/section-footer.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 71106470-9dfb-4b7d-8167-dc384dc444ee
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Mon, 02 May 2022 19:23:20 GMT
cf-cache-status: HIT
age: 13881984
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7wxckQCEffzPX9up%2BSUn4fKAcNUq1LHNL9Rgx2ts3AZ3XsFGG5IRKkPTvpH6n85h77NVczbOQ3FVGuc925fUn3abGJAcI%2BELWczbcs6gdcUrG1XRI1sJztVxlrPOT6PFvA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=60.441, imageryFetch;dur=59.260, cfRequestDuration;dur=22.000074
server: cloudflare
cf-ray: 79348efa7bbbb51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/component-newsletter.css?v=103472482056003053551643474431
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/component-newsletter.css?v=103472482056003053551643474431
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0076/6033/9297/t/97/assets/component-newsletter.css?v=103472482056003053551643474431 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:37 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0076/6033/9297/t/97/assets/component-newsletter.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 0be15de3-c0ae-44fb-8167-50509490a456
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Mon, 02 May 2022 19:23:22 GMT
cf-cache-status: HIT
age: 13864409
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gOSXqooPXe%2B1qd4MOHDugQgJuKu4t3R%2Fd1TCZY8usMC508tKyilr31S%2Bj4ma%2B6%2FCI2NUeWq6cvMNfRbbhFdx3RRboggtYbCSx93cJdi7%2BU4DI3BJQRgQIDoQG9e%2FKPQ8GQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=74.679, imageryFetch;dur=73.932, cfRequestDuration;dur=17.999887
server: cloudflare
cf-ray: 79348efa7bb9b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
lkbx.me/IBSn?uid=wg3r0g04ok01thbm2v9tgqi2
200 OK 0 B URL HTTP/2 lkbx.me/IBSn?uid=wg3r0g04ok01thbm2v9tgqi2
IP
ASN #45102 Alibaba US Technology Co., Ltd.
Analyzer Verdict Alert fortinet Phishing
GET /IBSn?uid=wg3r0g04ok01thbm2v9tgqi2 HTTP/1.1
Host: lkbx.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shopswiz.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:36 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
set-cookie: discuz_2132_saltkey=CSXX8weW; expires=Sat, 04-Mar-2023 17:13:36 GMT; Max-Age=2592000; path=/; secure; httponly
discuz_2132_lang=en; path=/; secure
discuz_2132_lang=en; path=/; secure
content-encoding: gzip
X-Firefox-Spdy: h2
shopify.covet.pics/api/v1/embed/230022
200 OK 0 B URL HTTP/2 shopify.covet.pics/api/v1/embed/230022
IP
GET /api/v1/embed/230022 HTTP/1.1
Host: shopify.covet.pics
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://famme.no/
Origin: https://famme.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:38 GMT
content-type: application/json; charset=utf-8
status: 200 OK
cache-control: max-age=5, public, s-maxage=86400
access-control-allow-origin: *
vary: Origin, Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-permitted-cross-domain-policies: none
x-xss-protection: 0
x-request-id: 4ace7c9d-dac8-4b57-b40c-f898c67ff998
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: POST, PUT, DELETE, GET, OPTIONS
x-download-options: noopen
p3p: CP="Not used"
etag: W/"3db514b91ef9e590ef89c698da39c92b"
x-runtime: 0.054465
x-content-type-options: nosniff
access-control-request-method: *
x-powered-by: Phusion Passenger 6.0.7
cf-cache-status: HIT
age: 3074
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b2IWs%2B5svJtK59dFlgt0ncOUR1YpdQ%2F3RnQLe8lglRJ1i1FzD0Hn0zi%2FCqIQY3Y3dzv%2BvHM65TgCWYOTU0TYIuR3urslvmigyp5BTdeXezVijrg14gFlyajqn%2FwdNQNA1H0zNw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79348eff9a54b51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
geolocation-recommendations.shopifyapps.com/locale_bar/script.js?shop=famme-international.myshopify.com
200 OK 0 B URL HTTP/2 geolocation-recommendations.shopifyapps.com/locale_bar/script.js?shop=famme-international.myshopify.com
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /locale_bar/script.js?shop=famme-international.myshopify.com HTTP/1.1
Host: geolocation-recommendations.shopifyapps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:39 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-frame-options: DENY
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=15552000; includeSubDomains; preload
etag: W/"d120cfdf5692d1c382dbe25fd5d4a521"
cache-control: max-age=0, private, must-revalidate
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' cdn.shopifycloud.com cdn.shopify.com geolocation-recommendations.shopifyapps.com; style-src 'self' 'unsafe-inline' cdn.shopify.com cdn.shopifycloud.com; img-src 'self' 'unsafe-inline' cdn.shopify.com cdn.shopifycloud.com data: *; font-src 'self' cdn.shopify.com cdn.shopifycloud.com data: *; frame-ancestors *.myshopify.com geolocation-recommendations.shopifyapps.com admin.shopify.com; object-src 'none'; media-src 'self' cdn.shopify.com cdn.shopifycloud.com; base-uri 'none'; upgrade-insecure-requests; connect-src 'self' sessions.bugsnag.com notify.bugsnag.com monorail-edge.shopifysvc.com country-service.shopifycloud.com wss://argus.shopifycloud.com shop.app cdn.shopify.com geolocation-recommendations.shopifyapps.com; frame-src 'self' shopify-geolocation-proxy.com
x-request-id: 4280d88f-08bc-4040-888a-b334f4fa4763
x-runtime: 0.013311
x-dc: gcp-us-east1,gcp-us-east1
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EYB2DC0wW%2FtkWHfaqnFZT8O7qC0IXzYHTSszsYbxMKMyMb%2B82ojMLdBFBHM%2FJlQBH4Wuygv3mjV%2FZkTvh8K1%2B9%2BeewU9LifMMWVNu7cs8HGBp7HyFi9p%2FYtULWqj3lcc%2B%2F8YHH%2Bq9AhEAXUR%2FDDZghGBle0BKgTsxqCIu44%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: processing;dur=14, socket_queue;dur=2.102, util;dur=0.4, cfRequestDuration;dur=191.999912
server: cloudflare
cf-ray: 79348f047b560b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
settings.luckyorange.com/f478dbd6
200 OK 0 B URL HTTP/2 settings.luckyorange.com/f478dbd6
IP
OPTIONS /f478dbd6 HTTP/1.1
Host: settings.luckyorange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-lucky-referrer,x-lucky-uid
Referer: https://famme.no/
Origin: https://famme.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://famme.no
access-control-allow-credentials: true
access-control-allow-methods: POST,GET,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Access-Control-Allow-Origin,Authorization,Content-Type,X-Lucky-Uid,X-Lucky-Site-Id,X-Lucky-Impersonate,X-Lucky-Session-Id,X-Lucky-Referrer
access-control-max-age: 86400
date: Thu, 02 Feb 2023 17:13:39 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
200 OK 0 B URL HTTP/2 dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
IP
GET /dis/rtb/appnexus/cookiematch.aspx?appnxsid=0 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:39 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 336340
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
criteo-partners.tremorhub.com/sync?UICR=k-gq90BCFktOigGp2TauA9vvTiyw-Zxc8yy_Lo0A
200 OK 0 B URL HTTP/2 criteo-partners.tremorhub.com/sync?UICR=k-gq90BCFktOigGp2TauA9vvTiyw-Zxc8yy_Lo0A
IP
GET /sync?UICR=k-gq90BCFktOigGp2TauA9vvTiyw-Zxc8yy_Lo0A HTTP/1.1
Host: criteo-partners.tremorhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:40 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?topUrl=famme.no&origin=onetag
200 OK 0 B URL HTTP/2 gum.criteo.com/syncframe?topUrl=famme.no&origin=onetag
IP
GET /syncframe?topUrl=famme.no&origin=onetag HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://famme.no/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 17:13:38 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=f21b0ac2-1c73-428d-998b-d8c67a996d54; expires=Tue, 27 Feb 2024 17:13:37 GMT; domain=.criteo.com; path=/; secure; samesite=none
optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 830292
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
18.156.16.63
23.227.60.200
104.26.0.14
95.100.141.17
93.184.220.29
52.213.167.16
104.18.33.19
31.13.72.12
178.250.2.151
23.36.79.17
157.240.205.35