track.trkserver.info/30770298-9fc3-4e3a-bd07-099a94aee918
18.156.16.63302 0 B URL HTTP/1.1 track.trkserver.info/30770298-9fc3-4e3a-bd07-099a94aee918
IP 18.156.16.63:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /30770298-9fc3-4e3a-bd07-099a94aee918 HTTP/1.1
Host: track.trkserver.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302
Server: nginx
Date: Sat, 28 Jan 2023 16:57:51 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://shopswiz.com/click/lb?country=NO&ts=PropellerAds%20Pop&c=&tg=http://s.click.aliexpress.com/e/_ABCzN9
Pragma: no-cache
Set-Cookie: 30770298-9fc3-4e3a-bd07-099a94aee918-v4=WrQF67QV4ed3mLNxTZl1dvNLZV68vMZt-RYbx3E8nX0; Max-Age=86400; Expires=Sun, 29-Jan-2023 16:57:51 GMT; Domain=track.trkserver.info; Path=/; HttpOnly
cc-v4=DB1InfC4Dri4yucmwVLNX3fVacy4FB5rzyir1QOGkQUwy1J0d6NK7Jg8A14S6%2BeuLOdN6%2FDq5i6lTEhhDjxPB%2F0Oo7W8uY%2BGJIW5cubHoOubWjKD7gWgUPvMY%2BCu6sguhWW0F48Z%2BvTogpmOf%2FlgqA%3D%3D; Max-Age=31536000; Expires=Sun, 28-Jan-2024 16:57:51 GMT; Domain=track.trkserver.info; Path=/; HttpOnly
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 81dd5c5cc5b3278876cb44dcb520a60f
c0511a59e9eccdcdda98717b87c89c5d59974808
41736c303afdb3d31e48724b107dcb22883cae02f3562308eb52d9164001a2de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41736C303AFDB3D31E48724B107DCB22883CAE02F3562308EB52D9164001A2DE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7012
Expires: Sat, 28 Jan 2023 18:54:43 GMT
Date: Sat, 28 Jan 2023 16:57:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2259
Expires: Sat, 28 Jan 2023 17:35:30 GMT
Date: Sat, 28 Jan 2023 16:57:51 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 28 Jan 2023 16:43:06 GMT
content-type: application/json
age: 885
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 03092d1a1bc7ac91ee342a1a7ab2a562
52db06ce1fd2c74ddd36b6a0a7aee1b5c891600a
03b8ff2629abac9fc30ebec059c2e2018fcbc41646ad5f71c965ff630fbf1ffd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "03B8FF2629ABAC9FC30EBEC059C2E2018FCBC41646AD5F71C965FF630FBF1FFD"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5704
Expires: Sat, 28 Jan 2023 18:32:55 GMT
Date: Sat, 28 Jan 2023 16:57:51 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: byuxXKeedfqvNv/XnpQqb9j8qEhBVi/EliqaYTckiivmlyqHOuosyPNIVBj05U71u8o2Hn98BaQ=
x-amz-request-id: KRQMCNG22HCCHVJ1
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 28 Jan 2023 16:21:02 GMT
age: 2209
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
shopswiz.com/click/lb/?country=NO&ts=PropellerAds%20Pop&c=&tg=http://s.click.aliexpress.com/e/_ABCzN9
188.114.96.1301 Moved Permanently 0 B URL HTTP/1.1 shopswiz.com/click/lb/?country=NO&ts=PropellerAds%20Pop&c=&tg=http://s.click.aliexpress.com/e/_ABCzN9
IP 188.114.96.1:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click/lb/?country=NO&ts=PropellerAds%20Pop&c=&tg=http://s.click.aliexpress.com/e/_ABCzN9 HTTP/1.1
Host: shopswiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 28 Jan 2023 16:57:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 28 Jan 2023 17:57:51 GMT
Location: https://shopswiz.com/click/lb/?country=NO&ts=PropellerAds%20Pop&c=&tg=http://s.click.aliexpress.com/e/_ABCzN9
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lNLsfsVxeGhNLFeZy6wEEa4G9%2FoTlI77AmMV2%2F4yUHpi5a7i3IYVKvQ3ThAelF0khvTvWda9xk81fHnb7gmHGMwqupBOtLtbY2OwI1Md8cSpQuYUaShoTsx9z21PUuQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b45014ff60b45-OSL
alt-svc: h2=":443"; ma=60
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 16:57:51 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
enhotssureemed.com/7e69e883-5b0f-4646-b93f-cf300bd635dd?target=A&merchant=pleddcpc&market=NO&trafficsource=PropellerAds%20Pop&cost=&l=cGxlZGRjcGMsaHR0cHM6Ly9sa2J4Lm1lL0hwY20=
18.156.16.63302 Found 0 B URL HTTP/2 enhotssureemed.com/7e69e883-5b0f-4646-b93f-cf300bd635dd?target=A&merchant=pleddcpc&market=NO&trafficsource=PropellerAds%20Pop&cost=&l=cGxlZGRjcGMsaHR0cHM6Ly9sa2J4Lm1lL0hwY20=
IP 18.156.16.63:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /7e69e883-5b0f-4646-b93f-cf300bd635dd?target=A&merchant=pleddcpc&market=NO&trafficsource=PropellerAds%20Pop&cost=&l=cGxlZGRjcGMsaHR0cHM6Ly9sa2J4Lm1lL0hwY20= HTTP/1.1
Host: enhotssureemed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shopswiz.com/
Connection: keep-alive
Cookie: cc-v4=fvHQbkVQe1o0WsTabr6HGQrULwb%2F5pQpsPHsKZFixdjNmzRjuRpZdEBU5V40JnSiDwCr%2BGtj81dmtYUdlMaaK%2Bt02hNATPbdfTXXAHlhHu1QieEto3qQpcYqeRB6bSxD5SpUL2oL4HpimV6mFIrJ%2Bg%3D%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sat, 28 Jan 2023 16:57:51 GMT
content-length: 0
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://wizedeal.com/click/lb/rd?placementId=wkj3s3udqjes2o7m2sat1f8c&market=NO&merchant=pleddcpc&l=cGxlZGRjcGMsaHR0cHM6Ly9sa2J4Lm1lL0hwY20%3D
pragma: no-cache
set-cookie: 7e69e883-5b0f-4646-b93f-cf300bd635dd-v4=PyydplD-X1gee5pnORGMwFoNg3NALN8byaTlvsVO_rw; Max-Age=86400; Expires=Sun, 29-Jan-2023 16:57:51 GMT; Domain=enhotssureemed.com; Path=/; Secure; HttpOnly;SameSite=None
cc-v4=QPoa7B7e6k8C9ftot8FvvomFxZ0bv9X2q3Fkhs0urjeTdqQygR6lMXtTWaAjM6cjOJlhCEX%2FAFaGwBhZQ7QtqGjKxrTtr6sQ0YWav2E5kvQY2srgDJBFLJ%2BFbqwuSCdUObFvjVpQn18BilDOlfXoDg%3D%3D; Max-Age=31536000; Expires=Sun, 28-Jan-2024 16:57:51 GMT; Domain=enhotssureemed.com; Path=/; Secure; HttpOnly;SameSite=None
X-Firefox-Spdy: h2
wizedeal.com/click/lb/rd/?placementId=wkj3s3udqjes2o7m2sat1f8c&market=NO&merchant=pleddcpc&l=cGxlZGRjcGMsaHR0cHM6Ly9sa2J4Lm1lL0hwY20%3D
104.21.53.93301 Moved Permanently 0 B URL HTTP/1.1 wizedeal.com/click/lb/rd/?placementId=wkj3s3udqjes2o7m2sat1f8c&market=NO&merchant=pleddcpc&l=cGxlZGRjcGMsaHR0cHM6Ly9sa2J4Lm1lL0hwY20%3D
IP 104.21.53.93:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click/lb/rd/?placementId=wkj3s3udqjes2o7m2sat1f8c&market=NO&merchant=pleddcpc&l=cGxlZGRjcGMsaHR0cHM6Ly9sa2J4Lm1lL0hwY20%3D HTTP/1.1
Host: wizedeal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: https://shopswiz.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 28 Jan 2023 16:57:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 28 Jan 2023 17:57:52 GMT
Location: https://wizedeal.com/click/lb/rd/?placementId=wkj3s3udqjes2o7m2sat1f8c&market=NO&merchant=pleddcpc&l=cGxlZGRjcGMsaHR0cHM6Ly9sa2J4Lm1lL0hwY20%3D
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pQqBXMPtWaCnriDbcecQ7NKwzl9yxHgbjh8nOI2j1h2%2Be9jVLyILqNL9q%2FkRGiS4CF%2BkC1Ok5AAExkAcJxrZ4Ql6fNMT%2FIp%2BMDLy7ecokfyPGEB%2FuTF19%2Fc%2FftJi49w%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b4504bbbd0afa-OSL
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 28 Jan 2023 16:49:03 GMT
age: 529
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20070
Expires: Sat, 28 Jan 2023 22:32:22 GMT
Date: Sat, 28 Jan 2023 16:57:52 GMT
Connection: keep-alive
push.services.mozilla.com/
54.184.102.146101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.184.102.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: FLeHNRLBjvt2s7XqqdZ/Dw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: WaVCantWsAb63gx0kaQ2FQyvY/I=
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7b4f23a8a752882a3e6d62b2ffb9d3c0
d7fcfc037233ebe46f9014d99ef531e3bd05d8e5
9f09622d14d443b5f5cc889070a33a7baba2501857e42b413daa2ea14ff2ebc4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3504
Cache-Control: max-age=96921
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:57:52 GMT
Etag: "63d41dfa-1d7"
Expires: Sun, 29 Jan 2023 19:53:13 GMT
Last-Modified: Fri, 27 Jan 2023 18:54:50 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c93afda3a5e574565d8ac09a17f3f8bf
7e3ad3a77c13807ad25d237b550960ad4dd6751e
2147a82f56ff96b05fc76a97bbfb0d7c4e5bed88f05a1c3dfd92c5a58926c220
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2147A82F56FF96B05FC76A97BBFB0D7C4E5BED88F05A1C3DFD92C5A58926C220"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7820
Expires: Sat, 28 Jan 2023 19:08:13 GMT
Date: Sat, 28 Jan 2023 16:57:53 GMT
Connection: keep-alive
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e0344c44b03467980735c529ec222084
5a02acb712776b4c0bba6346ec3ea99d4d13226b
fb50323f02dd9e830af11038626f7415845f97dd40e409f3bfc1e6e02f77f921
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3138
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:57:53 GMT
Last-Modified: Sat, 28 Jan 2023 16:05:35 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5545
Expires: Sat, 28 Jan 2023 18:30:18 GMT
Date: Sat, 28 Jan 2023 16:57:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5545
Expires: Sat, 28 Jan 2023 18:30:18 GMT
Date: Sat, 28 Jan 2023 16:57:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5545
Expires: Sat, 28 Jan 2023 18:30:18 GMT
Date: Sat, 28 Jan 2023 16:57:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5545
Expires: Sat, 28 Jan 2023 18:30:18 GMT
Date: Sat, 28 Jan 2023 16:57:53 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d9747a7-0b4d-40bd-8d53-7702f8df2966.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d9747a7-0b4d-40bd-8d53-7702f8df2966.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 25fd26625a6c5339389faf4f6aa8fc6a
05aed76d3966ea8a02d4bbbeff7b41c8a5aac907
9a29ad65cb7a8632a2c454a4caeb43a10c5152ccf3dbab22d584276bdeeb0dbb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d9747a7-0b4d-40bd-8d53-7702f8df2966.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5746
x-amzn-requestid: 8ab00078-cdf9-465a-a493-64a488c9e634
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-CwEIJIAMFutA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443ab-3f9b5f031812e32f6625f1e6;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jUVP5rlieH6mUh_fgVz4D636AIMAo2JXJqBgzGSI_CyY2-8Pza4IKw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:48:58 GMT
age: 68935
etag: "05aed76d3966ea8a02d4bbbeff7b41c8a5aac907"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:46 GMT
age: 68467
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b7a0759c043594fbe85af422b59b8227
a05cfaad16078f42218dae233da38f6f5dff8487
e898d6ef1b3998fb9322a8fc190069ec5f7b3582bfe8397a2367497d84a27549
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11568
x-amzn-requestid: 79b70f1f-a157-4dd4-8743-825714195b3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e9T3UGA3oAMFSlQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c86695-36e60aba09c152c73b8aefcb;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 21:37:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zt4bgV2C6Wb_Ufa5mZ7-UDTfCvhXJggPJw9668v5DEmyBnWZ-aNrCg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 23:03:41 GMT
age: 64452
etag: "a05cfaad16078f42218dae233da38f6f5dff8487"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a2033b2-0708-4731-82a4-5bbc9f000ae2.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a2033b2-0708-4731-82a4-5bbc9f000ae2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a2881cea3ae511d3dfd2f6b7cd598a4e
105d8d675aaafce5602e4015aee2d1659553d1b1
0993ef71c2af9e07ed09e0e2ba40a4d9fdd01444154c2f39f8fc48a4dfef1730
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a2033b2-0708-4731-82a4-5bbc9f000ae2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10863
x-amzn-requestid: db873091-be76-4276-aa3e-f9bd44051508
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fbAMbHCMoAMFsYg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4471c-57f14d6a3ebcc8a1788bae80;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:50:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: S8H9sSYtUyye2ex8ulTLy6SEyqTt3xUmjRkTWL0oCEDZIDA21dnudw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:38:29 GMT
etag: "105d8d675aaafce5602e4015aee2d1659553d1b1"
content-type: image/jpeg
age: 65964
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ea24bcba583bd8bd139559448a343e68
b9d37c2b14f890d41983a59f352e8f7caa9c94bb
e5ef5975eec964ae1684deb424f00833f2d217bdc7e6c385320ed3adeb6bc1c4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7585
x-amzn-requestid: bfb52acb-e0d7-482d-8be9-be5db1c16cac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_vkE5roAMF0Hw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d44663-2d38d314177e0ac40d4c8240;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:47:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: K9YWM9eaEc1DQ6wtEEuADnG1U-ahRBXDaiHIAm20dkWMOxPWBlJidw==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:46:13 GMT
age: 65500
etag: "b9d37c2b14f890d41983a59f352e8f7caa9c94bb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdeb12df7-074b-4044-bdbe-0e07bccbc8e9.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdeb12df7-074b-4044-bdbe-0e07bccbc8e9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0ed1a0bd725b2078b4cfe4ed83877901
62493ca03be9870aac2341e033611a6d56bd322a
706e84bc63fd98acaeb72789239af3210ae6e3910e6589d92a25899dc9059dfc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdeb12df7-074b-4044-bdbe-0e07bccbc8e9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12397
x-amzn-requestid: e8436997-696d-483a-b03a-a84e7ca614ea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_T5HbzoAMFXsw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445b2-1c2ccd0a187d0a3e2f6a59cc;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:44:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lmLHc8fKQYUpq9B-GyOQ0FKzhxi0ToTEPA7cu6JnQftgDFDNV8USvw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:37 GMT
etag: "62493ca03be9870aac2341e033611a6d56bd322a"
content-type: image/jpeg
age: 68476
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
discounthero.org/NO/s/red_u_plain.php?t=direct&s=2714&d=https%3A%2F%2Fpledd.net&pub=LB00002681&sub=2681_pleddcpc_1_wkj3s3udqjes2o7m2sat1f8c&uid=lb_fkc372
3.68.5.1302 Found 30 kB URL HTTP/2 discounthero.org/NO/s/red_u_plain.php?t=direct&s=2714&d=https%3A%2F%2Fpledd.net&pub=LB00002681&sub=2681_pleddcpc_1_wkj3s3udqjes2o7m2sat1f8c&uid=lb_fkc372
IP 3.68.5.1:0
Hash 922fb8e43a2ed0ae5c996f0e5d18aa59
fa301eb4da3453bccf6bf1c4cda2042f409f4215
9cf7631bb15ec428ea68fcdd6bc2308115df8bbe91762852683b96b1e31bb224
GET /NO/s/red_u_plain.php?t=direct&s=2714&d=https%3A%2F%2Fpledd.net&pub=LB00002681&sub=2681_pleddcpc_1_wkj3s3udqjes2o7m2sat1f8c&uid=lb_fkc372 HTTP/1.1
Host: discounthero.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lkbx.me/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
content-type: text/html; charset=UTF-8
location: https://discounthero.org/NO/co/co.php?key=ZGlzY291bnRoZXJvOmNsaWNrOmRhdGE6Tk86MTY3NDkyNTA3MzpWMVpOTzAwMzE2NzQ5MjUwNzMzODQzUjU3
referrer-policy: origin
date: Sat, 28 Jan 2023 16:57:53 GMT
pragma: no-cache
cache-control: no-cache, private, max-age=0, no-cache, no-store, must-revalidate
expires: Thu, 1 Jan 1970 00:00:00 GMT
X-Firefox-Spdy: h2
no-go.kelkoogroup.net/assets/images/p.png?country=no&k=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
95.211.116.26200 OK 68 B URL HTTP/1.1 no-go.kelkoogroup.net/assets/images/p.png?country=no&k=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
IP 95.211.116.26:0
ASN #60781 LeaseWeb Netherlands B.V.
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash 91e42db1c66c0b276abf6234dc50b2eb
c1986af3c26609b8b7d8933f99c51c1a89e9ea6b
63ef318d96b5d0d0ceba6e04a4e622b1158335cdc67c49e27839132c6f655058
GET /assets/images/p.png?country=no&k=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 HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/merchantGo?.ts=1674925073440&.sig=Wnh7H7A5wciakO_A0FdB9GdkfLM-&affiliationId=96982475&comId=100524369&country=no&cpcId=484950&merchantName=pledd.net&searchId=1076100331553824_1674925073412_36046564&service=30&tokenId=feafe8f1-6b73-432f-9169-8cd3ad39633b&url=https%3A%2F%2Fpledd.net&addedParams=true&custom1=fd416a2665b4773489eceeb90790f2a5&custom2=LR01ZUXJ
Connection: keep-alive
Cookie: datadome=0VM_rDN5FTGNmXJMrTgTOgzCMNiMUhPLQZCnEr5ozJID2FBoemDAsWFF_Myxx0qGAJhMQjeQn3ci2k9YM6MP5srFEPYA125GSrzRGsjZKeTy~CaFM2cyNjVTaU-NixwX; kelkooID=a4c6294-185f9506571-96bae
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
leadId: dc1-kls-prod-ls-02.prod.dc1.kelkoo.net_1674925073779_705845
clickId: 107698148_1674925073777_2932686
country: no
Request-Time: PT0.001667S
X-Robots-Tag: noindex,nofollow
Cache-Control: private, must-revalidate
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Date: Sat, 28 Jan 2023 16:57:53 GMT
Content-Type: image/png
Content-Length: 68
no-go.kelkoogroup.net/fp?country=no&k=612f7a9541cd6ea61eb554c0e4cff437121611023847cb43e94ceaa4ca35451a8d56a69ef475c4bf1376b4b8d58532bc644a664cc84f64faa5802e8745eb2183b4a2ba1fb43b6a223a1d5eddff89931d4aa1763e4db0582e38fcfe29fef4392b3f65d2f5a72982bffa08ae421290516e5c8af33814fc2f9307c9489abe8054a672702bfc8b67d0a9b4f541c62a09866066a30325017d0e79e640074cb2d4fca551af4490231f7dc8474018294b1ecf7cecd3c0141f1e30a1292f044e34bd5394dc70d18853c682d4cc4115cd36d924288902d12a9e0198080ba0652fcbad15bb869dfd03d5d519655cc414ef4b97ab1775d3fa33df4e027181d4566cffc111f87db7c87f8c7acce2ba0331d945d4e2e3a2c2645087ce84663d7a59665b7e5f6e67bbb99b0104b7d4344611b864ec8786d1ac620a5a808a29f31b37c65e065ab12766258d7dd2357a137b9f1ad71b45e75bbfb5922c27445c
95.211.116.26200 OK 0 B URL HTTP/1.1 no-go.kelkoogroup.net/fp?country=no&k=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
IP 95.211.116.26:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /fp?country=no&k=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 HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/merchantGo?.ts=1674925073440&.sig=Wnh7H7A5wciakO_A0FdB9GdkfLM-&affiliationId=96982475&comId=100524369&country=no&cpcId=484950&merchantName=pledd.net&searchId=1076100331553824_1674925073412_36046564&service=30&tokenId=feafe8f1-6b73-432f-9169-8cd3ad39633b&url=https%3A%2F%2Fpledd.net&addedParams=true&custom1=fd416a2665b4773489eceeb90790f2a5&custom2=LR01ZUXJ
Content-Type: text/plain;charset=utf-8
Content-Length: 504
Origin: https://no-go.kelkoogroup.net
Connection: keep-alive
Cookie: datadome=0VM_rDN5FTGNmXJMrTgTOgzCMNiMUhPLQZCnEr5ozJID2FBoemDAsWFF_Myxx0qGAJhMQjeQn3ci2k9YM6MP5srFEPYA125GSrzRGsjZKeTy~CaFM2cyNjVTaU-NixwX; kelkooID=a4c6294-185f9506571-96bae; _ga=GA1.2.401261983.1674925077; _gid=GA1.2.556398159.1674925077
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
leadId: dc1-kls-prod-ls-02.prod.dc1.kelkoo.net_1674925073779_705845
clickId: 107698148_1674925073777_2932686
country: no
Request-Time: PT0.003442S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Date: Sat, 28 Jan 2023 16:57:53 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 0
no-go.kelkoogroup.net/favicon.ico
95.211.116.26404 Not Found 1.1 kB URL HTTP/1.1 no-go.kelkoogroup.net/favicon.ico
IP 95.211.116.26:0
ASN #60781 LeaseWeb Netherlands B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8560de521c4990c7c870121fc9643508
0cacf7a6b96cceeb6ceae74d5f14dc87406a6f39
73a434285c3a752bc8c44aebd50e10f1a766853cbc7184e78d5c934c7b52b620
GET /favicon.ico HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/merchantGo?.ts=1674925073440&.sig=Wnh7H7A5wciakO_A0FdB9GdkfLM-&affiliationId=96982475&comId=100524369&country=no&cpcId=484950&merchantName=pledd.net&searchId=1076100331553824_1674925073412_36046564&service=30&tokenId=feafe8f1-6b73-432f-9169-8cd3ad39633b&url=https%3A%2F%2Fpledd.net&addedParams=true&custom1=fd416a2665b4773489eceeb90790f2a5&custom2=LR01ZUXJ
Connection: keep-alive
Cookie: datadome=0VM_rDN5FTGNmXJMrTgTOgzCMNiMUhPLQZCnEr5ozJID2FBoemDAsWFF_Myxx0qGAJhMQjeQn3ci2k9YM6MP5srFEPYA125GSrzRGsjZKeTy~CaFM2cyNjVTaU-NixwX; kelkooID=a4c6294-185f9506571-96bae; _ga=GA1.2.401261983.1674925077; _gid=GA1.2.556398159.1674925077
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Request-Time: PT0.000212S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Date: Sat, 28 Jan 2023 16:57:53 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 1144
no-go.kelkoogroup.net/redirect?country=no&k=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&url=https%3A%2F%2Fpledd.net%3Fkk%3Da4c6294-185f9506571-96bae%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono&initiator=timeout
95.211.116.26303 See Other 0 B URL HTTP/1.1 no-go.kelkoogroup.net/redirect?country=no&k=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&url=https%3A%2F%2Fpledd.net%3Fkk%3Da4c6294-185f9506571-96bae%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono&initiator=timeout
IP 95.211.116.26:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect?country=no&k=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&url=https%3A%2F%2Fpledd.net%3Fkk%3Da4c6294-185f9506571-96bae%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono&initiator=timeout HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/merchantGo?.ts=1674925073440&.sig=Wnh7H7A5wciakO_A0FdB9GdkfLM-&affiliationId=96982475&comId=100524369&country=no&cpcId=484950&merchantName=pledd.net&searchId=1076100331553824_1674925073412_36046564&service=30&tokenId=feafe8f1-6b73-432f-9169-8cd3ad39633b&url=https%3A%2F%2Fpledd.net&addedParams=true&custom1=fd416a2665b4773489eceeb90790f2a5&custom2=LR01ZUXJ
Connection: keep-alive
Cookie: datadome=0VM_rDN5FTGNmXJMrTgTOgzCMNiMUhPLQZCnEr5ozJID2FBoemDAsWFF_Myxx0qGAJhMQjeQn3ci2k9YM6MP5srFEPYA125GSrzRGsjZKeTy~CaFM2cyNjVTaU-NixwX; kelkooID=a4c6294-185f9506571-96bae; _ga=GA1.2.401261983.1674925077; _gid=GA1.2.556398159.1674925077
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 303 See Other
leadId: dc1-kls-prod-ls-02.prod.dc1.kelkoo.net_1674925073779_705845
clickId: 107698148_1674925073777_2932686
country: no
Location: https://pledd.net?kk=a4c6294-185f9506571-96bae&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
Set-Cookie: datadome=48Nh0L1N2KG4gcDVmuV8tZ9qRjb9_jSpYD_HyN1WG5FzAbASHwchRxk9kH-1a4vImxxFeJshTmAU_PT3Ah2R45mi8ZexmP4WSMnygrzE57w5pwY147Zo4gI3QURO0_VT; Max-Age=31536000; Expires=Sun, 28 Jan 2024 16:57:54 GMT; SameSite=Lax; Path=/; Domain=.kelkoogroup.net; Secure
X-DataDome: protected
Request-Time: PT0.013386S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Date: Sat, 28 Jan 2023 16:57:54 GMT
Content-Length: 0
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aee79838b0dbea65812bf3d0500f60aa
76ef8027487eace88ccd1495e9169a9cf24feea9
8e7dd46760ff2ad4120781d02b91b231023cdf06e3f5f9fe8a7e2b6b91a5d0cd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8E7DD46760FF2AD4120781D02B91B231023CDF06E3F5F9FE8A7E2B6B91A5D0CD"
Last-Modified: Thu, 26 Jan 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21573
Expires: Sat, 28 Jan 2023 22:57:27 GMT
Date: Sat, 28 Jan 2023 16:57:54 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 36147c185553851c38547798733a9fb2
912ec40237eae2ed558d09103c86c41f87896eca
a4fd9090983c75e1b7faf5ea9439532f51d747faf1853138ac13bdaafa490246
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:57:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/collect?v=1&_v=j96&t=pageview&_s=1&dl=https%3A%2F%2Fno-go.kelkoogroup.net%2FmerchantGo%3F.ts%3D1674925073440%26.sig%3DWnh7H7A5wciakO_A0FdB9GdkfLM-%26affiliationId%3D96982475%26comId%3D100524369%26country%3Dno%26cpcId%3D484950%26merchantName%3Dpledd.net%26searchId%3D1076100331553824_1674925073412_36046564%26service%3D30%26tokenId%3Dfeafe8f1-6b73-432f-9169-8cd3ad39633b%26url%3Dhttps%253A%252F%252Fpledd.net%26addedParams%3Dtrue%26custom1%3Dfd416a2665b4773489eceeb90790f2a5%26custom2%3DLR01ZUXJ&dp=%2F96982475%7C100524369%7C&ul=en-us&de=UTF-8&dt=Du%20sendes%20videre%20til%20pledd.net&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=QACAAAABAAAAAC~&cid=401261983.1674925077&tid=UA-168544891-6&_gid=556398159.1674925077&_r=1&cd1=96982475&cd2=dc1-kls-prod-ls-02.prod.dc1.kelkoo.net_1674925073779_705845&cd3=100524369&cd4=a4c6294-185f9506571-96bae&cd5=&cd6=96982475%7C100524369%7C&z=2041811012
142.250.74.110200 OK 35 B URL HTTP/2 www.google-analytics.com/collect?v=1&_v=j96&t=pageview&_s=1&dl=https%3A%2F%2Fno-go.kelkoogroup.net%2FmerchantGo%3F.ts%3D1674925073440%26.sig%3DWnh7H7A5wciakO_A0FdB9GdkfLM-%26affiliationId%3D96982475%26comId%3D100524369%26country%3Dno%26cpcId%3D484950%26merchantName%3Dpledd.net%26searchId%3D1076100331553824_1674925073412_36046564%26service%3D30%26tokenId%3Dfeafe8f1-6b73-432f-9169-8cd3ad39633b%26url%3Dhttps%253A%252F%252Fpledd.net%26addedParams%3Dtrue%26custom1%3Dfd416a2665b4773489eceeb90790f2a5%26custom2%3DLR01ZUXJ&dp=%2F96982475%7C100524369%7C&ul=en-us&de=UTF-8&dt=Du%20sendes%20videre%20til%20pledd.net&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=QACAAAABAAAAAC~&cid=401261983.1674925077&tid=UA-168544891-6&_gid=556398159.1674925077&_r=1&cd1=96982475&cd2=dc1-kls-prod-ls-02.prod.dc1.kelkoo.net_1674925073779_705845&cd3=100524369&cd4=a4c6294-185f9506571-96bae&cd5=&cd6=96982475%7C100524369%7C&z=2041811012
IP 142.250.74.110:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
POST /collect?v=1&_v=j96&t=pageview&_s=1&dl=https%3A%2F%2Fno-go.kelkoogroup.net%2FmerchantGo%3F.ts%3D1674925073440%26.sig%3DWnh7H7A5wciakO_A0FdB9GdkfLM-%26affiliationId%3D96982475%26comId%3D100524369%26country%3Dno%26cpcId%3D484950%26merchantName%3Dpledd.net%26searchId%3D1076100331553824_1674925073412_36046564%26service%3D30%26tokenId%3Dfeafe8f1-6b73-432f-9169-8cd3ad39633b%26url%3Dhttps%253A%252F%252Fpledd.net%26addedParams%3Dtrue%26custom1%3Dfd416a2665b4773489eceeb90790f2a5%26custom2%3DLR01ZUXJ&dp=%2F96982475%7C100524369%7C&ul=en-us&de=UTF-8&dt=Du%20sendes%20videre%20til%20pledd.net&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=QACAAAABAAAAAC~&cid=401261983.1674925077&tid=UA-168544891-6&_gid=556398159.1674925077&_r=1&cd1=96982475&cd2=dc1-kls-prod-ls-02.prod.dc1.kelkoo.net_1674925073779_705845&cd3=100524369&cd4=a4c6294-185f9506571-96bae&cd5=&cd6=96982475%7C100524369%7C&z=2041811012 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://no-go.kelkoogroup.net
Connection: keep-alive
Referer: https://no-go.kelkoogroup.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
access-control-allow-origin: https://no-go.kelkoogroup.net
date: Sat, 28 Jan 2023 16:57:54 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
x-content-type-options: nosniff
access-control-allow-credentials: true
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 36147c185553851c38547798733a9fb2
912ec40237eae2ed558d09103c86c41f87896eca
a4fd9090983c75e1b7faf5ea9439532f51d747faf1853138ac13bdaafa490246
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:57:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 36147c185553851c38547798733a9fb2
912ec40237eae2ed558d09103c86c41f87896eca
a4fd9090983c75e1b7faf5ea9439532f51d747faf1853138ac13bdaafa490246
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:57:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7da8f9a23d8c05f64f248e4e3427c76e
e2d001c2909cd9403173cbb0e288d55fbc8e4d0a
db8790004124a0eeb0676860170ad9c37250b2ba697a27dee62c99b64c67b4b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:57:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 36147c185553851c38547798733a9fb2
912ec40237eae2ed558d09103c86c41f87896eca
a4fd9090983c75e1b7faf5ea9439532f51d747faf1853138ac13bdaafa490246
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:57:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-5GTC7WR
142.250.74.40200 OK 60 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-5GTC7WR
IP 142.250.74.40:0
File type ASCII text, with very long lines (2100)
Hash 654122b19a2a7465b2fc45789d4c3229
5517a07e9beaa5a1a2b18c79e8f546d478288d39
9f7be8794d5391ad904d8b9c1cc4251868e3aff2bb035e8658c3fa85810d18d4
GET /gtm.js?id=GTM-5GTC7WR HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 28 Jan 2023 16:57:55 GMT
expires: Sat, 28 Jan 2023 16:57:55 GMT
cache-control: private, max-age=900
last-modified: Sat, 28 Jan 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 59907
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-0P3KL1K39X
142.250.74.40200 OK 93 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-0P3KL1K39X
IP 142.250.74.40:0
File type ASCII text, with very long lines (31644)
Hash a5c6b4df7e2bca86a56be355505f9e84
48102f1a1cf50d92b2aad4800be9b6f98dcd6459
1626ea078509687c1a313511b7c333f37dc3f582d02525aaba2ce6010a8a55de
GET /gtag/js?id=G-0P3KL1K39X HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 28 Jan 2023 16:57:55 GMT
expires: Sat, 28 Jan 2023 16:57:55 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 93431
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8c630e9bbc930d1c367efa81b67be3f7
ec536695531d40a813d99a06271c7c2d698d51d3
39ca0a60c3e2e85712757ead0830d0da82beac1e4f44b6e90243e5ca9326bf4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:57:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cbe94bc7052911313fffd1cdad964a74
a96a6606f1d20baeeb4040c9ced3ba2f7bd1aada
430d90ac0a39038dbb5336cf29baf6786ac29491c5a8e4dcce04e93d9fceb5e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:57:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
themes.abicart.com/css/?tws-core=2.12.13&tws-article-search=3.0.11&tws-react-slick=1.0.11&tws-react-img=2.2.7&tws-react-common=2.2.4&tws-newsletter-subscribe=3.1.0&tws-opc-cart=2.0.33&tws-cart-summary=4.0.10&tws-unique-selling-points=3.0.1&tws-contact-form=3.0.7&tws-order-history=4.0.9&tws-list=3.2.0&tws-top-menu=4.2.7&tws-article-social=3.0.8&tws-accept-cookies=3.2.1&tws-tabs=3.0.0&tws-article-favoritebutton=2.0.5&tws-brand-logos=2.0.7&tws-text-display=2.0.1&tws-article-labels=3.0.1&tws-article-pricetable=2.1.0&tws-mylists=2.0.3&tws-saved-articles=2.0.10&tws-article-attributes=3.0.9&tws-article-buy-button-with-modal=5.2.0&tws-article-list=5.3.3&tws-compare-articles=1.1.0&tws-article-choices=4.2.5&tws-article-package=3.1.2&tws-checkout-success=4.1.0&tws-article-filter=2.2.1&tws-article-images=5.0.12&tws-quickorder=3.0.12&tws-customer-details=3.1.2&tws-checkout=4.1.5&tws-compare-articles-button=1.0.3&tws-articlegroup-list=5.0.2&tws-articlegroups=5.0.0&tws-article-display=5.1.0&tws-article-search-page=5.1.6&tws-article-introduction=3.0.5&tws-instagram=1.2.8&tws-favorite-list=1.0.12&tws-article-description=3.0.8&tws-audience-selector=2.0.11&tws-article-stock-shipping=3.0.7&tws-checkout-back-button=3.0.0&tws-custom-page=8.1.0&tws-klarna-payment-method-widget=3.0.2&tws-social-icons=1.1.4&tws-logo=4.1.11&tws-login=4.1.2&tws-articles-two=4.1.2&tws-discount-field=4.1.0
185.76.9.23200 OK 73 kB URL HTTP/2 themes.abicart.com/css/?tws-core=2.12.13&tws-article-search=3.0.11&tws-react-slick=1.0.11&tws-react-img=2.2.7&tws-react-common=2.2.4&tws-newsletter-subscribe=3.1.0&tws-opc-cart=2.0.33&tws-cart-summary=4.0.10&tws-unique-selling-points=3.0.1&tws-contact-form=3.0.7&tws-order-history=4.0.9&tws-list=3.2.0&tws-top-menu=4.2.7&tws-article-social=3.0.8&tws-accept-cookies=3.2.1&tws-tabs=3.0.0&tws-article-favoritebutton=2.0.5&tws-brand-logos=2.0.7&tws-text-display=2.0.1&tws-article-labels=3.0.1&tws-article-pricetable=2.1.0&tws-mylists=2.0.3&tws-saved-articles=2.0.10&tws-article-attributes=3.0.9&tws-article-buy-button-with-modal=5.2.0&tws-article-list=5.3.3&tws-compare-articles=1.1.0&tws-article-choices=4.2.5&tws-article-package=3.1.2&tws-checkout-success=4.1.0&tws-article-filter=2.2.1&tws-article-images=5.0.12&tws-quickorder=3.0.12&tws-customer-details=3.1.2&tws-checkout=4.1.5&tws-compare-articles-button=1.0.3&tws-articlegroup-list=5.0.2&tws-articlegroups=5.0.0&tws-article-display=5.1.0&tws-article-search-page=5.1.6&tws-article-introduction=3.0.5&tws-instagram=1.2.8&tws-favorite-list=1.0.12&tws-article-description=3.0.8&tws-audience-selector=2.0.11&tws-article-stock-shipping=3.0.7&tws-checkout-back-button=3.0.0&tws-custom-page=8.1.0&tws-klarna-payment-method-widget=3.0.2&tws-social-icons=1.1.4&tws-logo=4.1.11&tws-login=4.1.2&tws-articles-two=4.1.2&tws-discount-field=4.1.0
IP 185.76.9.23:0
ASN #60068 Datacamp Limited
Hash a24f5fe86041c800643229f556d63f0c
d85cedf45ac6c329eb48a13cfe0e00f31caf72e0
40058bcaade84d4cb7b80c11cd9954bea56e36b91923b967f4313c1ac19d7ba8
GET /css/?tws-core=2.12.13&tws-article-search=3.0.11&tws-react-slick=1.0.11&tws-react-img=2.2.7&tws-react-common=2.2.4&tws-newsletter-subscribe=3.1.0&tws-opc-cart=2.0.33&tws-cart-summary=4.0.10&tws-unique-selling-points=3.0.1&tws-contact-form=3.0.7&tws-order-history=4.0.9&tws-list=3.2.0&tws-top-menu=4.2.7&tws-article-social=3.0.8&tws-accept-cookies=3.2.1&tws-tabs=3.0.0&tws-article-favoritebutton=2.0.5&tws-brand-logos=2.0.7&tws-text-display=2.0.1&tws-article-labels=3.0.1&tws-article-pricetable=2.1.0&tws-mylists=2.0.3&tws-saved-articles=2.0.10&tws-article-attributes=3.0.9&tws-article-buy-button-with-modal=5.2.0&tws-article-list=5.3.3&tws-compare-articles=1.1.0&tws-article-choices=4.2.5&tws-article-package=3.1.2&tws-checkout-success=4.1.0&tws-article-filter=2.2.1&tws-article-images=5.0.12&tws-quickorder=3.0.12&tws-customer-details=3.1.2&tws-checkout=4.1.5&tws-compare-articles-button=1.0.3&tws-articlegroup-list=5.0.2&tws-articlegroups=5.0.0&tws-article-display=5.1.0&tws-article-search-page=5.1.6&tws-article-introduction=3.0.5&tws-instagram=1.2.8&tws-favorite-list=1.0.12&tws-article-description=3.0.8&tws-audience-selector=2.0.11&tws-article-stock-shipping=3.0.7&tws-checkout-back-button=3.0.0&tws-custom-page=8.1.0&tws-klarna-payment-method-widget=3.0.2&tws-social-icons=1.1.4&tws-logo=4.1.11&tws-login=4.1.2&tws-articles-two=4.1.2&tws-discount-field=4.1.0 HTTP/1.1
Host: themes.abicart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:55 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: max-age=2592000
x-cache-op: MISS
x-accel-expires: @1676466883
server: CDN77-Turbo
x-77-nzt: AblMCRTtZer/UAYQAA
x-77-nzt-ray: af585630dc0cc8021354d563ed7ecf13
x-cache: HIT
x-age: 1050192
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cbe94bc7052911313fffd1cdad964a74
a96a6606f1d20baeeb4040c9ced3ba2f7bd1aada
430d90ac0a39038dbb5336cf29baf6786ac29491c5a8e4dcce04e93d9fceb5e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:57:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
themes.abicart.com/components/hajde/1.1.60/css?foo=bar&background-color=rgb(248,%20225,%20244)&top-bar-color=rgb(150,%20202,%20174)&header-color=rgb(255,%20255,%20255)&footer-color=rgb(150,%20202,%20174)&accent-color=rgb(239,%2055,%2098)&theme-texbar-bg=rgb(34,%2034,%2034)&theme-texbar-btn=rgb(255,%20255,%20255)&accent-font-name=%22Open%20Sans%22
185.76.9.23200 OK 90 kB URL HTTP/2 themes.abicart.com/components/hajde/1.1.60/css?foo=bar&background-color=rgb(248,%20225,%20244)&top-bar-color=rgb(150,%20202,%20174)&header-color=rgb(255,%20255,%20255)&footer-color=rgb(150,%20202,%20174)&accent-color=rgb(239,%2055,%2098)&theme-texbar-bg=rgb(34,%2034,%2034)&theme-texbar-btn=rgb(255,%20255,%20255)&accent-font-name=%22Open%20Sans%22
IP 185.76.9.23:0
ASN #60068 Datacamp Limited
Hash 37a5fb59d06a1cc3379ff34cc85a2cff
db7164ddaef22bc78655959994df62ef793567bb
b280304b67c1e7094ab7d05fa22d9d5f6b0938b7fcb660654a29062dcc184fb9
GET /components/hajde/1.1.60/css?foo=bar&background-color=rgb(248,%20225,%20244)&top-bar-color=rgb(150,%20202,%20174)&header-color=rgb(255,%20255,%20255)&footer-color=rgb(150,%20202,%20174)&accent-color=rgb(239,%2055,%2098)&theme-texbar-bg=rgb(34,%2034,%2034)&theme-texbar-btn=rgb(255,%20255,%20255)&accent-font-name=%22Open%20Sans%22 HTTP/1.1
Host: themes.abicart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:55 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: max-age=2592000
x-cache-op: EXPIRED
x-accel-expires: @1676137499
server: CDN77-Turbo
x-77-nzt: AblMCRRZaQH/+AwVAA
x-77-nzt-ray: af585630dc0cc8021354d5637c4b7113
x-cache: HIT
x-age: 1379576
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b95908b45771b2a81fa584cba24073fb
9cd03905fd15ad98828bf09bbb36525b47276369
797f2f4b74543203f87ba7dd4c737e973bba7041012f7a6ae99be5be76f3a655
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "797F2F4B74543203F87BA7DD4C737E973BBA7041012F7A6AE99BE5BE76F3A655"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15633
Expires: Sat, 28 Jan 2023 21:18:28 GMT
Date: Sat, 28 Jan 2023 16:57:55 GMT
Connection: keep-alive
fonts.googleapis.com/css2?family=Open+Sans:wght@400;500;600&display=swap
142.250.74.106200 OK 78 kB URL HTTP/2 fonts.googleapis.com/css2?family=Open+Sans:wght@400;500;600&display=swap
IP 142.250.74.106:0
Hash 71869a778e3eaafc59a059ed126d4456
7916b353ecd0117c27ebdfd3c1f22a1b991fc9e5
712a485262f09e633864e940df8148e27715773d2b3b5a1cf0a7fbce5ab177cc
GET /css2?family=Open+Sans:wght@400;500;600&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 28 Jan 2023 16:57:55 GMT
date: Sat, 28 Jan 2023 16:57:55 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
themes.abicart.com/components/tws-brand-logos/2.0.7/files/assets/mastercard_black.svg
185.76.9.23200 OK 96 kB URL HTTP/2 themes.abicart.com/components/tws-brand-logos/2.0.7/files/assets/mastercard_black.svg
IP 185.76.9.23:0
ASN #60068 Datacamp Limited
Hash 3ad0759f671bc874b67013ec301e34db
c9b802b1328ba16b1fb2899d2177c8d05d909cba
55a8392161a891940063bd0fc5253e33cbd80cfd58b4037402a1b6a5ee630595
GET /components/tws-brand-logos/2.0.7/files/assets/mastercard_black.svg HTTP/1.1
Host: themes.abicart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:55 GMT
content-type: image/svg+xml
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: max-age=2592000
x-cache-op: EXPIRED
x-accel-expires: @1675339284
server: CDN77-Turbo
x-77-nzt: AblMCRS4HWD//zohAA
x-77-nzt-ray: af585630dc0cc8021354d563d30a7333
x-cache: HIT
x-age: 2177791
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
s.kk-resources.com/leadtag.js
54.230.111.25200 OK 2.6 kB URL HTTP/1.1 s.kk-resources.com/leadtag.js
IP 54.230.111.25:0
File type C source, ASCII text, with very long lines (6910)
Hash b9c7aa9898d0e7b5d8dfa27c81eda1ac
3e22a4f4ac1fd469128de60e1a80433513242071
980531f0a81016e3a7a4c3fa56f75e7b791f1f4c09296992221bd766b91a53a0
GET /leadtag.js HTTP/1.1
Host: s.kk-resources.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
Content-Length: 2595
Connection: keep-alive
X-Gravitee-Transaction-Id: 254517ad-0dbe-47a1-8517-ad0dbef7a17f
X-Gravitee-Request-Id: 254517ad-0dbe-47a1-8517-ad0dbef7a17f
Request-Time: 5
Accept-Ranges: bytes
Cache-Control: public, max-age=3600
Last-Modified: Thu, 05 Jan 2023 14:34:45 GMT
Content-Encoding: gzip
Date: Sat, 28 Jan 2023 16:34:54 GMT
ETag: "a6f24d16883e371c590c11db7a51d76d23714eef"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Ci0S-C4d3b14x6DId9SXsLDtliSuaIXx79YAsNIwZ1PCO6qPOYBo4w==
Age: 1382
pledd.net/backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb
192.121.104.141200 OK 639 B URL HTTP/2 pledd.net/backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb
IP 192.121.104.141:0
File type JSON data\012- , ASCII text, with very long lines (393), with no line terminators
Hash 4a08d2389d5e1201eaf97085c886d769
2d347a6d4da92fa5dfa9ec00403778ac381a8792
e44ebe2a86beff470f308aa1517f3c83123ed4bc776bac9869ef56d34281120f
POST /backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb HTTP/1.1
Host: pledd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 69
Origin: https://pledd.net
Connection: keep-alive
Referer: https://pledd.net/?kk=a4c6294-185f9506571-96bae&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Cookie: theme_id=237647; _gcl_au=1.1.195844120.1674925079; _ga_0P3KL1K39X=GS1.1.1674925078.1.0.1674925078.0.0.0; _ga=GA1.1.1970727052.1674925079; _ga_675J7C4GZP=GS1.1.1674925079.1.0.1674925079.0.0.0; diversity_webshop_language=nb
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:55 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: no-cache
content-encoding: br
set-cookie: APISERVER=A; path=/
X-Firefox-Spdy: h2
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e0344c44b03467980735c529ec222084
5a02acb712776b4c0bba6346ec3ea99d4d13226b
fb50323f02dd9e830af11038626f7415845f97dd40e409f3bfc1e6e02f77f921
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1877
Cache-Control: max-age=90244
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:57:56 GMT
Etag: "63d40a43-1d7"
Expires: Sun, 29 Jan 2023 18:02:00 GMT
Last-Modified: Fri, 27 Jan 2023 17:30:43 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e0344c44b03467980735c529ec222084
5a02acb712776b4c0bba6346ec3ea99d4d13226b
fb50323f02dd9e830af11038626f7415845f97dd40e409f3bfc1e6e02f77f921
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3141
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:57:56 GMT
Last-Modified: Sat, 28 Jan 2023 16:05:35 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
shop.textalk.se/backend/geoip/json/
192.121.104.141503 Service Unavailable 17 B URL HTTP/2 shop.textalk.se/backend/geoip/json/
IP 192.121.104.141:0
Hash ee08bd3e4a59563dfabfd36db9ad0f25
066bdc17dd6f29f86dc84be4f95ac550ade49242
f99deed786aebb11579a619b6462efe5967559c922fe2280cf97897dcabffc81
GET /backend/geoip/json/ HTTP/1.1
Host: shop.textalk.se
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pledd.net
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 503 Service Unavailable
access-control-allow-credentials: true
access-control-allow-origin: https://pledd.net
content-type: text/plain; charset=utf-8
vary: Origin
x-content-type-options: nosniff
date: Sat, 28 Jan 2023 16:57:56 GMT
content-length: 17
X-Firefox-Spdy: h2
s.kelkoogroup.net/k.gif
185.60.164.26200 OK 0 B IP 185.60.164.26:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /k.gif HTTP/1.1
Host: s.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: etag
Referer: https://pledd.net/
Origin: https://pledd.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
X-Gravitee-Transaction-Id: ad2cb8de-eff7-40a9-acb8-deeff700a914
X-Gravitee-Request-Id: ad2cb8de-eff7-40a9-acb8-deeff700a914
Vary: Origin
Access-Control-Max-Age: 3600
Access-Control-Allow-Origin: https://pledd.net
Access-Control-Allow-Headers: etag
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Sat, 28 Jan 2023 16:57:56 GMT
content-length: 0
s.kelkoogroup.net/k.gif
185.60.164.26200 OK 43 B IP 185.60.164.26:0
ASN #60781 LeaseWeb Netherlands B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash f837aa60b6fe83458f790db60d529fc9
14af87ccec7f81bb28d53c84da2fd5a9d5925cda
dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b
GET /k.gif HTTP/1.1
Host: s.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
ETag: a2Vsa29vSWQ9YTRjNjI5NC0xODVmOTUwNjU3MS05NmJhZQ==
Origin: https://pledd.net
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
X-Gravitee-Transaction-Id: 78e576eb-fa18-41b0-a576-ebfa18e1b0ed
X-Gravitee-Request-Id: 78e576eb-fa18-41b0-a576-ebfa18e1b0ed
ETag: a2Vsa29vSWQ9YTRjNjI5NC0xODVmOTUwNjU3MS05NmJhZQ==
Vary: *,Origin
Pragma: no-cache
Expires: 0
Request-Time: 0
Accept-Ranges: bytes
Cache-Control: private, no-cache, no-store, must-revalidate, proxy-revalidate
Last-Modified: Fri, 01 Jan 2010 00:00:00 GMT
Access-Control-Allow-Origin: https://pledd.net
Access-Control-Expose-Headers: ETag
Access-Control-Allow-Credentials: true
Date: Sat, 28 Jan 2023 16:57:56 GMT
Content-Type: image/gif
content-length: 43
region1.google-analytics.com/g/collect?v=2&tid=G-0P3KL1K39X>m=2oa1p0&_p=1119553789&cid=1970727052.1674925079&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674925078&sct=1&seg=0&dl=https%3A%2F%2Fpledd.net%2F%3Fkk%3Da4c6294-185f9506571-96bae%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono&dr=https%3A%2F%2Fno-go.kelkoogroup.net%2F&dt=&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-0P3KL1K39X>m=2oa1p0&_p=1119553789&cid=1970727052.1674925079&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674925078&sct=1&seg=0&dl=https%3A%2F%2Fpledd.net%2F%3Fkk%3Da4c6294-185f9506571-96bae%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono&dr=https%3A%2F%2Fno-go.kelkoogroup.net%2F&dt=&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-0P3KL1K39X>m=2oa1p0&_p=1119553789&cid=1970727052.1674925079&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674925078&sct=1&seg=0&dl=https%3A%2F%2Fpledd.net%2F%3Fkk%3Da4c6294-185f9506571-96bae%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono&dr=https%3A%2F%2Fno-go.kelkoogroup.net%2F&dt=&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pledd.net
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://pledd.net
date: Sat, 28 Jan 2023 16:57:56 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-675J7C4GZP>m=2oa1p0&_p=1119553789&cid=1970727052.1674925079&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674925079&sct=1&seg=0&dl=https%3A%2F%2Fpledd.net%2F%3Fkk%3Da4c6294-185f9506571-96bae%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono&dr=https%3A%2F%2Fno-go.kelkoogroup.net%2F&dt=&en=page_view&_fv=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-675J7C4GZP>m=2oa1p0&_p=1119553789&cid=1970727052.1674925079&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674925079&sct=1&seg=0&dl=https%3A%2F%2Fpledd.net%2F%3Fkk%3Da4c6294-185f9506571-96bae%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono&dr=https%3A%2F%2Fno-go.kelkoogroup.net%2F&dt=&en=page_view&_fv=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-675J7C4GZP>m=2oa1p0&_p=1119553789&cid=1970727052.1674925079&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674925079&sct=1&seg=0&dl=https%3A%2F%2Fpledd.net%2F%3Fkk%3Da4c6294-185f9506571-96bae%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono&dr=https%3A%2F%2Fno-go.kelkoogroup.net%2F&dt=&en=page_view&_fv=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pledd.net
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://pledd.net
date: Sat, 28 Jan 2023 16:57:56 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 986086aa202637c16710e03d8f40b6ff
ecc337bedc03fdb45cb206c824e7af77026a90f5
edd36e6b93b6885e977be169fe2a7e2310c839501bb03bc737fea511198099c6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5331
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:57:56 GMT
Last-Modified: Sat, 28 Jan 2023 15:29:05 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
themes.abicart.com/components/tws-cdn/1/files/jquery.min.js
185.76.9.23200 OK 33 kB URL HTTP/2 themes.abicart.com/components/tws-cdn/1/files/jquery.min.js
IP 185.76.9.23:0
ASN #60068 Datacamp Limited
Hash 2fc015114a7c334100c5d1b6c5e389aa
b54fa6b744c749b09325c6a32a5db52b07a73404
146c8eff5a1e69d71c8dca37eb218eec8af29e116080dee2afa1720f6c910d0a
GET /components/tws-cdn/1/files/jquery.min.js HTTP/1.1
Host: themes.abicart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:55 GMT
content-type: application/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=300
x-cache-op: HIT
x-accel-expires: @1674925360
server: CDN77-Turbo
x-77-nzt: AblMCRQ5+u3/DwAAAA
x-77-nzt-ray: af585630dc0cc8021354d563f2a4a613
x-cache: HIT
x-age: 15
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.google-analytics.com/u/analytics_debug.js
142.250.74.110200 OK 26 kB URL HTTP/2 www.google-analytics.com/u/analytics_debug.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1802)
Hash d63277d0106f5ff4beff30a2f66a4323
d6111703f9af2310c3b5c1e0558e49b9ce083088
41410325f4f55876573f11b712aa297d1756c4d98f760d166c95e7b40a4a913a
GET /u/analytics_debug.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 25456
date: Sat, 28 Jan 2023 15:07:19 GMT
expires: Sat, 28 Jan 2023 17:07:19 GMT
cache-control: public, max-age=7200
age: 6637
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e7ebbff54ced2c07469b302fc6d44078
f59983c844c398bd37705051ca685b2d07d85726
04eb3bd7658c1112bfc1d0098e8d7f5fafdb10459e3290c0d4e6a17e65a5494f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:57:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sat, 28 Jan 2023 15:46:59 GMT
expires: Sat, 28 Jan 2023 17:46:59 GMT
cache-control: public, max-age=7200
age: 4257
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 541db4f3f0ba067bfb58cdac34cb86f4
20e6883f068568888ce37c6b9ef8f5d12be257c0
83898f3b2da2a11996d2eb3a5115ef301255030fdf231b8bf7971916769bc7be
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: xoV3sLiwiJx5wbmD/tpBoqE9ONv10mbDamG8KNMW0KVfTa1zTbmR185Ei59Jg6V9XwrFL6wrZnwpfHIT4uzIqA==
priority: u=3,i
content-length: 27815
x-fb-trip-id: 1904183273
date: Sat, 28 Jan 2023 16:57:56 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/11072626934/?random=1674925078993&cv=11&fst=1674925078993&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fpledd.net%2F%3Fkk%3Da4c6294-185f9506571-96bae%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&auid=195844120.1674925079&data=event%3Dgtag.config&rfmt=3&fmt=4
142.250.74.130200 OK 932 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/11072626934/?random=1674925078993&cv=11&fst=1674925078993&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fpledd.net%2F%3Fkk%3Da4c6294-185f9506571-96bae%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&auid=195844120.1674925079&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 142.250.74.130:0
File type ASCII text, with very long lines (2073), with no line terminators
Hash 2bf4ee559d59a6ecbb818d5f3b2d3445
41e1b21f4e98d32c4296215df54f1066331e093e
03f7003bf7cf436e5831709f2aeefaddf3886503f6b6b7ad2f5d6baa5b92a497
GET /pagead/viewthroughconversion/11072626934/?random=1674925078993&cv=11&fst=1674925078993&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fpledd.net%2F%3Fkk%3Da4c6294-185f9506571-96bae%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&auid=195844120.1674925079&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 16:57:56 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 932
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 28-Jan-2023 17:12:56 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 986086aa202637c16710e03d8f40b6ff
ecc337bedc03fdb45cb206c824e7af77026a90f5
edd36e6b93b6885e977be169fe2a7e2310c839501bb03bc737fea511198099c6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5331
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:57:56 GMT
Last-Modified: Sat, 28 Jan 2023 15:29:05 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e7ebbff54ced2c07469b302fc6d44078
f59983c844c398bd37705051ca685b2d07d85726
04eb3bd7658c1112bfc1d0098e8d7f5fafdb10459e3290c0d4e6a17e65a5494f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:57:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b7da7d1d3e5880d5d4e313ac7fcf2a83
60a1e887ccb7c7cdae0035c65ef7df9908547fef
af17efcd17df50324c29cff05cea79f18cba79f6b1134ec0e6d1637759b5e895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:57:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 622311873d3819b9911301b09bc2d43c
9f08d648e40479aa12da033da15b80a15017c739
6138674cec17da8b7bb02bf0686bf3e7aefa2bce6a5f844ebd80e10b665818b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:57:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/11072626934/?random=1674925078993&cv=11&fst=1674921600000&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fpledd.net%2F%3Fkk%3Da4c6294-185f9506571-96bae%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=230492242&rmt_tld=1&ipr=y
142.250.74.35200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/11072626934/?random=1674925078993&cv=11&fst=1674921600000&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fpledd.net%2F%3Fkk%3Da4c6294-185f9506571-96bae%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=230492242&rmt_tld=1&ipr=y
IP 142.250.74.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/11072626934/?random=1674925078993&cv=11&fst=1674921600000&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fpledd.net%2F%3Fkk%3Da4c6294-185f9506571-96bae%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=230492242&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 16:57:56 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/11072626934/?random=1674925078993&cv=11&fst=1674921600000&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fpledd.net%2F%3Fkk%3Da4c6294-185f9506571-96bae%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=230492242&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/11072626934/?random=1674925078993&cv=11&fst=1674921600000&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fpledd.net%2F%3Fkk%3Da4c6294-185f9506571-96bae%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=230492242&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/11072626934/?random=1674925078993&cv=11&fst=1674921600000&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fpledd.net%2F%3Fkk%3Da4c6294-185f9506571-96bae%26utm_campaign%3Dkelkooclick%26utm_medium%3Dcpc%26utm_source%3Dkelkoono&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=230492242&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 16:57:56 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.clarity.ms/tag/61muitkej8
13.107.238.53200 OK 1.5 kB URL HTTP/2 www.clarity.ms/tag/61muitkej8
IP 13.107.238.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 6ef6c23d221189feb825af8c1af5aeac
272408d307bfb2e31532eeacf31f0041cc72be7d
3144636c50961b1800883c54986349bbc568d2c519b133a8eeb669d891e58a2d
GET /tag/61muitkej8 HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=c213107616384337af4a9b4ef8d41172.20230128.20240128; expires=Sun, 28 Jan 2024 16:57:56 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:e97341f6-8fff-46a6-9229-fbbfe0892c78
x-cache: CONFIG_NOCACHE
x-azure-ref: 0FFTVYwAAAABWiauDTPnFRImHxu/siUD3Q1BIMzBFREdFMDQxMAA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Sat, 28 Jan 2023 16:57:55 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ab04da9bc46246cc0001464e7f6b5e19
01ce4f7004aec7a24d4545a1e742ab6a1e639b48
22e519a39cb2e7e5f6da23d35f4498aa7a2d00e06613fd3bbf8de8a62ed2d354
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:57:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 12a175d04a71d5ae500e0f070f6dc40b
a7ab4d47c5d60ba5d4f64ff8976df84311e1eebc
341291c0ace939e32a8e328515c95b9764b02f3839f66e1b414660ef12e2c757
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "341291C0ACE939E32A8E328515C95B9764B02F3839F66E1B414660EF12E2C757"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5388
Expires: Sat, 28 Jan 2023 18:27:44 GMT
Date: Sat, 28 Jan 2023 16:57:56 GMT
Connection: keep-alive
admin.abicart.se/shop/16672/files/pledd-logo-1.jpg?max-width=1200&max-height=800&quality=85&fmt=avif
192.121.104.141200 OK 3.3 kB URL HTTP/2 admin.abicart.se/shop/16672/files/pledd-logo-1.jpg?max-width=1200&max-height=800&quality=85&fmt=avif
IP 192.121.104.141:0
File type ISO Media, AVIF Image\012- data
Hash f4b1eaf014401dc03af08823ae6207b2
bba3a126f3184407b34abae0bdee990b13530297
590a0714ede777d6d698f6b3662b1ea64c634df4a5704ea6b9acfad285007f86
GET /shop/16672/files/pledd-logo-1.jpg?max-width=1200&max-height=800&quality=85&fmt=avif HTTP/1.1
Host: admin.abicart.se
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:56 GMT
content-type: image/avif
content-length: 3277
cache-control: public, max-age=86400
expires: Thu, 26 Jan 2023 22:46:27 GMT
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.abicart.com/shop/22222/art22/h5484/12565484-origpic-adeb1a.png?max-width=5&max-height=3&resize=crop
185.76.9.26200 OK 103 B URL HTTP/2 cdn.abicart.com/shop/22222/art22/h5484/12565484-origpic-adeb1a.png?max-width=5&max-height=3&resize=crop
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
File type PNG image data, 5 x 3, 1-bit grayscale, non-interlaced\012- data
Hash ac9bcb86657ee9d00a28672e0ee79f38
9403dec2257eba95f4e0c147784427b1c7ae5c75
43d5d58208991a78aeee80887dfbb3c3e0e9b1c6cf3755eb3b40d963dcd410ad
GET /shop/22222/art22/h5484/12565484-origpic-adeb1a.png?max-width=5&max-height=3&resize=crop HTTP/1.1
Host: cdn.abicart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:56 GMT
content-type: image/png
content-length: 103
cache-control: public, max-age=31536000, immutable
expires: Fri, 26 May 2023 11:23:50 GMT
etag: Tf97db4a5e1ea6df7bd775bebc8950aae
x-cache-status: MISS
x-cache-op: MISS
x-accel-expires: @1685100230
server: CDN77-Turbo
x-77-nzt: AblMCRTO5vH/zvBFAQ
x-77-nzt-ray: af585630a40cde121454d5633e5e102f
x-cache: HIT
x-age: 21360846
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
pledd.net/backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb&vat_country=NO
192.121.104.141200 OK 563 B URL HTTP/2 pledd.net/backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb&vat_country=NO
IP 192.121.104.141:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (2229), with no line terminators
Hash 444f7c2ea78881e8fa3fd57a601e8bc1
8ee728970020fc431626f3f0e74d8f546ae0fa90
8bbd4e241c01631281a3fe89b906c35e37a72e7bbd793f260a7d52ebeb8111c2
POST /backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb&vat_country=NO HTTP/1.1
Host: pledd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 252
Origin: https://pledd.net
Connection: keep-alive
Referer: https://pledd.net/?kk=a4c6294-185f9506571-96bae&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Cookie: theme_id=237647; _gcl_au=1.1.195844120.1674925079; _ga_0P3KL1K39X=GS1.1.1674925078.1.0.1674925078.0.0.0; _ga=GA1.2.1970727052.1674925079; _ga_675J7C4GZP=GS1.1.1674925079.1.0.1674925079.0.0.0; diversity_webshop_language=nb; APISERVER=C; kk_leadtag=true; kelkooId=a4c6294-185f9506571-96bae; SERVERID=E; _gid=GA1.2.611632189.1674925080; _gat_UA-254689994-1=1; _gat_gtag_UA_254689994_1=1; _clck=eo5x02|1|f8n|0; _gat_twsCustomer=1; _fbp=fb.1.1674925080145.61870999
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:56 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: no-cache
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9eb8666615aaddf0ecab4625cc33ea93
417ddf07b3847746e8ad8cc3a5cf29068a33e4e6
6d6c4f3f6f2ec669687d1b9bd66c6ad2f573fbfbb4999525b889cfee3f3e7446
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2259
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:57:56 GMT
Last-Modified: Sat, 28 Jan 2023 16:20:17 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
pagead2.googlesyndication.com/pagead/landing?gcs=G100&gcd=G100&rnd=1752811484.1674925080&url=https%3A%2F%2Fpledd.net%2F>m=2oe1p0
172.217.21.162200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pagead/landing?gcs=G100&gcd=G100&rnd=1752811484.1674925080&url=https%3A%2F%2Fpledd.net%2F>m=2oe1p0
IP 172.217.21.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
POST /pagead/landing?gcs=G100&gcd=G100&rnd=1752811484.1674925080&url=https%3A%2F%2Fpledd.net%2F>m=2oe1p0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pledd.net
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 16:57:56 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pledd.net/backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb&vat_country=NO
192.121.104.141200 OK 320 B URL HTTP/2 pledd.net/backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb&vat_country=NO
IP 192.121.104.141:0
File type JSON data\012- , ASCII text, with very long lines (445), with no line terminators
Hash aa59299df80b44b51bbba0596f6a3377
578b079f0c10120e8e3887cbdedf0d236afe145a
7abac4bbe8f3caef18b93ba5ab434852e0f08d2a0986b72fe11a692620d39d62
POST /backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb&vat_country=NO HTTP/1.1
Host: pledd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 192
Origin: https://pledd.net
Connection: keep-alive
Referer: https://pledd.net/?kk=a4c6294-185f9506571-96bae&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Cookie: theme_id=237647; _gcl_au=1.1.195844120.1674925079; _ga_0P3KL1K39X=GS1.1.1674925078.1.0.1674925078.0.0.0; _ga=GA1.2.1970727052.1674925079; _ga_675J7C4GZP=GS1.1.1674925079.1.0.1674925079.0.0.0; diversity_webshop_language=nb; APISERVER=C; kk_leadtag=true; kelkooId=a4c6294-185f9506571-96bae; SERVERID=E; _gid=GA1.2.611632189.1674925080; _gat_UA-254689994-1=1; _gat_gtag_UA_254689994_1=1; _clck=eo5x02|1|f8n|0; _gat_twsCustomer=1; _fbp=fb.1.1674925080145.61870999
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:56 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: no-cache
content-encoding: br
X-Firefox-Spdy: h2
pledd.net/backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb&vat_country=NO
192.121.104.141200 OK 8.8 kB URL HTTP/2 pledd.net/backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb&vat_country=NO
IP 192.121.104.141:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 912367187926a49a5a258456586bb37a
f1e990e76de9106efffabc5ae1db3be56140ce9f
77cb328ea73ce086dc6e2b729b3f9850e51919a879fe27d252f7e34a9c127229
POST /backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb&vat_country=NO HTTP/1.1
Host: pledd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 92
Origin: https://pledd.net
Connection: keep-alive
Referer: https://pledd.net/?kk=a4c6294-185f9506571-96bae&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Cookie: theme_id=237647; _gcl_au=1.1.195844120.1674925079; _ga_0P3KL1K39X=GS1.1.1674925078.1.0.1674925078.0.0.0; _ga=GA1.2.1970727052.1674925079; _ga_675J7C4GZP=GS1.1.1674925079.1.0.1674925079.0.0.0; diversity_webshop_language=nb; APISERVER=C; kk_leadtag=true; kelkooId=a4c6294-185f9506571-96bae; SERVERID=E; _gid=GA1.2.611632189.1674925080; _gat_UA-254689994-1=1; _gat_gtag_UA_254689994_1=1; _clck=eo5x02|1|f8n|0; _gat_twsCustomer=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:56 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: no-cache
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7f4f40915c6badfbd273ab23021c53b4
d3d4da546d54a4ab8b7d5fd8039c11a012b32287
06c57d8600f9abb97cc50bdb931071b81a7b082b691760fe17f2723ca32b4d74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "06C57D8600F9ABB97CC50BDB931071B81A7B082B691760FE17F2723CA32B4D74"
Last-Modified: Fri, 27 Jan 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10871
Expires: Sat, 28 Jan 2023 19:59:08 GMT
Date: Sat, 28 Jan 2023 16:57:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7f4f40915c6badfbd273ab23021c53b4
d3d4da546d54a4ab8b7d5fd8039c11a012b32287
06c57d8600f9abb97cc50bdb931071b81a7b082b691760fe17f2723ca32b4d74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "06C57D8600F9ABB97CC50BDB931071B81A7B082B691760FE17F2723CA32B4D74"
Last-Modified: Fri, 27 Jan 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10871
Expires: Sat, 28 Jan 2023 19:59:08 GMT
Date: Sat, 28 Jan 2023 16:57:57 GMT
Connection: keep-alive
themesorg.textalk.se/components/tws-react-slick/1.0.11/files//fonts/slick.woff
192.121.104.138200 OK 1.4 kB URL HTTP/1.1 themesorg.textalk.se/components/tws-react-slick/1.0.11/files//fonts/slick.woff
IP 192.121.104.138:0
File type Web Open Font Format, CFF, length 1380, version 1.0\012- data
Hash b7c9e1e479de3b53f1e4e30ebac2403a
af91c12f0f406a4f801aeb3b398768fe41d8f864
26726bac4060abb1226e6ceebc1336e84930fe7a7af1b3895a109d067f5b5dcc
GET /components/tws-react-slick/1.0.11/files//fonts/slick.woff HTTP/1.1
Host: themesorg.textalk.se
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pledd.net
Connection: keep-alive
Referer: https://themes.abicart.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Sat, 28 Jan 2023 16:57:57 GMT
content-type: application/font-woff
content-length: 1380
access-control-allow-origin: *
cache-control: max-age=2592000
shimmercat.abicart.se/shop/16672/grp0/grp-gridimage-087442.jpg?max-width=294&max-height=176&quality=85&resize=crop&fmt=avif
13.53.194.206200 OK 22 kB URL HTTP/2 shimmercat.abicart.se/shop/16672/grp0/grp-gridimage-087442.jpg?max-width=294&max-height=176&quality=85&resize=crop&fmt=avif
IP 13.53.194.206:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 294x176, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ef02c084770eaed768a5618062ec3cb4
dad176094a17f211620b8ae9e93e89f4ab3a3507
2b962a94d598120d46cfdb18d58ce61b669d844a130860d45c0e26a9e2eeb7d9
GET /shop/16672/grp0/grp-gridimage-087442.jpg?max-width=294&max-height=176&quality=85&resize=crop&fmt=avif HTTP/1.1
Host: shimmercat.abicart.se
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:57 GMT
etag: "6mm3gb3164p_a0"
content-length: 21706
cache-control: max-age=63072000
content-type: image/webp
server: ShimmerCat/2
sc-note: static, hs(avifo0=re(25368),prjpg=re(39795),webp0=re(21706)), ri(86a99913776ad507bedf06ae329fd01440d653e2, 834c1b0b160769ea9797ef9cd1ecb46e6d787ff1)
accept-ranges: bytes
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 364cf2458d092edbaeb0f9e8ade9d1a0
30306f62b1af163eb677b17865de19d2b3283802
434543c6e3f00e58f987f13aa6880394fa3b7ea0f1a55ec4abdccc3a1dd8facc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 290
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:57:57 GMT
Last-Modified: Sat, 28 Jan 2023 16:53:07 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
shimmercat.abicart.se/shop/16672/grp0/grp-gridimage-46cdb4.jpg?max-width=294&max-height=176&quality=85&resize=crop&fmt=avif
13.53.194.206200 OK 26 kB URL HTTP/2 shimmercat.abicart.se/shop/16672/grp0/grp-gridimage-46cdb4.jpg?max-width=294&max-height=176&quality=85&resize=crop&fmt=avif
IP 13.53.194.206:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 294x176, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5741c421fed4c668506bb0be92c27c04
2e953a9faa2b7479415870e64d791e16f2e3a3a9
c3e65c73357a0f3c5c1eeb9f499bcf2dd4ef7cb7e2658b0ffb8464c5ba602f2b
GET /shop/16672/grp0/grp-gridimage-46cdb4.jpg?max-width=294&max-height=176&quality=85&resize=crop&fmt=avif HTTP/1.1
Host: shimmercat.abicart.se
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:57 GMT
etag: "a4r_am=169f3c0"
content-length: 26326
cache-control: max-age=63072000
content-type: image/webp
server: ShimmerCat/2
sc-note: static, hs(avifo0=re(31063),prjpg=re(51792),webp0=re(26326)), ri(cce52cc4ce50ac7b0d15980b7a1c81f32797e40a, 374245555cebb30d44cb5c8bcedd7b2b96c570ac)
accept-ranges: bytes
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
rcgmal4n.klarnaservices.com/v3/s?ver=2.28.2&d=top-strip-promotion-standard&e=en-NO&g=1c4ef103-b0b4-50e9-ba88-e88d4c1f9844
54.230.111.55200 OK 35 kB URL HTTP/2 rcgmal4n.klarnaservices.com/v3/s?ver=2.28.2&d=top-strip-promotion-standard&e=en-NO&g=1c4ef103-b0b4-50e9-ba88-e88d4c1f9844
IP 54.230.111.55:0
Hash 73b223d3b476b729ea1317ab3730f27c
cfc78b74d37aea6ee1b8c068897c7049cd2328a7
c141a3307ab4d1c15f1321ba11389b7d2058d2144cb6f9a6a343aadc539ff365
GET /v3/s?ver=2.28.2&d=top-strip-promotion-standard&e=en-NO&g=1c4ef103-b0b4-50e9-ba88-e88d4c1f9844 HTTP/1.1
Host: rcgmal4n.klarnaservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pledd.net/
Origin: https://pledd.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Sat, 28 Jan 2023 16:57:57 GMT
access-control-allow-origin: https://pledd.net
vary: Accept-Encoding, Origin
access-control-allow-credentials: true
klarna-correlation-id: b0989baf-1cb3-4d96-94d2-ed63beef5605
timing-allow-origin: *
cache-control: public, max-age=86400
etag: W/"794-yuyxFo66KTSreRivUerXMXrGTYc"
x-envoy-upstream-service-time: 7
server: envoy
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pm8SW92kD0j5o9KFYAO-ce2XhIIYAeV9B0AG__O-8bL3AS3zeYhB9Q==
X-Firefox-Spdy: h2
shimmercat.abicart.se/shop/16672/grp0/grp-gridimage-e726f2.jpg?max-width=294&max-height=176&quality=85&resize=crop&fmt=avif
13.53.194.206200 OK 21 kB URL HTTP/2 shimmercat.abicart.se/shop/16672/grp0/grp-gridimage-e726f2.jpg?max-width=294&max-height=176&quality=85&resize=crop&fmt=avif
IP 13.53.194.206:0
File type ISO Media, AVIF Image\012- data
Hash 4d329072195bd660e9d051e6fff83a5e
df5ef8f2900a3bb9b358f205ad7d62469419ebbd
eddb64228fe7f5fc755fd75a149a660817749535fed4e0423b5290e99ac271a3
GET /shop/16672/grp0/grp-gridimage-e726f2.jpg?max-width=294&max-height=176&quality=85&resize=crop&fmt=avif HTTP/1.1
Host: shimmercat.abicart.se
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:57 GMT
etag: "71h34c9e61eh60"
content-length: 21210
cache-control: max-age=63072000
content-type: image/avif
server: ShimmerCat/2
sc-note: static, hs(avifo0=re(21210),prjpg=re(35610),webp0=re(25600)), ri(c9f88c0ed8bdaa90b51a997e28957b7efa7281a5, fa5000f373cffa6aed0bbb4b4148228c836058eb)
accept-ranges: bytes
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
shimmercat.abicart.se/shop/16672/grp0/grp-gridimage-33dc8a.jpg?max-width=294&max-height=176&quality=85&resize=crop&fmt=avif
13.53.194.206200 OK 25 kB URL HTTP/2 shimmercat.abicart.se/shop/16672/grp0/grp-gridimage-33dc8a.jpg?max-width=294&max-height=176&quality=85&resize=crop&fmt=avif
IP 13.53.194.206:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 294x176, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash aa714e7dabbb13029cab4e8d9f681d9c
fda37eb4f54cb41f46d36b6f0cc95776278fb684
775284a6f3b2807df05f0538cc218ca69a9440c3df9f24ef188ba6b66cc17047
GET /shop/16672/grp0/grp-gridimage-33dc8a.jpg?max-width=294&max-height=176&quality=85&resize=crop&fmt=avif HTTP/1.1
Host: shimmercat.abicart.se
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:57 GMT
etag: "aAf38nfA6ff_40"
content-length: 25096
cache-control: max-age=63072000
content-type: image/webp
server: ShimmerCat/2
sc-note: static, hs(avifo0=re(29552),prjpg=re(45984),webp0=re(25096)), ri(897c9ac2dd3bd53a76f218af0f363a3ef5ded848, 0604d97a05ebc1d180b488e4b61a24256ddaa546)
accept-ranges: bytes
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
shimmercat.abicart.se/shop/16672/grp0/grp-gridimage-c863bf.jpg?max-width=294&max-height=176&quality=85&resize=crop&fmt=avif
13.53.194.206200 OK 19 kB URL HTTP/2 shimmercat.abicart.se/shop/16672/grp0/grp-gridimage-c863bf.jpg?max-width=294&max-height=176&quality=85&resize=crop&fmt=avif
IP 13.53.194.206:0
File type ISO Media, AVIF Image\012- data
Hash 2bab83112125d6fea2a5d0454ba16580
e2c118ab3f44d68fbdd21b0107defd62f5082cf6
df5de25782beb130a4be0cf1825b45079b2adc810cfb195d7638b914f8e17a27
GET /shop/16672/grp0/grp-gridimage-c863bf.jpg?max-width=294&max-height=176&quality=85&resize=crop&fmt=avif HTTP/1.1
Host: shimmercat.abicart.se
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:57 GMT
etag: "71e_4ap66eo680"
content-length: 19272
cache-control: max-age=63072000
content-type: image/avif
server: ShimmerCat/2
sc-note: static, hs(avifo0=re(19272),prjpg=re(35621),webp0=re(19788)), ri(c1e28f74691b6954fdaedc57f1df1777c4a7f8f1, b632fa9bafce6511faef94128ad973e9c2bcf1cb)
accept-ranges: bytes
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
shimmercat.abicart.se/shop/16672/grp0/grp-gridimage-0769ca.jpg?max-width=294&max-height=176&quality=85&resize=crop&fmt=avif
13.53.194.206200 OK 20 kB URL HTTP/2 shimmercat.abicart.se/shop/16672/grp0/grp-gridimage-0769ca.jpg?max-width=294&max-height=176&quality=85&resize=crop&fmt=avif
IP 13.53.194.206:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 294x176, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash bb84f0f8f3ce91023219da9965eebe39
ae779b1355cc3089f868b80e780e148187a94602
311300671d657d979e57511c885a78182a680ca8d32d850d86cf03d75776e9fa
GET /shop/16672/grp0/grp-gridimage-0769ca.jpg?max-width=294&max-height=176&quality=85&resize=crop&fmt=avif HTTP/1.1
Host: shimmercat.abicart.se
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:57 GMT
etag: "a8mh6b9Aabfh60"
content-length: 20356
cache-control: max-age=63072000
content-type: image/webp
server: ShimmerCat/2
sc-note: static, hs(avifo0=re(23993),prjpg=re(46113),webp0=re(20356)), ri(ac44493bbf7324a88f741cae4195b134bbc528b2, 39f6bf77b1d87fa0fcd20b65478ddf25cd3f8ffa)
accept-ranges: bytes
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
shimmercat.abicart.se/shop/16672/grp0/grp-gridimage-b4f09b.jpg?max-width=294&max-height=176&quality=85&resize=crop&fmt=avif
13.53.194.206200 OK 17 kB URL HTTP/2 shimmercat.abicart.se/shop/16672/grp0/grp-gridimage-b4f09b.jpg?max-width=294&max-height=176&quality=85&resize=crop&fmt=avif
IP 13.53.194.206:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 294x176, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6ae6ab14affed7a950707913864e7920
e1c82a54ba523a20ade7aaaf0382c5d177d14fd1
a55eb4f339a32245a7b7e8e1e50525713fa6d03997ba1f49cccd0dd4ef3f2c16
GET /shop/16672/grp0/grp-gridimage-b4f09b.jpg?max-width=294&max-height=176&quality=85&resize=crop&fmt=avif HTTP/1.1
Host: shimmercat.abicart.se
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:57 GMT
etag: "a4oh8mh16in360"
content-length: 16748
cache-control: max-age=63072000
content-type: image/webp
server: ShimmerCat/2
sc-note: static, hs(avifo0=re(20330),prjpg=re(38198),webp0=re(16748)), ri(fe283fe25a778f36588d7cbaef226143e19e0725, f8a20afab54c491f71b3802216feb64ca60b1e03)
accept-ranges: bytes
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 221f6821cb16292db2a34b719718d6f1
86da71b1b715f7bef571683a4b112e516516f820
ca3f5d3e7f3ce3dc1d2e502b7c8f59fdb26a9564e1c4638b529db5dc50ad8dba
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2304
Cache-Control: max-age=169524
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:57:57 GMT
Etag: "63d53e49-1d7"
Expires: Mon, 30 Jan 2023 16:03:21 GMT
Last-Modified: Sat, 28 Jan 2023 15:24:57 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 364cf2458d092edbaeb0f9e8ade9d1a0
30306f62b1af163eb677b17865de19d2b3283802
434543c6e3f00e58f987f13aa6880394fa3b7ea0f1a55ec4abdccc3a1dd8facc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 290
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:57:57 GMT
Last-Modified: Sat, 28 Jan 2023 16:53:07 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
x.klarnacdn.net/ui/fonts/v1.3/fonts.css
54.230.111.46200 OK 5.2 kB URL HTTP/2 x.klarnacdn.net/ui/fonts/v1.3/fonts.css
IP 54.230.111.46:0
File type CSV text\012- , ASCII text
Hash c992228f869c757b2b0a2f8ecb17fa21
c3348b27876c39996fea3652f74eb732c4bf2197
facb59b2ae83c0d73ae3aa0c23731f8e1791fcd3148f525bdfe1b381e14c70d4
GET /ui/fonts/v1.3/fonts.css HTTP/1.1
Host: x.klarnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-length: 5189
date: Wed, 09 Nov 2022 03:13:13 GMT
x-amz-replication-status: COMPLETED
last-modified: Fri, 30 Apr 2021 10:01:44 GMT
etag: "c992228f869c757b2b0a2f8ecb17fa21"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000
x-amz-meta-ui: ui
x-amz-version-id: t6YqdT7IzEDnLlEXrdYp2k7IY4qR3s8G
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: txlHlPLXx1wT-6esp7WpVCsgI9qCW4NXTHyCXTcqCUo4ESJ-VyLFqA==
age: 6961485
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 364cf2458d092edbaeb0f9e8ade9d1a0
30306f62b1af163eb677b17865de19d2b3283802
434543c6e3f00e58f987f13aa6880394fa3b7ea0f1a55ec4abdccc3a1dd8facc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 290
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:57:57 GMT
Last-Modified: Sat, 28 Jan 2023 16:53:07 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
scontent-arn2-1.cdninstagram.com/v/t51.29350-15/317848175_156507913777346_7643238704325755609_n.jpg?_nc_cat=110&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=Poi8tha4V3kAX_C04Hl&_nc_ht=scontent-arn2-1.cdninstagram.com&edm=ANo9K5cEAAAA&oh=00_AfCTNuMFu4nFybtn7vCGbjTH53IjSYbEHwp3Cxefe1ftnQ&oe=63DA5A44
31.13.72.53200 OK 129 kB URL HTTP/2 scontent-arn2-1.cdninstagram.com/v/t51.29350-15/317848175_156507913777346_7643238704325755609_n.jpg?_nc_cat=110&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=Poi8tha4V3kAX_C04Hl&_nc_ht=scontent-arn2-1.cdninstagram.com&edm=ANo9K5cEAAAA&oh=00_AfCTNuMFu4nFybtn7vCGbjTH53IjSYbEHwp3Cxefe1ftnQ&oe=63DA5A44
IP 31.13.72.53:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 720x720, components 3\012- data
Size 129 kB (129210 bytes)
Hash d23a9c742e04323ee1c01b99216bee3b
acabad7998d5dd4502f44f4b563bdc7b33237003
7542c38f1b0028cec43a5049e1d3ed1ebc08ee3233c463930d45c9ecfce0e7e4
GET /v/t51.29350-15/317848175_156507913777346_7643238704325755609_n.jpg?_nc_cat=110&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=Poi8tha4V3kAX_C04Hl&_nc_ht=scontent-arn2-1.cdninstagram.com&edm=ANo9K5cEAAAA&oh=00_AfCTNuMFu4nFybtn7vCGbjTH53IjSYbEHwp3Cxefe1ftnQ&oe=63DA5A44 HTTP/1.1
Host: scontent-arn2-1.cdninstagram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Sun, 04 Dec 2022 18:55:52 GMT
content-type: image/jpeg
x-haystack-needlechecksum: 4282206296
x-needle-checksum: 52454056
content-digest: adler32=52454056
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
accept-ranges: bytes
content-length: 129210
x-fb-trip-id: 2050670934
date: Sat, 28 Jan 2023 16:57:57 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-arn2-1.cdninstagram.com/v/t39.30808-6/317610926_216009064332015_8374333398309582028_n.jpg?_nc_cat=110&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=Vo0MIQnfcmsAX9okc1-&_nc_ht=scontent-arn2-1.cdninstagram.com&edm=ANo9K5cEAAAA&oh=00_AfAYliWo8_4zoBhyFqK6nm0AAQBis3SfSjhBhCvorkqP5w&oe=63DA3679
31.13.72.53200 OK 312 kB URL HTTP/2 scontent-arn2-1.cdninstagram.com/v/t39.30808-6/317610926_216009064332015_8374333398309582028_n.jpg?_nc_cat=110&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=Vo0MIQnfcmsAX9okc1-&_nc_ht=scontent-arn2-1.cdninstagram.com&edm=ANo9K5cEAAAA&oh=00_AfAYliWo8_4zoBhyFqK6nm0AAQBis3SfSjhBhCvorkqP5w&oe=63DA3679
IP 31.13.72.53:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 880x880, components 3\012- data
Size 312 kB (312366 bytes)
Hash b4180c87d35da5bfe4620faf02cb1436
2ef2adae0b6034c815928a9bb65304024f4cfdeb
c3b1b490153107bebcef5884827bbd5f5655829e995d08b2dbc9e4de5768d6c5
GET /v/t39.30808-6/317610926_216009064332015_8374333398309582028_n.jpg?_nc_cat=110&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=Vo0MIQnfcmsAX9okc1-&_nc_ht=scontent-arn2-1.cdninstagram.com&edm=ANo9K5cEAAAA&oh=00_AfAYliWo8_4zoBhyFqK6nm0AAQBis3SfSjhBhCvorkqP5w&oe=63DA3679 HTTP/1.1
Host: scontent-arn2-1.cdninstagram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Sun, 04 Dec 2022 19:21:14 GMT
content-type: image/jpeg
x-haystack-needlechecksum: 294681779
x-needle-checksum: 3177612171
content-digest: adler32=3177612171
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
accept-ranges: bytes
content-length: 312366
x-fb-trip-id: 2050670934
date: Sat, 28 Jan 2023 16:57:57 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-arn2-1.cdninstagram.com/v/t39.30808-6/323447775_912514479755962_6997965968980448140_n.jpg?_nc_cat=110&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=pDzmVrLWL0cAX9UgE6-&_nc_ht=scontent-arn2-1.cdninstagram.com&edm=ANo9K5cEAAAA&oh=00_AfDpsc4t5iVNv7f2-m40Ctvoo6qwSC-BtKU0Vbr3t2wKkQ&oe=63DA8D11
31.13.72.53200 OK 303 kB URL HTTP/2 scontent-arn2-1.cdninstagram.com/v/t39.30808-6/323447775_912514479755962_6997965968980448140_n.jpg?_nc_cat=110&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=pDzmVrLWL0cAX9UgE6-&_nc_ht=scontent-arn2-1.cdninstagram.com&edm=ANo9K5cEAAAA&oh=00_AfDpsc4t5iVNv7f2-m40Ctvoo6qwSC-BtKU0Vbr3t2wKkQ&oe=63DA8D11
IP 31.13.72.53:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1440x1440, components 3\012- data
Size 303 kB (302950 bytes)
Hash c6469aefe615ce38dd82bbf3b4237c1b
e500e6e313134f1bc43b671391be249ef68e5ac7
895db6115829818c5538052b295fbf62d3799c9496b29bc7b985aebcb84f8622
GET /v/t39.30808-6/323447775_912514479755962_6997965968980448140_n.jpg?_nc_cat=110&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=pDzmVrLWL0cAX9UgE6-&_nc_ht=scontent-arn2-1.cdninstagram.com&edm=ANo9K5cEAAAA&oh=00_AfDpsc4t5iVNv7f2-m40Ctvoo6qwSC-BtKU0Vbr3t2wKkQ&oe=63DA8D11 HTTP/1.1
Host: scontent-arn2-1.cdninstagram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Mon, 16 Jan 2023 16:47:06 GMT
content-type: image/jpeg
x-haystack-needlechecksum: 955200810
x-needle-checksum: 1372729197
content-digest: adler32=1372729197
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
accept-ranges: bytes
content-length: 302950
x-fb-trip-id: 2050670934
date: Sat, 28 Jan 2023 16:57:57 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
x.klarnacdn.net/ui/fonts/v1.3/KlarnaHeadline-Bold.woff2
54.230.111.46200 OK 21 kB URL HTTP/2 x.klarnacdn.net/ui/fonts/v1.3/KlarnaHeadline-Bold.woff2
IP 54.230.111.46:0
File type Web Open Font Format (Version 2), TrueType, length 20860, version 1.0\012- data
Hash e934031557d0c1b8904d2d0dd4584614
0aa2a5b830a5a6add80045b9816c0c7a35c6a504
6fa9b909ad56404a9024bf64eb4fdd303ac3872310460aaa6e8ae0c6f7093448
GET /ui/fonts/v1.3/KlarnaHeadline-Bold.woff2 HTTP/1.1
Host: x.klarnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pledd.net
Connection: keep-alive
Referer: https://x.klarnacdn.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: font/woff2
content-length: 20860
date: Sat, 28 Jan 2023 16:38:44 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 86400
x-amz-replication-status: COMPLETED
last-modified: Fri, 30 Apr 2021 10:01:44 GMT
etag: "e934031557d0c1b8904d2d0dd4584614"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000
x-amz-meta-ui: ui
x-amz-version-id: FnFe7S43tQvuoAoiPn5yrVkdL3FZK045
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lxNJH1i_vvvTEB6KWtaUz7GzWvOEYo9guLb6VmeJnQsiO_IKjIcBmQ==
age: 1154
X-Firefox-Spdy: h2
scontent-arn2-1.cdninstagram.com/v/t51.29350-15/317906909_2147098522129912_2404764373419941382_n.jpg?_nc_cat=104&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=MAYoo8hwRiMAX_wpY1r&_nc_ht=scontent-arn2-1.cdninstagram.com&edm=ANo9K5cEAAAA&oh=00_AfB0V3xmtV0MiX-0AIK6JHWpy-YWuVVJzMf0KRyTFI8Sew&oe=63DAF0D1
31.13.72.53200 OK 58 kB URL HTTP/2 scontent-arn2-1.cdninstagram.com/v/t51.29350-15/317906909_2147098522129912_2404764373419941382_n.jpg?_nc_cat=104&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=MAYoo8hwRiMAX_wpY1r&_nc_ht=scontent-arn2-1.cdninstagram.com&edm=ANo9K5cEAAAA&oh=00_AfB0V3xmtV0MiX-0AIK6JHWpy-YWuVVJzMf0KRyTFI8Sew&oe=63DAF0D1
IP 31.13.72.53:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 720x720, components 3\012- data
Hash 2aed59bd1e83641b3a7edc4a52e07058
40c9fe0778ed1d22016fc1d25e82365e9344e69a
0cb1001ce5041a0c920059ed0c6dacd43e8412cf666fe2d5d7e2f3d31580c79b
GET /v/t51.29350-15/317906909_2147098522129912_2404764373419941382_n.jpg?_nc_cat=104&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=MAYoo8hwRiMAX_wpY1r&_nc_ht=scontent-arn2-1.cdninstagram.com&edm=ANo9K5cEAAAA&oh=00_AfB0V3xmtV0MiX-0AIK6JHWpy-YWuVVJzMf0KRyTFI8Sew&oe=63DAF0D1 HTTP/1.1
Host: scontent-arn2-1.cdninstagram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
content-length: 57577
last-modified: Sun, 04 Dec 2022 18:58:35 GMT
content-type: image/jpeg
x-haystack-needlechecksum: 1894406365
x-needle-checksum: 2488243842
content-digest: adler32=2488243842
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
accept-ranges: bytes
x-fb-trip-id: 2050670934
date: Sat, 28 Jan 2023 16:57:57 GMT
x-fb-edge-debug: nkIyvo8TpHWYd8zdESLyd2t0Zlui0tJ4LQT-exIO6VCcXfJbjJpH1uyeyryKiCGKbfUnmIWMBi_wI6lMh8TklzaE2Zxorf9SGtKfDbz1RB8
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
pledd.net/backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb&vat_country=NO
192.121.104.141200 OK 1.7 kB URL HTTP/2 pledd.net/backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb&vat_country=NO
IP 192.121.104.141:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (14713), with no line terminators
Hash 37128f9efb61e78cfe81f9bad4f6f3b0
d88bc960058c43012536520b90ac1f95d9377024
17c8da9edead1370adfe8936d56976c1bc2cc71b2d3daf6af4c8475301650103
POST /backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb&vat_country=NO HTTP/1.1
Host: pledd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 444
Origin: https://pledd.net
Connection: keep-alive
Referer: https://pledd.net/?kk=a4c6294-185f9506571-96bae&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Cookie: theme_id=237647; _gcl_au=1.1.195844120.1674925079; _ga_0P3KL1K39X=GS1.1.1674925078.1.0.1674925078.0.0.0; _ga=GA1.2.1970727052.1674925079; _ga_675J7C4GZP=GS1.1.1674925079.1.0.1674925079.0.0.0; diversity_webshop_language=nb; APISERVER=C; kk_leadtag=true; kelkooId=a4c6294-185f9506571-96bae; SERVERID=E; _gid=GA1.2.611632189.1674925080; _gat_UA-254689994-1=1; _gat_gtag_UA_254689994_1=1; _clck=eo5x02|1|f8n|0; _gat_twsCustomer=1; _fbp=fb.1.1674925080145.61870999
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:56 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: no-cache
content-encoding: br
X-Firefox-Spdy: h2
pledd.net/shop/31655/favicon-f9d024.png?max-width=512&max-height=512&resize=crop
192.121.104.141200 OK 826 B URL HTTP/2 pledd.net/shop/31655/favicon-f9d024.png?max-width=512&max-height=512&resize=crop
IP 192.121.104.141:0
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 0428d9ca5de2589a71735b61cdd9ab5f
fdda28f18520dfdc0af516d21e8e8dbcc60963f9
a85b12b0f852195748bce09e1b1333adf1a7fd2c87d4fa993412ec598f36873d
GET /shop/31655/favicon-f9d024.png?max-width=512&max-height=512&resize=crop HTTP/1.1
Host: pledd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/?kk=a4c6294-185f9506571-96bae&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Cookie: theme_id=237647; _gcl_au=1.1.195844120.1674925079; _ga_0P3KL1K39X=GS1.1.1674925078.1.0.1674925078.0.0.0; _ga=GA1.2.1970727052.1674925079; _ga_675J7C4GZP=GS1.1.1674925079.1.0.1674925079.0.0.0; diversity_webshop_language=nb; APISERVER=C; kk_leadtag=true; kelkooId=a4c6294-185f9506571-96bae; SERVERID=E; _gid=GA1.2.611632189.1674925080; _gat_UA-254689994-1=1; _gat_gtag_UA_254689994_1=1; _clck=eo5x02|1|f8n|0; _gat_twsCustomer=1; _fbp=fb.1.1674925080145.61870999
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:57 GMT
content-type: image/png
content-length: 826
cache-control: public, max-age=86400
expires: Sat, 28 Jan 2023 02:01:56 GMT
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
pledd.net/shop/31655/favicon-f9d024.png?max-width=16&max-height=16&resize=crop
192.121.104.141200 OK 826 B URL HTTP/2 pledd.net/shop/31655/favicon-f9d024.png?max-width=16&max-height=16&resize=crop
IP 192.121.104.141:0
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 0428d9ca5de2589a71735b61cdd9ab5f
fdda28f18520dfdc0af516d21e8e8dbcc60963f9
a85b12b0f852195748bce09e1b1333adf1a7fd2c87d4fa993412ec598f36873d
GET /shop/31655/favicon-f9d024.png?max-width=16&max-height=16&resize=crop HTTP/1.1
Host: pledd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/?kk=a4c6294-185f9506571-96bae&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Cookie: theme_id=237647; _gcl_au=1.1.195844120.1674925079; _ga_0P3KL1K39X=GS1.1.1674925078.1.0.1674925078.0.0.0; _ga=GA1.2.1970727052.1674925079; _ga_675J7C4GZP=GS1.1.1674925079.1.0.1674925079.0.0.0; diversity_webshop_language=nb; APISERVER=C; kk_leadtag=true; kelkooId=a4c6294-185f9506571-96bae; SERVERID=E; _gid=GA1.2.611632189.1674925080; _gat_UA-254689994-1=1; _gat_gtag_UA_254689994_1=1; _clck=eo5x02|1|f8n|0; _gat_twsCustomer=1; _fbp=fb.1.1674925080145.61870999
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:57 GMT
content-type: image/png
content-length: 826
cache-control: public, max-age=86400
expires: Sun, 29 Jan 2023 16:08:50 GMT
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99d&tid=UA-254689994-1&cid=1970727052.1674925079&jid=752052262&gjid=1798542552&_gid=611632189.1674925080&_u=YADAAUI7AAAAACAAI~&z=768811658
173.194.221.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99d&tid=UA-254689994-1&cid=1970727052.1674925079&jid=752052262&gjid=1798542552&_gid=611632189.1674925080&_u=YADAAUI7AAAAACAAI~&z=768811658
IP 173.194.221.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99d&tid=UA-254689994-1&cid=1970727052.1674925079&jid=752052262&gjid=1798542552&_gid=611632189.1674925080&_u=YADAAUI7AAAAACAAI~&z=768811658 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://pledd.net
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://pledd.net
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 28 Jan 2023 16:57:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99d&tid=UA-254689994-1&cid=1970727052.1674925079&jid=1798968947&gjid=1465823497&_gid=611632189.1674925080&_u=YADAAAI6AAAAAC~&z=568675588
173.194.221.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99d&tid=UA-254689994-1&cid=1970727052.1674925079&jid=1798968947&gjid=1465823497&_gid=611632189.1674925080&_u=YADAAAI6AAAAAC~&z=568675588
IP 173.194.221.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99d&tid=UA-254689994-1&cid=1970727052.1674925079&jid=1798968947&gjid=1465823497&_gid=611632189.1674925080&_u=YADAAAI6AAAAAC~&z=568675588 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://pledd.net
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://pledd.net
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 28 Jan 2023 16:57:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99d&tid=UA-8313001-58&cid=1970727052.1674925079&jid=208225625&gjid=1013587992&_gid=611632189.1674925080&_u=aGDAAUI7AAAAACAOIk~&z=2103967651
173.194.221.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99d&tid=UA-8313001-58&cid=1970727052.1674925079&jid=208225625&gjid=1013587992&_gid=611632189.1674925080&_u=aGDAAUI7AAAAACAOIk~&z=2103967651
IP 173.194.221.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99d&tid=UA-8313001-58&cid=1970727052.1674925079&jid=208225625&gjid=1013587992&_gid=611632189.1674925080&_u=aGDAAUI7AAAAACAOIk~&z=2103967651 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://pledd.net
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://pledd.net
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 28 Jan 2023 16:57:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
c.clarity.ms/c.gif
20.234.93.27302 Found 0 B IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=B3DA2708025D4503920BB9E7FFFA3436&RedC=c.clarity.ms&MXFR=1E881277E7F563501DE700D0E3F56DAB
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=1E881277E7F563501DE700D0E3F56DAB; domain=.clarity.ms; expires=Thu, 22-Feb-2024 16:57:57 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Sat, 28 Jan 2023 16:57:57 GMT
content-length: 0
X-Firefox-Spdy: h2
c.bing.com/c.gif?CtsSyncId=B3DA2708025D4503920BB9E7FFFA3436&RedC=c.clarity.ms&MXFR=1E881277E7F563501DE700D0E3F56DAB
13.107.21.200302 Found 0 B URL HTTP/2 c.bing.com/c.gif?CtsSyncId=B3DA2708025D4503920BB9E7FFFA3436&RedC=c.clarity.ms&MXFR=1E881277E7F563501DE700D0E3F56DAB
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=B3DA2708025D4503920BB9E7FFFA3436&RedC=c.clarity.ms&MXFR=1E881277E7F563501DE700D0E3F56DAB HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pledd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=B3DA2708025D4503920BB9E7FFFA3436&MUID=236EE4385EB363601CB3F69F5F46622D
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=236EE4385EB363601CB3F69F5F46622D; domain=c.bing.com; expires=Thu, 22-Feb-2024 16:57:57 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: B2709918088D4168A4664B16065890B1 Ref B: OSL30EDGE0122 Ref C: 2023-01-28T16:57:57Z
date: Sat, 28 Jan 2023 16:57:57 GMT
content-length: 0
X-Firefox-Spdy: h2
c.clarity.ms/c.gif?CtsSyncId=B3DA2708025D4503920BB9E7FFFA3436&MUID=236EE4385EB363601CB3F69F5F46622D
20.234.93.27200 OK 42 B URL HTTP/2 c.clarity.ms/c.gif?CtsSyncId=B3DA2708025D4503920BB9E7FFFA3436&MUID=236EE4385EB363601CB3F69F5F46622D
IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=B3DA2708025D4503920BB9E7FFFA3436&MUID=236EE4385EB363601CB3F69F5F46622D HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pledd.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Tue, 17 Jan 2023 20:36:49 GMT
accept-ranges: bytes
etag: "b1c8df6cb32ad91:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Sat, 28-Jan-2023 17:07:57 GMT; path=/; SameSite=None; Secure;
date: Sat, 28 Jan 2023 16:57:57 GMT
content-length: 42
X-Firefox-Spdy: h2
d.clarity.ms/collect
40.76.174.66204 No Content 0 B IP 40.76.174.66:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 572
Origin: https://pledd.net
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: https://pledd.net
access-control-allow-credentials: true
date: Sat, 28 Jan 2023 16:57:57 GMT
X-Firefox-Spdy: h2
d.clarity.ms/collect
40.76.174.66204 No Content 0 B IP 40.76.174.66:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 31694
Origin: https://pledd.net
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: https://pledd.net
access-control-allow-credentials: true
date: Sat, 28 Jan 2023 16:57:57 GMT
X-Firefox-Spdy: h2
d.clarity.ms/collect
40.76.174.66204 No Content 0 B IP 40.76.174.66:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 99408
Origin: https://pledd.net
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: https://pledd.net
access-control-allow-credentials: true
date: Sat, 28 Jan 2023 16:57:58 GMT
X-Firefox-Spdy: h2
eu-library.klarnaservices.com/lib.js
54.230.111.116200 OK 0 B URL HTTP/2 eu-library.klarnaservices.com/lib.js
IP 54.230.111.116:0
GET /lib.js HTTP/1.1
Host: eu-library.klarnaservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Sat, 28 Jan 2023 13:05:34 GMT
last-modified: Wed, 25 Jan 2023 15:57:26 GMT
x-amz-server-side-encryption: AES256
cache-control: max-age=86400
server: AmazonS3
content-encoding: br
etag: W/"c9c24671e18f4c4431ec9078dafc0c0c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: JNN-0w-39ePxOVcyanIlyi4ZNVs_gNWvMoJwYnx4S0LBRAzJcmWkHg==
age: 13942
X-Firefox-Spdy: h2
themes.abicart.com/components/hajde/1.1.60/files/bootstrap.css
185.76.9.23200 OK 0 B URL HTTP/2 themes.abicart.com/components/hajde/1.1.60/files/bootstrap.css
IP 185.76.9.23:0
ASN #60068 Datacamp Limited
GET /components/hajde/1.1.60/files/bootstrap.css HTTP/1.1
Host: themes.abicart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:55 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: max-age=2592000
x-cache-op: EXPIRED
x-accel-expires: @1675001180
server: CDN77-Turbo
x-77-nzt: AblMCRSRYWr/t2MmAA
x-77-nzt-ray: af585630dc0cc8021354d56396dd3613
x-cache: HIT
x-age: 2515895
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
pledd.net/backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb&vat_country=NO
192.121.104.141200 OK 0 B URL HTTP/2 pledd.net/backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb&vat_country=NO
IP 192.121.104.141:0
POST /backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb&vat_country=NO HTTP/1.1
Host: pledd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 65
Origin: https://pledd.net
Connection: keep-alive
Referer: https://pledd.net/?kk=a4c6294-185f9506571-96bae&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Cookie: theme_id=237647; _gcl_au=1.1.195844120.1674925079; _ga_0P3KL1K39X=GS1.1.1674925078.1.0.1674925078.0.0.0; _ga=GA1.2.1970727052.1674925079; _ga_675J7C4GZP=GS1.1.1674925079.1.0.1674925079.0.0.0; diversity_webshop_language=nb; APISERVER=C; kk_leadtag=true; kelkooId=a4c6294-185f9506571-96bae; SERVERID=E; _gid=GA1.2.611632189.1674925080; _gat_UA-254689994-1=1; _gat_gtag_UA_254689994_1=1; _clck=eo5x02|1|f8n|0; _gat_twsCustomer=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:56 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: no-cache
content-encoding: br
X-Firefox-Spdy: h2
pledd.net/?kk=a4c6294-185f9506571-96bae&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
192.121.104.141200 OK 0 B URL HTTP/2 pledd.net/?kk=a4c6294-185f9506571-96bae&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
IP 192.121.104.141:0
GET /?kk=a4c6294-185f9506571-96bae&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono HTTP/1.1
Host: pledd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no-go.kelkoogroup.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:55 GMT
content-type: text/html; charset=utf-8
set-cookie: theme_id=237647; Version=1; Path=/
content-encoding: br
X-Firefox-Spdy: h2
pledd.net/backend/jsonrpc/v1?auth=&language=nb&webshop=31655
192.121.104.141200 OK 0 B URL HTTP/2 pledd.net/backend/jsonrpc/v1?auth=&language=nb&webshop=31655
IP 192.121.104.141:0
POST /backend/jsonrpc/v1?auth=&language=nb&webshop=31655 HTTP/1.1
Host: pledd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 169
Origin: https://pledd.net
Connection: keep-alive
Referer: https://pledd.net/?kk=a4c6294-185f9506571-96bae&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Cookie: theme_id=237647; _gcl_au=1.1.195844120.1674925079; _ga_0P3KL1K39X=GS1.1.1674925078.1.0.1674925078.0.0.0; _ga=GA1.1.1970727052.1674925079; _ga_675J7C4GZP=GS1.1.1674925079.1.0.1674925079.0.0.0; diversity_webshop_language=nb
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:55 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: no-cache
content-encoding: br
set-cookie: APISERVER=D; path=/
X-Firefox-Spdy: h2
pledd.net/backend/jsonrpc/v1?auth=&language=nb&session=&webshop=31655&vat_country=NO
192.121.104.141200 OK 0 B URL HTTP/2 pledd.net/backend/jsonrpc/v1?auth=&language=nb&session=&webshop=31655&vat_country=NO
IP 192.121.104.141:0
POST /backend/jsonrpc/v1?auth=&language=nb&session=&webshop=31655&vat_country=NO HTTP/1.1
Host: pledd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 81
Origin: https://pledd.net
Connection: keep-alive
Referer: https://pledd.net/?kk=a4c6294-185f9506571-96bae&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Cookie: theme_id=237647; _gcl_au=1.1.195844120.1674925079; _ga_0P3KL1K39X=GS1.1.1674925078.1.0.1674925078.0.0.0; _ga=GA1.2.1970727052.1674925079; _ga_675J7C4GZP=GS1.1.1674925079.1.0.1674925079.0.0.0; diversity_webshop_language=nb; APISERVER=C; kk_leadtag=true; kelkooId=a4c6294-185f9506571-96bae; SERVERID=E; _gid=GA1.2.611632189.1674925080; _gat_UA-254689994-1=1; _gat_gtag_UA_254689994_1=1; _clck=eo5x02|1|f8n|0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:56 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: no-cache
content-encoding: br
X-Firefox-Spdy: h2
pledd.net/backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb
192.121.104.141200 OK 0 B URL HTTP/2 pledd.net/backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb
IP 192.121.104.141:0
POST /backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb HTTP/1.1
Host: pledd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 76
Origin: https://pledd.net
Connection: keep-alive
Referer: https://pledd.net/?kk=a4c6294-185f9506571-96bae&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Cookie: theme_id=237647; _gcl_au=1.1.195844120.1674925079; _ga_0P3KL1K39X=GS1.1.1674925078.1.0.1674925078.0.0.0; _ga=GA1.1.1970727052.1674925079; _ga_675J7C4GZP=GS1.1.1674925079.1.0.1674925079.0.0.0; diversity_webshop_language=nb
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:55 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: no-cache
content-encoding: br
set-cookie: APISERVER=D; path=/
X-Firefox-Spdy: h2
themes.abicart.com/components/tws-brand-logos/2.0.7/files/assets/klarna_black.svg
185.76.9.23200 OK 0 B URL HTTP/2 themes.abicart.com/components/tws-brand-logos/2.0.7/files/assets/klarna_black.svg
IP 185.76.9.23:0
ASN #60068 Datacamp Limited
GET /components/tws-brand-logos/2.0.7/files/assets/klarna_black.svg HTTP/1.1
Host: themes.abicart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:55 GMT
content-type: image/svg+xml
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: max-age=2592000
x-cache-op: HIT
x-accel-expires: @1675339293
server: CDN77-Turbo
x-77-nzt: AblMCRR15Wj/9johAA
x-77-nzt-ray: af585630dc0cc8021354d563f5bd2a33
x-cache: HIT
x-age: 2177782
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
pledd.net/backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb
192.121.104.141200 OK 0 B URL HTTP/2 pledd.net/backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb
IP 192.121.104.141:0
POST /backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb HTTP/1.1
Host: pledd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 50
Origin: https://pledd.net
Connection: keep-alive
Referer: https://pledd.net/?kk=a4c6294-185f9506571-96bae&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Cookie: theme_id=237647; _gcl_au=1.1.195844120.1674925079; _ga_0P3KL1K39X=GS1.1.1674925078.1.0.1674925078.0.0.0; _ga=GA1.1.1970727052.1674925079; _ga_675J7C4GZP=GS1.1.1674925079.1.0.1674925079.0.0.0; diversity_webshop_language=nb
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:55 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: no-cache
content-encoding: br
set-cookie: APISERVER=C; path=/
X-Firefox-Spdy: h2
pledd.net/backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb&vat_country=NO
192.121.104.141200 OK 0 B URL HTTP/2 pledd.net/backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb&vat_country=NO
IP 192.121.104.141:0
POST /backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb&vat_country=NO HTTP/1.1
Host: pledd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 69
Origin: https://pledd.net
Connection: keep-alive
Referer: https://pledd.net/?kk=a4c6294-185f9506571-96bae&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Cookie: theme_id=237647; _gcl_au=1.1.195844120.1674925079; _ga_0P3KL1K39X=GS1.1.1674925078.1.0.1674925078.0.0.0; _ga=GA1.2.1970727052.1674925079; _ga_675J7C4GZP=GS1.1.1674925079.1.0.1674925079.0.0.0; diversity_webshop_language=nb; APISERVER=C; kk_leadtag=true; kelkooId=a4c6294-185f9506571-96bae; SERVERID=E; _gid=GA1.2.611632189.1674925080; _gat_UA-254689994-1=1; _gat_gtag_UA_254689994_1=1; _clck=eo5x02|1|f8n|0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:56 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: no-cache
content-encoding: br
X-Firefox-Spdy: h2
themes.abicart.com/components/tws-brand-logos/2.0.7/files/assets/bring_black.svg
185.76.9.23200 OK 0 B URL HTTP/2 themes.abicart.com/components/tws-brand-logos/2.0.7/files/assets/bring_black.svg
IP 185.76.9.23:0
ASN #60068 Datacamp Limited
GET /components/tws-brand-logos/2.0.7/files/assets/bring_black.svg HTTP/1.1
Host: themes.abicart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:55 GMT
content-type: image/svg+xml
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: max-age=2592000
x-cache-op: EXPIRED
x-accel-expires: @1675339901
server: CDN77-Turbo
x-77-nzt: AblMCRT2OVL/ljghAA
x-77-nzt-ray: af585630dc0cc8021354d5634e848933
x-cache: HIT
x-age: 2177174
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
pledd.net/backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb&vat_country=NO
192.121.104.141200 OK 0 B URL HTTP/2 pledd.net/backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb&vat_country=NO
IP 192.121.104.141:0
POST /backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb&vat_country=NO HTTP/1.1
Host: pledd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 54
Origin: https://pledd.net
Connection: keep-alive
Referer: https://pledd.net/?kk=a4c6294-185f9506571-96bae&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Cookie: theme_id=237647; _gcl_au=1.1.195844120.1674925079; _ga_0P3KL1K39X=GS1.1.1674925078.1.0.1674925078.0.0.0; _ga=GA1.2.1970727052.1674925079; _ga_675J7C4GZP=GS1.1.1674925079.1.0.1674925079.0.0.0; diversity_webshop_language=nb; APISERVER=C; kk_leadtag=true; kelkooId=a4c6294-185f9506571-96bae; SERVERID=E; _gid=GA1.2.611632189.1674925080; _gat_UA-254689994-1=1; _gat_gtag_UA_254689994_1=1; _clck=eo5x02|1|f8n|0; _gat_twsCustomer=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:56 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: no-cache
content-encoding: br
X-Firefox-Spdy: h2
lkbx.me/Hpcm?uid=wkj3s3udqjes2o7m2sat1f8c
47.89.248.255200 OK 0 B URL HTTP/2 lkbx.me/Hpcm?uid=wkj3s3udqjes2o7m2sat1f8c
IP 47.89.248.255:0
ASN #45102 Alibaba US Technology Co., Ltd.
Analyzer Verdict Alert fortinet Phishing
GET /Hpcm?uid=wkj3s3udqjes2o7m2sat1f8c HTTP/1.1
Host: lkbx.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wizedeal.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:53 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
set-cookie: discuz_2132_saltkey=LcvBofwE; expires=Mon, 27-Feb-2023 16:57:52 GMT; Max-Age=2591999; path=/; secure; httponly
discuz_2132_lang=en; path=/; secure
discuz_2132_lang=en; path=/; secure
content-encoding: gzip
X-Firefox-Spdy: h2
themes.abicart.com/components/tws-brand-logos/2.0.7/files/assets/postnord_black.svg
185.76.9.23200 OK 0 B URL HTTP/2 themes.abicart.com/components/tws-brand-logos/2.0.7/files/assets/postnord_black.svg
IP 185.76.9.23:0
ASN #60068 Datacamp Limited
GET /components/tws-brand-logos/2.0.7/files/assets/postnord_black.svg HTTP/1.1
Host: themes.abicart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:55 GMT
content-type: image/svg+xml
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: max-age=2592000
x-cache-op: EXPIRED
x-accel-expires: @1675339369
server: CDN77-Turbo
x-77-nzt: AblMCRSxIHj/qjohAA
x-77-nzt-ray: af585630dc0cc8021354d5636ea98133
x-cache: HIT
x-age: 2177706
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
shopswiz.com/click/lb?country=NO&ts=PropellerAds%20Pop&c=&tg=http://s.click.aliexpress.com/e/_ABCzN9
188.114.96.1301 Moved Permanently 0 B URL HTTP/2 shopswiz.com/click/lb?country=NO&ts=PropellerAds%20Pop&c=&tg=http://s.click.aliexpress.com/e/_ABCzN9
IP 188.114.96.1:0
GET /click/lb?country=NO&ts=PropellerAds%20Pop&c=&tg=http://s.click.aliexpress.com/e/_ABCzN9 HTTP/1.1
Host: shopswiz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Sat, 28 Jan 2023 16:57:51 GMT
content-type: text/html; charset=iso-8859-1
location: http://shopswiz.com/click/lb/?country=NO&ts=PropellerAds%20Pop&c=&tg=http://s.click.aliexpress.com/e/_ABCzN9
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CXJXPqx0KbO1zTgKc7igAUvUd9zxEYQ3y86i89U5wwMQTtVykVsVyAHYNsX%2F51%2Bl%2FmvyAB%2FM72sMsXI5S0NOgbx70oQM5TDHplSWYY1Pkm8aELjd%2F56SL5vdqYZDDas%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 790b45009dff1c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
wizedeal.com/click/lb/rd?placementId=wkj3s3udqjes2o7m2sat1f8c&market=NO&merchant=pleddcpc&l=cGxlZGRjcGMsaHR0cHM6Ly9sa2J4Lm1lL0hwY20%3D
172.67.211.54301 Moved Permanently 0 B URL HTTP/2 wizedeal.com/click/lb/rd?placementId=wkj3s3udqjes2o7m2sat1f8c&market=NO&merchant=pleddcpc&l=cGxlZGRjcGMsaHR0cHM6Ly9sa2J4Lm1lL0hwY20%3D
IP 172.67.211.54:0
GET /click/lb/rd?placementId=wkj3s3udqjes2o7m2sat1f8c&market=NO&merchant=pleddcpc&l=cGxlZGRjcGMsaHR0cHM6Ly9sa2J4Lm1lL0hwY20%3D HTTP/1.1
Host: wizedeal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shopswiz.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sat, 28 Jan 2023 16:57:52 GMT
content-type: text/html; charset=iso-8859-1
location: http://wizedeal.com/click/lb/rd/?placementId=wkj3s3udqjes2o7m2sat1f8c&market=NO&merchant=pleddcpc&l=cGxlZGRjcGMsaHR0cHM6Ly9sa2J4Lm1lL0hwY20%3D
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=djymuqkQA%2BTHrG2ZHhby2Gb2xo3NFqmU0MsXCBx4lufy7MNKUzasjPFq5X1reCyeOrLhraiSQP%2BAQbV0j%2FZb%2BED5vsyBJWVu0di2v1GWDk3ZXHEW2y4wzd2YFJkrYyg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 790b4504291afab8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pledd.net/backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb
192.121.104.141200 OK 0 B URL HTTP/2 pledd.net/backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb
IP 192.121.104.141:0
POST /backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb HTTP/1.1
Host: pledd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 53
Origin: https://pledd.net
Connection: keep-alive
Referer: https://pledd.net/?kk=a4c6294-185f9506571-96bae&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Cookie: theme_id=237647; _gcl_au=1.1.195844120.1674925079; _ga_0P3KL1K39X=GS1.1.1674925078.1.0.1674925078.0.0.0; _ga=GA1.1.1970727052.1674925079; _ga_675J7C4GZP=GS1.1.1674925079.1.0.1674925079.0.0.0; diversity_webshop_language=nb
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:55 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: no-cache
content-encoding: br
set-cookie: APISERVER=A; path=/
X-Firefox-Spdy: h2
pledd.net/backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb
192.121.104.141200 OK 0 B URL HTTP/2 pledd.net/backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb
IP 192.121.104.141:0
POST /backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb HTTP/1.1
Host: pledd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 783
Origin: https://pledd.net
Connection: keep-alive
Referer: https://pledd.net/?kk=a4c6294-185f9506571-96bae&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Cookie: theme_id=237647; _gcl_au=1.1.195844120.1674925079; _ga_0P3KL1K39X=GS1.1.1674925078.1.0.1674925078.0.0.0; _ga=GA1.1.1970727052.1674925079; _ga_675J7C4GZP=GS1.1.1674925079.1.0.1674925079.0.0.0; diversity_webshop_language=nb
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:55 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: no-cache
content-encoding: br
set-cookie: APISERVER=A; path=/
X-Firefox-Spdy: h2
themes.abicart.com/js/?tws-polyfill=1.1.9&tws-core=2.12.13&tws-react=2.0.3&tws-article-search=3.0.11&tws-react-redux=2.0.4&tws-react-slick=1.0.11&tws-react-img=2.2.7&tws-react-common=2.2.4&tws-newsletter-subscribe=3.1.0&tws-opc-cart=2.0.33&tws-mini-cart=2.2.0&tws-cart-summary=4.0.10&tws-unique-selling-points=3.0.1&tws-contact-form=3.0.7&tws-order-history=4.0.9&tws-list=3.2.0&tws-top-menu=4.2.7&tws-article-social=3.0.8&tws-accept-cookies=3.2.1&tws-tabs=3.0.0&tws-article-favoritebutton=2.0.5&tws-brand-logos=2.0.7&tws-text-display=2.0.1&tws-article-labels=3.0.1&tws-custom-html=2.0.1&tws-article-pricetable=2.1.0&tws-mylists=2.0.3&tws-saved-articles=2.0.10&tws-article-attributes=3.0.9&tws-article-buy-button-with-modal=5.2.0&tws-article-list=5.3.3&tws-compare-articles=1.1.0&tws-breadcrumbs=3.1.2&tws-article-name=3.0.2&tws-article-choices=4.2.5&tws-article-package=3.1.2&tws-checkout-success=4.1.0&tws-article-filter=2.2.1&tws-article-images=5.0.12&tws-preview-controller=1.0.3&tws-checkout-shortcuts=5.0.2&tws-article-price=3.0.9&tws-quickorder=3.0.12&tws-customer-details=3.1.2&tws-checkout=4.1.5&tws-article-quantity=3.0.3&tws-compare-articles-button=1.0.3&tws-article-attachments=3.0.3&tws-articlegroup-list=5.0.2&tws-articlegroups=5.0.0&tws-container=3.0.1&tws-article-display=5.1.0&tws-article-search-page=5.1.6&tws-article-introduction=3.0.5&tws-instagram=1.2.8&tws-favorite-list=1.0.12&tws-chat-livechat=2.0.0&tws-gift-wrap=2.0.0&tws-article-description=3.0.8&tws-audience-selector=2.0.11&tws-prisjakt=2.0.1&tws-article-stock-shipping=3.0.7&tws-checkout-back-button=3.0.0&tws-contact-info=4.0.2&tws-custom-page=8.1.0&tws-not-found=1.0.1&tws-klarna-payment-method-widget=3.0.2&tws-free-shipping-notice=3.0.2&tws-social-icons=1.1.4&tws-logo=4.1.11&tws-login=4.1.2&tws-articles-two=4.1.2&tws-json-ld=2.1.15&tws-single-translation=1.1.0&tws-discount-field=4.1.0&tws-klarna-on-site-messaging=1.1.2&hajde=1.1.60
185.76.9.23200 OK 0 B URL HTTP/2 themes.abicart.com/js/?tws-polyfill=1.1.9&tws-core=2.12.13&tws-react=2.0.3&tws-article-search=3.0.11&tws-react-redux=2.0.4&tws-react-slick=1.0.11&tws-react-img=2.2.7&tws-react-common=2.2.4&tws-newsletter-subscribe=3.1.0&tws-opc-cart=2.0.33&tws-mini-cart=2.2.0&tws-cart-summary=4.0.10&tws-unique-selling-points=3.0.1&tws-contact-form=3.0.7&tws-order-history=4.0.9&tws-list=3.2.0&tws-top-menu=4.2.7&tws-article-social=3.0.8&tws-accept-cookies=3.2.1&tws-tabs=3.0.0&tws-article-favoritebutton=2.0.5&tws-brand-logos=2.0.7&tws-text-display=2.0.1&tws-article-labels=3.0.1&tws-custom-html=2.0.1&tws-article-pricetable=2.1.0&tws-mylists=2.0.3&tws-saved-articles=2.0.10&tws-article-attributes=3.0.9&tws-article-buy-button-with-modal=5.2.0&tws-article-list=5.3.3&tws-compare-articles=1.1.0&tws-breadcrumbs=3.1.2&tws-article-name=3.0.2&tws-article-choices=4.2.5&tws-article-package=3.1.2&tws-checkout-success=4.1.0&tws-article-filter=2.2.1&tws-article-images=5.0.12&tws-preview-controller=1.0.3&tws-checkout-shortcuts=5.0.2&tws-article-price=3.0.9&tws-quickorder=3.0.12&tws-customer-details=3.1.2&tws-checkout=4.1.5&tws-article-quantity=3.0.3&tws-compare-articles-button=1.0.3&tws-article-attachments=3.0.3&tws-articlegroup-list=5.0.2&tws-articlegroups=5.0.0&tws-container=3.0.1&tws-article-display=5.1.0&tws-article-search-page=5.1.6&tws-article-introduction=3.0.5&tws-instagram=1.2.8&tws-favorite-list=1.0.12&tws-chat-livechat=2.0.0&tws-gift-wrap=2.0.0&tws-article-description=3.0.8&tws-audience-selector=2.0.11&tws-prisjakt=2.0.1&tws-article-stock-shipping=3.0.7&tws-checkout-back-button=3.0.0&tws-contact-info=4.0.2&tws-custom-page=8.1.0&tws-not-found=1.0.1&tws-klarna-payment-method-widget=3.0.2&tws-free-shipping-notice=3.0.2&tws-social-icons=1.1.4&tws-logo=4.1.11&tws-login=4.1.2&tws-articles-two=4.1.2&tws-json-ld=2.1.15&tws-single-translation=1.1.0&tws-discount-field=4.1.0&tws-klarna-on-site-messaging=1.1.2&hajde=1.1.60
IP 185.76.9.23:0
ASN #60068 Datacamp Limited
GET /js/?tws-polyfill=1.1.9&tws-core=2.12.13&tws-react=2.0.3&tws-article-search=3.0.11&tws-react-redux=2.0.4&tws-react-slick=1.0.11&tws-react-img=2.2.7&tws-react-common=2.2.4&tws-newsletter-subscribe=3.1.0&tws-opc-cart=2.0.33&tws-mini-cart=2.2.0&tws-cart-summary=4.0.10&tws-unique-selling-points=3.0.1&tws-contact-form=3.0.7&tws-order-history=4.0.9&tws-list=3.2.0&tws-top-menu=4.2.7&tws-article-social=3.0.8&tws-accept-cookies=3.2.1&tws-tabs=3.0.0&tws-article-favoritebutton=2.0.5&tws-brand-logos=2.0.7&tws-text-display=2.0.1&tws-article-labels=3.0.1&tws-custom-html=2.0.1&tws-article-pricetable=2.1.0&tws-mylists=2.0.3&tws-saved-articles=2.0.10&tws-article-attributes=3.0.9&tws-article-buy-button-with-modal=5.2.0&tws-article-list=5.3.3&tws-compare-articles=1.1.0&tws-breadcrumbs=3.1.2&tws-article-name=3.0.2&tws-article-choices=4.2.5&tws-article-package=3.1.2&tws-checkout-success=4.1.0&tws-article-filter=2.2.1&tws-article-images=5.0.12&tws-preview-controller=1.0.3&tws-checkout-shortcuts=5.0.2&tws-article-price=3.0.9&tws-quickorder=3.0.12&tws-customer-details=3.1.2&tws-checkout=4.1.5&tws-article-quantity=3.0.3&tws-compare-articles-button=1.0.3&tws-article-attachments=3.0.3&tws-articlegroup-list=5.0.2&tws-articlegroups=5.0.0&tws-container=3.0.1&tws-article-display=5.1.0&tws-article-search-page=5.1.6&tws-article-introduction=3.0.5&tws-instagram=1.2.8&tws-favorite-list=1.0.12&tws-chat-livechat=2.0.0&tws-gift-wrap=2.0.0&tws-article-description=3.0.8&tws-audience-selector=2.0.11&tws-prisjakt=2.0.1&tws-article-stock-shipping=3.0.7&tws-checkout-back-button=3.0.0&tws-contact-info=4.0.2&tws-custom-page=8.1.0&tws-not-found=1.0.1&tws-klarna-payment-method-widget=3.0.2&tws-free-shipping-notice=3.0.2&tws-social-icons=1.1.4&tws-logo=4.1.11&tws-login=4.1.2&tws-articles-two=4.1.2&tws-json-ld=2.1.15&tws-single-translation=1.1.0&tws-discount-field=4.1.0&tws-klarna-on-site-messaging=1.1.2&hajde=1.1.60 HTTP/1.1
Host: themes.abicart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pledd.net
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:55 GMT
content-type: application/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: max-age=2592000
x-cache-op: HIT
x-accel-expires: @1676466883
server: CDN77-Turbo
x-77-nzt: AblMCRR0DCn/UAYQAA
x-77-nzt-ray: af585630250ecb021354d563674f6813
x-cache: HIT
x-age: 1050192
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
pledd.net/backend/jsonrpc/v1?auth=&language=nb&session=&webshop=31655&vat_country=NO
192.121.104.141200 OK 0 B URL HTTP/2 pledd.net/backend/jsonrpc/v1?auth=&language=nb&session=&webshop=31655&vat_country=NO
IP 192.121.104.141:0
POST /backend/jsonrpc/v1?auth=&language=nb&session=&webshop=31655&vat_country=NO HTTP/1.1
Host: pledd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 84
Origin: https://pledd.net
Connection: keep-alive
Referer: https://pledd.net/?kk=a4c6294-185f9506571-96bae&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Cookie: theme_id=237647; _gcl_au=1.1.195844120.1674925079; _ga_0P3KL1K39X=GS1.1.1674925078.1.0.1674925078.0.0.0; _ga=GA1.2.1970727052.1674925079; _ga_675J7C4GZP=GS1.1.1674925079.1.0.1674925079.0.0.0; diversity_webshop_language=nb; APISERVER=C; kk_leadtag=true; kelkooId=a4c6294-185f9506571-96bae; SERVERID=E; _gid=GA1.2.611632189.1674925080; _gat_UA-254689994-1=1; _gat_gtag_UA_254689994_1=1; _clck=eo5x02|1|f8n|0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:56 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: no-cache
content-encoding: br
X-Firefox-Spdy: h2
www.clarity.ms/eus/s/0.7.1/clarity.js
13.107.238.53200 OK 0 B URL HTTP/2 www.clarity.ms/eus/s/0.7.1/clarity.js
IP 13.107.238.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /eus/s/0.7.1/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-type: application/javascript;charset=utf-8
content-encoding: br
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d928dd7500799e"
server: Microsoft-IIS/10.0
x-cache: TCP_HIT
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
x-azure-ref-originshield: 0ARzUYwAAAADbQeH+BzsiQYJoPzW9VGonRlJBMjMxMDUwNDE4MDMzADZjZmJlZWUwLTUwMjctNDg0Yi04OTY3LTRhMjlhZjc3ZjFlMQ==
x-azure-ref: 0FFTVYwAAAABfswaGYg/qQZPQFiOO+2qvQ1BIMzBFREdFMDQxMAA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Sat, 28 Jan 2023 16:57:56 GMT
X-Firefox-Spdy: h2
themes.abicart.com/components/tws-brand-logos/2.0.7/files/assets/paypal_black.svg
185.76.9.23200 OK 0 B URL HTTP/2 themes.abicart.com/components/tws-brand-logos/2.0.7/files/assets/paypal_black.svg
IP 185.76.9.23:0
ASN #60068 Datacamp Limited
GET /components/tws-brand-logos/2.0.7/files/assets/paypal_black.svg HTTP/1.1
Host: themes.abicart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:55 GMT
content-type: image/svg+xml
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: max-age=2592000
x-cache-op: EXPIRED
x-accel-expires: @1675339617
server: CDN77-Turbo
x-77-nzt: AblMCRStd1z/sjkhAA
x-77-nzt-ray: af585630dc0cc8021354d563318f6433
x-cache: HIT
x-age: 2177458
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
themes.abicart.com/components/hajde/1.1.60/files/StartPage.html
185.76.9.23200 OK 0 B URL HTTP/2 themes.abicart.com/components/hajde/1.1.60/files/StartPage.html
IP 185.76.9.23:0
ASN #60068 Datacamp Limited
GET /components/hajde/1.1.60/files/StartPage.html HTTP/1.1
Host: themes.abicart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pledd.net
Connection: keep-alive
Referer: https://pledd.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:56 GMT
content-type: text/html
access-control-allow-origin: *
cache-control: max-age=2592000
x-cache-op: EXPIRED
x-accel-expires: @1675002345
server: CDN77-Turbo
x-77-nzt: AblMCRT/9s7/K18mAA
x-77-nzt-ray: af585630250ecb021454d563d977a902
x-cache: HIT
x-age: 2514731
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
pledd.net/backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb&vat_country=NO
192.121.104.141200 OK 0 B URL HTTP/2 pledd.net/backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb&vat_country=NO
IP 192.121.104.141:0
POST /backend/jsonrpc/v1?webshop=31655&auth=&session=&language=nb&vat_country=NO HTTP/1.1
Host: pledd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 166
Origin: https://pledd.net
Connection: keep-alive
Referer: https://pledd.net/?kk=a4c6294-185f9506571-96bae&utm_campaign=kelkooclick&utm_medium=cpc&utm_source=kelkoono
Cookie: theme_id=237647; _gcl_au=1.1.195844120.1674925079; _ga_0P3KL1K39X=GS1.1.1674925078.1.0.1674925078.0.0.0; _ga=GA1.2.1970727052.1674925079; _ga_675J7C4GZP=GS1.1.1674925079.1.0.1674925079.0.0.0; diversity_webshop_language=nb; APISERVER=C; kk_leadtag=true; kelkooId=a4c6294-185f9506571-96bae; SERVERID=E; _gid=GA1.2.611632189.1674925080; _gat_UA-254689994-1=1; _gat_gtag_UA_254689994_1=1; _clck=eo5x02|1|f8n|0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:57:56 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: no-cache
content-encoding: br
X-Firefox-Spdy: h2
rcgmal4n.klarnaservices.com/v3/s?ver=2.28.2&d=footer-promotion-auto-size&e=en-NO&g=1c4ef103-b0b4-50e9-ba88-e88d4c1f9844
54.230.111.55200 OK 0 B URL HTTP/2 rcgmal4n.klarnaservices.com/v3/s?ver=2.28.2&d=footer-promotion-auto-size&e=en-NO&g=1c4ef103-b0b4-50e9-ba88-e88d4c1f9844
IP 54.230.111.55:0
GET /v3/s?ver=2.28.2&d=footer-promotion-auto-size&e=en-NO&g=1c4ef103-b0b4-50e9-ba88-e88d4c1f9844 HTTP/1.1
Host: rcgmal4n.klarnaservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pledd.net/
Origin: https://pledd.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Sat, 28 Jan 2023 16:57:57 GMT
access-control-allow-origin: https://pledd.net
vary: Accept-Encoding, Origin
access-control-allow-credentials: true
klarna-correlation-id: 72d2f82b-d3e1-45ec-9dff-f63ce6af2e45
timing-allow-origin: *
cache-control: public, max-age=86400
etag: W/"8cd4-ukKQRg2Ud+mT/kdkDSVblh8eNuw"
x-envoy-upstream-service-time: 9
server: envoy
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _8wIKMftEcCh5SVzsFYpWJw8zR1seME0H4WwoZy2aiJGUehEiNtIMw==
X-Firefox-Spdy: h2