Report - tjuvholmensjomagasin.no/

Report Overview

Submitted URL
tjuvholmensjomagasin.no/
IP
198.49.23.145
ASN
#53831 SQUARESPACE
Submitted
2022-12-05 00:16:38
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
www.sjomagasinet.no	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.6 kB	19 kB	198.185.159.145
ajax.googleapis.com	12905	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	391 B	34 kB	216.58.207.234
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	770 B	21 kB	142.250.74.110
www.facebook.com	99	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	595 B	349 B	31.13.72.36
vars.hotjar.com	1014	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	509 B	1.7 kB	143.204.55.101
www.gasta.no	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	373 B	4.8 kB	198.185.159.145
images.squarespace-cdn.com	4785	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.6 kB	588 kB	151.101.0.238
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.5 kB	9.1 kB	142.250.74.131
script.hotjar.com	887	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	388 B	69 kB	143.204.55.46
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	65 kB	142.250.74.35
p.typekit.net	620	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	579 B	371 B	23.33.119.26
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	6.2 kB	23.36.76.226
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	2.3 kB	93.184.220.29
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
maps.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	390 B	70 kB	142.250.74.3
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	615 B	714 B	108.177.14.154
in.hotjar.com	1746	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	492 B	75 kB	34.248.5.173
lh3.ggpht.com	7184	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	8.4 kB	1.0 MB	216.58.207.225
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	439 B	746 B	142.250.74.106
tjuvholmensjomagasin.no	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	355 B	271 B	198.185.159.145
use.typekit.net	494	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	8.5 kB	267 kB	23.33.119.19
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	385 B	67 kB	172.217.21.168
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	377 B	29 kB	31.13.72.12
static.hotjar.com	641	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	381 B	3.9 kB	54.230.111.66
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	350 B	1.0 kB	143.204.42.88
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.165.41.15
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	53 kB	34.120.237.76
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
assets.squarespace.com	5986	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	407 kB	151.101.64.237
static1.squarespace.com	4133	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.5 kB	98 kB	104.88.26.232
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	520 B	694 B	142.250.74.163

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-05	medium	tjuvholmensjomagasin.no/	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (44)

	URL	Size	First Seen	Last Seen
	www.gasta.no/assets/translation.js	22 kB	2023-03-08	2023-05-28
Pretty URL www.gasta.no/assets/translation.js IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:24:54 Last Seen2023-05-28 00:54:48 Times Seen16 Hash ecef8f8f3d8906928ebdc3968d982f28 e6d15b7b7627a8e98e47485fe1460eed0cda19cd 0e0574fa12a9c9d714d296440e34adf46a7366b149f866f11bf17728d5c760e0 Loading...

	www.sjomagasinet.no/	36 B	2023-03-07	2024-04-24
Pretty URL www.sjomagasinet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:06 Last Seen2024-04-24 18:46:20 Times Seen2968 Hash 601c0c3e24e3606964ca32d91379dce9 2c152d5e3710bc557ad3ee0ec7b20f130b94f485 20f8600ab480a8bff52bfb40664d6957de6a16cbc27de2fc82fa885f04894d35 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-24
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-24 18:41:20 Times Seen1526 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	use.typekit.net/ik/Q44sm4-aeK4D4CNcIARIFHVVhD9KXOWqGGVY_KHb3YCfeTCBfFHN4UJLFRbh52jhWDm8FDJ3jA9UFcItFe4ywD6h5AjuZewkwg7pMkG0jAFu-WsoShFGZAsude80ZkoRdhXCHKoyjamTiY8Djhy8ZYmC-Ao1Oco8if37OcBDOcu8OfG0Z1mkShmXOWF7dhuyZhBD-Ao8ifu0pPoDSWmyScmDSeBRZPoRdhXCHKoDSWmyScmDSeBRZWFR-emqiAUTdcS0jhNlOeBRiA8XpWFR-emqiAUTdcS0jhNlOeBRiA8XpWFR-emqiAUTdcS0dcmXOeBDOcu8OeZuS1F8ifuD-cNljAiySh80ZWbld1q0SaBujW48Sagyjh90jhNlOeUzjhBC-eNDifUD-cNljAiySh80ZWb0dcvCSaBujW48SagyjhmDjhy8ZYmC-Ao1OcFzdPUaiaS0jAFu-WsoShFGZAsude80ZkoRdhXCiaiaOcBRiA8XpWFR-emqiAUTdcS0dcmXOYiaikoySkolZPUaiaS0Z1mkShmXOWF7dhuyZhBD-Ao8ifu0pPoDSWmyScmDSeBRZPoRdhXCiaiaO1F7dhuyZhBD-Ao8ifo0dkUaiaS0SaBujW48SagyjhmDjhy8ZYmC-Ao1OcFzdPJbZ148-AiGifuDjAoDOWgkdkJBdWmDZAvK2cuydcskZA3ldcNkdABCJ6iRjAUTj14TH6qJqeqbMg62JMJ7fbRHmsMMeMb6MKG4f44TIMMjgPMfH6qJ8eqbMg6eJMJ7fbK5-sMMeMS6MKG4f4BTIMMj2PMfH6qJqhqbMg6VJMJ7fbKV-sMMegI6MKG4fOXVIMIjMkMfH6qJz3vbMs6YJMJ7fbRpbyMgeMX6MKG4f5gfIMIjIPMfH6GJv7tfIMJjgPMfH6GJq_JfIMwjgfMfqMegarVugb.js	21 kB	2023-03-08	2023-03-25
Pretty URL use.typekit.net/ik/Q44sm4-aeK4D4CNcIARIFHVVhD9KXOWqGGVY_KHb3YCfeTCBfFHN4UJLFRbh52jhWDm8FDJ3jA9UFcItFe4ywD6h5AjuZewkwg7pMkG0jAFu-WsoShFGZAsude80ZkoRdhXCHKoyjamTiY8Djhy8ZYmC-Ao1Oco8if37OcBDOcu8OfG0Z1mkShmXOWF7dhuyZhBD-Ao8ifu0pPoDSWmyScmDSeBRZPoRdhXCHKoDSWmyScmDSeBRZWFR-emqiAUTdcS0jhNlOeBRiA8XpWFR-emqiAUTdcS0jhNlOeBRiA8XpWFR-emqiAUTdcS0dcmXOeBDOcu8OeZuS1F8ifuD-cNljAiySh80ZWbld1q0SaBujW48Sagyjh90jhNlOeUzjhBC-eNDifUD-cNljAiySh80ZWb0dcvCSaBujW48SagyjhmDjhy8ZYmC-Ao1OcFzdPUaiaS0jAFu-WsoShFGZAsude80ZkoRdhXCiaiaOcBRiA8XpWFR-emqiAUTdcS0dcmXOYiaikoySkolZPUaiaS0Z1mkShmXOWF7dhuyZhBD-Ao8ifu0pPoDSWmyScmDSeBRZPoRdhXCiaiaO1F7dhuyZhBD-Ao8ifo0dkUaiaS0SaBujW48SagyjhmDjhy8ZYmC-Ao1OcFzdPJbZ148-AiGifuDjAoDOWgkdkJBdWmDZAvK2cuydcskZA3ldcNkdABCJ6iRjAUTj14TH6qJqeqbMg62JMJ7fbRHmsMMeMb6MKG4f44TIMMjgPMfH6qJ8eqbMg6eJMJ7fbK5-sMMeMS6MKG4f4BTIMMj2PMfH6qJqhqbMg6VJMJ7fbKV-sMMegI6MKG4fOXVIMIjMkMfH6qJz3vbMs6YJMJ7fbRpbyMgeMX6MKG4f5gfIMIjIPMfH6GJv7tfIMJjgPMfH6GJq_JfIMwjgfMfqMegarVugb.js IP 23.33.119.19 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:25:15 Last Seen2023-03-25 23:02:24 Times Seen2 Hash 171f0046f27d3144118a445719c3632c 576203df641796f261403659bd24fae9450346bd d3febad686255667795eb9e186aa82ef729e3acf1651619b03bb581661ba3cc9 Loading...

	www.sjomagasinet.no/	261 B	2023-03-08	2023-03-12
Pretty URL www.sjomagasinet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:30:02 Last Seen2023-03-12 06:11:34 Times Seen1 Hash 642e18d11f19f1e09c2d3c8ea3450696 04854f660ddbcec752871f580b187338f863da98 8248cd7c18f11ab39f7a296f64a0141274e15b792e1de0d730135ee7d0d7ac84 Loading...

	www.sjomagasinet.no/	341 B	2023-03-08	2023-05-25
Pretty URL www.sjomagasinet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:25:15 Last Seen2023-05-25 00:53:57 Times Seen12 Hash 3a7e9c04691f02d04c89406abb61ab6c 4552cef71defe2f78bf4c2725aa86d40804d40cf d58ac57ab50a10af35436dda44c0f015000e74dbe87417ecf9706d1ad48a38e9 Loading...

	www.sjomagasinet.no/	227 B	2023-03-07	2024-03-20
Pretty URL www.sjomagasinet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:03 Last Seen2024-03-20 23:11:35 Times Seen60 Hash 6576eb2cb6fdf5e1010b91bb50c02e30 9a8e72f4bd4ffcbee515a1ca20df48f3cfd09d6e 375b1efdcef3759a09ec4701158bf109170a0e66bdc981b69e1929ab1e61b3de Loading...

	www.google.com/maps/embed?pb=!4v1668516344760!6m8!1m7!1sCAoSLEFGMVFpcE5LWUluU090QmZ6NVZocHUwby04MlduQ2ptWVA3azNUWkxudC0w!2m2!1d59.90788510052196!2d10.7221053893027!3f14.26816267075032!4f-1.063174596283801!5f0.7820865974627469	774 B	2023-03-08	2023-03-08
Pretty URL www.google.com/maps/embed?pb=!4v1668516344760!6m8!1m7!1sCAoSLEFGMVFpcE5LWUluU090QmZ6NVZocHUwby04MlduQ2ptWVA3azNUWkxudC0w!2m2!1d59.90788510052196!2d10.7221053893027!3f14.26816267075032!4f-1.063174596283801!5f0.7820865974627469 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:25:15 Last Seen2023-03-08 16:25:42 Times Seen1 Hash 7de731d7b5849de22af387adb5d94795 6bc2cc3321b84fdd1811b11382c964a3e64f17b7 8863c254cd49e1581327735dac5fbd1cc3fdf526c8893ec9bb61d85ea8ddf23b Loading...

	www.google-analytics.com/gtm/optimize.js?id=GTM-MDSLNNV	112 kB	2023-03-08	2023-03-09
Pretty URL www.google-analytics.com/gtm/optimize.js?id=GTM-MDSLNNV IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:25:15 Last Seen2023-03-09 02:04:31 Times Seen1 Hash 687e9bc211bbf35c43acde4298e5eb3f 79fb07bd68ab209ad9a533c4099184644549601e 3e1425a2755ced95df5ed9d94aa13a787ab990318160b6486143bdfa480ac82b Loading...

	assets.squarespace.com/universal/scripts-compressed/cldr-resource-pack-33f25cea66c84971c39d6-min.en-US.js	122 kB	2023-03-08	2023-03-12
Pretty URL assets.squarespace.com/universal/scripts-compressed/cldr-resource-pack-33f25cea66c84971c39d6-min.en-US.js IP 151.101.64.237 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:32:56 Last Seen2023-03-12 06:11:34 Times Seen1 Hash 6f93cf4c60218081f58088d4f73968b0 ddce90baa882af788518dedb298aa617b42e7d56 eaf57fca6ef0d907fc24c69ea4bd4dbf7117d8344e894e2dbf691e515d38298a Loading...

	www.sjomagasinet.no/	768 B	2023-03-08	2023-05-25
Pretty URL www.sjomagasinet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:25:15 Last Seen2023-05-25 00:53:57 Times Seen12 Hash fe9678b82768dbc5d1e66a08ac672e01 13cb419aa17adb81931b1069b5cbc62514f59416 04e080889680cd11361ad7b98ce3d8fa1d197b7003d3d0e5eb686cfffbcf03c4 Loading...

	www.sjomagasinet.no/	267 B	2023-03-08	2023-06-14
Pretty URL www.sjomagasinet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:30:02 Last Seen2023-06-14 13:50:27 Times Seen1604 Hash 32812ecd2213da79fab4c849e4348d49 003c04a0b2038245b4f1eda0a57127f590a6aba9 2e219e63d373f75a0ed24eab1a00dc28dc9266fd31ab47f301a029cfb129f658 Loading...

	www.sjomagasinet.no/	247 B	2023-03-08	2023-03-11
Pretty URL www.sjomagasinet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:32:56 Last Seen2023-03-11 23:37:11 Times Seen1 Hash 3e99ba7d7b57db3059e6dcc2ced93377 5da0f9f092e542e9338f060e241d12645b480ba9 8aae8ae2fba646220303ce4848e9f1510079637b9f70dd2c2d265781deffb1b6 Loading...

	www.sjomagasinet.no/	60 B	2023-03-08	2024-04-23
Pretty URL www.sjomagasinet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:30:02 Last Seen2024-04-23 18:41:02 Times Seen439 Hash bd415e0aa496bafa18e59be2bd38ff98 31f8eefdeb21aa1cbbf2ea95f1d1ea3055a5682e b38b93569d686f5f5b60c8246d65c3323710b3a0550088dba17179b036c60d60 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-5PCWVKS	184 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-5PCWVKS IP 172.217.21.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:25:27 Last Seen2023-03-08 16:25:42 Times Seen1 Hash c4ad074c1e03dfe2139340974627ae56 9d64c29ac32c87f6674f461644e285abcf6831dd c2eb5e8664224328ea2885ff8c3850f097a14f815192b286493989b5a1f6e65d Loading...

	assets.squarespace.com/@sqs/polyfiller/1.2.2/modern.js	82 kB	2023-03-07	2024-03-15
Pretty URL assets.squarespace.com/@sqs/polyfiller/1.2.2/modern.js IP 151.101.64.237 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:06 Last Seen2024-03-15 16:47:28 Times Seen8 Hash 782269a1e71d6fa339f3fe3e96260920 19a1d6f5381a86ac75c007a853c8d68d4184f224 6a801f781b109838b64c593ffbabaeb97e553d349540a9636cb63e23a8479423 Loading...

	www.sjomagasinet.no/	25 B	2023-03-07	2024-04-24
Pretty URL www.sjomagasinet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:06 Last Seen2024-04-24 18:46:19 Times Seen3005 Hash 672d0394545f391429e65f55351f3def 19ee8affc3c7b4dad3a3c0565fc5bcd5c21d982c 1b7e492754babf86a84991d9e4aa1094333c6607dbb57414a964773ccb9dca46 Loading...

	maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&8b0&callback=_xdc_._4h8dmi&client=google-maps-embed&token=30379	62 B	2023-03-08	2024-04-16
Pretty URL maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&8b0&callback=_xdc_._4h8dmi&client=google-maps-embed&token=30379 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 09:40:14 Last Seen2024-04-16 16:47:42 Times Seen258 Hash 5d8dcd09601c2ea7ceb6ca274596a0f5 5166807e10299518a004f2f56c88eee8a26a8cc2 48caa9a8cac61f35157186999735eb9b53338c579885257ba0c2e77152b27eb9 Loading...

	maps.googleapis.com/maps/api/js/GeoPhotoService.GetMetadata?pb=!1m4!1sapiv3!11m2!1m1!1b0!2m2!1sen-US!2sUS!3m3!1m2!1e10!2sAF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0!4m57!1e1!1e2!1e3!1e4!1e5!1e6!1e8!1e12!2m1!1e1!4m1!1i48!5m1!1e1!5m1!1e2!6m1!1e1!6m1!1e2!9m36!1m3!1e2!2b1!3e2!1m3!1e2!2b0!3e3!1m3!1e3!2b1!3e2!1m3!1e3!2b0!3e3!1m3!1e8!2b0!3e3!1m3!1e1!2b0!3e3!1m3!1e4!2b0!3e3!1m3!1e10!2b1!3e2!1m3!1e10!2b0!3e3&callback=_callbacks____0lba1la07	177 kB	2023-03-08	2023-03-08
Pretty URL maps.googleapis.com/maps/api/js/GeoPhotoService.GetMetadata?pb=!1m4!1sapiv3!11m2!1m1!1b0!2m2!1sen-US!2sUS!3m3!1m2!1e10!2sAF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0!4m57!1e1!1e2!1e3!1e4!1e5!1e6!1e8!1e12!2m1!1e1!4m1!1i48!5m1!1e1!5m1!1e2!6m1!1e1!6m1!1e2!9m36!1m3!1e2!2b1!3e2!1m3!1e2!2b0!3e3!1m3!1e3!2b1!3e2!1m3!1e3!2b0!3e3!1m3!1e8!2b0!3e3!1m3!1e1!2b0!3e3!1m3!1e4!2b0!3e3!1m3!1e10!2b1!3e2!1m3!1e10!2b0!3e3&callback=_callbacks____0lba1la07 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:25:27 Last Seen2023-03-08 16:25:27 Times Seen1 Hash 8bac580f1eac4d916dc0e8b7920b20a1 83a5a532c6ba521ba59781d54fed05d236fec810 7d8ce2b0ba6962f8beb2f7422d397a107bf5edb9898c48e5218ab5cbadd10d25 Loading...

	assets.squarespace.com/universal/scripts-compressed/common-vendors-efcb604347cd0affcf80e-min.en-US.js	752 kB	2023-03-08	2023-03-11
Pretty URL assets.squarespace.com/universal/scripts-compressed/common-vendors-efcb604347cd0affcf80e-min.en-US.js IP 151.101.64.237 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:32:56 Last Seen2023-03-11 23:20:51 Times Seen1 Hash f3289ec680fb24146263eff3e23c5df7 7611cc3d770498603fab83d63f0514141562d111 af8b561d1f67163a1aa01ee3dc40b406eec6a2cd403768fa6331a3ddb2554e70 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/2/controls.js	89 kB	2023-03-08	2023-03-11
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/2/controls.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:52 Last Seen2023-03-11 23:52:49 Times Seen1 Hash b333f5f5e4f77d32cecc7a32179525a2 7374fa51dbcc3985ca957977ad85d8d494780fd3 861a0e07acb61b96bfc42f7c04421fdbd7f649eee84867458875765bf1e46f65 Loading...

	www.sjomagasinet.no/	253 B	2023-03-08	2023-03-11
Pretty URL www.sjomagasinet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:32:56 Last Seen2023-03-11 23:37:11 Times Seen1 Hash b220c56fabb1aa228afd6d13efb0dc01 eeadd1d921689d6649e3f28fdbf6a81f03ecbc90 dcd7b9a2287981c7089345252f8b5b627ecb564da409617cbe4fe09334d07e8b Loading...

	www.sjomagasinet.no/	237 B	2023-03-08	2023-03-11
Pretty URL www.sjomagasinet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:32:56 Last Seen2023-03-11 23:20:51 Times Seen1 Hash 60ebc5a1f9b1b95837dec5a9f4076a6d c682d0d3e4da6f1c2e90e814de8ea0d0d4c17881 6e565df2458bffdc958b960e8bdf79d1e794b00301fea8652b0f84db4f974a93 Loading...

	www.sjomagasinet.no/	66 B	2023-03-08	2024-04-23
Pretty URL www.sjomagasinet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:30:02 Last Seen2024-04-23 18:41:03 Times Seen434 Hash 70f7fff26032498282dcf1adcfaef8d0 ba04ef7d640bea4d5e968a667b6b043767320dd9 0749a6cc61f598ee49fdeb5f4990b48aef8915cf3bdad118cf2854f8cf0a715f Loading...

	www.sjomagasinet.no/	423 B	2023-03-08	2023-05-25
Pretty URL www.sjomagasinet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:25:15 Last Seen2023-05-25 00:53:57 Times Seen12 Hash 16d17dac40aedf896cad1d8dc63f3763 1bdd8b7d068849eae9e841c58b13363fc03668e5 6a4af647d9e551139284ce49bfb34c563dfd456fb61a4a8104d7a015cd2b2659 Loading...

	static.hotjar.com/c/hotjar-1315154.js?sv=7	6.7 kB	2023-03-08	2023-03-08
Pretty URL static.hotjar.com/c/hotjar-1315154.js?sv=7 IP 54.230.111.66 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:25:15 Last Seen2023-03-08 16:25:42 Times Seen1 Hash 1b05efca11bc1597d733800f7f183cd0 81a9166a53335d21820b12233a7ef6a16ce93bb7 2c27c2a2c14a0a2afbb0c2f997abe077bf83f7ba8c8de0d9e25f60ad217db78d Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/2/util.js	170 kB	2023-03-08	2023-03-12
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/2/util.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:47 Last Seen2023-03-12 16:22:26 Times Seen1 Hash 57abc24730c5e3098df038528852b6bb bc15e0c81c4aaca2cbf840a357622a398d0299c6 ab0897fa86882119e4c205194b220af856781975b3485fd97df8ffda72835f0e Loading...

	unknown	0 B	2023-03-07	2024-04-24
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-24 18:48:07 Times Seen37043978 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	static1.squarespace.com/static/ta/52e968b5e4b04d2aa2a3bba3/1128/scripts/site-bundle.js	88 kB	2023-03-07	2023-09-23
Pretty URL static1.squarespace.com/static/ta/52e968b5e4b04d2aa2a3bba3/1128/scripts/site-bundle.js IP 104.88.26.232 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:03 Last Seen2023-09-23 13:23:59 Times Seen79 Hash 0aa61f9d22e26ca6a88134f8f8aaf34d e8ae3abd76fe9c9367bcbbbdfa83cdf4a6f2f206 56e50ab150aca2468b5d8ff41484da0035e29414d91023026083a568a0044cb2 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/2/marker.js	37 kB	2023-03-08	2023-03-11
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/2/marker.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:24:30 Last Seen2023-03-11 23:52:30 Times Seen1 Hash 6dc0864f177a2715e3b252a6c9afba95 603209d9281300dc7bdc7e260820d743fd5efef8 93fb35c02d5ce6df1a0a9702e3b11ea50903d9b67f943d27a97dccac14f7e594 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/2/imagery_viewer.js	559 kB	2023-03-08	2023-03-08
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/2/imagery_viewer.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:03:05 Last Seen2023-03-08 16:25:42 Times Seen1 Hash af885a8c2e399590df92489f46b6d41a cabf7443a6fa1d4cc5fa55c454cb5b8c13ac6901 fed0f65c5119c64fb29e8fe0062a042e37c998b4a54e9f2592b4f113b917557f Loading...

	vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html	2.3 kB	2023-03-08	2023-03-26
Pretty URL vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html IP 143.204.55.101 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:11 Last Seen2023-03-26 01:38:12 Times Seen2 Hash 2ab04d2242413cc15369fa816e1a02f8 8ff148dd539f0fff0892dcc2075839c315cb8642 fe51660a3d21efbefab64694f51d02f2bcee4e82c324895e93c78ba6179508a3 Loading...

	www.sjomagasinet.no/	263 B	2023-03-08	2023-03-11
Pretty URL www.sjomagasinet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:32:56 Last Seen2023-03-11 23:20:51 Times Seen1 Hash dcbe609218fe107626d5d02beba53fde cb6b74711976508bf730003a4956e55531bd350c 07c58f07728e7e1206bfd39d6259809d7a1abf91a808d9e70713f0c943f40eb5 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/2/streetview.js	75 kB	2023-03-08	2023-03-11
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/2/streetview.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:03:05 Last Seen2023-03-11 23:51:26 Times Seen1 Hash 57ca8bb3fe1af88bcd43f4849954ed83 406368a280b86f204ad5714ddc41e1682ae9ef9d c7db37ad8b278fb685de3f9e58b35fbb3f0f4026af271bdfbb3f88c9fcf81b42 Loading...

	assets.squarespace.com/universal/scripts-compressed/extract-css-runtime-0ed6ed412602b5ef03ce6-min.en-US.js	45 kB	2023-03-08	2023-03-11
Pretty URL assets.squarespace.com/universal/scripts-compressed/extract-css-runtime-0ed6ed412602b5ef03ce6-min.en-US.js IP 151.101.64.237 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:32:55 Last Seen2023-03-11 23:20:51 Times Seen1 Hash f46ab033b99d56b4fa15c1ec52ffcdc0 d680b37ba7da06ca73240cafed018b4e6934d135 e2253ddd092a522ae61737d767ad132e0df09c487885507f0fbed02a1d4bccda Loading...

	ajax.googleapis.com/ajax/libs/jquery/1/jquery.min.js	96 kB	2023-03-07	2024-04-24
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1/jquery.min.js IP 216.58.207.234 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-24 18:39:05 Times Seen46300 Hash 8101d596b2b8fa35fe3a634ea342d7c3 d6c1f41972de07b09bfa63d2e50f9ab41ec372bd 540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441 Loading...

	www.sjomagasinet.no/	281 B	2023-03-08	2023-08-31
Pretty URL www.sjomagasinet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:30:02 Last Seen2023-08-31 16:35:43 Times Seen2259 Hash 5ace63ebc677de878edab6c947cc77e1 0022feb816370d481d0e9d0f847dc7f228b58fe6 0914d0d55fd79135650411f8c1ac910ba5213361c86b48497bae2ba8b5e6cba2 Loading...

	www.sjomagasinet.no/	13 kB	2023-03-08	2023-03-08
Pretty URL www.sjomagasinet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:25:15 Last Seen2023-03-08 16:25:42 Times Seen1 Hash 9443d306d0dcf4a2b1c4f678ba85550c b2278dd0af0944e864ada6a0361ab22d5bd15c0d aafd91a58a31e26226696954b0629a6a413d281c459980efbab19f7034f560cd Loading...

	www.sjomagasinet.no/	29 B	2023-03-07	2024-04-23
Pretty URL www.sjomagasinet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:55 Last Seen2024-04-23 18:41:03 Times Seen431 Hash 719ee01870b508d0b034b8ed51515f27 149d8623595f393195882ccf97c6daedf690bba2 a0bedd0351ff7370c92b7a3a26427f1da78e499ac26a32af3ad80a615685246f Loading...

	connect.facebook.net/signals/config/1010903345990835?v=2.9.89&r=stable	300 kB	2023-03-08	2023-03-11
Pretty URL connect.facebook.net/signals/config/1010903345990835?v=2.9.89&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:25:15 Last Seen2023-03-11 22:06:10 Times Seen1 Hash 02b7e8c9ede661feec010e94d9cac58e d38f479f1bf44b11f375984abe3a3afaa1d156b1 8baa61cc4c1c54409b6c46204d4a151f61d2b53c39cd97c9025cdda88d9ee290 Loading...

	www.sjomagasinet.no/	30 B	2023-03-07	2024-04-24
Pretty URL www.sjomagasinet.no/ IP 198.185.159.145 ASN #53831 SQUARESPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:57 Last Seen2024-04-24 18:46:19 Times Seen3518 Hash c87d02e7372c6e84060d7bcf881b3dec 7be6f1e4003b5f4fc1509041afbbee9e6bebf0a7 d71b6207a995d6220a6798b3f42c40e651277c483c7745c41f714bf4bf0d06aa Loading...

	assets.squarespace.com/universal/scripts-compressed/performance-7c2e2a5656405fba2e7db-min.en-US.js	36 kB	2023-03-08	2023-03-11
Pretty URL assets.squarespace.com/universal/scripts-compressed/performance-7c2e2a5656405fba2e7db-min.en-US.js IP 151.101.64.237 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:32:56 Last Seen2023-03-11 23:37:11 Times Seen1 Hash aa36d7f22b563ea6d008ec104ab83aa0 fd42e0e5030eec43ead1a462dfe792496de33946 bec887bd092b6407367b97448b67a7ec35656167c40485af6537f3dbbf81eed8 Loading...

	maps.googleapis.com/maps/api/js/QuotaService.RecordEvent?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7sa1l9pa&10e2&11b0&callback=_xdc_._eu2r4z&client=google-maps-embed&token=26253	62 B	2023-03-08	2023-03-08
Pretty URL maps.googleapis.com/maps/api/js/QuotaService.RecordEvent?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7sa1l9pa&10e2&11b0&callback=_xdc_._eu2r4z&client=google-maps-embed&token=26253 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:25:27 Last Seen2023-03-08 16:25:27 Times Seen1 Hash aac4cc0179871020e6a9ff8b77f5b15a 06baa4bb6a6d1ae95c9004ae027f73c02773ed01 eb2dc3ac43feca635ed8707779d735b7c5bdc4317dc7cecfdd0946c131c373ce Loading...

		Size	First Seen	Last Seen
	#1 Eval - da2f387c11bbfbff0365a69c6ca218dd	222 B	2023-03-08	2023-05-25
Pretty Observations First Seen2023-03-08 16:25:15 Last Seen2023-05-25 01:26:52 Times Seen16 Hash da2f387c11bbfbff0365a69c6ca218dd 99d0560d4f4478a33e1ee2845eee4ecb907b45d3 e08996c9e6ac975b9254eb3c077acb879d5fc630101d4de1a43286938880e88d Loading...

HTTP Transactions (121)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2511
Expires: Mon, 05 Dec 2022 00:58:16 GMT
Date: Mon, 05 Dec 2022 00:16:25 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
fb2c0697c6d9a96a5411dd2952947458
79e57f831ec396bbdaa5bfe9472a05e6c9fb31f4
3fd7edcc349ab4402f62e54a142be6b4cecf0e7ee3f431d3168bdf0643ba4d92

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1467
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 00:16:25 GMT
Last-Modified: Sun, 04 Dec 2022 23:51:58 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 04 Dec 2022 23:20:09 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3376
alt-svc: clear
X-Firefox-Spdy: h2

tjuvholmensjomagasin.no/

198.185.159.145

301 Moved Permanently

0 B

URL HTTP/1.1
tjuvholmensjomagasin.no/
IP
198.185.159.145:0
ASN
#53831 SQUARESPACE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: tjuvholmensjomagasin.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Age: 1348
Content-Length: 0
Date: Sun, 04 Dec 2022 23:53:57 GMT
Location: https://www.sjomagasinet.no/
Server: Squarespace
Set-Cookie: crumb=BQfLSsQX2+gXYzZkOTE5ZDM3MTIyNTYyMjNjZjUzYzFkMThmOGI5;Path=/
X-Contextid: Ejq4wSJo/wGS7Cjhf

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8999
Expires: Mon, 05 Dec 2022 02:46:24 GMT
Date: Mon, 05 Dec 2022 00:16:25 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 0TcS384fFFtwbAkl5OIlHKy+QifvgVeIPOXOdyTZMvh/9Ew2udutvllj0Gq16oORxeUBNYL4LSU=
x-amz-request-id: YWJTD3QTZN181VMA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 04 Dec 2022 23:47:10 GMT
age: 1755
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 00:16:25 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

www.sjomagasinet.no/

198.185.159.145

200 OK

17 kB

URL HTTP/2
www.sjomagasinet.no/
IP
198.185.159.145:0
ASN
#53831 SQUARESPACE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (13616)
Size
17 kB (16603 bytes)
Hash
6b31ca1234fe492676e3f9820ac28f4e
8077aa1302b3b4d16e51fc14ecc40ffc6e70f27f
e4cb145da363de952c47393a9bf6901655146fca6d3593c247ed0581a998d18a

HTTP Headers

GET / HTTP/1.1
Host: www.sjomagasinet.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ss_cvr=5b90b9c8-9c1a-4e86-a52f-d94ee63943c9|1670197979125|1670197979125|1670197979125|1; ss_cvt=1670197979125; _ga=GA1.2.1051009940.1670197980; _gid=GA1.2.1911147845.1670197980; _fbp=fb.1.1670197980135.1275355497; _hjSessionUser_1315154=eyJpZCI6IjVmYjc4MmMyLTIxNzAtNWRmZi05NTU1LTZjNGU4MWRkZTdlMyIsImNyZWF0ZWQiOjE2NzAxOTc5Nzk3MDQsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjSession_1315154=eyJpZCI6IjMwYWJlNTg5LTQxMmMtNGZlZC05YTdhLTMyYjFlYTdjMTQzNCIsImNyZWF0ZWQiOjE2NzAxOTc5ODAyOTMsImluU2FtcGxlIjpmYWxzZX0=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
accept-ranges: bytes
age: 383961
content-encoding: gzip
content-type: text/html;charset=utf-8
date: Wed, 30 Nov 2022 13:37:04 GMT
etag: W/"c4e7d12d4576e23a2a794933e84e64e4--gzip"
expires: Thu, 01 Jan 1970 00:00:00 GMT
server: Squarespace
set-cookie: crumb=BdaJAuriFQAHZDFlNWM4ZGYzN2Q3MGNmMWI3M2VlNDNjZTg5ZTM1;Path=/
strict-transport-security: max-age=0
vary: Accept-Encoding
x-content-type-options: nosniff
x-contextid: AiELunUF/2lrpBHOA
content-length: 16603
X-Firefox-Spdy: h2

use.typekit.net/ik/Q44sm4-aeK4D4CNcIARIFHVVhD9KXOWqGGVY_KHb3YCfeTCBfFHN4UJLFRbh52jhWDm8FDJ3jA9UFcItFe4ywD6h5AjuZewkwg7pMkG0jAFu-WsoShFGZAsude80ZkoRdhXCHKoyjamTiY8Djhy8ZYmC-Ao1Oco8if37OcBDOcu8OfG0Z1mkShmXOWF7dhuyZhBD-Ao8ifu0pPoDSWmyScmDSeBRZPoRdhXCHKoDSWmyScmDSeBRZWFR-emqiAUTdcS0jhNlOeBRiA8XpWFR-emqiAUTdcS0jhNlOeBRiA8XpWFR-emqiAUTdcS0dcmXOeBDOcu8OeZuS1F8ifuD-cNljAiySh80ZWbld1q0SaBujW48Sagyjh90jhNlOeUzjhBC-eNDifUD-cNljAiySh80ZWb0dcvCSaBujW48SagyjhmDjhy8ZYmC-Ao1OcFzdPUaiaS0jAFu-WsoShFGZAsude80ZkoRdhXCiaiaOcBRiA8XpWFR-emqiAUTdcS0dcmXOYiaikoySkolZPUaiaS0Z1mkShmXOWF7dhuyZhBD-Ao8ifu0pPoDSWmyScmDSeBRZPoRdhXCiaiaO1F7dhuyZhBD-Ao8ifo0dkUaiaS0SaBujW48SagyjhmDjhy8ZYmC-Ao1OcFzdPJbZ148-AiGifuDjAoDOWgkdkJBdWmDZAvK2cuydcskZA3ldcNkdABCJ6iRjAUTj14TH6qJqeqbMg62JMJ7fbRHmsMMeMb6MKG4f44TIMMjgPMfH6qJ8eqbMg6eJMJ7fbK5-sMMeMS6MKG4f4BTIMMj2PMfH6qJqhqbMg6VJMJ7fbKV-sMMegI6MKG4fOXVIMIjMkMfH6qJz3vbMs6YJMJ7fbRpbyMgeMX6MKG4f5gfIMIjIPMfH6GJv7tfIMJjgPMfH6GJq_JfIMwjgfMfqMegarVugb.js

23.33.119.19

200 OK

7.1 kB

URL HTTP/2
use.typekit.net/ik/Q44sm4-aeK4D4CNcIARIFHVVhD9KXOWqGGVY_KHb3YCfeTCBfFHN4UJLFRbh52jhWDm8FDJ3jA9UFcItFe4ywD6h5AjuZewkwg7pMkG0jAFu-WsoShFGZAsude80ZkoRdhXCHKoyjamTiY8Djhy8ZYmC-Ao1Oco8if37OcBDOcu8OfG0Z1mkShmXOWF7dhuyZhBD-Ao8ifu0pPoDSWmyScmDSeBRZPoRdhXCHKoDSWmyScmDSeBRZWFR-emqiAUTdcS0jhNlOeBRiA8XpWFR-emqiAUTdcS0jhNlOeBRiA8XpWFR-emqiAUTdcS0dcmXOeBDOcu8OeZuS1F8ifuD-cNljAiySh80ZWbld1q0SaBujW48Sagyjh90jhNlOeUzjhBC-eNDifUD-cNljAiySh80ZWb0dcvCSaBujW48SagyjhmDjhy8ZYmC-Ao1OcFzdPUaiaS0jAFu-WsoShFGZAsude80ZkoRdhXCiaiaOcBRiA8XpWFR-emqiAUTdcS0dcmXOYiaikoySkolZPUaiaS0Z1mkShmXOWF7dhuyZhBD-Ao8ifu0pPoDSWmyScmDSeBRZPoRdhXCiaiaO1F7dhuyZhBD-Ao8ifo0dkUaiaS0SaBujW48SagyjhmDjhy8ZYmC-Ao1OcFzdPJbZ148-AiGifuDjAoDOWgkdkJBdWmDZAvK2cuydcskZA3ldcNkdABCJ6iRjAUTj14TH6qJqeqbMg62JMJ7fbRHmsMMeMb6MKG4f44TIMMjgPMfH6qJ8eqbMg6eJMJ7fbK5-sMMeMS6MKG4f4BTIMMj2PMfH6qJqhqbMg6VJMJ7fbKV-sMMegI6MKG4fOXVIMIjMkMfH6qJz3vbMs6YJMJ7fbRpbyMgeMX6MKG4f5gfIMIjIPMfH6GJv7tfIMJjgPMfH6GJq_JfIMwjgfMfqMegarVugb.js
IP
23.33.119.19:0
ASN
#20940 Akamai International B.V.

File type
Unicode text, UTF-8 text, with very long lines (4157)
Size
7.1 kB (7103 bytes)
Hash
5e70aa29e493e7566fe16368ff46eb59
93353904905d14acf69a34ba7c4e77820120e6ec
3d4c322f8475c12e1f8f892b71dae86d56ac7477d30cbd89bd207dadca94da70

HTTP Headers

GET /ik/Q44sm4-aeK4D4CNcIARIFHVVhD9KXOWqGGVY_KHb3YCfeTCBfFHN4UJLFRbh52jhWDm8FDJ3jA9UFcItFe4ywD6h5AjuZewkwg7pMkG0jAFu-WsoShFGZAsude80ZkoRdhXCHKoyjamTiY8Djhy8ZYmC-Ao1Oco8if37OcBDOcu8OfG0Z1mkShmXOWF7dhuyZhBD-Ao8ifu0pPoDSWmyScmDSeBRZPoRdhXCHKoDSWmyScmDSeBRZWFR-emqiAUTdcS0jhNlOeBRiA8XpWFR-emqiAUTdcS0jhNlOeBRiA8XpWFR-emqiAUTdcS0dcmXOeBDOcu8OeZuS1F8ifuD-cNljAiySh80ZWbld1q0SaBujW48Sagyjh90jhNlOeUzjhBC-eNDifUD-cNljAiySh80ZWb0dcvCSaBujW48SagyjhmDjhy8ZYmC-Ao1OcFzdPUaiaS0jAFu-WsoShFGZAsude80ZkoRdhXCiaiaOcBRiA8XpWFR-emqiAUTdcS0dcmXOYiaikoySkolZPUaiaS0Z1mkShmXOWF7dhuyZhBD-Ao8ifu0pPoDSWmyScmDSeBRZPoRdhXCiaiaO1F7dhuyZhBD-Ao8ifo0dkUaiaS0SaBujW48SagyjhmDjhy8ZYmC-Ao1OcFzdPJbZ148-AiGifuDjAoDOWgkdkJBdWmDZAvK2cuydcskZA3ldcNkdABCJ6iRjAUTj14TH6qJqeqbMg62JMJ7fbRHmsMMeMb6MKG4f44TIMMjgPMfH6qJ8eqbMg6eJMJ7fbK5-sMMeMS6MKG4f4BTIMMj2PMfH6qJqhqbMg6VJMJ7fbKV-sMMegI6MKG4fOXVIMIjMkMfH6qJz3vbMs6YJMJ7fbRpbyMgeMX6MKG4f5gfIMIjIPMfH6GJv7tfIMJjgPMfH6GJq_JfIMwjgfMfqMegarVugb.js HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: text/javascript;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: public, max-age=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 7103
date: Mon, 05 Dec 2022 00:16:26 GMT
X-Firefox-Spdy: h2

assets.squarespace.com/universal/scripts-compressed/performance-7c2e2a5656405fba2e7db-min.en-US.js

151.101.64.237

200 OK

11 kB

URL HTTP/2
assets.squarespace.com/universal/scripts-compressed/performance-7c2e2a5656405fba2e7db-min.en-US.js
IP
151.101.64.237:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (35665)
Size
11 kB (10803 bytes)
Hash
6bfa990825c407d0460f5e921ad3ea7e
51c67e8ab2b86ca099ae05785f9c233b763293a3
df7cb0796cd0e82259ae3a7d2d4c201acd4c56174bb1093843b6f2c17e758382

HTTP Headers

GET /universal/scripts-compressed/performance-7c2e2a5656405fba2e7db-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sjomagasinet.no
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Thu, 23 Nov 2023 01:02:16 GMT
last-modified: Wed, 23 Nov 2022 00:22:55 GMT
etag: "6bfa990825c407d0460f5e921ad3ea7e"
content-type: text/javascript
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 05 Dec 2022 00:16:26 GMT
age: 1034051
x-served-by: cache-iad-kiad7000103-IAD, cache-bma1658-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 6948
x-timer: S1670199386.404029,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 10803
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
122124f83967c12700f5a6f5546b0f1f
d7acd2db61ad811c388a44b7bd407fa5f4aea8ee
b6b9e0b6c241b4eeb5161b1c297dec2aa6188032017074ee7f8e5533fab87a4d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 00:16:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

assets.squarespace.com/@sqs/polyfiller/1.2.2/modern.js

151.101.64.237

200 OK

29 kB

URL HTTP/2
assets.squarespace.com/@sqs/polyfiller/1.2.2/modern.js
IP
151.101.64.237:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (32788), with NEL line terminators
Size
29 kB (29224 bytes)
Hash
03e5ef7c77d113abf6178fce61ec6344
9c8e7c2834de6e3fc7bb6e856a7691c474d98b7d
5ce90067054cd21e935b79fb096722b5f615b39d845c941800c516424c41d000

HTTP Headers

GET /@sqs/polyfiller/1.2.2/modern.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sjomagasinet.no
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-encoding: gzip
server: UploadServer
expires: Thu, 16 Mar 2023 05:45:55 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 08 Sep 2021 20:21:24 GMT
etag: "03e5ef7c77d113abf6178fce61ec6344"
content-type: text/javascript
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 05 Dec 2022 00:16:26 GMT
age: 22789832
x-served-by: cache-iad-kiad7000083-IAD, cache-bma1658-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 29517
x-timer: S1670199386.403934,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 29224
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 05 Dec 2022 00:08:58 GMT
cache-control: public,max-age=3600
age: 448
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

assets.squarespace.com/universal/scripts-compressed/extract-css-runtime-0ed6ed412602b5ef03ce6-min.en-US.js

151.101.64.237

200 OK

15 kB

URL HTTP/2
assets.squarespace.com/universal/scripts-compressed/extract-css-runtime-0ed6ed412602b5ef03ce6-min.en-US.js
IP
151.101.64.237:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (45066)
Size
15 kB (15248 bytes)
Hash
3e792a81690e992fbf9f4eccad825827
b76f9d8e67b15b1837e6c3727eec3fdc3d76b53d
25eb7b87378893d8979ea0cbe275815b546a057eff10dd3baa3dfd947bc6a96f

HTTP Headers

GET /universal/scripts-compressed/extract-css-runtime-0ed6ed412602b5ef03ce6-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sjomagasinet.no
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Thu, 23 Nov 2023 01:01:04 GMT
last-modified: Wed, 23 Nov 2022 00:23:04 GMT
etag: "3e792a81690e992fbf9f4eccad825827"
content-type: text/javascript
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 05 Dec 2022 00:16:26 GMT
age: 1034122
x-served-by: cache-iad-kjyo7100154-IAD, cache-bma1658-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 5143
x-timer: S1670199386.407656,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 15248
X-Firefox-Spdy: h2

assets.squarespace.com/universal/scripts-compressed/cldr-resource-pack-33f25cea66c84971c39d6-min.en-US.js

151.101.64.237

200 OK

18 kB

URL HTTP/2
assets.squarespace.com/universal/scripts-compressed/cldr-resource-pack-33f25cea66c84971c39d6-min.en-US.js
IP
151.101.64.237:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65536), with no line terminators
Size
18 kB (18492 bytes)
Hash
bf4aa98d55eee8cce95ff27af398f599
eccfc800014e449cdfe1365dacc541f817cdd178
4d08cfbf346295d8cc4012bd9d3dc9fa797969a811898f2f83c5291158954f8d

HTTP Headers

GET /universal/scripts-compressed/cldr-resource-pack-33f25cea66c84971c39d6-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sjomagasinet.no
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Tue, 21 Nov 2023 17:23:55 GMT
last-modified: Mon, 21 Nov 2022 16:42:30 GMT
etag: "bf4aa98d55eee8cce95ff27af398f599"
content-type: text/javascript
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 05 Dec 2022 00:16:26 GMT
age: 1147952
x-served-by: cache-iad-kjyo7100046-IAD, cache-bma1658-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 29781
x-timer: S1670199386.410204,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 18492
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
122124f83967c12700f5a6f5546b0f1f
d7acd2db61ad811c388a44b7bd407fa5f4aea8ee
b6b9e0b6c241b4eeb5161b1c297dec2aa6188032017074ee7f8e5533fab87a4d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 00:16:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

assets.squarespace.com/universal/scripts-compressed/common-vendors-stable-ded59447778e1491d87fa-min.en-US.js

151.101.64.237

200 OK

71 kB

URL HTTP/2
assets.squarespace.com/universal/scripts-compressed/common-vendors-stable-ded59447778e1491d87fa-min.en-US.js
IP
151.101.64.237:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65202)
Size
71 kB (70636 bytes)
Hash
a2aba54ac71d7b847b67a49a66957627
5d680eb1b0c6c97c5d47454ce37dcb96f1e57219
2a9907d432ca078af1a251d17e9c15a01b0a6a888b5fb35f6b548aeab6fbcc15

HTTP Headers

GET /universal/scripts-compressed/common-vendors-stable-ded59447778e1491d87fa-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sjomagasinet.no
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Wed, 22 Nov 2023 21:48:02 GMT
last-modified: Tue, 22 Nov 2022 21:08:15 GMT
etag: "a2aba54ac71d7b847b67a49a66957627"
content-type: text/javascript
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 05 Dec 2022 00:16:26 GMT
age: 1045704
x-served-by: cache-iad-kjyo7100036-IAD, cache-bma1658-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 27114
x-timer: S1670199386.411530,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 70636
X-Firefox-Spdy: h2

assets.squarespace.com/universal/scripts-compressed/extract-css-moment-js-vendor-5082e2dab696b020ac83a-min.en-US.js

151.101.64.237

200 OK

88 kB

URL HTTP/2
assets.squarespace.com/universal/scripts-compressed/extract-css-moment-js-vendor-5082e2dab696b020ac83a-min.en-US.js
IP
151.101.64.237:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (6671)
Size
88 kB (87950 bytes)
Hash
c790849e8518999c8594a0bbb6597784
31b88b53a322e50853f00d687d71b6a83cd1b973
99eb8e3ff0404fe3714e7a465e475e9e75dc46705125e47663866f2469bd701e

HTTP Headers

GET /universal/scripts-compressed/extract-css-moment-js-vendor-5082e2dab696b020ac83a-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sjomagasinet.no
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Tue, 21 Nov 2023 17:23:55 GMT
last-modified: Mon, 21 Nov 2022 16:44:05 GMT
etag: "c790849e8518999c8594a0bbb6597784"
content-type: text/javascript
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 05 Dec 2022 00:16:26 GMT
age: 1147952
x-served-by: cache-iad-kcgs7200082-IAD, cache-bma1658-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 27151
x-timer: S1670199386.408729,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 87950
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/1/jquery.min.js

216.58.207.234

200 OK

33 kB

URL HTTP/2
ajax.googleapis.com/ajax/libs/jquery/1/jquery.min.js
IP
216.58.207.234:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (32086)
Size
33 kB (33434 bytes)
Hash
430e927c980ad4079de727fa59dd93f2
891aaada9a55a91292999f6d50fd300439905982
e8728df8617340bd8c10bc8d27d3a725a48871a269c850e8598689938ec6e2ed

HTTP Headers

GET /ajax/libs/jquery/1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33434
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 08:27:45 GMT
expires: Wed, 29 Nov 2023 08:27:45 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 488921
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

assets.squarespace.com/universal/scripts-compressed/common-vendors-efcb604347cd0affcf80e-min.en-US.js

151.101.64.237

200 OK

169 kB

URL HTTP/2
assets.squarespace.com/universal/scripts-compressed/common-vendors-efcb604347cd0affcf80e-min.en-US.js
IP
151.101.64.237:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65536), with no line terminators
Size
169 kB (169275 bytes)
Hash
0912bb4e750558eb5fb9c41c5bab4953
0a5ef6ca278dc449707297a3d903c3d40b36e3f2
084f22f3bdefac1cd265b76ccdd5d94f5a40f8dace17701ba9cf0f788b948adb

HTTP Headers

GET /universal/scripts-compressed/common-vendors-efcb604347cd0affcf80e-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sjomagasinet.no
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Wed, 22 Nov 2023 21:48:02 GMT
last-modified: Tue, 22 Nov 2022 21:08:47 GMT
etag: "0912bb4e750558eb5fb9c41c5bab4953"
content-type: text/javascript
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 05 Dec 2022 00:16:26 GMT
age: 1045704
x-served-by: cache-iad-kjyo7100024-IAD, cache-bma1658-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 8
x-timer: S1670199386.410807,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 169275
X-Firefox-Spdy: h2

static1.squarespace.com/static/ta/52e968b5e4b04d2aa2a3bba3/1128/scripts/site-bundle.js

104.88.26.232

200 OK

30 kB

URL HTTP/2
static1.squarespace.com/static/ta/52e968b5e4b04d2aa2a3bba3/1128/scripts/site-bundle.js
IP
104.88.26.232:0
ASN
#16625 AKAMAI-AS

File type
Unicode text, UTF-8 text, with very long lines (32027)
Size
30 kB (29872 bytes)
Hash
7080ed06e787cf14291acf258fcd9317
49fd93b54260e325243ef04fafbeed51cebf7ac3
4736f272fbb7d6df22d6762e976c9fc6f92ab22ee9101d8698b52aead216a922

HTTP Headers

GET /static/ta/52e968b5e4b04d2aa2a3bba3/1128/scripts/site-bundle.js HTTP/1.1
Host: static1.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
pragma: cache
server: Squarespace
strict-transport-security: max-age=0
timing-allow-origin: *
x-content-type-options: nosniff
x-contextid: H2s9GxzL/QJ2MVwCm
content-length: 29872
cache-control: public, max-age=83495552
date: Mon, 05 Dec 2022 00:16:26 GMT
vary: Accept-Encoding, "Accept-Encoding"
tracepoint: "Akamai"
X-Firefox-Spdy: h2

static1.squarespace.com/static/sitecss/5e720ae16a84ba3869f5dc20/191/52e96934e4b0ea14d0f64568/5e720ae16a84ba3869f5dc41/1128/site.css

104.88.26.232

200 OK

63 kB

URL HTTP/2
static1.squarespace.com/static/sitecss/5e720ae16a84ba3869f5dc20/191/52e96934e4b0ea14d0f64568/5e720ae16a84ba3869f5dc41/1128/site.css
IP
104.88.26.232:0
ASN
#16625 AKAMAI-AS

File type
Unicode text, UTF-8 text, with very long lines (35239)
Size
63 kB (63072 bytes)
Hash
7a4c5a253fcad3851bedec005829bf08
3fa22ead2e59aa73507a3a7bb3ebc4ba5b47cdba
e9299e7fef61575488c15c8f01b899c2d31a3cebd5be312c28597c65b20bf571

HTTP Headers

GET /static/sitecss/5e720ae16a84ba3869f5dc20/191/52e96934e4b0ea14d0f64568/5e720ae16a84ba3869f5dc41/1128/site.css HTTP/1.1
Host: static1.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-type: text/css; charset=UTF-8
pragma: cache
server: Squarespace
strict-transport-security: max-age=0
timing-allow-origin: *
x-content-type-options: nosniff
x-contextid: afDoPz5E/pHDHmiri
content-length: 63072
cache-control: public, max-age=90403943
date: Mon, 05 Dec 2022 00:16:26 GMT
vary: Accept-Encoding, "Accept-Encoding"
tracepoint: "Akamai"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
31b129c94a90b1e695b21395cb54e378
a3cae46b48d469cc61ab0581303bcd5f5b654db9
fac3f681be358a20f78958dff10c89b7a91365c5114c81246c1bc34c1362ba1e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1441
Cache-Control: max-age=119666
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 00:16:26 GMT
Etag: "638c632b-1d7"
Expires: Tue, 06 Dec 2022 09:30:52 GMT
Last-Modified: Sun, 04 Dec 2022 09:06:51 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471

www.gasta.no/assets/translation.js

198.185.159.145

200 OK

4.3 kB

URL HTTP/2
www.gasta.no/assets/translation.js
IP
198.185.159.145:0
ASN
#53831 SQUARESPACE

File type
Unicode text, UTF-8 text
Size
4.3 kB (4253 bytes)
Hash
53171b24821e9de589fe47fca48fb77d
9e1999cfd1add6a66bba55e7dcf4826525ea0101
b140b81424585dd23f6dbb5653516cdfe4816109f02eb6c446dd70ac04814a54

HTTP Headers

GET /assets/translation.js HTTP/1.1
Host: www.gasta.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 207413
cache-control: public, max-age=94608000
content-encoding: gzip
content-type: application/javascript
date: Fri, 02 Dec 2022 14:39:32 GMT
etag: W/"d0fe1b778623749ef8c3c91efaddc092--gzip"
expires: Thu, 01 Jan 1970 00:00:00 GMT
pragma: cache
server: Squarespace
set-cookie: crumb=BdfTxkbGIocjNjdjMzVkMzg3ZmQ0N2I0YjE0MDJlZTY3Yjg2OTUw;Path=/
strict-transport-security: max-age=0
vary: Accept-Encoding
x-content-type-options: nosniff
x-contextid: LBNZdTaw/Tb4B4bmC
content-length: 4253
X-Firefox-Spdy: h2

images.squarespace-cdn.com/content/v1/5e720ae16a84ba3869f5dc20/1584542524857-04DS75QG2E6SHZUJH65L/logo.png?format=1500w

151.101.0.238

200 OK

35 kB

URL HTTP/2
images.squarespace-cdn.com/content/v1/5e720ae16a84ba3869f5dc20/1584542524857-04DS75QG2E6SHZUJH65L/logo.png?format=1500w
IP
151.101.0.238:0
ASN
#54113 FASTLY

File type
PNG image data, 1500 x 330, 8-bit/color RGBA, non-interlaced\012- data
Size
35 kB (35081 bytes)
Hash
42b4f2875888b991c18f45e4f1a250df
8f7ebe606904efd95a82b02ea401607ab924f8f2
564a0e6fefefb52d1ae266bf20c953f2b7d0a9482e2f11771d6f941d008c80cc

HTTP Headers

GET /content/v1/5e720ae16a84ba3869f5dc20/1584542524857-04DS75QG2E6SHZUJH65L/logo.png?format=1500w HTTP/1.1
Host: images.squarespace-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
timing-allow-origin: *
access-control-expose-headers: Content-Length, Timing-Allow-Origin
content-type: image/png
access-control-allow-origin: *
etag: CM37ov2qvO0CEAE=
cache-control: max-age=604800
via: 1.1 google, 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 05 Dec 2022 00:16:26 GMT
age: 478374
x-served-by: cache-iad-kjyo7100064-IAD, cache-bma1658-BMA
x-cache: HIT, HIT
x-cache-hits: 30, 1
x-timer: S1670199387.766849,VS0,VE1
vary: Accept-Encoding
tracepoint: Fastly
content-length: 35081
X-Firefox-Spdy: h2

push.services.mozilla.com/

35.165.41.15

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.165.41.15:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: xyumxzAvBqo4IFBn6HqO2Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: V7ShkuaiUWcpHdxf2xgBaPvEmlw=

static1.squarespace.com/static/5e720ae16a84ba3869f5dc20/t/5e74b3e0c31fe066e552227f/1584706528474/trike-blue.png

104.88.26.232

301 Moved Permanently

0 B

URL HTTP/2
static1.squarespace.com/static/5e720ae16a84ba3869f5dc20/t/5e74b3e0c31fe066e552227f/1584706528474/trike-blue.png
IP
104.88.26.232:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /static/5e720ae16a84ba3869f5dc20/t/5e74b3e0c31fe066e552227f/1584706528474/trike-blue.png HTTP/1.1
Host: static1.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static1.squarespace.com/static/sitecss/5e720ae16a84ba3869f5dc20/191/52e96934e4b0ea14d0f64568/5e720ae16a84ba3869f5dc41/1128/site.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 301 Moved Permanently
access-control-allow-origin: *,*
access-control-expose-headers: Content-Length, Timing-Allow-Origin
content-type: image/png
location: https://images.squarespace-cdn.com/content/5e720ae16a84ba3869f5dc20/1584706528473-9DLKEFN1CUVJ1UIWQBZ0/trike-blue.png?content-type=image%2Fpng
pragma: cache
server: Squarespace
strict-transport-security: max-age=0
timing-allow-origin: *, *
x-content-type-options: nosniff
x-contextid: fLtuXhOa/pGazAICV
content-length: 0
cache-control: public, max-age=463168
date: Mon, 05 Dec 2022 00:16:27 GMT
vary: "Accept-Encoding"
tracepoint: "Akamai"
X-Firefox-Spdy: h2

static1.squarespace.com/static/5e720ae16a84ba3869f5dc20/t/5e74b3dc2358b804f39e746e/1584706524702/strike-white.png

104.88.26.232

301 Moved Permanently

0 B

URL HTTP/2
static1.squarespace.com/static/5e720ae16a84ba3869f5dc20/t/5e74b3dc2358b804f39e746e/1584706524702/strike-white.png
IP
104.88.26.232:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /static/5e720ae16a84ba3869f5dc20/t/5e74b3dc2358b804f39e746e/1584706524702/strike-white.png HTTP/1.1
Host: static1.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static1.squarespace.com/static/sitecss/5e720ae16a84ba3869f5dc20/191/52e96934e4b0ea14d0f64568/5e720ae16a84ba3869f5dc41/1128/site.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 301 Moved Permanently
access-control-allow-origin: *,*
access-control-expose-headers: Content-Length, Timing-Allow-Origin
content-type: image/png
location: https://images.squarespace-cdn.com/content/5e720ae16a84ba3869f5dc20/1584706524700-P5ZFUUNLV3EMW0JLCI1Q/strike-white.png?content-type=image%2Fpng
pragma: cache
server: Squarespace
strict-transport-security: max-age=0
timing-allow-origin: *, *
x-content-type-options: nosniff
x-contextid: hRh321b3/SJo30tO4
content-length: 0
cache-control: public, max-age=305733
date: Mon, 05 Dec 2022 00:16:27 GMT
vary: "Accept-Encoding"
tracepoint: "Akamai"
X-Firefox-Spdy: h2

static1.squarespace.com/static/5e720ae16a84ba3869f5dc20/t/5e74b3d985894d689a0ca06f/1584706521951/strike-magneta.png

104.88.26.232

301 Moved Permanently

0 B

URL HTTP/2
static1.squarespace.com/static/5e720ae16a84ba3869f5dc20/t/5e74b3d985894d689a0ca06f/1584706521951/strike-magneta.png
IP
104.88.26.232:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /static/5e720ae16a84ba3869f5dc20/t/5e74b3d985894d689a0ca06f/1584706521951/strike-magneta.png HTTP/1.1
Host: static1.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static1.squarespace.com/static/sitecss/5e720ae16a84ba3869f5dc20/191/52e96934e4b0ea14d0f64568/5e720ae16a84ba3869f5dc41/1128/site.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 301 Moved Permanently
access-control-allow-origin: *,*
access-control-expose-headers: Content-Length, Timing-Allow-Origin
content-type: image/png
location: https://images.squarespace-cdn.com/content/5e720ae16a84ba3869f5dc20/1584706521950-40QBAO7P8U2IH7314LST/strike-magneta.png?content-type=image%2Fpng
pragma: cache
server: Squarespace
strict-transport-security: max-age=0
timing-allow-origin: *, *
x-content-type-options: nosniff
x-contextid: 4Z0lFT5l/1H9e8KCl
content-length: 0
cache-control: public, max-age=240568
date: Mon, 05 Dec 2022 00:16:27 GMT
vary: "Accept-Encoding"
tracepoint: "Akamai"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f54a71942ab5d7fdc54672cf84aa76db
e03db706ad371c93ddd3cc4a3e4c329777bb5f4b
87453ee6a206085c9b82594123a30bf59f7354733d19f21e388dea70768198c9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 00:16:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

use.typekit.net/af/f7c91f/000000000000000000011b23/27/l?subset_id=2&fvd=n3&v=3

23.33.119.19

200 OK

19 kB

URL HTTP/2
use.typekit.net/af/f7c91f/000000000000000000011b23/27/l?subset_id=2&fvd=n3&v=3
IP
23.33.119.19:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 19232, version 1.0\012- data
Size
19 kB (19232 bytes)
Hash
2ed68565a79fb073e78b944e227760eb
325007df856f2ed3be92821b151282cecca06287
3438d3c132c2608d9dfd356a8e914449949dd0e18740905e8c89102bc10f1970

HTTP Headers

GET /af/f7c91f/000000000000000000011b23/27/l?subset_id=2&fvd=n3&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sjomagasinet.no
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 19232
etag: "c5c6679e231e1670302f3e7cecd4c7d0cb473a44"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Mon, 05 Dec 2022 00:16:27 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/8a79e7/000000000000000000011b24/27/l?subset_id=2&fvd=n7&v=3

23.33.119.19

200 OK

19 kB

URL HTTP/2
use.typekit.net/af/8a79e7/000000000000000000011b24/27/l?subset_id=2&fvd=n7&v=3
IP
23.33.119.19:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 19268, version 1.0\012- data
Size
19 kB (19268 bytes)
Hash
bc34b23d6d41913e83b2e8b536327470
b7258e57552423cf547d037b96c6151ae8f007d8
1188eee6ae96e615ec4f2d7f87eb6bcf3c92db2a9f405013529cc2183029777c

HTTP Headers

GET /af/8a79e7/000000000000000000011b24/27/l?subset_id=2&fvd=n7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sjomagasinet.no
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 19268
etag: "227b866c8d32958d8bdf01a230da80a68a736bb9"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Mon, 05 Dec 2022 00:16:27 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5f16a534222e5749ef240d413826c2f6
11683d84d420dd6f919425094edb8961278f7fed
691ebf7feb1f7d6ae7e5e7efd678626c62042dda520506f262c7d9a67a48e3ed

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 00:16:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
79c225db327a78b782f5a9512b07eaf0
398a1be3a70264d959146d6670d2ca54cdf4e91a
8539ea44d81775448ae8c6179d54d8a397c559b112291fa78abcf6ac6c480815

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 00:16:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

images.squarespace-cdn.com/content/v1/5e720ae16a84ba3869f5dc20/1584629975878-YRST0K494GMSOW6YRDX3/index-Lobster.jpg?format=2500w

151.101.0.238

200 OK

140 kB

URL HTTP/2
images.squarespace-cdn.com/content/v1/5e720ae16a84ba3869f5dc20/1584629975878-YRST0K494GMSOW6YRDX3/index-Lobster.jpg?format=2500w
IP
151.101.0.238:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 2500x900, components 3\012- data
Size
140 kB (139909 bytes)
Hash
a0b9c7d8357f16b6e548a6c1fa806b66
16946b18d082904b29fb90921bc4bb441aeebe52
373e2c778f2d9894f3c86aa0bd8254fd02691dfd24dff026b752d50e2e38a201

HTTP Headers

GET /content/v1/5e720ae16a84ba3869f5dc20/1584629975878-YRST0K494GMSOW6YRDX3/index-Lobster.jpg?format=2500w HTTP/1.1
Host: images.squarespace-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
timing-allow-origin: *
access-control-expose-headers: Content-Length, Timing-Allow-Origin
content-type: image/jpeg
access-control-allow-origin: *
etag: CM+gn/6qvO0CEAE=
cache-control: max-age=604800
via: 1.1 google, 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 05 Dec 2022 00:16:27 GMT
age: 402362
x-served-by: cache-iad-kiad7000041-IAD, cache-bma1658-BMA
x-cache: HIT, HIT
x-cache-hits: 40, 1
x-timer: S1670199387.057302,VS0,VE1
vary: Accept-Encoding
tracepoint: Fastly
content-length: 139909
X-Firefox-Spdy: h2

images.squarespace-cdn.com/content/v1/5e720ae16a84ba3869f5dc20/1584613632243-29V00JJXMIPGJ64HV6MP/logo-nav.png?format=750w

151.101.0.238

200 OK

9.9 kB

URL HTTP/2
images.squarespace-cdn.com/content/v1/5e720ae16a84ba3869f5dc20/1584613632243-29V00JJXMIPGJ64HV6MP/logo-nav.png?format=750w
IP
151.101.0.238:0
ASN
#54113 FASTLY

File type
PNG image data, 636 x 140, 8-bit/color RGBA, non-interlaced\012- data
Size
9.9 kB (9862 bytes)
Hash
3f20ec01cf1e4733f7a474191b3f03de
884e532ac5db280fa4f492d605151b503d936ecb
5c0c772dc0dd4c9e9f5a20f12abfbf15d14b64b70050e94be54ad0137b9741df

HTTP Headers

GET /content/v1/5e720ae16a84ba3869f5dc20/1584613632243-29V00JJXMIPGJ64HV6MP/logo-nav.png?format=750w HTTP/1.1
Host: images.squarespace-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
timing-allow-origin: *
access-control-expose-headers: Content-Length, Timing-Allow-Origin
content-type: image/png
access-control-allow-origin: *
etag: COfFiubtj+0CEAE=
cache-control: max-age=604800
via: 1.1 google, 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 05 Dec 2022 00:16:27 GMT
age: 394096
x-served-by: cache-iad-kcgs7200148-IAD, cache-bma1658-BMA
x-cache: HIT, HIT
x-cache-hits: 4, 1
x-timer: S1670199387.086738,VS0,VE1
vary: Accept-Encoding
tracepoint: Fastly
content-length: 9862
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

142.250.74.35

200 OK

31 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sjomagasinet.no
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Dec 2022 06:30:11 GMT
expires: Sat, 02 Dec 2023 06:30:11 GMT
cache-control: public, max-age=31536000
age: 236776
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-5PCWVKS

172.217.21.168

200 OK

66 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-5PCWVKS
IP
172.217.21.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (5826)
Size
66 kB (65999 bytes)
Hash
8db14ae3cfe8bbcfcc32f9879663f40a
aeba755d5ff199f9d77b061f62d6025229dfe3f4
b2efc4754a1103bacc4377a1240c832e9323280820c484dad80f1445806968e0

HTTP Headers

GET /gtm.js?id=GTM-5PCWVKS HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 05 Dec 2022 00:16:27 GMT
expires: Mon, 05 Dec 2022 00:16:27 GMT
cache-control: private, max-age=900
last-modified: Mon, 05 Dec 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 65999
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

images.squarespace-cdn.com/content/v1/5e720ae16a84ba3869f5dc20/1584950493836-CUSMSJVKNRONXIV07UD0/kart.jpg?format=750w

151.101.0.238

200 OK

29 kB

URL HTTP/2
images.squarespace-cdn.com/content/v1/5e720ae16a84ba3869f5dc20/1584950493836-CUSMSJVKNRONXIV07UD0/kart.jpg?format=750w
IP
151.101.0.238:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 619x620, components 3\012- data
Size
29 kB (29376 bytes)
Hash
c583e3e8c65febd6d5e7098df16c42fa
fd6ddc95dfadbd607804629a50cfea74a1a02a3a
7aada637c837ef8f9cd40dd5e64a40c5bf57675220291acf5a2f48c8d61c2e9e

HTTP Headers

GET /content/v1/5e720ae16a84ba3869f5dc20/1584950493836-CUSMSJVKNRONXIV07UD0/kart.jpg?format=750w HTTP/1.1
Host: images.squarespace-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
timing-allow-origin: *
access-control-expose-headers: Content-Length, Timing-Allow-Origin
content-type: image/jpeg
access-control-allow-origin: *
etag: CImM/uXtj+0CEAE=
cache-control: max-age=604800
via: 1.1 google, 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 05 Dec 2022 00:16:27 GMT
age: 495360
x-served-by: cache-iad-kcgs7200167-IAD, cache-bma1658-BMA
x-cache: HIT, HIT
x-cache-hits: 25, 1
x-timer: S1670199387.125099,VS0,VE1
vary: Accept-Encoding
tracepoint: Fastly
content-length: 29376
X-Firefox-Spdy: h2

use.typekit.net/af/ba2099/000000000000000000010b58/27/l?subset_id=2&fvd=n3&v=3

23.33.119.19

200 OK

15 kB

URL HTTP/2
use.typekit.net/af/ba2099/000000000000000000010b58/27/l?subset_id=2&fvd=n3&v=3
IP
23.33.119.19:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 15168, version 1.0\012- data
Size
15 kB (15168 bytes)
Hash
2de87bd86a750667fff6ed077108c0ca
08ec93daeea2f393e41e81aedf1b25c1dda82b83
c8648a492e3bde2fe6a516b2c60ef6081dba94e08a11a3f9a25a3fee53723787

HTTP Headers

GET /af/ba2099/000000000000000000010b58/27/l?subset_id=2&fvd=n3&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sjomagasinet.no
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 15168
etag: "0ae98075785f87cd2f18817a2dd16de2f5c779f1"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Mon, 05 Dec 2022 00:16:27 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 00:16:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
3c4319f54a5675ee9acda96c58f97ac6
210ea86db1836d430b321d59b4bd1b016c914f22
cb20ad3ec895ed3a2ae9b1a90dda6b7cc174d8851f3a15ba054a435746cbdc65

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 00:16:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

use.typekit.net/af/442215/000000000000000000010b5a/27/l?subset_id=2&fvd=n4&v=3

23.33.119.19

200 OK

15 kB

URL HTTP/2
use.typekit.net/af/442215/000000000000000000010b5a/27/l?subset_id=2&fvd=n4&v=3
IP
23.33.119.19:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 15328, version 1.0\012- data
Size
15 kB (15328 bytes)
Hash
cb75ff410195db35f719d56e7f99bd19
66e0fef389fd3aaee996ead804e09d8df1c1875a
f7d5554e49f156fca1b3d84d88bb692e7ee3c2d5f98fc4c9ea0be4cab8e5a32f

HTTP Headers

GET /af/442215/000000000000000000010b5a/27/l?subset_id=2&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sjomagasinet.no
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 15328
etag: "c97959a8bc1ae6b0e09c6e1f537446e37e3c7c86"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Mon, 05 Dec 2022 00:16:27 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/8dd886/000000000000000000010b5c/27/l?subset_id=2&fvd=n5&v=3

23.33.119.19

200 OK

15 kB

URL HTTP/2
use.typekit.net/af/8dd886/000000000000000000010b5c/27/l?subset_id=2&fvd=n5&v=3
IP
23.33.119.19:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 14884, version 1.0\012- data
Size
15 kB (14884 bytes)
Hash
36de484e699df3b11e75b4f41b80dd35
2764339ddc804827625506301f4ad1db8de91be5
93a8e52ff490e33763ca1cf70d9609e691dff02c63fcd4223f3eda3d7f2bf292

HTTP Headers

GET /af/8dd886/000000000000000000010b5c/27/l?subset_id=2&fvd=n5&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sjomagasinet.no
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 14884
etag: "2a570292600b561bac7945e57ca7546a078e7bc1"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Mon, 05 Dec 2022 00:16:27 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/cef9f3/000000000000000000010b5e/27/l?subset_id=2&fvd=n6&v=3

23.33.119.19

200 OK

16 kB

URL HTTP/2
use.typekit.net/af/cef9f3/000000000000000000010b5e/27/l?subset_id=2&fvd=n6&v=3
IP
23.33.119.19:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 15524, version 1.0\012- data
Size
16 kB (15524 bytes)
Hash
fdec0811a1b85d2b1ec65a31f498ea3a
84f9485c11a9a9573f451b87140b3bee76428e95
91644e4b88afa23ebbe617184e75e2d57e50dd258dc7b7c9b28a0de9ba29d7d1

HTTP Headers

GET /af/cef9f3/000000000000000000010b5e/27/l?subset_id=2&fvd=n6&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sjomagasinet.no
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 15524
etag: "55ab1c216ead75b14905ddf3c81553acfd137c35"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Mon, 05 Dec 2022 00:16:27 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/1709eb/000000000000000000010b60/27/l?subset_id=2&fvd=n7&v=3

23.33.119.19

200 OK

16 kB

URL HTTP/2
use.typekit.net/af/1709eb/000000000000000000010b60/27/l?subset_id=2&fvd=n7&v=3
IP
23.33.119.19:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 15816, version 1.0\012- data
Size
16 kB (15816 bytes)
Hash
2a388d698adb04e3d557aa716cf0ce9e
e666fb22bf9255354e88ce23d74db7330f47a001
1367aa73def235dc0f4bbf7a81270334e1d556ee29ad6ea227985d22f55f1893

HTTP Headers

GET /af/1709eb/000000000000000000010b60/27/l?subset_id=2&fvd=n7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sjomagasinet.no
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 15816
etag: "fee371a77fb742f93febf06f694b5cca50f4bf98"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Mon, 05 Dec 2022 00:16:27 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/1ece10/000000000000000000010b59/27/l?subset_id=2&fvd=i3&v=3

23.33.119.19

200 OK

16 kB

URL HTTP/2
use.typekit.net/af/1ece10/000000000000000000010b59/27/l?subset_id=2&fvd=i3&v=3
IP
23.33.119.19:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 15756, version 1.0\012- data
Size
16 kB (15756 bytes)
Hash
21346611b523d7e1b026844341cef362
a1d94e6a3cbf83492dafb778356cc3c3c273f33b
fd895e1001bae4c5ad233a85847f5825f39b0fc1b013387bcab3a4b4245337d2

HTTP Headers

GET /af/1ece10/000000000000000000010b59/27/l?subset_id=2&fvd=i3&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sjomagasinet.no
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 15756
etag: "d8c458f97f76910bbfcd2c897c5e933bd75ebb58"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Mon, 05 Dec 2022 00:16:27 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/441f33/000000000000000000010b5d/27/l?subset_id=2&fvd=i5&v=3

23.33.119.19

200 OK

16 kB

URL HTTP/2
use.typekit.net/af/441f33/000000000000000000010b5d/27/l?subset_id=2&fvd=i5&v=3
IP
23.33.119.19:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 16136, version 1.0\012- data
Size
16 kB (16136 bytes)
Hash
e81508f0c1c1bac1ed778e709ea8f508
b060fe531d2c8369c992c60302472161a04ee664
ea93e3fa5ca19bd3802a5eece31419d36947ccc0dc34f11b5d41152e8ef45176

HTTP Headers

GET /af/441f33/000000000000000000010b5d/27/l?subset_id=2&fvd=i5&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sjomagasinet.no
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 16136
etag: "675b9e7b879a1e885420cff21b061839d2f782af"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Mon, 05 Dec 2022 00:16:27 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/65fc7d/000000000000000000010b61/27/l?subset_id=2&fvd=i7&v=3

23.33.119.19

200 OK

17 kB

URL HTTP/2
use.typekit.net/af/65fc7d/000000000000000000010b61/27/l?subset_id=2&fvd=i7&v=3
IP
23.33.119.19:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 16972, version 1.0\012- data
Size
17 kB (16972 bytes)
Hash
ba4905060b4951fc7d693b39c956d62f
e336b0031104af844b55d91961f2647dd9aede8f
02c9f090cbbd516f59f1c6205670774d609e373aab7559b9fef78d0912f8a68e

HTTP Headers

GET /af/65fc7d/000000000000000000010b61/27/l?subset_id=2&fvd=i7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sjomagasinet.no
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 16972
etag: "371d8c0377d9301ee60e9bf17df6180d4a8735c7"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Mon, 05 Dec 2022 00:16:27 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/64e458/000000000000000077359969/30/l?subset_id=2&fvd=i3&v=3

23.33.119.19

200 OK

16 kB

URL HTTP/2
use.typekit.net/af/64e458/000000000000000077359969/30/l?subset_id=2&fvd=i3&v=3
IP
23.33.119.19:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 16260, version 1.0\012- data
Size
16 kB (16260 bytes)
Hash
c7b52c5011eef918309c195e0ef5143e
9f60ea3aefe1b44a9d1a73cd9edc19d2eefb8388
c6510833a8c33529da8cf86eba795cfce1eeabb65c51e0f244e51cd8aa32c8ac

HTTP Headers

GET /af/64e458/000000000000000077359969/30/l?subset_id=2&fvd=i3&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sjomagasinet.no
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 16260
etag: "30d8f30280c420d73082192acaa0d9c988341dc7"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Mon, 05 Dec 2022 00:16:27 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/3e30bd/000000000000000077359949/30/l?subset_id=2&fvd=i7&v=3

23.33.119.19

200 OK

17 kB

URL HTTP/2
use.typekit.net/af/3e30bd/000000000000000077359949/30/l?subset_id=2&fvd=i7&v=3
IP
23.33.119.19:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 16592, version 1.0\012- data
Size
17 kB (16592 bytes)
Hash
3260f9afe12145b2c844bb0c3a26b1c1
493f1ac5c93027419f3c5a6967791c93b47cd92b
5a82552e4d805e5859fcc971e784f996935e85a2ce01af09204963af7e58bf34

HTTP Headers

GET /af/3e30bd/000000000000000077359949/30/l?subset_id=2&fvd=i7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sjomagasinet.no
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 16592
etag: "b7c76a5c0a824351b13a9deab7bb44746fdc2d30"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Mon, 05 Dec 2022 00:16:27 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/137abf/00000000000000007735bdb1/30/l?subset_id=2&fvd=n5&v=3

23.33.119.19

200 OK

22 kB

URL HTTP/2
use.typekit.net/af/137abf/00000000000000007735bdb1/30/l?subset_id=2&fvd=n5&v=3
IP
23.33.119.19:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 21664, version 1.0\012- data
Size
22 kB (21664 bytes)
Hash
a4afab9bc5d440e8891609056522b7df
f5730e46583e7f89f7818a872b0a5b9e12599f49
d6a44933cf52d15602bac00f24f873976899fa5d52d2d069ff465c27f6f2184a

HTTP Headers

GET /af/137abf/00000000000000007735bdb1/30/l?subset_id=2&fvd=n5&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sjomagasinet.no
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 21664
etag: "b3be683c55e6f505e089a169ccc8b464bb3322e5"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Mon, 05 Dec 2022 00:16:27 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/5c4f69/00000000000000007735bbfb/30/l?subset_id=2&fvd=n4&v=3

23.33.119.19

200 OK

36 kB

URL HTTP/2
use.typekit.net/af/5c4f69/00000000000000007735bbfb/30/l?subset_id=2&fvd=n4&v=3
IP
23.33.119.19:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 36096, version 1.0\012- data
Size
36 kB (36096 bytes)
Hash
3aa4d8df78311991ee5dea4ebae33e7a
7fd1dd186c83a8b30df75b03d50ac473bb019b77
82ef245cf10732949660a8f4eb54dc1b9b2e62cff271cd284ad378ce942d627e

HTTP Headers

GET /af/5c4f69/00000000000000007735bbfb/30/l?subset_id=2&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sjomagasinet.no
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 36096
etag: "47b5b83e6a6ae25aee4b4b5e2c63f343e1b44353"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Mon, 05 Dec 2022 00:16:27 GMT
X-Firefox-Spdy: h2

images.squarespace-cdn.com/content/5e720ae16a84ba3869f5dc20/1584706528473-9DLKEFN1CUVJ1UIWQBZ0/trike-blue.png?content-type=image%2Fpng

151.101.0.238

200 OK

1.5 kB

URL HTTP/2
images.squarespace-cdn.com/content/5e720ae16a84ba3869f5dc20/1584706528473-9DLKEFN1CUVJ1UIWQBZ0/trike-blue.png?content-type=image%2Fpng
IP
151.101.0.238:0
ASN
#54113 FASTLY

File type
PNG image data, 91 x 17, 8-bit/color RGBA, non-interlaced\012- data
Size
1.5 kB (1498 bytes)
Hash
5055d6fa87d029f9b335faa67f7db2d5
d51128362001b04ef111913c50ff394c93d0e5b2
bf182a6fc4856329810a5d18c3822e858525bfae328892b193f2278e45afd6a4

HTTP Headers

GET /content/5e720ae16a84ba3869f5dc20/1584706528473-9DLKEFN1CUVJ1UIWQBZ0/trike-blue.png?content-type=image%2Fpng HTTP/1.1
Host: images.squarespace-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://static1.squarespace.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
timing-allow-origin: *
access-control-expose-headers: Content-Length, Timing-Allow-Origin
content-type: image/png
access-control-allow-origin: *
etag: CJz24+ntj+0CEAE=
cache-control: max-age=604800
via: 1.1 google, 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 05 Dec 2022 00:16:27 GMT
age: 384900
x-served-by: cache-iad-kcgs7200052-IAD, cache-bma1658-BMA
x-cache: HIT, HIT
x-cache-hits: 52, 1
x-timer: S1670199387.205314,VS0,VE1
vary: Accept-Encoding
tracepoint: Fastly
content-length: 1498
X-Firefox-Spdy: h2

images.squarespace-cdn.com/content/5e720ae16a84ba3869f5dc20/1584706524700-P5ZFUUNLV3EMW0JLCI1Q/strike-white.png?content-type=image%2Fpng

151.101.0.238

200 OK

1.2 kB

URL HTTP/2
images.squarespace-cdn.com/content/5e720ae16a84ba3869f5dc20/1584706524700-P5ZFUUNLV3EMW0JLCI1Q/strike-white.png?content-type=image%2Fpng
IP
151.101.0.238:0
ASN
#54113 FASTLY

File type
PNG image data, 91 x 17, 8-bit/color RGBA, non-interlaced\012- data
Size
1.2 kB (1233 bytes)
Hash
9c8cedb3bdbaff17a507aa793e4090ec
4b74039e241392c120e8dcee8c74369eabb1e25d
d7e6f6fbb35bcc8aa31b326ee72f777a23377c18a1c75d85b6474e7e29f30bfe

HTTP Headers

GET /content/5e720ae16a84ba3869f5dc20/1584706524700-P5ZFUUNLV3EMW0JLCI1Q/strike-white.png?content-type=image%2Fpng HTTP/1.1
Host: images.squarespace-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://static1.squarespace.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
timing-allow-origin: *
access-control-expose-headers: Content-Length, Timing-Allow-Origin
content-type: image/png
access-control-allow-origin: *
etag: CIWCruntj+0CEAE=
cache-control: max-age=604800
via: 1.1 google, 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 05 Dec 2022 00:16:27 GMT
age: 463694
x-served-by: cache-iad-kiad7000103-IAD, cache-bma1658-BMA
x-cache: HIT, HIT
x-cache-hits: 41, 1
x-timer: S1670199387.205942,VS0,VE1
vary: Accept-Encoding
tracepoint: Fastly
content-length: 1233
X-Firefox-Spdy: h2

static1.squarespace.com/static/5e720ae16a84ba3869f5dc20/t/5e74b8b4d6117445c90e98c8/1584707764651/small-sardine.png

104.88.26.232

301 Moved Permanently

0 B

URL HTTP/2
static1.squarespace.com/static/5e720ae16a84ba3869f5dc20/t/5e74b8b4d6117445c90e98c8/1584707764651/small-sardine.png
IP
104.88.26.232:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /static/5e720ae16a84ba3869f5dc20/t/5e74b8b4d6117445c90e98c8/1584707764651/small-sardine.png HTTP/1.1
Host: static1.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static1.squarespace.com/static/sitecss/5e720ae16a84ba3869f5dc20/191/52e96934e4b0ea14d0f64568/5e720ae16a84ba3869f5dc41/1128/site.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 301 Moved Permanently
access-control-allow-origin: *,*
access-control-expose-headers: Content-Length, Timing-Allow-Origin
content-type: image/png
location: https://images.squarespace-cdn.com/content/5e720ae16a84ba3869f5dc20/1584707764650-YJICCLU0XBC35BIXTAT1/small-sardine.png?content-type=image%2Fpng
pragma: cache
server: Squarespace
strict-transport-security: max-age=0
timing-allow-origin: *, *
x-content-type-options: nosniff
x-contextid: U1uPcuQ3/GkmX7JHi
content-length: 0
cache-control: public, max-age=279871
date: Mon, 05 Dec 2022 00:16:27 GMT
vary: "Accept-Encoding"
tracepoint: "Akamai"
X-Firefox-Spdy: h2

static1.squarespace.com/static/5e720ae16a84ba3869f5dc20/t/5e74b892b149a10a9c5c64a6/1584707730640/small-mackarel.png

104.88.26.232

301 Moved Permanently

0 B

URL HTTP/2
static1.squarespace.com/static/5e720ae16a84ba3869f5dc20/t/5e74b892b149a10a9c5c64a6/1584707730640/small-mackarel.png
IP
104.88.26.232:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /static/5e720ae16a84ba3869f5dc20/t/5e74b892b149a10a9c5c64a6/1584707730640/small-mackarel.png HTTP/1.1
Host: static1.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static1.squarespace.com/static/sitecss/5e720ae16a84ba3869f5dc20/191/52e96934e4b0ea14d0f64568/5e720ae16a84ba3869f5dc41/1128/site.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 301 Moved Permanently
access-control-allow-origin: *,*
access-control-expose-headers: Content-Length, Timing-Allow-Origin
content-type: image/png
location: https://images.squarespace-cdn.com/content/5e720ae16a84ba3869f5dc20/1584707730638-JLQLCLJR1EHCGK4GVSKX/small-mackarel.png?content-type=image%2Fpng
pragma: cache
server: Squarespace
strict-transport-security: max-age=0
timing-allow-origin: *, *
x-content-type-options: nosniff
x-contextid: 9CrZqOeV/dB7pKmrV
content-length: 0
cache-control: public, max-age=279793
date: Mon, 05 Dec 2022 00:16:27 GMT
vary: "Accept-Encoding"
tracepoint: "Akamai"
X-Firefox-Spdy: h2

static1.squarespace.com/static/5e720ae16a84ba3869f5dc20/t/5e74b89e18c64e2f6b878c14/1584707743167/small-trout.png

104.88.26.232

301 Moved Permanently

0 B

URL HTTP/2
static1.squarespace.com/static/5e720ae16a84ba3869f5dc20/t/5e74b89e18c64e2f6b878c14/1584707743167/small-trout.png
IP
104.88.26.232:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /static/5e720ae16a84ba3869f5dc20/t/5e74b89e18c64e2f6b878c14/1584707743167/small-trout.png HTTP/1.1
Host: static1.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static1.squarespace.com/static/sitecss/5e720ae16a84ba3869f5dc20/191/52e96934e4b0ea14d0f64568/5e720ae16a84ba3869f5dc41/1128/site.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 301 Moved Permanently
access-control-allow-origin: *,*
access-control-expose-headers: Content-Length, Timing-Allow-Origin
content-type: image/png
location: https://images.squarespace-cdn.com/content/5e720ae16a84ba3869f5dc20/1584707743165-TDJ65FNISHARS4NCLG2Z/small-trout.png?content-type=image%2Fpng
pragma: cache
server: Squarespace
strict-transport-security: max-age=0
timing-allow-origin: *, *
x-content-type-options: nosniff
x-contextid: gsk0oGlA/JUdVDARM
content-length: 0
cache-control: public, max-age=279842
date: Mon, 05 Dec 2022 00:16:27 GMT
vary: "Accept-Encoding"
tracepoint: "Akamai"
X-Firefox-Spdy: h2

images.squarespace-cdn.com/content/5e720ae16a84ba3869f5dc20/1584706521950-40QBAO7P8U2IH7314LST/strike-magneta.png?content-type=image%2Fpng

151.101.0.238

200 OK

1.3 kB

URL HTTP/2
images.squarespace-cdn.com/content/5e720ae16a84ba3869f5dc20/1584706521950-40QBAO7P8U2IH7314LST/strike-magneta.png?content-type=image%2Fpng
IP
151.101.0.238:0
ASN
#54113 FASTLY

File type
PNG image data, 91 x 17, 8-bit/color RGBA, non-interlaced\012- data
Size
1.3 kB (1259 bytes)
Hash
ba293bf0c362860b36bf3961dc34fe74
7cb5bc33de8067e9e79c2abf2be341e3bbb4872f
cab348d1bbda1c04bfb7e2ad684980af03ec4dc269b20aa990d1b07eea0925be

HTTP Headers

GET /content/5e720ae16a84ba3869f5dc20/1584706521950-40QBAO7P8U2IH7314LST/strike-magneta.png?content-type=image%2Fpng HTTP/1.1
Host: images.squarespace-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://static1.squarespace.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
timing-allow-origin: *
access-control-expose-headers: Content-Length, Timing-Allow-Origin
content-type: image/png
access-control-allow-origin: *
etag: CL6T6ODtj+0CEAE=
cache-control: max-age=604800
via: 1.1 google, 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 05 Dec 2022 00:16:27 GMT
age: 467169
x-served-by: cache-iad-kcgs7200114-IAD, cache-bma1658-BMA
x-cache: HIT, HIT
x-cache-hits: 49, 1
x-timer: S1670199387.208960,VS0,VE1
vary: Accept-Encoding
tracepoint: Fastly
content-length: 1259
X-Firefox-Spdy: h2

www.sjomagasinet.no/api/census/button-render

198.185.159.145

200 OK

17 B

URL HTTP/2
www.sjomagasinet.no/api/census/button-render
IP
198.185.159.145:0
ASN
#53831 SQUARESPACE

File type
JSON data\012- , ASCII text, with no line terminators
Size
17 B (17 bytes)
Hash
5b64e8b89092b2e3dfd448b10700627f
484b3032619fa1acd135d114565b0a5166281c22
f1ea07a1e51a389c8de07120ae5c2e432e9dd8f4fbd6f92489f185b0523a3fd4

HTTP Headers

POST /api/census/button-render HTTP/1.1
Host: www.sjomagasinet.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
X-CSRF-Token: BdaJAuriFQAHZDFlNWM4ZGYzN2Q3MGNmMWI3M2VlNDNjZTg5ZTM1
Content-Length: 429
Origin: https://www.sjomagasinet.no
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Cookie: ss_cvr=5b90b9c8-9c1a-4e86-a52f-d94ee63943c9|1670197979125|1670197979125|1670197979125|1; ss_cvt=1670197979125; _ga=GA1.2.1051009940.1670197980; _gid=GA1.2.1911147845.1670197980; _fbp=fb.1.1670197980135.1275355497; _hjSessionUser_1315154=eyJpZCI6IjVmYjc4MmMyLTIxNzAtNWRmZi05NTU1LTZjNGU4MWRkZTdlMyIsImNyZWF0ZWQiOjE2NzAxOTc5Nzk3MDQsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjSession_1315154=eyJpZCI6IjMwYWJlNTg5LTQxMmMtNGZlZC05YTdhLTMyYjFlYTdjMTQzNCIsImNyZWF0ZWQiOjE2NzAxOTc5ODAyOTMsImluU2FtcGxlIjpmYWxzZX0=; crumb=BdaJAuriFQAHZDFlNWM4ZGYzN2Q3MGNmMWI3M2VlNDNjZTg5ZTM1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: application/json;charset=utf-8
date: Mon, 05 Dec 2022 00:16:27 GMT
server: Squarespace
strict-transport-security: max-age=0
x-content-type-options: nosniff
x-contextid: AiELunUF/XSZlnWgp
content-length: 17
X-Firefox-Spdy: h2

images.squarespace-cdn.com/content/5e720ae16a84ba3869f5dc20/1584707764650-YJICCLU0XBC35BIXTAT1/small-sardine.png?content-type=image%2Fpng

151.101.0.238

200 OK

25 kB

URL HTTP/2
images.squarespace-cdn.com/content/5e720ae16a84ba3869f5dc20/1584707764650-YJICCLU0XBC35BIXTAT1/small-sardine.png?content-type=image%2Fpng
IP
151.101.0.238:0
ASN
#54113 FASTLY

File type
PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size
25 kB (24681 bytes)
Hash
58906b35f25c0256cf8806b55290674d
2ecf09c01bae4dba5415ddde50d4b669f7507d8a
ccd472916bb9f436ab8f0122acce04cbc0a8ddfdac29d7141daf21741c6c11f8

HTTP Headers

GET /content/5e720ae16a84ba3869f5dc20/1584707764650-YJICCLU0XBC35BIXTAT1/small-sardine.png?content-type=image%2Fpng HTTP/1.1
Host: images.squarespace-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://static1.squarespace.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
timing-allow-origin: *
access-control-expose-headers: Content-Length, Timing-Allow-Origin
content-type: image/png
access-control-allow-origin: *
etag: CPu4iebtj+0CEAE=
cache-control: max-age=604800
via: 1.1 google, 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 05 Dec 2022 00:16:27 GMT
age: 288271
x-served-by: cache-iad-kiad7000164-IAD, cache-bma1658-BMA
x-cache: HIT, HIT
x-cache-hits: 51, 1
x-timer: S1670199387.248368,VS0,VE1
vary: Accept-Encoding
tracepoint: Fastly
content-length: 24681
X-Firefox-Spdy: h2

www.sjomagasinet.no/api/census/RecordHit

198.185.159.145

200 OK

17 B

URL HTTP/2
www.sjomagasinet.no/api/census/RecordHit
IP
198.185.159.145:0
ASN
#53831 SQUARESPACE

File type
JSON data\012- , ASCII text, with no line terminators
Size
17 B (17 bytes)
Hash
5b64e8b89092b2e3dfd448b10700627f
484b3032619fa1acd135d114565b0a5166281c22
f1ea07a1e51a389c8de07120ae5c2e432e9dd8f4fbd6f92489f185b0523a3fd4

HTTP Headers

POST /api/census/RecordHit HTTP/1.1
Host: www.sjomagasinet.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=utf-8
X-CSRF-Token: BdaJAuriFQAHZDFlNWM4ZGYzN2Q3MGNmMWI3M2VlNDNjZTg5ZTM1
Content-Length: 797
Origin: https://www.sjomagasinet.no
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Cookie: ss_cvr=5b90b9c8-9c1a-4e86-a52f-d94ee63943c9|1670197979125|1670197979125|1670197979125|1; ss_cvt=1670197979125; _ga=GA1.2.1051009940.1670197980; _gid=GA1.2.1911147845.1670197980; _fbp=fb.1.1670197980135.1275355497; _hjSessionUser_1315154=eyJpZCI6IjVmYjc4MmMyLTIxNzAtNWRmZi05NTU1LTZjNGU4MWRkZTdlMyIsImNyZWF0ZWQiOjE2NzAxOTc5Nzk3MDQsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjSession_1315154=eyJpZCI6IjMwYWJlNTg5LTQxMmMtNGZlZC05YTdhLTMyYjFlYTdjMTQzNCIsImNyZWF0ZWQiOjE2NzAxOTc5ODAyOTMsImluU2FtcGxlIjpmYWxzZX0=; crumb=BdaJAuriFQAHZDFlNWM4ZGYzN2Q3MGNmMWI3M2VlNDNjZTg5ZTM1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: application/json;charset=utf-8
date: Mon, 05 Dec 2022 00:16:27 GMT
server: Squarespace
strict-transport-security: max-age=0
x-content-type-options: nosniff
x-contextid: AiELunUF/RRP0TW7U
content-length: 17
X-Firefox-Spdy: h2

images.squarespace-cdn.com/content/5e720ae16a84ba3869f5dc20/1584707730638-JLQLCLJR1EHCGK4GVSKX/small-mackarel.png?content-type=image%2Fpng

151.101.0.238

200 OK

28 kB

URL HTTP/2
images.squarespace-cdn.com/content/5e720ae16a84ba3869f5dc20/1584707730638-JLQLCLJR1EHCGK4GVSKX/small-mackarel.png?content-type=image%2Fpng
IP
151.101.0.238:0
ASN
#54113 FASTLY

File type
PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size
28 kB (28135 bytes)
Hash
5873e412b9a73e296fdd0f2ceced63a2
bf7b05c7acc7c4be00d146503204fa85918b15fc
3956459efd3d81f57beeccd4a9393249989adfe1594f0761622fe2eb148a02a5

HTTP Headers

GET /content/5e720ae16a84ba3869f5dc20/1584707730638-JLQLCLJR1EHCGK4GVSKX/small-mackarel.png?content-type=image%2Fpng HTTP/1.1
Host: images.squarespace-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://static1.squarespace.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
timing-allow-origin: *
access-control-expose-headers: Content-Length, Timing-Allow-Origin
content-type: image/png
access-control-allow-origin: *
etag: CIH1v+Xtj+0CEAE=
cache-control: max-age=604800
via: 1.1 google, 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 05 Dec 2022 00:16:27 GMT
age: 550216
x-served-by: cache-iad-kcgs7200170-IAD, cache-bma1658-BMA
x-cache: HIT, HIT
x-cache-hits: 34, 1
x-timer: S1670199387.249133,VS0,VE1
vary: Accept-Encoding
tracepoint: Fastly
content-length: 28135
X-Firefox-Spdy: h2

www.sjomagasinet.no/api/1/performance/settings

198.185.159.145

200 OK

53 B

URL HTTP/2
www.sjomagasinet.no/api/1/performance/settings
IP
198.185.159.145:0
ASN
#53831 SQUARESPACE

File type
JSON data\012- , ASCII text, with no line terminators
Size
53 B (53 bytes)
Hash
18df7cc13ff96f5b4dacee9ef9d861b1
38604693d02d6a4d79307be1cc462829efa59e6c
5891c954305794c597dfc8ffd7c30cf1b8f17ae7bf01ae41c2f31d43c5847a26

HTTP Headers

GET /api/1/performance/settings HTTP/1.1
Host: www.sjomagasinet.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Cookie: ss_cvr=5b90b9c8-9c1a-4e86-a52f-d94ee63943c9|1670197979125|1670197979125|1670197979125|1; ss_cvt=1670197979125; _ga=GA1.2.1051009940.1670197980; _gid=GA1.2.1911147845.1670197980; _fbp=fb.1.1670197980135.1275355497; _hjSessionUser_1315154=eyJpZCI6IjVmYjc4MmMyLTIxNzAtNWRmZi05NTU1LTZjNGU4MWRkZTdlMyIsImNyZWF0ZWQiOjE2NzAxOTc5Nzk3MDQsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjSession_1315154=eyJpZCI6IjMwYWJlNTg5LTQxMmMtNGZlZC05YTdhLTMyYjFlYTdjMTQzNCIsImNyZWF0ZWQiOjE2NzAxOTc5ODAyOTMsImluU2FtcGxlIjpmYWxzZX0=; crumb=BdaJAuriFQAHZDFlNWM4ZGYzN2Q3MGNmMWI3M2VlNDNjZTg5ZTM1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/json
date: Mon, 05 Dec 2022 00:16:27 GMT
server: Squarespace
vary: Accept-Encoding, User-Agent
x-contextid: AiELunUF/8ohYoOGV
content-length: 53
X-Firefox-Spdy: h2

www.sjomagasinet.no/api/census/button-render

198.185.159.145

200 OK

17 B

URL HTTP/2
www.sjomagasinet.no/api/census/button-render
IP
198.185.159.145:0
ASN
#53831 SQUARESPACE

File type
JSON data\012- , ASCII text, with no line terminators
Size
17 B (17 bytes)
Hash
5b64e8b89092b2e3dfd448b10700627f
484b3032619fa1acd135d114565b0a5166281c22
f1ea07a1e51a389c8de07120ae5c2e432e9dd8f4fbd6f92489f185b0523a3fd4

HTTP Headers

POST /api/census/button-render HTTP/1.1
Host: www.sjomagasinet.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
X-CSRF-Token: BdaJAuriFQAHZDFlNWM4ZGYzN2Q3MGNmMWI3M2VlNDNjZTg5ZTM1
Content-Length: 469
Origin: https://www.sjomagasinet.no
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Cookie: ss_cvr=5b90b9c8-9c1a-4e86-a52f-d94ee63943c9|1670197979125|1670197979125|1670197979125|1; ss_cvt=1670197979125; _ga=GA1.2.1051009940.1670197980; _gid=GA1.2.1911147845.1670197980; _fbp=fb.1.1670197980135.1275355497; _hjSessionUser_1315154=eyJpZCI6IjVmYjc4MmMyLTIxNzAtNWRmZi05NTU1LTZjNGU4MWRkZTdlMyIsImNyZWF0ZWQiOjE2NzAxOTc5Nzk3MDQsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjSession_1315154=eyJpZCI6IjMwYWJlNTg5LTQxMmMtNGZlZC05YTdhLTMyYjFlYTdjMTQzNCIsImNyZWF0ZWQiOjE2NzAxOTc5ODAyOTMsImluU2FtcGxlIjpmYWxzZX0=; crumb=BdaJAuriFQAHZDFlNWM4ZGYzN2Q3MGNmMWI3M2VlNDNjZTg5ZTM1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: application/json;charset=utf-8
date: Mon, 05 Dec 2022 00:16:27 GMT
server: Squarespace
strict-transport-security: max-age=0
x-content-type-options: nosniff
x-contextid: AiELunUF/lMjb3IwL
content-length: 17
X-Firefox-Spdy: h2

www.sjomagasinet.no/api/census/button-render

198.185.159.145

200 OK

17 B

URL HTTP/2
www.sjomagasinet.no/api/census/button-render
IP
198.185.159.145:0
ASN
#53831 SQUARESPACE

File type
JSON data\012- , ASCII text, with no line terminators
Size
17 B (17 bytes)
Hash
5b64e8b89092b2e3dfd448b10700627f
484b3032619fa1acd135d114565b0a5166281c22
f1ea07a1e51a389c8de07120ae5c2e432e9dd8f4fbd6f92489f185b0523a3fd4

HTTP Headers

POST /api/census/button-render HTTP/1.1
Host: www.sjomagasinet.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
X-CSRF-Token: BdaJAuriFQAHZDFlNWM4ZGYzN2Q3MGNmMWI3M2VlNDNjZTg5ZTM1
Content-Length: 410
Origin: https://www.sjomagasinet.no
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Cookie: ss_cvr=5b90b9c8-9c1a-4e86-a52f-d94ee63943c9|1670197979125|1670197979125|1670197979125|1; ss_cvt=1670197979125; _ga=GA1.2.1051009940.1670197980; _gid=GA1.2.1911147845.1670197980; _fbp=fb.1.1670197980135.1275355497; _hjSessionUser_1315154=eyJpZCI6IjVmYjc4MmMyLTIxNzAtNWRmZi05NTU1LTZjNGU4MWRkZTdlMyIsImNyZWF0ZWQiOjE2NzAxOTc5Nzk3MDQsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjSession_1315154=eyJpZCI6IjMwYWJlNTg5LTQxMmMtNGZlZC05YTdhLTMyYjFlYTdjMTQzNCIsImNyZWF0ZWQiOjE2NzAxOTc5ODAyOTMsImluU2FtcGxlIjpmYWxzZX0=; crumb=BdaJAuriFQAHZDFlNWM4ZGYzN2Q3MGNmMWI3M2VlNDNjZTg5ZTM1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: application/json;charset=utf-8
date: Mon, 05 Dec 2022 00:16:27 GMT
server: Squarespace
strict-transport-security: max-age=0
x-content-type-options: nosniff
x-contextid: AiELunUF/pq5NfSXG
content-length: 17
X-Firefox-Spdy: h2

p.typekit.net/p.gif?s=2&k=646866_5e720ae16a84ba3869f5dc20&ht=tk&h=www.sjomagasinet.no&f=13456.10954.13458.13460.13454.13457.13459.13455.1981.1983.8542.8544.38770.39187&a=646866&js=1.21.0&app=typekit&e=js&_=1670199384759

23.33.119.26

200 OK

35 B

URL HTTP/2
p.typekit.net/p.gif?s=2&k=646866_5e720ae16a84ba3869f5dc20&ht=tk&h=www.sjomagasinet.no&f=13456.10954.13458.13460.13454.13457.13459.13455.1981.1983.8542.8544.38770.39187&a=646866&js=1.21.0&app=typekit&e=js&_=1670199384759
IP
23.33.119.26:0
ASN
#20940 Akamai International B.V.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
35 B (35 bytes)
Hash
81144d75b3e69e9aa2fa3e9d83a64d03
f0fbc60b50edf5b2a0b76e0aa0537b76bf346ffc
9b9265c69a5cc295d1ab0d04e0273b3677db1a6216ce2ccf4efc8c277ed84b39

HTTP Headers

GET /p.gif?s=2&k=646866_5e720ae16a84ba3869f5dc20&ht=tk&h=www.sjomagasinet.no&f=13456.10954.13458.13460.13454.13457.13459.13455.1981.1983.8542.8544.38770.39187&a=646866&js=1.21.0&app=typekit&e=js&_=1670199384759 HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=604800
content-type: image/gif
cross-origin-resource-policy: cross-origin
etag: "61c32ad2-23"
last-modified: Wed, 22 Dec 2021 13:40:34 GMT
server: nginx
content-length: 35
date: Mon, 05 Dec 2022 00:16:27 GMT
X-Firefox-Spdy: h2

images.squarespace-cdn.com/content/v1/5e720ae16a84ba3869f5dc20/1584955508142-Z4EP0L2C71T9DBVCVQTS/favicon.ico?format=100w

151.101.0.238

200 OK

2.5 kB

URL HTTP/2
images.squarespace-cdn.com/content/v1/5e720ae16a84ba3869f5dc20/1584955508142-Z4EP0L2C71T9DBVCVQTS/favicon.ico?format=100w
IP
151.101.0.238:0
ASN
#54113 FASTLY

File type
PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Size
2.5 kB (2535 bytes)
Hash
f76e6890af8664409789753f52fbc11b
a120f91fe14f61d150e686c713a3b0c1774b2d21
ce0a5a952b7fe3d594a6635e11a8214b05ac8c55f1d2200733b09e564485bf67

HTTP Headers

GET /content/v1/5e720ae16a84ba3869f5dc20/1584955508142-Z4EP0L2C71T9DBVCVQTS/favicon.ico?format=100w HTTP/1.1
Host: images.squarespace-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
timing-allow-origin: *
access-control-expose-headers: Content-Length, Timing-Allow-Origin
content-type: image/png
access-control-allow-origin: *
etag: CL6fkveqvO0CEAE=
cache-control: max-age=604800
via: 1.1 google, 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 05 Dec 2022 00:16:27 GMT
age: 284549
x-served-by: cache-iad-kcgs7200074-IAD, cache-bma1658-BMA
x-cache: HIT, HIT
x-cache-hits: 6, 1
x-timer: S1670199387.324739,VS0,VE1
vary: Accept-Encoding
tracepoint: Fastly
content-length: 2535
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
33002e87ed87cec83ec76bdfe55cb33a
a2dafcefab949833412ab20508096c9974b9e359
f73d30247eb325d9dc9531381224e8942b39b56c264ade1618855f1fad9eda2a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5524
Cache-Control: max-age=134197
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 00:16:27 GMT
Etag: "638c8bfc-1d7"
Expires: Tue, 06 Dec 2022 13:33:04 GMT
Last-Modified: Sun, 04 Dec 2022 12:01:00 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471

www.google-analytics.com/analytics.js

142.250.74.110

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 04 Dec 2022 22:41:08 GMT
expires: Mon, 05 Dec 2022 00:41:08 GMT
cache-control: public, max-age=7200
age: 5719
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

connect.facebook.net/en_US/fbevents.js

31.13.72.12

200 OK

27 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
27 kB (27340 bytes)
Hash
44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: MsNfw7rsCcOhjfEVEbTUi21nY1c6BjkQpZAtz9HQ+Y6az3oEyU6gygLAk3LKqlUEjONgxd2oSTuvgWesg3xuKQ==
priority: u=3,i
content-length: 27340
x-fb-trip-id: 1904183273
date: Mon, 05 Dec 2022 00:16:27 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

maps.gstatic.com/maps-api-v3/embed/js/51/2/init_embed.js

142.250.74.3

200 OK

69 kB

URL HTTP/2
maps.gstatic.com/maps-api-v3/embed/js/51/2/init_embed.js
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2669)
Size
69 kB (69315 bytes)
Hash
ed2723b79bc5eab77a130d1494114fc3
868e33258f37face8b5d0fe4420632505c1d25be
4707d296c9f44bffe17c3b0a98ea5ce6f0e83cf700ba691ede674daf6f6b4443

HTTP Headers

GET /maps-api-v3/embed/js/51/2/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 69315
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 21:46:01 GMT
expires: Thu, 30 Nov 2023 21:46:01 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 28 Nov 2022 22:32:00 GMT
content-type: text/javascript
age: 354626
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

static.hotjar.com/c/hotjar-1315154.js?sv=7

54.230.111.66

200 OK

3.3 kB

URL HTTP/2
static.hotjar.com/c/hotjar-1315154.js?sv=7
IP
54.230.111.66:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (5909)
Size
3.3 kB (3291 bytes)
Hash
3befe03895887b8b0585a1ef01cdea3d
97d7c911f8707babef33fe48015dd339f9f4ea98
4f04c13f0404083781e9c5a3356eefe84823a3bbd1efc239604c0f6e015aa538

HTTP Headers

GET /c/hotjar-1315154.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Mon, 05 Dec 2022 00:16:27 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
etag: W/1b05efca11bc1597d733800f7f183cd0
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VysdoUFlnT1uQuxKB-ISwxm1IEG7yH5qRHUINHF2aMC0tveiY-ecWA==
X-Firefox-Spdy: h2

script.hotjar.com/modules.90de377b639fd5b933d2.js

143.204.55.46

200 OK

68 kB

URL HTTP/2
script.hotjar.com/modules.90de377b639fd5b933d2.js
IP
143.204.55.46:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (48714)
Size
68 kB (68504 bytes)
Hash
8766036825574dfbddbfc197bd098f6b
3c6087743e1b23d7f071f66d65bec1fdb143a2c2
89c7cf4e7103f90d1cc059e02ac95e97a976de4867e6215945fa6046b04db0b8

HTTP Headers

GET /modules.90de377b639fd5b933d2.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
content-length: 68504
date: Thu, 01 Dec 2022 13:37:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "8766036825574dfbddbfc197bd098f6b"
last-modified: Thu, 01 Dec 2022 13:36:28 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: f3peJx2kYQtSOWX4zjFA6Kn0BeG1gPcDwHVX73WESXHwM2mdP_gt5g==
age: 297561
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2dabd839729e9b0fb2558253d850126b
64f617aa0afb52168ef3519a4cf9829ac61ee007
1a47e4d0efdac6fbec990e3e168bfdfe615ff8953158773e8b1940d4d91eee18

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 00:16:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-58257696-2&cid=1051009940.1670197980&jid=1297174278&gjid=1073225097&_gid=1911147845.1670197980&_u=SCCAiEABRAAAAEAAI~&z=1867215043

108.177.14.154

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-58257696-2&cid=1051009940.1670197980&jid=1297174278&gjid=1073225097&_gid=1911147845.1670197980&_u=SCCAiEABRAAAAEAAI~&z=1867215043
IP
108.177.14.154:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-58257696-2&cid=1051009940.1670197980&jid=1297174278&gjid=1073225097&_gid=1911147845.1670197980&_u=SCCAiEABRAAAAEAAI~&z=1867215043 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.sjomagasinet.no
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://www.sjomagasinet.no
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 05 Dec 2022 00:16:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2dabd839729e9b0fb2558253d850126b
64f617aa0afb52168ef3519a4cf9829ac61ee007
1a47e4d0efdac6fbec990e3e168bfdfe615ff8953158773e8b1940d4d91eee18

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 00:16:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.facebook.com/tr/?id=1010903345990835&ev=PageView&dl=https%3A%2F%2Fwww.sjomagasinet.no%2F&rl=&if=false&ts=1670199385160&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1670197980135.1275355497&it=1670199384956&coo=false&rqm=GET

31.13.72.36

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=1010903345990835&ev=PageView&dl=https%3A%2F%2Fwww.sjomagasinet.no%2F&rl=&if=false&ts=1670199385160&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1670197980135.1275355497&it=1670199384956&coo=false&rqm=GET
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=1010903345990835&ev=PageView&dl=https%3A%2F%2Fwww.sjomagasinet.no%2F&rl=&if=false&ts=1670199385160&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1670197980135.1275355497&it=1670199384956&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Mon, 05 Dec 2022 00:16:27 GMT
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.35

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:54 GMT
expires: Thu, 30 Nov 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 362554
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

142.250.74.35

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:34:15 GMT
expires: Thu, 30 Nov 2023 19:34:15 GMT
cache-control: public, max-age=31536000
age: 362533
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

images.squarespace-cdn.com/content/v1/5e720ae16a84ba3869f5dc20/1592910090294-NP5YOFE2RGKW8DV8QCR3/Tjuvholmen+Sj%C3%B8magasin_June+2020_Kyle+Meyr_LR00010024.jpg?format=1500w

151.101.0.238

200 OK

309 kB

URL HTTP/2
images.squarespace-cdn.com/content/v1/5e720ae16a84ba3869f5dc20/1592910090294-NP5YOFE2RGKW8DV8QCR3/Tjuvholmen+Sj%C3%B8magasin_June+2020_Kyle+Meyr_LR00010024.jpg?format=1500w
IP
151.101.0.238:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 1500x1001, components 3\012- data
Size
309 kB (308716 bytes)
Hash
bb33ed85e925c7689af62376e838b737
d8b0ae762f45f506b47c8aa0b16838222488a935
c8ca057fe249c529ecf73959a27db3d830519c245bb6c08048a8a76358700510

HTTP Headers

GET /content/v1/5e720ae16a84ba3869f5dc20/1592910090294-NP5YOFE2RGKW8DV8QCR3/Tjuvholmen+Sj%C3%B8magasin_June+2020_Kyle+Meyr_LR00010024.jpg?format=1500w HTTP/1.1
Host: images.squarespace-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
timing-allow-origin: *
access-control-expose-headers: Content-Length, Timing-Allow-Origin
content-type: image/jpeg
access-control-allow-origin: *
etag: CNr6o/mqvO0CEAE=
cache-control: max-age=604800
via: 1.1 google, 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 05 Dec 2022 00:16:28 GMT
age: 540960
x-served-by: cache-iad-kiad7000057-IAD, cache-bma1658-BMA
x-cache: HIT, HIT
x-cache-hits: 21, 1
x-timer: S1670199388.080434,VS0,VE1
vary: Accept-Encoding
tracepoint: Fastly
content-length: 308716
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
663979bbd831a40bec8611cfac8d77af
aa43c96676a33100f244e6772e37adc2b6f89b76
60c21027da288e857f546b531dd226d81206bfa85a35985b0e1587a68dec4d5b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 00:16:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html

143.204.55.101

200 OK

1.0 kB

URL HTTP/2
vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html
IP
143.204.55.101:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Size
1.0 kB (1035 bytes)
Hash
e0652b84b7b3b650769c759fc520c3f8
0b55d6e28613350c7f41b88f19e726e6751ad03b
94b4c240f83065223dcacdd3f8b69cb229d0616edc3e2041eef3e270d859fc3d

HTTP Headers

GET /box-5e66f98b4ee957db209dc6f63e3d59dd.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Wed, 23 Nov 2022 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "e0652b84b7b3b650769c759fc520c3f8"
last-modified: Wed, 23 Nov 2022 13:09:18 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kZo3M6vRXBL6LzCM2865LK40Act2WaKtaIdzvqu0BGy52f9zjbHCgA==
age: 990382
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-58257696-2&cid=1051009940.1670197980&jid=1297174278&_u=SCCAiEABRAAAAEAAI~&z=1806181946

142.250.74.163

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-58257696-2&cid=1051009940.1670197980&jid=1297174278&_u=SCCAiEABRAAAAEAAI~&z=1806181946
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-58257696-2&cid=1051009940.1670197980&jid=1297174278&_u=SCCAiEABRAAAAEAAI~&z=1806181946 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 00:16:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3156
Expires: Mon, 05 Dec 2022 01:09:04 GMT
Date: Mon, 05 Dec 2022 00:16:28 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3156
Expires: Mon, 05 Dec 2022 01:09:04 GMT
Date: Mon, 05 Dec 2022 00:16:28 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3156
Expires: Mon, 05 Dec 2022 01:09:04 GMT
Date: Mon, 05 Dec 2022 00:16:28 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3156
Expires: Mon, 05 Dec 2022 01:09:04 GMT
Date: Mon, 05 Dec 2022 00:16:28 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3156
Expires: Mon, 05 Dec 2022 01:09:04 GMT
Date: Mon, 05 Dec 2022 00:16:28 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feff698a5-ffc4-43ea-b7a3-b681cafeb108.jpeg

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feff698a5-ffc4-43ea-b7a3-b681cafeb108.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (12830 bytes)
Hash
5d72fb8d20c29763234c2817b119d11b
d4924ec714f5157bcb2fddcb5f768188a3dd37dc
e9aa59142e0673ed3f58b36beaca48213c678dbe4655f9c4b64581cb0f6f22f6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feff698a5-ffc4-43ea-b7a3-b681cafeb108.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12830
x-amzn-requestid: 66f5f2fa-8472-4484-bbea-20ece7e98b1f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cmcsxGDyIAMFX4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c0e51-146167697890d9312ce3dbac;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 03:04:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 2jx-M9MgKrJXU4yYsJzWqNXwruIGhFNWkD7GcPdqddnEzcNgFw2luw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 03:27:17 GMT
age: 74951
etag: "d4924ec714f5157bcb2fddcb5f768188a3dd37dc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F396c9419-24ff-48bc-bf81-361b151c281b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.1 kB (6133 bytes)
Hash
f3d863be9bd5d072e85b8976251ce342
b9c67cf9a5ae7ec4c7bf8e8b857918be9277a140
f188fb7575c4b8662acfe2a6682559d50a12430c116605391dd77257bc11a60b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F396c9419-24ff-48bc-bf81-361b151c281b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6133
x-amzn-requestid: d2c60baf-1d2e-4b1f-9c08-2adf0aa458a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjKUXHcPIAMFl5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638abdb5-3ddc6f0428790a9d5f253825;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 03:08:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: LXL1HKGAwrWzHWEKPjwmwmFqQjexkCUwMsbr8huuSXrdaalyNbxnfA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 05:05:30 GMT
age: 69058
etag: "b9c67cf9a5ae7ec4c7bf8e8b857918be9277a140"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f879ef8-1a6d-4f5a-9ed7-092a33c3642f.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.7 kB (3707 bytes)
Hash
d7bde76a4dbab17f37747e7da55ad924
56ee7aa6cf94570b1218ef6e767a7036d0b8900f
bd8320fe10dc06061008034cfd1ca9f17e941b2b859b8dd12f23bcac35746aab

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f879ef8-1a6d-4f5a-9ed7-092a33c3642f.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3707
x-amzn-requestid: e9d4dc01-cb68-471b-8da4-c6f170248387
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_xhEm-IAMFRNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d133c-5414a54751e2569f639d0dea;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:38:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5XGO_QToLjgti1g7xU6jnUNtcyzzQZtc5pGmHqrtt6zD2dlVAN2BfQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:48:15 GMT
age: 8893
etag: "56ee7aa6cf94570b1218ef6e767a7036d0b8900f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2955536-4372-40c4-bbce-37f3da5c8a64.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10031 bytes)
Hash
bb029b41d342a82250aef6d6f713be6e
cd754bb6094d2e456b95dce8daace45a0de8a121
c16e364547c9e7a3c487b614073d59c7c495c5e5387b75136afab0dc68bebca4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2955536-4372-40c4-bbce-37f3da5c8a64.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10031
x-amzn-requestid: ca6c11c5-8842-4ffb-bb9e-5351c4e60c5c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjY0CGUVIAMFxog=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ad4e6-4282be9f505aa5764e9b1fa2;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 04:47:34 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8QEt6AHIT6gkW2X3RUuu1-K3lPlgjio-cckhiwppWK7vujPlBHrG7Q==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 18:59:33 GMT
age: 19015
etag: "cd754bb6094d2e456b95dce8daace45a0de8a121"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50c0f516-113b-498b-a6f2-9f0a076ff423.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.9 kB (7853 bytes)
Hash
dafdb4fe91795a9e16baebb085ccd818
f5ed5d03e6969f81349ad78fde0e71390a4ed391
f535ce45d68317bad15513d3cd3d21d2c0ef12e93d6ac19cc07b704ee1651f51

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50c0f516-113b-498b-a6f2-9f0a076ff423.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7853
x-amzn-requestid: fa079a7e-1e93-41d6-bb16-2703077a0cb8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdGrKEGFoAMFnBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6388517a-076131847c129c197e84901b;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:02:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Cri6Vf6-INRisbFQ4ITZ7f8RIvomQXQ-TjkjWAOkkUhmI1yhHIbTYA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 02:03:49 GMT
age: 79959
etag: "f5ed5d03e6969f81349ad78fde0e71390a4ed391"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
663979bbd831a40bec8611cfac8d77af
aa43c96676a33100f244e6772e37adc2b6f89b76
60c21027da288e857f546b531dd226d81206bfa85a35985b0e1587a68dec4d5b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 00:16:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

34.120.237.76

200 OK

6.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6034ca-f8c1-4979-8165-5f755e5d12a1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.4 kB (6430 bytes)
Hash
3c36448c65274ebbe1eb21e3bf02385e
e03cf1c7c2ec15b3cc50d9c54bebbf81aa08cf28
6f17788a394f1305755805a1b92117b1c1a03a1e3a075cb97a0da5184d574553

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6034ca-f8c1-4979-8165-5f755e5d12a1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6430
x-amzn-requestid: ae2ec151-d383-4554-9ac2-3d204701251c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_ttFDKoAMFp0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d1324-15aebb1a06253068472a6ab0;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kYXmy10msfeWdDYgvq0PXyGpy9UJyQkSLAhR_Q5PQMllJPXOOTnalw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:45:53 GMT
age: 9035
etag: "e03cf1c7c2ec15b3cc50d9c54bebbf81aa08cf28"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

143.204.42.88

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.88:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
be906c1db076ddeb5bb5418a31e45850
9e93574c669544ec2c5cc56132bcb32aadca010c
03898d695acc4233d12e2b741184a171b8231ebdbaf6be30b9961533519d483e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=142340
Date: Mon, 05 Dec 2022 00:16:28 GMT
Etag: "638cbbd4-1d7"
Expires: Tue, 06 Dec 2022 15:48:48 GMT
Last-Modified: Sun, 04 Dec 2022 15:25:08 GMT
Server: ECS (nyb/1D2F)
X-Cache: Miss from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 4U3Cy0uCA9_PikqNLys2riwpB8b7oxUaoqShesfKQk4nkAV1dfTvNQ==
Age: 1420

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
67e4709c84acec8eddbeb11d56e7d0fd
32a14eeba023499cda0d49fd785ac7626f4a5582
8953090ad9df36f81c3393cc6c67c87b6ad521b8806c7ea004e0b4354b9e1c92

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 00:16:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x0-y0-z0

216.58.207.225

200 OK

47 kB

URL HTTP/2
lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x0-y0-z0
IP
216.58.207.225:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Size
47 kB (47035 bytes)
Hash
b7dfa1a6a6a9ac6bde43b225a3bece6a
01044209f6c859bbb8d6ae75d88d6648319ee562
c0b20a9f0b43e48c4bb5e2f6330179b1740d3f7c5d2e9afad11c7387d29d58b2

HTTP Headers

GET /p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x0-y0-z0 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2022-10-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 47035
x-xss-protection: 0
date: Sun, 04 Dec 2022 23:53:02 GMT
expires: Thu, 17 Nov 2022 13:47:26 GMT
cache-control: public, max-age=86400, no-transform
age: 1406
etag: "v5e315"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
64eb3a8f7cc11324c6f4c77e1c11f7ee
8ad889db020018b726362929a9477872a6808f0a
481082e2478f937b15faec7128ab1a60bf1157b417bfa63022472f434ae240fd

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 00:16:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x6-y3-z4

216.58.207.225

200 OK

46 kB

URL HTTP/2
lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x6-y3-z4
IP
216.58.207.225:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Size
46 kB (45967 bytes)
Hash
ab0e3e00e47d6bcc0e10409ad1a6982e
56c092cf6fb615a65535abf4214cae9bf43f72ca
096ead53b3e0295aa453e0102635276469fa786a23f081a9004c1df11df67479

HTTP Headers

GET /p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x6-y3-z4 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2022-10-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 45967
x-xss-protection: 0
date: Sun, 04 Dec 2022 23:53:03 GMT
expires: Thu, 17 Nov 2022 13:47:27 GMT
cache-control: public, max-age=86400, no-transform
age: 1405
etag: "v5e315"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x0-y0-z2

216.58.207.225

200 OK

94 kB

URL HTTP/2
lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x0-y0-z2
IP
216.58.207.225:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Size
94 kB (94086 bytes)
Hash
a647eaf0b973b7c9e5bd6666303918e3
4ec56b32801df009d846c791a1410a356c3152c8
97cbb427500eafa49e0d56d80c1245af80472e1b5a995e264dc7c9dc8187514b

HTTP Headers

GET /p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x0-y0-z2 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2022-10-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 94086
x-xss-protection: 0
date: Sun, 04 Dec 2022 23:53:03 GMT
expires: Thu, 17 Nov 2022 13:47:27 GMT
cache-control: public, max-age=86400, no-transform
age: 1405
etag: "v5e315"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x1-y0-z2

216.58.207.225

200 OK

88 kB

URL HTTP/2
lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x1-y0-z2
IP
216.58.207.225:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Size
88 kB (87730 bytes)
Hash
7b93a3afacb86d783e4587d2e3fe0277
a2bea2e274115e6a35f2c399eaee5c40d418af91
9103727d46bdd995aec9caf4180f6ed8726cecbfe1b88713cb2a081b78d51f8c

HTTP Headers

GET /p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x1-y0-z2 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2022-10-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 87730
x-xss-protection: 0
date: Sun, 04 Dec 2022 23:53:03 GMT
expires: Thu, 17 Nov 2022 13:47:27 GMT
cache-control: public, max-age=86400, no-transform
age: 1405
etag: "v5e315"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x0-y1-z2

216.58.207.225

200 OK

18 kB

URL HTTP/2
lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x0-y1-z2
IP
216.58.207.225:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Size
18 kB (18186 bytes)
Hash
a2306586544631934500c26e8a14d5d2
30a3562c51a6204d517396535e40b2174cbf40c3
d3e8c1369590217a4d214da99c2d33fe702cb702a1e89ccbbbb15e167c856be2

HTTP Headers

GET /p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x0-y1-z2 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2022-10-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 18186
x-xss-protection: 0
date: Sun, 04 Dec 2022 23:53:03 GMT
expires: Thu, 17 Nov 2022 13:47:27 GMT
cache-control: public, max-age=86400, no-transform
age: 1405
etag: "v5e315"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x1-y1-z2

216.58.207.225

200 OK

17 kB

URL HTTP/2
lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x1-y1-z2
IP
216.58.207.225:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Size
17 kB (16649 bytes)
Hash
73d408d9dda38f3bd4f1a94e804defc1
295be02e6107548097db9ef3cb864af3b18fa87b
ba0e63f0f16b5ca99066761ccedce892fe53c372e0e702a8795959e302897e2b

HTTP Headers

GET /p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x1-y1-z2 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2022-10-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 16649
x-xss-protection: 0
date: Sun, 04 Dec 2022 23:53:03 GMT
expires: Thu, 17 Nov 2022 13:47:27 GMT
cache-control: public, max-age=86400, no-transform
age: 1405
etag: "v5e315"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x2-y1-z2

216.58.207.225

200 OK

17 kB

URL HTTP/2
lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x2-y1-z2
IP
216.58.207.225:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Size
17 kB (17423 bytes)
Hash
c5dad70471a567f5be4c89336193bf20
5d28afcfdd90cc7430ec156801a040d4c4ecf2ba
8cef17f98bb0d57f6fdb2c5704017f9bf8b75d5103735da6441cde957a110fad

HTTP Headers

GET /p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x2-y1-z2 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2022-10-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 17423
x-xss-protection: 0
date: Sun, 04 Dec 2022 23:53:03 GMT
expires: Thu, 17 Nov 2022 13:47:27 GMT
cache-control: public, max-age=86400, no-transform
age: 1405
etag: "v5e315"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x5-y1-z4

216.58.207.225

200 OK

27 kB

URL HTTP/2
lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x5-y1-z4
IP
216.58.207.225:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Size
27 kB (26803 bytes)
Hash
c0bfb646195b7d505bb75a2ce31affef
e5d38b4d14f782e7a002b4e566d80a82d7e3916e
2c7ba8f7667cd7cf31d03922130e664bc620b65e11f1b579102e973a19c97cb2

HTTP Headers

GET /p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x5-y1-z4 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2022-10-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 26803
x-xss-protection: 0
date: Sun, 04 Dec 2022 23:53:03 GMT
expires: Thu, 17 Nov 2022 13:47:27 GMT
cache-control: public, max-age=86400, no-transform
age: 1405
etag: "v5e315"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x6-y1-z4

216.58.207.225

200 OK

32 kB

URL HTTP/2
lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x6-y1-z4
IP
216.58.207.225:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Size
32 kB (31939 bytes)
Hash
1f77110dad1add0cf2f2313a1213afad
97e96204826791b0af2844452b5074c8573de57c
65e9cdc490d6e959cbb858d921da3e696be45e5bf25887f76d2cc97fa1bb1ebd

HTTP Headers

GET /p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x6-y1-z4 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2022-10-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 31939
x-xss-protection: 0
date: Sun, 04 Dec 2022 23:53:03 GMT
expires: Thu, 17 Nov 2022 13:47:27 GMT
cache-control: public, max-age=86400, no-transform
age: 1405
etag: "v5e315"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x3-y3-z4

216.58.207.225

200 OK

62 kB

URL HTTP/2
lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x3-y3-z4
IP
216.58.207.225:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Size
62 kB (61908 bytes)
Hash
54c0ecaf4016b78ba1eff69c8a2e28df
518eb62dff7109009a379dcde282e20b5786dce7
1491be5c700c2eec5a7ee8b4c1136492c9ff4dff7bc123d4f4d5c0542a7c8d57

HTTP Headers

GET /p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x3-y3-z4 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2022-10-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 61908
x-xss-protection: 0
date: Sun, 04 Dec 2022 23:53:03 GMT
expires: Thu, 17 Nov 2022 13:47:27 GMT
cache-control: public, max-age=86400, no-transform
age: 1405
etag: "v5e315"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x2-y0-z2

216.58.207.225

200 OK

98 kB

URL HTTP/2
lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x2-y0-z2
IP
216.58.207.225:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Size
98 kB (98076 bytes)
Hash
06886679bcfcb91c99d44ab096959dc6
615a0de833f53a84f001a5622c2e6525cac44287
17e13d63ffae0af1ff33f2a093f8a2d409331fb7193b3a46b5c5964f109a69dd

HTTP Headers

GET /p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x2-y0-z2 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2022-10-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 98076
x-xss-protection: 0
date: Sun, 04 Dec 2022 23:53:03 GMT
expires: Thu, 17 Nov 2022 13:47:27 GMT
cache-control: public, max-age=86400, no-transform
age: 1405
etag: "v5e315"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x3-y1-z4

216.58.207.225

200 OK

35 kB

URL HTTP/2
lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x3-y1-z4
IP
216.58.207.225:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Size
35 kB (34769 bytes)
Hash
0852e28f6418a3b467dd73ec5c986910
19b5b77c9542bfb1268cf5c7a3136d2d3ba2a315
bdada7fb8ea7117e54c42e7800e70015ff8c29139c661e2196426668782c8735

HTTP Headers

GET /p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x3-y1-z4 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2022-10-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 34769
x-xss-protection: 0
date: Sun, 04 Dec 2022 23:53:03 GMT
expires: Thu, 17 Nov 2022 13:47:27 GMT
cache-control: public, max-age=86400, no-transform
age: 1405
etag: "v5e315"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x3-y2-z4

216.58.207.225

200 OK

97 kB

URL HTTP/2
lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x3-y2-z4
IP
216.58.207.225:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Size
97 kB (97417 bytes)
Hash
ec001fceeb92be718fedd98914828abe
632870232dfd85e83095c66b57157df502517016
5516226b22b7a7a88ae3d1dbfb44d0ee680c01c845662cb65073a07b200a1ffb

HTTP Headers

GET /p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x3-y2-z4 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2022-10-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 97417
x-xss-protection: 0
date: Sun, 04 Dec 2022 23:53:03 GMT
expires: Thu, 17 Nov 2022 13:47:27 GMT
cache-control: public, max-age=86400, no-transform
age: 1405
etag: "v5e315"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x4-y1-z4

216.58.207.225

200 OK

39 kB

URL HTTP/2
lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x4-y1-z4
IP
216.58.207.225:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Size
39 kB (38913 bytes)
Hash
f3f483f17b31f3938abf0aaca0eeff87
dc4be730ac4e055a1be056b7045df869c38a869c
736e692a466b38400cf1dda60971f8081c43cd37a2ad4f6e948ee2da5194c371

HTTP Headers

GET /p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x4-y1-z4 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2022-10-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 38913
x-xss-protection: 0
date: Sun, 04 Dec 2022 23:53:03 GMT
expires: Thu, 01 Dec 2022 07:55:00 GMT
cache-control: public, max-age=86400, no-transform
age: 1405
etag: "v5e315"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x4-y3-z4

216.58.207.225

200 OK

51 kB

URL HTTP/2
lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x4-y3-z4
IP
216.58.207.225:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Size
51 kB (50983 bytes)
Hash
de8a30230cc10e45990b1124aae88f75
16daa341c8256f86c7433feb38e5e22388baba5a
1ec080e51629ce88baf6682e45460f000c644878faee256aa91b6f79356c39a9

HTTP Headers

GET /p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x4-y3-z4 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2022-10-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 50983
x-xss-protection: 0
date: Sun, 04 Dec 2022 23:53:03 GMT
expires: Thu, 24 Nov 2022 13:09:38 GMT
cache-control: public, max-age=86400, no-transform
age: 1405
etag: "v5e315"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x6-y2-z4

216.58.207.225

200 OK

85 kB

URL HTTP/2
lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x6-y2-z4
IP
216.58.207.225:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Size
85 kB (84839 bytes)
Hash
d34c21e648b185ad24583fa08026f6a1
3ddbe925837be96f342a428e5eb3a50af1c0ca31
378f66ca0b2066e3ef87cfd2aa9a09c0f80c6c0b314c4003b7c80221b209b861

HTTP Headers

GET /p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x6-y2-z4 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2022-10-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 84839
x-xss-protection: 0
date: Sun, 04 Dec 2022 23:53:03 GMT
expires: Thu, 17 Nov 2022 13:47:27 GMT
cache-control: public, max-age=86400, no-transform
age: 1405
etag: "v5e315"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x5-y2-z4

216.58.207.225

200 OK

97 kB

URL HTTP/2
lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x5-y2-z4
IP
216.58.207.225:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Size
97 kB (97131 bytes)
Hash
251f960ec72a6edcf29813e62955f4dd
98acfa745eb92ec99f92f4061194fc7b3f6c0ad9
093a693a5ae9a987a66206dcef06875c2d2badf068234e404081500d87de4e03

HTTP Headers

GET /p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x5-y2-z4 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2022-10-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 97131
x-xss-protection: 0
date: Sun, 04 Dec 2022 23:53:03 GMT
expires: Thu, 24 Nov 2022 13:09:38 GMT
cache-control: public, max-age=86400, no-transform
age: 1405
etag: "v5e315"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

in.hotjar.com/api/v2/client/sites/1315154/visit-data?sv=7

34.248.5.173

200 OK

75 kB

URL HTTP/2
in.hotjar.com/api/v2/client/sites/1315154/visit-data?sv=7
IP
34.248.5.173:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with no line terminators
Size
75 kB (74595 bytes)
Hash
49e720e7dbd9f3431e6df86df16afe8b
e46c8a4c457ddbd42869528edbeecef575aeb371
ab0e26acfdc63f9f794914c53eafae7c92d35d5737314fddf7e514a3e0232318

HTTP Headers

POST /api/v2/client/sites/1315154/visit-data?sv=7 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 130
Origin: https://www.sjomagasinet.no
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:16:28 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2

lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x4-y2-z4

216.58.207.225

200 OK

79 kB

URL HTTP/2
lh3.ggpht.com/p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x4-y2-z4
IP
216.58.207.225:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x512, components 3\012- data
Size
79 kB (79016 bytes)
Hash
7bb3c042d634719e29bebeb43b3013e0
2dd16ee21e49eeb9099d86b6dacaae137d07fca2
f5d92399d114d76ac460fbd5009bd86378ebc78146e09cc0276c3dd4a942d74e

HTTP Headers

GET /p/AF1QipNKYInSOtBfz5Vhpu0o-82WnCjmYP7k3TZLnt-0=x4-y2-z4 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="2022-10-31.jpg"
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.google.com
timing-allow-origin: https://www.google.com
x-content-type-options: nosniff
server: fife
content-length: 79016
x-xss-protection: 0
date: Sun, 04 Dec 2022 23:53:03 GMT
expires: Thu, 17 Nov 2022 13:47:27 GMT
cache-control: public, max-age=86400, no-transform
age: 1405
etag: "v5e315"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google-analytics.com/gtm/optimize.js?id=GTM-MDSLNNV

142.250.74.110

200 OK

0 B

URL HTTP/2
www.google-analytics.com/gtm/optimize.js?id=GTM-MDSLNNV
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /gtm/optimize.js?id=GTM-MDSLNNV HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 05 Dec 2022 00:16:27 GMT
expires: Mon, 05 Dec 2022 00:16:27 GMT
cache-control: private, max-age=900
last-modified: Mon, 05 Dec 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43885
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Montserrat:wght@400;700&family=Open+Sans:wght@300;400

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css2?family=Montserrat:wght@400;700&family=Open+Sans:wght@300;400
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css2?family=Montserrat:wght@400;700&family=Open+Sans:wght@300;400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 05 Dec 2022 00:16:26 GMT
date: Mon, 05 Dec 2022 00:16:26 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

assets.squarespace.com/universal/scripts-compressed/common-7eff1f00f7ccf8fae989f-min.en-US.js

151.101.64.237

200 OK

0 B

URL HTTP/2
assets.squarespace.com/universal/scripts-compressed/common-7eff1f00f7ccf8fae989f-min.en-US.js
IP
151.101.64.237:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /universal/scripts-compressed/common-7eff1f00f7ccf8fae989f-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sjomagasinet.no
Connection: keep-alive
Referer: https://www.sjomagasinet.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Thu, 23 Nov 2023 01:01:04 GMT
last-modified: Wed, 23 Nov 2022 00:23:53 GMT
etag: "477807e8201f33592615a836846464ad"
content-type: text/javascript
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 05 Dec 2022 00:16:26 GMT
age: 1034122
x-served-by: cache-iad-kiad7000097-IAD, cache-bma1658-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 8
x-timer: S1670199386.403912,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 227347
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (44)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations