Overview

URLzcvbnnn.7b69d.lb.wy5532.com/
IP 37.48.65.155 (Netherlands)
ASN#60781 LeaseWeb Netherlands B.V.
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-12-05 01:02:19 UTC
StatusLoading report..
IDS alerts0
Blocklist alert1
urlquery alerts No alerts detected
Tags None

Domain Summary (32)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
zcvbnnn.7b69d.lb.wy5532.com (3) 0 2022-12-04 23:41:46 UTC 2022-12-04 23:41:46 UTC 172.93.103.100 Unknown ranking
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
api.yadore.com (1) 591567 2019-01-11 04:50:54 UTC 2022-12-04 12:24:10 UTC 88.99.112.6
ocsp.pki.goog (3) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.131
www.googletagmanager.com (1) 75 2013-05-22 02:07:37 UTC 2022-12-04 17:53:11 UTC 142.250.74.168
webchannel-content.eservice.emarsys.net (1) 13932 2019-10-25 07:15:02 UTC 2022-12-04 18:20:34 UTC 34.117.30.199
status.thawte.com (1) 5123 2019-03-13 17:00:46 UTC 2020-04-10 08:00:21 UTC 93.184.220.29
consentmanager.mgr.consensu.org (4) 14455 2018-05-18 12:19:31 UTC 2020-08-16 08:50:27 UTC 87.230.98.74
cdn.scarabresearch.com (1) 11242 2017-09-05 21:00:57 UTC 2022-11-28 13:42:24 UTC 54.230.111.20
lampenwelt.prudsys-rde.de (1) 540253 2019-01-14 10:05:14 UTC 2020-09-30 20:25:58 UTC 51.116.140.56
ocsp.sca1b.amazontrust.com (1) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.165
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-12-04 17:12:40 UTC 34.102.187.140
clever-redirect.com (1) 0 2021-02-09 06:24:33 UTC 2022-12-04 12:24:22 UTC 78.46.197.88 Unknown ranking
no-go.kelkoogroup.net (4) 0 No data No data 95.211.116.27 Domain (kelkoogroup.net) ranked at: 79339
static.scarabresearch.com (2) 14309 2020-04-02 00:04:38 UTC 2022-12-04 18:20:23 UTC 54.230.111.36
p.searchhub.io (1) 203237 2019-02-11 16:53:04 UTC 2019-03-15 11:00:45 UTC 18.158.39.189
ocsp.digicert.com (5) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-12-04 17:12:39 UTC 34.117.237.239
track.productsup.io (1) 128916 2017-01-30 07:12:50 UTC 2020-05-04 18:56:09 UTC 116.203.222.30
assets.emarsys.net (3) 51250 No data No data 54.230.111.75
cdn.consentmanager.net (1) 29447 No data No data 185.76.9.14
c.searchhub.io (1) 101716 2018-07-30 12:47:12 UTC 2021-05-26 12:45:05 UTC 143.204.55.122
dipaka-ead.com (3) 0 2022-10-31 13:23:43 UTC 2022-12-04 14:19:04 UTC 3.208.247.235 Unknown ranking
lookandfind.me (2) 35702 2021-03-08 12:58:51 UTC 2022-12-04 12:24:22 UTC 5.9.110.29
r3.o.lencr.org (12) 344 No data No data 23.36.76.226
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 34.223.160.237
img-getpocket.cdn.mozilla.net (6) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
ocsp.sectigo.com (1) 487 2019-11-29 11:50:24 UTC 2021-09-17 20:05:40 UTC 172.64.155.188
www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-12-04 17:54:49 UTC 142.250.74.110
lw-cdn.com (16) 395171 2020-09-14 10:13:29 UTC 2022-12-02 15:56:30 UTC 104.18.6.177
cdn.consentmanager.mgr.consensu.org (3) 15682 2019-09-04 10:39:57 UTC 2020-04-13 13:31:55 UTC 185.76.9.14
www.lampegiganten.no (1) 0 2014-01-23 08:39:20 UTC 2022-12-02 13:39:03 UTC 104.18.23.160 Unknown ranking

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-12-05 2 zcvbnnn.7b69d.lb.wy5532.com/ Malware

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 37.48.65.155
Date UQ / IDS / BL URL IP
2023-02-06 02:52:00 +0000 0 - 0 - 1 iuyuyt.54603.on.wy5532.com/ 37.48.65.155
2023-02-05 21:36:47 +0000 0 - 0 - 1 lkljk.1be8d.gb.wy5532.com/ 37.48.65.155
2023-02-05 07:35:52 +0000 0 - 0 - 2 kqmronhh.cn.wy5532.com/ 37.48.65.155
2023-02-05 07:28:35 +0000 0 - 2 - 9 iccygqiq.wy5532.com/ 37.48.65.155
2023-02-05 05:52:43 +0000 0 - 0 - 4 khjghg.1bf14.bl.wy5532.com/ 37.48.65.155


Last 5 reports on ASN: LeaseWeb Netherlands B.V.
Date UQ / IDS / BL URL IP
2023-02-08 10:36:22 +0000 0 - 2 - 1 mondeodoslubu.cba.pl/js/bin.exe 95.211.144.68
2023-02-08 08:49:55 +0000 0 - 0 - 1 diahnnems.us/clif/admin.php 212.32.237.92
2023-02-08 08:25:48 +0000 0 - 0 - 1 civbooks.com/wp-includes/fonts/Ntflx.zip 81.171.28.43
2023-02-08 05:50:40 +0000 0 - 0 - 1 quantitivegoodsshop.com/usuivi/dhl/a1b2c3/d4a (...) 212.32.237.92
2023-02-08 05:50:29 +0000 0 - 0 - 1 lavewash.co/auth 212.32.237.92


Last 5 reports on domain: wy5532.com
Date UQ / IDS / BL URL IP
2023-02-08 10:46:56 +0000 0 - 2 - 6 govyty.59b61.ev.wy5532.com/ 185.107.56.198
2023-02-08 09:24:48 +0000 0 - 0 - 4 ooburdv.wy5532.com/ 172.93.103.102
2023-02-08 08:43:17 +0000 0 - 2 - 7 lkljk.8c061.vo.wy5532.com/ 172.93.103.102
2023-02-08 07:09:52 +0000 0 - 2 - 7 ehsudfr.gov.wy5532.com/ 199.115.115.102
2023-02-08 06:33:13 +0000 0 - 0 - 1 8b23f.ymgjhj.wy5532.com/ 185.107.56.197


No other reports with similar screenshot

JavaScript

Executed Scripts (82)

Executed Evals (65)
#1 JavaScript::Eval (size: 69) - SHA256: 60c0988e457866acb64cefef90dbfa10209b7893a546d9f756803ec077401217
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(77) / 10
})();
#2 JavaScript::Eval (size: 70) - SHA256: 730ce25126ae211fb9ef3f242b2585ffcf006138a51a0bf66750c8dae2dbc05d
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(168) / 10
})();
#3 JavaScript::Eval (size: 67) - SHA256: 87a9b254f427950b79b1ce0129c358514c9c0193e2d99c5a9036460a9b2201d2
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(164)
})();
#4 JavaScript::Eval (size: 147) - SHA256: 436ea567da8491b595cf454cf654447c85b20a5a16e51304c6b733c4044e3d61
(function() {
    if ("undefined" != typeof google_tag_manager["GTM-K6DHVZ"].macro(99)) return 5E3 < parseInt(google_tag_manager["GTM-K6DHVZ"].macro(102))
})();
#5 JavaScript::Eval (size: 70) - SHA256: cc6bc1205ab487c755c584a7acc77c474ea2357b0694aaf610f60392ceed2101
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(185) / 10
})();
#6 JavaScript::Eval (size: 1789) - SHA256: 51177ba1068e371f21d1679ae149c0db2e4e07626df10b92aca572f048fbe19e
(function() {
    var a = {},
        b = [],
        c = [],
        d = 0;
    if ("undefined" != typeof google_tag_manager["GTM-K6DHVZ"].macro(223))
        for (i = 0; i < google_tag_manager["GTM-K6DHVZ"].macro(224).length; i++) {
            b.push(google_tag_manager["GTM-K6DHVZ"].macro(225)[i].id);
            var e = Number(google_tag_manager["GTM-K6DHVZ"].macro(226)[i].price);
            "quantity" in google_tag_manager["GTM-K6DHVZ"].macro(227)[i] && (e *= Number(google_tag_manager["GTM-K6DHVZ"].macro(228)[i].quantity));
            d += e
        }
    if ("undefined" != typeof google_tag_manager["GTM-K6DHVZ"].macro(229))
        for (i = 0; i < google_tag_manager["GTM-K6DHVZ"].macro(230).length; i++) c.push(google_tag_manager["GTM-K6DHVZ"].macro(231)[i].id);
    if ("undefined" != typeof google_tag_manager["GTM-K6DHVZ"].macro(232))
        for (i = 0; i < google_tag_manager["GTM-K6DHVZ"].macro(233).length; i++) b.push(google_tag_manager["GTM-K6DHVZ"].macro(234)[i].id);
    "homepage" == google_tag_manager["GTM-K6DHVZ"].macro(235) ? a.ecomm_pagetype = "home" : "categoryPage" == google_tag_manager["GTM-K6DHVZ"].macro(236) ? (a.ecomm_pagetype = "category", a.ecomm_prodid = c) : "searchResultPage" == google_tag_manager["GTM-K6DHVZ"].macro(237) ? (a.ecomm_pagetype = "searchresults", a.ecomm_prodid = c) : "productPage" == google_tag_manager["GTM-K6DHVZ"].macro(238) ? (a.ecomm_pagetype = "product", a.ecomm_prodid = google_tag_manager["GTM-K6DHVZ"].macro(239).id, a.ecomm_totalvalue = google_tag_manager["GTM-K6DHVZ"].macro(240).price) : "shoppingCart" == google_tag_manager["GTM-K6DHVZ"].macro(241) ? (a.ecomm_pagetype = "cart", a.ecomm_prodid = b, a.ecomm_totalvalue = d) : "checkout" ==
        google_tag_manager["GTM-K6DHVZ"].macro(242) ? (a.ecomm_pagetype = "cart", a.ecomm_prodid = b, a.ecomm_totalvalue = d) : "orderConfirmation" == google_tag_manager["GTM-K6DHVZ"].macro(243) ? (a.ecomm_pagetype = "purchase", a.ecomm_prodid = b, a.ecomm_totalvalue = google_tag_manager["GTM-K6DHVZ"].macro(244)) : a.ecomm_pagetype = "other";
    return a
})();
#7 JavaScript::Eval (size: 68) - SHA256: 924c8d41ae077e61494223068053773629a7b91a9249ec21b15e8495b96120b5
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(6) / 10
})();
#8 JavaScript::Eval (size: 146) - SHA256: 289fdd9b3fb8a87130e033622a78ddd11b84f90cbdb2ea8453a710ae62600f70
(function() {
    if ("undefined" != typeof google_tag_manager["GTM-K6DHVZ"].macro(57)) return 5E3 < parseInt(google_tag_manager["GTM-K6DHVZ"].macro(60))
})();
#9 JavaScript::Eval (size: 65) - SHA256: 13d6855b13483a9e60e9623a4d607eb9cdbc66741db6b795b2263b8ce3360c31
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(5)
})();
#10 JavaScript::Eval (size: 69) - SHA256: 9a2f8f04731821e0997d83a765c137a8da98ce8fb0211a2197a00481c810db8f
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(23) / 10
})();
#11 JavaScript::Eval (size: 66) - SHA256: 70d0058b0bdc0483b65a2035dab722142dc96faf2aaa2fa004755f33a7999afa
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(55)
})();
#12 JavaScript::Eval (size: 67) - SHA256: 793dcf4a7da1d8316a3460cbe8759c6d85d1ec8045b55d478d86151c79a5e7f8
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(116)
})();
#13 JavaScript::Eval (size: 70) - SHA256: 38ecfd499ff53e796da7ca21409d78b91f5326e2f3050e465c6244440020d425
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(147) / 10
})();
#14 JavaScript::Eval (size: 67) - SHA256: c9c72dd3b5fadbaf5dff62845328cafba0ef41a85691ffd874c16070735d6d93
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(187)
})();
#15 JavaScript::Eval (size: 67) - SHA256: b8a1603047c2a0ed485ac0a35589e2664b056fbd310c200405444e7e73588429
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(167)
})();
#16 JavaScript::Eval (size: 146) - SHA256: 5ad2069305030db0b1795e329655966639b1f54c6bde694638d45d3be5dcaba2
(function() {
    if ("undefined" != typeof google_tag_manager["GTM-K6DHVZ"].macro(21)) return 5E3 < parseInt(google_tag_manager["GTM-K6DHVZ"].macro(24))
})();
#17 JavaScript::Eval (size: 69) - SHA256: bc34fa04469f8e48ba5227483fc2bfaa2deb1eff97ddb22050f980a14b52d0e8
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(56) / 10
})();
#18 JavaScript::Eval (size: 146) - SHA256: 63327956fa851d0cd06ad0b2a2c0ae8adf78bc4fc08760fce537211b4c2ceb71
(function() {
    if ("undefined" != typeof google_tag_manager["GTM-K6DHVZ"].macro(75)) return 5E3 < parseInt(google_tag_manager["GTM-K6DHVZ"].macro(78))
})();
#19 JavaScript::Eval (size: 69) - SHA256: ea45619914285d6fc3bd8f31c14f8b072372e1f792a904d3191851d0601126d5
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(98) / 10
})();
#20 JavaScript::Eval (size: 148) - SHA256: e615a30ba70ce1e506f57bd5ef2dba0b808ddfd37db33fea1a57745f59463795
(function() {
    if ("undefined" != typeof google_tag_manager["GTM-K6DHVZ"].macro(118)) return 5E3 < parseInt(google_tag_manager["GTM-K6DHVZ"].macro(121))
})();
#21 JavaScript::Eval (size: 67) - SHA256: bd71021262ba791a0231cab3bb51db21cd306cccbfdcc1164bd93bc66606a5fa
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(149)
})();
#22 JavaScript::Eval (size: 739) - SHA256: 627bee6c4f3113e14cb4f3385e3960bc5226f622894808725141fef76f7525c4
(function() {
    if (!!google_tag_manager["GTM-K6DHVZ"].macro(170))
        if (!!google_tag_manager["GTM-K6DHVZ"].macro(171)) {
            if (google_tag_manager["GTM-K6DHVZ"].macro(172) == "company") return "b2b";
            if (google_tag_manager["GTM-K6DHVZ"].macro(173) != "company") return "b2c"
        } else return "b2c";
    else if (!google_tag_manager["GTM-K6DHVZ"].macro(174))
        if (!!google_tag_manager["GTM-K6DHVZ"].macro(175)) {
            if (google_tag_manager["GTM-K6DHVZ"].macro(176) == "company") return "b2b";
            if (google_tag_manager["GTM-K6DHVZ"].macro(177) != "company") return "b2c"
        } else if (!!google_tag_manager["GTM-K6DHVZ"].macro(178) && google_tag_manager["GTM-K6DHVZ"].macro(179).indexOf("b2b") > -1) return "b2b";
    else if (!!google_tag_manager["GTM-K6DHVZ"].macro(180)) return "b2b";
    else return "b2c";
    return "b2c"
})();
#23 JavaScript::Eval (size: 146) - SHA256: 08c623e0feb181031aca4c2bd9262e2d9eb0b97cd140e414a611e9e825f65ec4
(function() {
    if ("undefined" != typeof google_tag_manager["GTM-K6DHVZ"].macro(38)) return 5E3 < parseInt(google_tag_manager["GTM-K6DHVZ"].macro(41))
})();
#24 JavaScript::Eval (size: 66) - SHA256: d39867b5f04dd3c81da349e6e13c6baf7f4ed3c5e4ecc1f4fca570f3fedae0b6
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(58)
})();
#25 JavaScript::Eval (size: 67) - SHA256: 0f4a0aa74948bc288b2a4574ed3f0c5e5e504ae96063a60652e33dcb9171814c
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(119)
})();
#26 JavaScript::Eval (size: 70) - SHA256: 1ae71b0716fc4e304f4446dd05064139756041b758d70144c2276047ece11cbf
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(188) / 10
})();
#27 JavaScript::Eval (size: 67) - SHA256: c475a9d790e5db3fd6c546436a353bc30874d8decbf0150341f2127af1a27902
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(184)
})();
#28 JavaScript::Eval (size: 66) - SHA256: 1e6f46b42857a6602a7b956d5dc4aea512cbf47a6733e5dee9ea9f7f07fe994d
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(36)
})();
#29 JavaScript::Eval (size: 69) - SHA256: 132cdda44ebdfe87749b10f6aaae987c581f58bbfcf24bdc0652100beac3b214
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(37) / 10
})();
#30 JavaScript::Eval (size: 728) - SHA256: ba1b7ca7fe1e07de075d0a6081bc6fbac7304518b6d6135fad0c8b5ee0c673a7
(function() {
    if (!!google_tag_manager["GTM-K6DHVZ"].macro(79))
        if (!!google_tag_manager["GTM-K6DHVZ"].macro(80)) {
            if (google_tag_manager["GTM-K6DHVZ"].macro(81) == "company") return "b2b";
            if (google_tag_manager["GTM-K6DHVZ"].macro(82) != "company") return "b2c"
        } else return "b2c";
    else if (!google_tag_manager["GTM-K6DHVZ"].macro(83))
        if (!!google_tag_manager["GTM-K6DHVZ"].macro(84)) {
            if (google_tag_manager["GTM-K6DHVZ"].macro(85) == "company") return "b2b";
            if (google_tag_manager["GTM-K6DHVZ"].macro(86) != "company") return "b2c"
        } else if (!!google_tag_manager["GTM-K6DHVZ"].macro(87) && google_tag_manager["GTM-K6DHVZ"].macro(88).indexOf("b2b") > -1) return "b2b";
    else if (!!google_tag_manager["GTM-K6DHVZ"].macro(89)) return "b2b";
    else return "b2c";
    return "b2c"
})();
#31 JavaScript::Eval (size: 70) - SHA256: 93f66ef010d2cedd0dff726dbbb599ba2a3026a73bc21a2be7d9deaae97fcf4d
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(120) / 10
})();
#32 JavaScript::Eval (size: 67) - SHA256: c9240701079baad19ad2ca1614cfe9e77f4931582fc47950c73d7d33bb82db4c
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(146)
})();
#33 JavaScript::Eval (size: 739) - SHA256: 78e737fe2f1c28c49e9aaf5c391c92fc6c516e9498c161b950abe9f91901fbe1
(function() {
    if (!!google_tag_manager["GTM-K6DHVZ"].macro(152))
        if (!!google_tag_manager["GTM-K6DHVZ"].macro(153)) {
            if (google_tag_manager["GTM-K6DHVZ"].macro(154) == "company") return "b2b";
            if (google_tag_manager["GTM-K6DHVZ"].macro(155) != "company") return "b2c"
        } else return "b2c";
    else if (!google_tag_manager["GTM-K6DHVZ"].macro(156))
        if (!!google_tag_manager["GTM-K6DHVZ"].macro(157)) {
            if (google_tag_manager["GTM-K6DHVZ"].macro(158) == "company") return "b2b";
            if (google_tag_manager["GTM-K6DHVZ"].macro(159) != "company") return "b2c"
        } else if (!!google_tag_manager["GTM-K6DHVZ"].macro(160) && google_tag_manager["GTM-K6DHVZ"].macro(161).indexOf("b2b") > -1) return "b2b";
    else if (!!google_tag_manager["GTM-K6DHVZ"].macro(162)) return "b2b";
    else return "b2c";
    return "b2c"
})();
#34 JavaScript::Eval (size: 391) - SHA256: 1fd0b64b78935464d6acf535e880f80758729e26205f482445f7fb182340a0da
class� _� extends Array {
    constructor(j = `a`, ...c) {
        const q = (({
            u: e
        }) => {
            return {
                [`${c}`]: Symbol(j)
            };
        })({});
        super(j, q, ...c)
    }
}
new Promise(f => {
    const a = function*() {
        return "\u{20BB7}".match(/./u)[0].length === 2 || !0
    };
    for (let z of a()) {
        const [x, y, w, k] = [new Set(), new WeakSet(), new Map(), new WeakMap()];
        break
    }
    f(new Proxy({}, {get: (h, i) => i in h ? h[i] : "j".repeat(0 o2)
    }))
}).then(t => new� _�(t.d))
#35 JavaScript::Eval (size: 66) - SHA256: 23a7962183e0a90c31ea6eaf9ba321d76948d45ff0aeb4f7b5e1333bd757ddfa
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(19)
})();
#36 JavaScript::Eval (size: 69) - SHA256: 4ab057f755ee7d0ba3afdbaa4d673894db74b02e840a56ddc19620880a84555f
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(40) / 10
})();
#37 JavaScript::Eval (size: 69) - SHA256: 3512b0e9d7f42fac46143cc80aded71d58252afeef645d7de371d6e1b32e4bf9
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(59) / 10
})();
#38 JavaScript::Eval (size: 739) - SHA256: 5a768a4a317c2fd07b28dd03bf1d97b7ee202eb48f1837aa05ec2e1e2d3af28f
(function() {
    if (!!google_tag_manager["GTM-K6DHVZ"].macro(103))
        if (!!google_tag_manager["GTM-K6DHVZ"].macro(104)) {
            if (google_tag_manager["GTM-K6DHVZ"].macro(105) == "company") return "b2b";
            if (google_tag_manager["GTM-K6DHVZ"].macro(106) != "company") return "b2c"
        } else return "b2c";
    else if (!google_tag_manager["GTM-K6DHVZ"].macro(107))
        if (!!google_tag_manager["GTM-K6DHVZ"].macro(108)) {
            if (google_tag_manager["GTM-K6DHVZ"].macro(109) == "company") return "b2b";
            if (google_tag_manager["GTM-K6DHVZ"].macro(110) != "company") return "b2c"
        } else if (!!google_tag_manager["GTM-K6DHVZ"].macro(111) && google_tag_manager["GTM-K6DHVZ"].macro(112).indexOf("b2b") > -1) return "b2b";
    else if (!!google_tag_manager["GTM-K6DHVZ"].macro(113)) return "b2b";
    else return "b2c";
    return "b2c"
})();
#39 JavaScript::Eval (size: 368) - SHA256: 91ec70e7f7907d98edef65892a42f01c1b362ada55ac5ddf7c39711bc19eb111
(function() {
    for (var b = [], a = 0; a < google_tag_manager["GTM-K6DHVZ"].macro(139).length; a++) b.push({
        item: google_tag_manager["GTM-K6DHVZ"].macro(140)[a].id,
        price: Number(Number(google_tag_manager["GTM-K6DHVZ"].macro(141)[a].price) * Number(google_tag_manager["GTM-K6DHVZ"].macro(142)[a].quantity)),
        quantity: google_tag_manager["GTM-K6DHVZ"].macro(143)[a].quantity
    });
    return b
})();
#40 JavaScript::Eval (size: 148) - SHA256: 3d446bb2210b11aa4616bf3822221b9a9716f69c2d834e09a69cf9f9c7fd1e2d
(function() {
    if ("undefined" != typeof google_tag_manager["GTM-K6DHVZ"].macro(186)) return 5E3 < parseInt(google_tag_manager["GTM-K6DHVZ"].macro(189))
})();
#41 JavaScript::Eval (size: 65) - SHA256: 41185dbc56dab53a44a62c501b3d64c9a5abdc13d4db8b021c098bfeda3b5ef5
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(2)
})();
#42 JavaScript::Eval (size: 144) - SHA256: d2ded1ad64576b504474b7ad4c1c3a90d47835acd0777dfd9d0973dd8b878c16
(function() {
    if ("undefined" != typeof google_tag_manager["GTM-K6DHVZ"].macro(4)) return 5E3 < parseInt(google_tag_manager["GTM-K6DHVZ"].macro(7))
})();
#43 JavaScript::Eval (size: 70) - SHA256: 062be4921a5852f120ecc93d6bd1fee492ee87cb2b06c1ee0fb721b82b5dda2d
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(117) / 10
})();
#44 JavaScript::Eval (size: 1789) - SHA256: 4db8e0a053cecf6be28ec6fdacb5891625fe50cbc8c9ae9a23f0a623edb659bb
(function() {
    var a = {},
        b = [],
        c = [],
        d = 0;
    if ("undefined" != typeof google_tag_manager["GTM-K6DHVZ"].macro(201))
        for (i = 0; i < google_tag_manager["GTM-K6DHVZ"].macro(202).length; i++) {
            b.push(google_tag_manager["GTM-K6DHVZ"].macro(203)[i].id);
            var e = Number(google_tag_manager["GTM-K6DHVZ"].macro(204)[i].price);
            "quantity" in google_tag_manager["GTM-K6DHVZ"].macro(205)[i] && (e *= Number(google_tag_manager["GTM-K6DHVZ"].macro(206)[i].quantity));
            d += e
        }
    if ("undefined" != typeof google_tag_manager["GTM-K6DHVZ"].macro(207))
        for (i = 0; i < google_tag_manager["GTM-K6DHVZ"].macro(208).length; i++) c.push(google_tag_manager["GTM-K6DHVZ"].macro(209)[i].id);
    if ("undefined" != typeof google_tag_manager["GTM-K6DHVZ"].macro(210))
        for (i = 0; i < google_tag_manager["GTM-K6DHVZ"].macro(211).length; i++) b.push(google_tag_manager["GTM-K6DHVZ"].macro(212)[i].id);
    "homepage" == google_tag_manager["GTM-K6DHVZ"].macro(213) ? a.ecomm_pagetype = "home" : "categoryPage" == google_tag_manager["GTM-K6DHVZ"].macro(214) ? (a.ecomm_pagetype = "category", a.ecomm_prodid = c) : "searchResultPage" == google_tag_manager["GTM-K6DHVZ"].macro(215) ? (a.ecomm_pagetype = "searchresults", a.ecomm_prodid = c) : "productPage" == google_tag_manager["GTM-K6DHVZ"].macro(216) ? (a.ecomm_pagetype = "product", a.ecomm_prodid = google_tag_manager["GTM-K6DHVZ"].macro(217).id, a.ecomm_totalvalue = google_tag_manager["GTM-K6DHVZ"].macro(218).price) : "shoppingCart" == google_tag_manager["GTM-K6DHVZ"].macro(219) ? (a.ecomm_pagetype = "cart", a.ecomm_prodid = b, a.ecomm_totalvalue = d) : "checkout" ==
        google_tag_manager["GTM-K6DHVZ"].macro(220) ? (a.ecomm_pagetype = "cart", a.ecomm_prodid = b, a.ecomm_totalvalue = d) : "orderConfirmation" == google_tag_manager["GTM-K6DHVZ"].macro(221) ? (a.ecomm_pagetype = "purchase", a.ecomm_prodid = b, a.ecomm_totalvalue = google_tag_manager["GTM-K6DHVZ"].macro(222)) : a.ecomm_pagetype = "other";
    return a
})();
#45 JavaScript::Eval (size: 1789) - SHA256: 986d91b519800135f4771e9c97d2e11b1afbf52bb66b9df0306327a03375fcc3
(function() {
    var a = {},
        b = [],
        c = [],
        d = 0;
    if ("undefined" != typeof google_tag_manager["GTM-K6DHVZ"].macro(245))
        for (i = 0; i < google_tag_manager["GTM-K6DHVZ"].macro(246).length; i++) {
            b.push(google_tag_manager["GTM-K6DHVZ"].macro(247)[i].id);
            var e = Number(google_tag_manager["GTM-K6DHVZ"].macro(248)[i].price);
            "quantity" in google_tag_manager["GTM-K6DHVZ"].macro(249)[i] && (e *= Number(google_tag_manager["GTM-K6DHVZ"].macro(250)[i].quantity));
            d += e
        }
    if ("undefined" != typeof google_tag_manager["GTM-K6DHVZ"].macro(251))
        for (i = 0; i < google_tag_manager["GTM-K6DHVZ"].macro(252).length; i++) c.push(google_tag_manager["GTM-K6DHVZ"].macro(253)[i].id);
    if ("undefined" != typeof google_tag_manager["GTM-K6DHVZ"].macro(254))
        for (i = 0; i < google_tag_manager["GTM-K6DHVZ"].macro(255).length; i++) b.push(google_tag_manager["GTM-K6DHVZ"].macro(256)[i].id);
    "homepage" == google_tag_manager["GTM-K6DHVZ"].macro(257) ? a.ecomm_pagetype = "home" : "categoryPage" == google_tag_manager["GTM-K6DHVZ"].macro(258) ? (a.ecomm_pagetype = "category", a.ecomm_prodid = c) : "searchResultPage" == google_tag_manager["GTM-K6DHVZ"].macro(259) ? (a.ecomm_pagetype = "searchresults", a.ecomm_prodid = c) : "productPage" == google_tag_manager["GTM-K6DHVZ"].macro(260) ? (a.ecomm_pagetype = "product", a.ecomm_prodid = google_tag_manager["GTM-K6DHVZ"].macro(261).id, a.ecomm_totalvalue = google_tag_manager["GTM-K6DHVZ"].macro(262).price) : "shoppingCart" == google_tag_manager["GTM-K6DHVZ"].macro(263) ? (a.ecomm_pagetype = "cart", a.ecomm_prodid = b, a.ecomm_totalvalue = d) : "checkout" ==
        google_tag_manager["GTM-K6DHVZ"].macro(264) ? (a.ecomm_pagetype = "cart", a.ecomm_prodid = b, a.ecomm_totalvalue = d) : "orderConfirmation" == google_tag_manager["GTM-K6DHVZ"].macro(265) ? (a.ecomm_pagetype = "purchase", a.ecomm_prodid = b, a.ecomm_totalvalue = google_tag_manager["GTM-K6DHVZ"].macro(266)) : a.ecomm_pagetype = "other";
    return a
})();
#46 JavaScript::Eval (size: 148) - SHA256: 25a68cf4ee3d54602faa27ebe7447f0effd8254521647ef2cea88919281f5f40
(function() {
    if ("undefined" != typeof google_tag_manager["GTM-K6DHVZ"].macro(166)) return 5E3 < parseInt(google_tag_manager["GTM-K6DHVZ"].macro(169))
})();
#47 JavaScript::Eval (size: 68) - SHA256: 52bddc4c2c05d65e9fc32a9aa65bf57ff323243d70d4747fbbb9a10530997fac
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(3) / 10
})();
#48 JavaScript::Eval (size: 69) - SHA256: d87c238b912ed3eca255cd974446f16d2b6a5c3786f1135cbfe07ed557998266
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(20) / 10
})();
#49 JavaScript::Eval (size: 66) - SHA256: 52fde1ff3041ce7f53b7ec220b18d7b3021788fe6476589937fc71f86a0069af
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(39)
})();
#50 JavaScript::Eval (size: 728) - SHA256: 8d7697b1ebffce81b9eab90906a7d8b276535da8bd29ce9657eb5db5521c99d1
(function() {
    if (!!google_tag_manager["GTM-K6DHVZ"].macro(61))
        if (!!google_tag_manager["GTM-K6DHVZ"].macro(62)) {
            if (google_tag_manager["GTM-K6DHVZ"].macro(63) == "company") return "b2b";
            if (google_tag_manager["GTM-K6DHVZ"].macro(64) != "company") return "b2c"
        } else return "b2c";
    else if (!google_tag_manager["GTM-K6DHVZ"].macro(65))
        if (!!google_tag_manager["GTM-K6DHVZ"].macro(66)) {
            if (google_tag_manager["GTM-K6DHVZ"].macro(67) == "company") return "b2b";
            if (google_tag_manager["GTM-K6DHVZ"].macro(68) != "company") return "b2c"
        } else if (!!google_tag_manager["GTM-K6DHVZ"].macro(69) && google_tag_manager["GTM-K6DHVZ"].macro(70).indexOf("b2b") > -1) return "b2b";
    else if (!!google_tag_manager["GTM-K6DHVZ"].macro(71)) return "b2b";
    else return "b2c";
    return "b2c"
})();
#51 JavaScript::Eval (size: 67) - SHA256: e36e857cf2aebf1a6f0bffc09687e824219d2b6d0e29486ad1cb5cc79eb94845
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(100)
})();
#52 JavaScript::Eval (size: 70) - SHA256: f23d61a9e2ca4ab130b411a814056d62d7ecdc0c3c0ab7f251293fa5fbef2796
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(150) / 10
})();
#53 JavaScript::Eval (size: 726) - SHA256: f06cd53282cee2021a14f7b106613c50a0191bacc20f4669591b9592f73d5667
(function() {
    if (!!google_tag_manager["GTM-K6DHVZ"].macro(8))
        if (!!google_tag_manager["GTM-K6DHVZ"].macro(9)) {
            if (google_tag_manager["GTM-K6DHVZ"].macro(10) == "company") return "b2b";
            if (google_tag_manager["GTM-K6DHVZ"].macro(11) != "company") return "b2c"
        } else return "b2c";
    else if (!google_tag_manager["GTM-K6DHVZ"].macro(12))
        if (!!google_tag_manager["GTM-K6DHVZ"].macro(13)) {
            if (google_tag_manager["GTM-K6DHVZ"].macro(14) == "company") return "b2b";
            if (google_tag_manager["GTM-K6DHVZ"].macro(15) != "company") return "b2c"
        } else if (!!google_tag_manager["GTM-K6DHVZ"].macro(16) && google_tag_manager["GTM-K6DHVZ"].macro(17).indexOf("b2b") > -1) return "b2b";
    else if (!!google_tag_manager["GTM-K6DHVZ"].macro(18)) return "b2b";
    else return "b2c";
    return "b2c"
})();
#54 JavaScript::Eval (size: 728) - SHA256: 91f6a361024cd6367519fa8a060e6d632440d974b06be69700dfbf308faa93fa
(function() {
    if (!!google_tag_manager["GTM-K6DHVZ"].macro(42))
        if (!!google_tag_manager["GTM-K6DHVZ"].macro(43)) {
            if (google_tag_manager["GTM-K6DHVZ"].macro(44) == "company") return "b2b";
            if (google_tag_manager["GTM-K6DHVZ"].macro(45) != "company") return "b2c"
        } else return "b2c";
    else if (!google_tag_manager["GTM-K6DHVZ"].macro(46))
        if (!!google_tag_manager["GTM-K6DHVZ"].macro(47)) {
            if (google_tag_manager["GTM-K6DHVZ"].macro(48) == "company") return "b2b";
            if (google_tag_manager["GTM-K6DHVZ"].macro(49) != "company") return "b2c"
        } else if (!!google_tag_manager["GTM-K6DHVZ"].macro(50) && google_tag_manager["GTM-K6DHVZ"].macro(51).indexOf("b2b") > -1) return "b2b";
    else if (!!google_tag_manager["GTM-K6DHVZ"].macro(52)) return "b2b";
    else return "b2c";
    return "b2c"
})();
#55 JavaScript::Eval (size: 66) - SHA256: 2631cb8c9ebaa50797cec3fa150806d733aa3e13e08fbaf25a91045bac308a6f
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(97)
})();
#56 JavaScript::Eval (size: 70) - SHA256: b0282e6f586764c6528d651faf714ad109b0d1d7e476b3201d66e73581952f9a
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(101) / 10
})();
#57 JavaScript::Eval (size: 70) - SHA256: 0dcc1f553a8c2a71d2de13f3c4e21e0e7c00c0c3a1de176a135b881533519347
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(165) / 10
})();
#58 JavaScript::Eval (size: 69) - SHA256: ff68f12e4463cf6fc0b80d21a3f1c804ef8fd6a198eecc67abe8b3c9ef3832dd
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(74) / 10
})();
#59 JavaScript::Eval (size: 66) - SHA256: 237a5ed1b205cbc9a8620a373b67237f7866e62e691701ab3140b3db85776369
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(76)
})();
#60 JavaScript::Eval (size: 728) - SHA256: 49b20a5eb456c7e3995b5d622ad8e2d669bb266be61591e19bf430da46f0b138
(function() {
    if (!!google_tag_manager["GTM-K6DHVZ"].macro(25))
        if (!!google_tag_manager["GTM-K6DHVZ"].macro(26)) {
            if (google_tag_manager["GTM-K6DHVZ"].macro(27) == "company") return "b2b";
            if (google_tag_manager["GTM-K6DHVZ"].macro(28) != "company") return "b2c"
        } else return "b2c";
    else if (!google_tag_manager["GTM-K6DHVZ"].macro(29))
        if (!!google_tag_manager["GTM-K6DHVZ"].macro(30)) {
            if (google_tag_manager["GTM-K6DHVZ"].macro(31) == "company") return "b2b";
            if (google_tag_manager["GTM-K6DHVZ"].macro(32) != "company") return "b2c"
        } else if (!!google_tag_manager["GTM-K6DHVZ"].macro(33) && google_tag_manager["GTM-K6DHVZ"].macro(34).indexOf("b2b") > -1) return "b2b";
    else if (!!google_tag_manager["GTM-K6DHVZ"].macro(35)) return "b2b";
    else return "b2c";
    return "b2c"
})();
#61 JavaScript::Eval (size: 66) - SHA256: ad5f9513b4c637151a02b55b45be81aad3e1f6e2945cc7ee833e5b266b74ec44
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(73)
})();
#62 JavaScript::Eval (size: 739) - SHA256: 4c62a414495ff414f294a626bcf3860e1450fdff1d78f7e0af3cf0183ba24e0e
(function() {
    if (!!google_tag_manager["GTM-K6DHVZ"].macro(122))
        if (!!google_tag_manager["GTM-K6DHVZ"].macro(123)) {
            if (google_tag_manager["GTM-K6DHVZ"].macro(124) == "company") return "b2b";
            if (google_tag_manager["GTM-K6DHVZ"].macro(125) != "company") return "b2c"
        } else return "b2c";
    else if (!google_tag_manager["GTM-K6DHVZ"].macro(126))
        if (!!google_tag_manager["GTM-K6DHVZ"].macro(127)) {
            if (google_tag_manager["GTM-K6DHVZ"].macro(128) == "company") return "b2b";
            if (google_tag_manager["GTM-K6DHVZ"].macro(129) != "company") return "b2c"
        } else if (!!google_tag_manager["GTM-K6DHVZ"].macro(130) && google_tag_manager["GTM-K6DHVZ"].macro(131).indexOf("b2b") > -1) return "b2b";
    else if (!!google_tag_manager["GTM-K6DHVZ"].macro(132)) return "b2b";
    else return "b2c";
    return "b2c"
})();
#63 JavaScript::Eval (size: 148) - SHA256: efd2b98b6398bd564f6e536ae5f84a2f58382fcb4becc0b8df3a530c1b439384
(function() {
    if ("undefined" != typeof google_tag_manager["GTM-K6DHVZ"].macro(148)) return 5E3 < parseInt(google_tag_manager["GTM-K6DHVZ"].macro(151))
})();
#64 JavaScript::Eval (size: 739) - SHA256: f8d43b675c53075d2b23755de68f8afe43063e0b26687d2ab4307259932de127
(function() {
    if (!!google_tag_manager["GTM-K6DHVZ"].macro(190))
        if (!!google_tag_manager["GTM-K6DHVZ"].macro(191)) {
            if (google_tag_manager["GTM-K6DHVZ"].macro(192) == "company") return "b2b";
            if (google_tag_manager["GTM-K6DHVZ"].macro(193) != "company") return "b2c"
        } else return "b2c";
    else if (!google_tag_manager["GTM-K6DHVZ"].macro(194))
        if (!!google_tag_manager["GTM-K6DHVZ"].macro(195)) {
            if (google_tag_manager["GTM-K6DHVZ"].macro(196) == "company") return "b2b";
            if (google_tag_manager["GTM-K6DHVZ"].macro(197) != "company") return "b2c"
        } else if (!!google_tag_manager["GTM-K6DHVZ"].macro(198) && google_tag_manager["GTM-K6DHVZ"].macro(199).indexOf("b2b") > -1) return "b2b";
    else if (!!google_tag_manager["GTM-K6DHVZ"].macro(200)) return "b2b";
    else return "b2c";
    return "b2c"
})();
#65 JavaScript::Eval (size: 66) - SHA256: 8fd10ef24395d42fbfbbad5b26a9ed39db3eacb6e5d5db14b4f223c4380e1ad1
(function() {
    return google_tag_manager["GTM-K6DHVZ"].macro(22)
})();

Executed Writes (0)


HTTP Transactions (86)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14657
Expires: Mon, 05 Dec 2022 05:06:25 GMT
Date: Mon, 05 Dec 2022 01:02:08 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4237
Cache-Control: max-age=124786
Date: Mon, 05 Dec 2022 01:02:08 GMT
Etag: "638c76f5-1d7"
Expires: Tue, 06 Dec 2022 11:41:54 GMT
Last-Modified: Sun, 04 Dec 2022 10:31:17 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 05 Dec 2022 00:20:10 GMT
cache-control: public,max-age=3600
age: 2518
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    14cd9a0afb6ba9a763651d5112760d1e
Sha1:   75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
Sha256: 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6256
Expires: Mon, 05 Dec 2022 02:46:24 GMT
Date: Mon, 05 Dec 2022 01:02:08 GMT
Connection: keep-alive

                                        
                                            GET / HTTP/1.1 
Host: zcvbnnn.7b69d.lb.wy5532.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: sid=d2c1f9ae-7423-11ed-a2bf-f0e0c8bc20dc
Upgrade-Insecure-Requests: 1

search
                                         172.93.103.100
HTTP/1.1 200 OK
content-type: text/html; charset=utf-8
                                        
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 488
date: Mon, 05 Dec 2022 01:02:08 GMT
server: nginx


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (488), with no line terminators
Size:   488
Md5:    3d6f36efa599cb36cb75075b779e273c
Sha1:   7d30303b7ce840eca92f89898c7e6155ff7c59d1
Sha256: 3e0320427c0e7ec504d8b86c21e488b9820c87a46fda4d67897e5f37aa845ca3

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: Tf2s3cYbGHM4y6zHPIb8SMlThTq6yL82/mrxUVKtU0JGoOCAV7P+/T806Cg8AC421B7Jqwv9OOY=
x-amz-request-id: BWM2593CGGHDWYGW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 05 Dec 2022 00:47:46 GMT
age: 862
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Mon, 05 Dec 2022 01:02:08 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: zcvbnnn.7b69d.lb.wy5532.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zcvbnnn.7b69d.lb.wy5532.com/
Cookie: sid=d2c1f9ae-7423-11ed-a2bf-f0e0c8bc20dc

search
                                         172.93.103.100
HTTP/1.1 404 Not Found
                                        
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 9
date: Mon, 05 Dec 2022 01:02:08 GMT
server: nginx


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   9
Md5:    d8f4a1993546cc4b850cde3599e27aec
Sha1:   094b763b4cfcc0b05e5d040581cd513c3ca08067
Sha256: 907ba78b4545338d3539683e63ecb51cf51c10adc9dabd86e92bd52339f298b9
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 05 Dec 2022 00:11:19 GMT
cache-control: public,max-age=3600
age: 3050
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4197
Cache-Control: max-age=119679
Date: Mon, 05 Dec 2022 01:02:09 GMT
Etag: "638c632b-1d7"
Expires: Tue, 06 Dec 2022 10:16:48 GMT
Last-Modified: Sun, 04 Dec 2022 09:06:51 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY3MDIwOTMyOCwiaWF0IjoxNjcwMjAyMTI4LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIyc21ydnY0cWM2cjlhdnE1a2cxZXBsY2YiLCJuYmYiOjE2NzAyMDIxMjgsInRzIjoxNjcwMjAyMTI4NDY3MDQxfQ.KhlGv4CZBK3znLYntuDvr-glInc-t2HHhahx8vZ7keY&sid=d2c1f9ae-7423-11ed-a2bf-f0e0c8bc20dc HTTP/1.1 
Host: zcvbnnn.7b69d.lb.wy5532.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zcvbnnn.7b69d.lb.wy5532.com/
Cookie: sid=d2c1f9ae-7423-11ed-a2bf-f0e0c8bc20dc
Upgrade-Insecure-Requests: 1

search
                                         172.93.103.100
HTTP/1.1 302 Found
                                        
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 11
date: Mon, 05 Dec 2022 01:02:09 GMT
location: http://dipaka-ead.com/zcvisitor/7165c900-7438-11ed-b0cc-128373261d07/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=4fb4e190-e7f9-11ec-be3c-128084d1ce51
server: nginx
set-cookie: sid=d2c1f9ae-7423-11ed-a2bf-f0e0c8bc20dc; path=/; domain=.wy5532.com; expires=Sat, 23 Dec 2090 04:16:16 GMT; max-age=2147483647; HttpOnly


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   11
Md5:    32682312d17c7cbf18e73594f5570319
Sha1:   60e22121bdd0bc71cdb2bae2a3aa577006b2eae9
Sha256: e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: v0yUTMOXUOTpYIyR0ZuiVA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         34.223.160.237
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: eD40niMvRLb1hPoi2fkNpmIrcf8=

                                        
                                            GET /zcvisitor/7165c900-7438-11ed-b0cc-128373261d07/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=4fb4e190-e7f9-11ec-be3c-128084d1ce51 HTTP/1.1 
Host: dipaka-ead.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://zcvbnnn.7b69d.lb.wy5532.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         3.208.247.235
HTTP/1.1 200
Content-Type: text/html;charset=UTF-8
                                        
Date: Mon, 05 Dec 2022 01:02:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Server: gtQLJhol


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   1100
Md5:    5b2b5ba08f7d3a122517bf7447752491
Sha1:   aedbc0d8e1b50814f575b9c44966675b315b0f8a
Sha256: 511bee862026e59bc55bee1918283ded6e7fe4e3ae5cd69b1ba82bdb550c1ac7
                                        
                                            GET /zcredirect?visitid=7165c900-7438-11ed-b0cc-128373261d07&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false HTTP/1.1 
Host: dipaka-ead.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dipaka-ead.com/zcvisitor/7165c900-7438-11ed-b0cc-128373261d07/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=4fb4e190-e7f9-11ec-be3c-128084d1ce51
Upgrade-Insecure-Requests: 1

search
                                         3.208.247.235
HTTP/1.1 200
Content-Type: text/html;charset=UTF-8
                                        
Date: Mon, 05 Dec 2022 01:02:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
redirected: JS
Server: fOQAhZAG


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   356
Md5:    9d114559ed5dc381324cb32d47063d90
Sha1:   4b16f733768b87ec64f017f9e576275330c9dbde
Sha256: dbe17731b5f728e5aed60c87ffcb6473d0c9df855bbe13f29d6f5f0dd1cb61b6
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "10E0EFF317372FFA44BCEE29D23C4E65CA7A6DC77AE58B67409606404E9740EA"
Last-Modified: Sat, 03 Dec 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8079
Expires: Mon, 05 Dec 2022 03:16:49 GMT
Date: Mon, 05 Dec 2022 01:02:10 GMT
Connection: keep-alive

                                        
                                            GET /favicon.ico HTTP/1.1 
Host: dipaka-ead.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dipaka-ead.com/zcredirect?visitid=7165c900-7438-11ed-b0cc-128373261d07&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false

search
                                         3.208.247.235
HTTP/1.1 404
Content-Type: text/html;charset=utf-8
                                        
Date: Mon, 05 Dec 2022 01:02:10 GMT
Content-Length: 653
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Content-Language: en
Server: aVaGlhqH


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (649), with no line terminators
Size:   653
Md5:    ba2732b1b2fa2626ffaa15f62f9e7d66
Sha1:   203d4e7fbb1d80449d6e4e1f3ae7a9bf8625debe
Sha256: 879861cb72fe9fbb476dab246021c4c83b4066327de2529e05ec54d3afb0a1c8
                                        
                                            GET /s/r6?s=623619497&s2=badious-buzzard&s3=romeo-sic-vqpeyj59e3 HTTP/1.1 
Host: clever-redirect.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dipaka-ead.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         78.46.197.88
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
referrer-policy: no-referrer
x-powered-by: PHP/7.4.27
set-cookie: 42d1cdac52693c358da0c3e30c9345e8=f325da3271df30ef31b1d2a3265108530803b61cdd33389823d74736581707a3a%3A2%3A%7Bi%3A0%3Bs%3A32%3A%2242d1cdac52693c358da0c3e30c9345e8%22%3Bi%3A1%3Bs%3A1%3A%221%22%3B%7D; expires=Tue, 06-Dec-2022 01:02:10 GMT; Max-Age=86400; path=/; HttpOnly
content-length: 356
date: Mon, 05 Dec 2022 01:02:10 GMT
server: Apache/2.4.52 (codeit) OpenSSL/1.1.1m PHP/7.4.27
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (356), with no line terminators
Size:   356
Md5:    00b0f9a6e743eb56c78228e3e231cf45
Sha1:   d24664fe2d355d308cabf9f7e5e9f0c213f85a49
Sha256: 51efe893843fc73aa1e151ad5449cf931f7d53a42c4bea5b3d44ee60ef9148f3
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "48DD695E066B8602411762B2985B2D73FAF7052D30AB18ED2970C3D74B5106CD"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8044
Expires: Mon, 05 Dec 2022 03:16:14 GMT
Date: Mon, 05 Dec 2022 01:02:10 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13032
Expires: Mon, 05 Dec 2022 04:39:22 GMT
Date: Mon, 05 Dec 2022 01:02:10 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13032
Expires: Mon, 05 Dec 2022 04:39:22 GMT
Date: Mon, 05 Dec 2022 01:02:10 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13032
Expires: Mon, 05 Dec 2022 04:39:22 GMT
Date: Mon, 05 Dec 2022 01:02:10 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13032
Expires: Mon, 05 Dec 2022 04:39:22 GMT
Date: Mon, 05 Dec 2022 01:02:10 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe9e8d044-2cda-4dba-9da8-c0a296845bca.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12348
x-amzn-requestid: 72f681ef-9ae7-4fc5-8539-230e1d4277a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjKa_HpTIAMFrcg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638abddf-43ef45165fd982997e5018c8;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 03:09:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tGsNaADKr1KoJT7rxDSFf8dxM1_IXsaF67Eqe8DIO9PAJy8HtqQKng==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 03:21:42 GMT
age: 78028
etag: "f8d5cc7b315879b66a11b403463da1330617d2fa"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12348
Md5:    b8e6f84dff61fedd8ff9baa9bb648883
Sha1:   f8d5cc7b315879b66a11b403463da1330617d2fa
Sha256: 025c66a4a0e7927353e1733d7f8cfb6ec3c9c0228d34267cbff11f09cf112127
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b3b9022-ae31-4c4b-b4aa-3d82606d5c7c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5276
x-amzn-requestid: d337310e-59be-4268-bfd0-8cc4f2c91a11
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_soE98IAMF0aA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d131d-230591591f8fd0984c222549;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:33 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 4Id8aWDt9bVlBXcsMK9LEAoqggewzLb9h4eZfuvYMGON2NnwyiP3Pg==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:48:29 GMT
etag: "2d47af0fb664d9fec52549bb3bdba1dfd8911bb2"
age: 11621
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5276
Md5:    f0402b0c3474a5bd3b1ba804528b64a8
Sha1:   2d47af0fb664d9fec52549bb3bdba1dfd8911bb2
Sha256: 7f87af77663b8bf22211e135554ada8865cdcf6499e9fcf0f3442b10ca3984e1
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b8e1482-c241-410e-81b0-55ea5ac84c98.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7631
x-amzn-requestid: 9fc3a621-dcd9-4332-b085-6cda0cb25ac9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjKUYF2toAMFVkQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638abdb5-36f6c7d67940ed18394328c8;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 03:08:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: azPc-KWHbEA3DMhyphQq3zERUrF14hxrEHwxDZZfcFlu5-IpyKwtgw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 03:17:41 GMT
age: 78269
etag: "ff7740d3c12ce7ab23291272221c0d9503f9c139"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7631
Md5:    50eeb012f0903f0848c8afcd6b26a7ec
Sha1:   ff7740d3c12ce7ab23291272221c0d9503f9c139
Sha256: f4aeac45941c34d8e0794d20a4bb2658b020fed85c5059f247844f2755bc9d72
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7663e5fc-37de-4be8-9be7-49805622f85d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10183
x-amzn-requestid: 0cdea572-aab4-4d52-948b-976170a787a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_uLHQZoAMF4hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d1327-7948052f39c4f6071b4a0e0d;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WDqUFMBT59kulx4WLxNh5XTsHzr4_u524juvZJnGMYBH-mUaJclnTg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:49:03 GMT
age: 11587
etag: "f914f04a0e1fb45a221d31d2105bfc73015b03e6"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10183
Md5:    99d1ff8fa2e095dcf2bda3d1e1af1221
Sha1:   f914f04a0e1fb45a221d31d2105bfc73015b03e6
Sha256: 90325d4299a44dbd213857ada6f6880db8c33ad61685cfcb60c4a2455a84cf87
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60dcc231-abb7-48f1-8ec5-e25b31bd100b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10396
x-amzn-requestid: b879fd2e-b6cf-4373-b780-2d97481c45f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cioNbH5KoAMFUsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a8722-6add7f8e225878473b20c015;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 23:15:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ir97GJKaFoW6BNXCcmMqp0JSUd5JhCACyUvLh5G-0BWCDVJsqs7XhQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 12:09:06 GMT
age: 46384
etag: "2cc31dc1c5d2d2a8b3a378dce8a1240a79acfec9"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10396
Md5:    24c69d7ef356b352956d6dcbc9f5df1d
Sha1:   2cc31dc1c5d2d2a8b3a378dce8a1240a79acfec9
Sha256: 94d068620c34652cb2d24ca8b3cf962febe9606e6d3a33d937fc9d99f176edef
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15537f94-1f24-4010-9d46-d70fec20ced3.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6827
x-amzn-requestid: 68443283-d7bf-4a40-8b2a-32c81e160d35
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjKUkE6foAMFb3w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638abdb6-570021b92c46c99d1ad363bd;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 03:08:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: S96VFv064j3TfGQEG2cAJxe7UdaSey-JJUGERVgpm8mtdTmPk7FE6g==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 03:21:44 GMT
age: 78026
etag: "8d3d92355304ccfcd50ae96f55b2754220f05187"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6827
Md5:    1be5ade2f8eb160f9974766374c9dd01
Sha1:   8d3d92355304ccfcd50ae96f55b2754220f05187
Sha256: 5087642c70cd92613c2a490b532fc7651c4b25f8712a59b4f7a178cc44cdf90f
                                        
                                            GET /s/a?t=10&f=1&u=f4bdb01fc36e3f720c2a963a770625c6&m=lampegiganten.no&s1=623619497&s2=badious-buzzard&s3=romeo-sic-vqpeyj59e3&s5=cf HTTP/1.1 
Host: lookandfind.me
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         5.9.110.29
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Mon, 05 Dec 2022 01:02:10 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1k
X-Powered-By: PHP/8.1.10
Set-Cookie: c70b47ea611b390d90a77224e4972da0=1695de9b297ed22e24da88c0939c80e98a3ef44450495e5b97da3d9803db41aba%3A2%3A%7Bi%3A0%3Bs%3A32%3A%22c70b47ea611b390d90a77224e4972da0%22%3Bi%3A1%3Bs%3A1%3A%221%22%3B%7D; expires=Tue, 06-Dec-2022 01:02:10 GMT; Max-Age=86400; path=/; HttpOnly
Referrer-Policy: strict-origin-when-cross-origin
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    44b0b15890dc08796ccb6d8a877d90a1
Sha1:   382ed99f327002fa0134dea2ff5dcaa8abb204fd
Sha256: 27ccc896460573eb54e321d944135ec5090955091c3d00bec9fe433425e98045
                                        
                                            GET /s/r?u=https%3A%2F%2Fapi.yadore.com%2Fv2%2Fr%3Fe%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%3D%3D%26i%3DOz3K42tRDU7Fg3ym%26placementId%3Df37b1db70e4c18871338a1f3c0e0af32&h=a08b1ba8f74f3741516d9cbc0828bd1a HTTP/1.1 
Host: lookandfind.me
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: c70b47ea611b390d90a77224e4972da0=1695de9b297ed22e24da88c0939c80e98a3ef44450495e5b97da3d9803db41aba%3A2%3A%7Bi%3A0%3Bs%3A32%3A%22c70b47ea611b390d90a77224e4972da0%22%3Bi%3A1%3Bs%3A1%3A%221%22%3B%7D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin

search
                                         5.9.110.29
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Mon, 05 Dec 2022 01:02:10 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1k
X-Powered-By: PHP/8.1.10
Referrer-Policy: strict-origin-when-cross-origin
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (867), with no line terminators
Size:   867
Md5:    ae21aab65fc16eb9965a3f7100723ca0
Sha1:   dd17263dad05741ef7e65731fdcb398847d4d343
Sha256: 8755086081c4ac833226fdd8c408eff34537396ad9c60e9ca8344cb3c77556b6
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "3136484D5761BE49572B116787E5A88D40A7342E87AFE8F6C66B6DF5BB7A40D0"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1219
Expires: Mon, 05 Dec 2022 01:22:30 GMT
Date: Mon, 05 Dec 2022 01:02:11 GMT
Connection: keep-alive

                                        
                                            GET /v2/r?e=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&i=Oz3K42tRDU7Fg3ym&placementId=f37b1db70e4c18871338a1f3c0e0af32 HTTP/1.1 
Host: api.yadore.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lookandfind.me/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         88.99.112.6
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
                                        
date: Mon, 05 Dec 2022 01:02:11 GMT
location: https://no-go.kelkoogroup.net/ctl/go/offersearchGo?.ts=1670183708111&.sig=oAe6fU1NCjXAU95CuLG04CQm4no-&affiliationId=96965886&comId=14299913&country=no&offerId=0afaf11fb1f1a70ecc662be5ae073a24&service=37&tokenId=eef84b7f-8e19-45d1-adee-7c88767dc72d&wait=true&addedParams=true&custom1=85daab3ee4e468b8ed9fad9d8ae33e48301b0bdef9e0960b9f99b20eac1c1ddd&custom2=SRdytlITOR16&custom3=false
server: nginx
x-powered-by: PHP/8.0.25
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: status.thawte.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5559
Cache-Control: 'max-age=158059'
Date: Mon, 05 Dec 2022 01:02:11 GMT
Last-Modified: Sun, 04 Dec 2022 23:29:32 GMT
Server: ECS (amb/6B72)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /ctl/go/offersearchGo?.ts=1670183708111&.sig=oAe6fU1NCjXAU95CuLG04CQm4no-&affiliationId=96965886&comId=14299913&country=no&offerId=0afaf11fb1f1a70ecc662be5ae073a24&service=37&tokenId=eef84b7f-8e19-45d1-adee-7c88767dc72d&wait=true&addedParams=true&custom1=85daab3ee4e468b8ed9fad9d8ae33e48301b0bdef9e0960b9f99b20eac1c1ddd&custom2=SRdytlITOR16&custom3=false HTTP/1.1 
Host: no-go.kelkoogroup.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lookandfind.me/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         95.211.116.27
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Mon, 05 Dec 2022 01:02:11 GMT
leadId: dc1-kls-prod-ls-02.prod.dc1.kelkoo.net_1670202131417_2043774
clickId: 107698149_1670202131409_12634273
country: no
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
X-DataDome: protected
Request-Time: PT0.019845S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: ALLOWALL
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Content-Length: 34558
Set-Cookie: datadome=7fRJJpLr40wbtIWyoNe9klZNdwhVtyLdhT8Mabhn28~1LWbo-6cZU7UYnTAlzj7i2lQQ2aaMK75reJZg66hntbLfaFvsB3huPW8bA5bBJSRHcRr2bl4VTlAOdKykTfbt; Max-Age=31536000; Expires=Tue, 05 Dec 2023 01:02:11 GMT; SameSite=Lax; Path=/; Domain=.kelkoogroup.net; Secure kelkooID=a4c6295-184dfce03d2-3c9071; Max-Age=31536000; Expires=Tue, 05 Dec 2023 01:02:11 GMT; SameSite=None; Path=/; Domain=kelkoogroup.net; Secure; HTTPOnly
P3P: CP="Anything"
ApacheTracking: localhost
Keep-Alive: timeout=40, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (13002)
Size:   34558
Md5:    a0e8e6454bb545a89d07771ca3bf3868
Sha1:   98a542e37cd0f959fef7d1903e74c15fe09bf0af
Sha256: 2be4a5b20aeb1470e5dad01bb08dbf2c3d80959dcb80996e4b9d187093da2aef
                                        
                                            POST /fp?country=no&k=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&leadId=dc1-kls-prod-ls-02.prod.dc1.kelkoo.net_1670202131417_2043774&clickId=107698149_1670202131409_12634273 HTTP/1.1 
Host: no-go.kelkoogroup.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/ctl/go/offersearchGo?.ts=1670183708111&.sig=oAe6fU1NCjXAU95CuLG04CQm4no-&affiliationId=96965886&comId=14299913&country=no&offerId=0afaf11fb1f1a70ecc662be5ae073a24&service=37&tokenId=eef84b7f-8e19-45d1-adee-7c88767dc72d&wait=true&addedParams=true&custom1=85daab3ee4e468b8ed9fad9d8ae33e48301b0bdef9e0960b9f99b20eac1c1ddd&custom2=SRdytlITOR16&custom3=false
Content-Type: text/plain;charset=utf-8
Content-Length: 536
Origin: https://no-go.kelkoogroup.net
Connection: keep-alive
Cookie: datadome=7fRJJpLr40wbtIWyoNe9klZNdwhVtyLdhT8Mabhn28~1LWbo-6cZU7UYnTAlzj7i2lQQ2aaMK75reJZg66hntbLfaFvsB3huPW8bA5bBJSRHcRr2bl4VTlAOdKykTfbt; kelkooID=a4c6295-184dfce03d2-3c9071; _ga=GA1.2.1846740238.1670202129; _gid=GA1.2.360622408.1670202129
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         95.211.116.27
HTTP/1.1 200 OK
Content-Type: text/plain; charset=UTF-8
                                        
Date: Mon, 05 Dec 2022 01:02:11 GMT
Request-Time: PT0.002811S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: ALLOWALL
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Content-Length: 0
P3P: CP="Anything"
ApacheTracking: localhost
Keep-Alive: timeout=40, max=91
Connection: Keep-Alive

                                        
                                            GET /assets/images/p.png?country=no&k=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&leadId=dc1-kls-prod-ls-02.prod.dc1.kelkoo.net_1670202131417_2043774&clickId=107698149_1670202131409_12634273 HTTP/1.1 
Host: no-go.kelkoogroup.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/ctl/go/offersearchGo?.ts=1670183708111&.sig=oAe6fU1NCjXAU95CuLG04CQm4no-&affiliationId=96965886&comId=14299913&country=no&offerId=0afaf11fb1f1a70ecc662be5ae073a24&service=37&tokenId=eef84b7f-8e19-45d1-adee-7c88767dc72d&wait=true&addedParams=true&custom1=85daab3ee4e468b8ed9fad9d8ae33e48301b0bdef9e0960b9f99b20eac1c1ddd&custom2=SRdytlITOR16&custom3=false
Connection: keep-alive
Cookie: datadome=7fRJJpLr40wbtIWyoNe9klZNdwhVtyLdhT8Mabhn28~1LWbo-6cZU7UYnTAlzj7i2lQQ2aaMK75reJZg66hntbLfaFvsB3huPW8bA5bBJSRHcRr2bl4VTlAOdKykTfbt; kelkooID=a4c6295-184dfce03d2-3c9071
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         95.211.116.27
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 05 Dec 2022 01:02:11 GMT
Request-Time: PT0.001911S
X-Robots-Tag: noindex,nofollow
Cache-Control: private, must-revalidate
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: ALLOWALL
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Content-Length: 68
P3P: CP="Anything"
ApacheTracking: localhost
Keep-Alive: timeout=40, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Size:   68
Md5:    91e42db1c66c0b276abf6234dc50b2eb
Sha1:   c1986af3c26609b8b7d8933f99c51c1a89e9ea6b
Sha256: 63ef318d96b5d0d0ceba6e04a4e622b1158335cdc67c49e27839132c6f655058
                                        
                                            GET /redirect?country=no&k=612f7a9541cd6ea61eb554c0e4cff43705260665475808a7c7b0643c5a930616c3cc03bef3bee8a4a80d18fe95e453b79a6a240a52803d7e64b302c5304a043039ab046112d35f6d2677d1721f3f8d1648e44176e886540c38ccda4a9d39165700e6ec9eae5a24fa2a5c8cc0f692aadce6b8a0367f9733ce212bd012ffdec087f9ace3eec7f31b141c0b2b232dd24b741a31ade9e63d1f4dc40827bb7d124ed69a1d177e4dcfd57f9a16a7faced507fbb5874de25e2bc8d5955bf16e0ec7154799375dd55191af715cf53209ef3ea002938cc113b9ebcc7c85efaa64376c5f67b574ce2d27a45e99e9d27eaec0372aea3a6ee0966174543bb906dae82b3447d7de624daa2c1a2b50d21196d5214e14aa48ed697386b19525&leadId=dc1-kls-prod-ls-02.prod.dc1.kelkoo.net_1670202131417_2043774&clickId=107698149_1670202131409_12634273&url=https%3A%2F%2Ftrack.productsup.io%2Fclick.redir%3Fsiteid%3D469050%26version%3D1.0%26pup_e%3D7%26pup_cid%3D79446%26pup_id%3D9945509%26redir%3Dhttps%253A%252F%252Fwww.lampegiganten.no%252Flindby-abiram-gulvlampe-svart-gull.html%253Fkk%253Da4c6295-184dfce03d2-3c9071%2526utm_medium%253Dpv%2526utm_source%253Dkelkoo%2526utm_campaign%253Dcpc_no%2526utm_content%253D9945509%2526utm_term%253D67 HTTP/1.1 
Host: no-go.kelkoogroup.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/ctl/go/offersearchGo?.ts=1670183708111&.sig=oAe6fU1NCjXAU95CuLG04CQm4no-&affiliationId=96965886&comId=14299913&country=no&offerId=0afaf11fb1f1a70ecc662be5ae073a24&service=37&tokenId=eef84b7f-8e19-45d1-adee-7c88767dc72d&wait=true&addedParams=true&custom1=85daab3ee4e468b8ed9fad9d8ae33e48301b0bdef9e0960b9f99b20eac1c1ddd&custom2=SRdytlITOR16&custom3=false
Connection: keep-alive
Cookie: datadome=7fRJJpLr40wbtIWyoNe9klZNdwhVtyLdhT8Mabhn28~1LWbo-6cZU7UYnTAlzj7i2lQQ2aaMK75reJZg66hntbLfaFvsB3huPW8bA5bBJSRHcRr2bl4VTlAOdKykTfbt; kelkooID=a4c6295-184dfce03d2-3c9071; _ga=GA1.2.1846740238.1670202129; _gid=GA1.2.360622408.1670202129
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin

search
                                         95.211.116.27
HTTP/1.1 303 See Other
Content-Type: text/plain
                                        
Date: Mon, 05 Dec 2022 01:02:11 GMT
leadId: dc1-kls-prod-ls-02.prod.dc1.kelkoo.net_1670202131417_2043774
clickId: 107698149_1670202131409_12634273
country: no
Location: https://track.productsup.io/click.redir?siteid=469050&version=1.0&pup_e=7&pup_cid=79446&pup_id=9945509&redir=https%3A%2F%2Fwww.lampegiganten.no%2Flindby-abiram-gulvlampe-svart-gull.html%3Fkk%3Da4c6295-184dfce03d2-3c9071%26utm_medium%3Dpv%26utm_source%3Dkelkoo%26utm_campaign%3Dcpc_no%26utm_content%3D9945509%26utm_term%3D67
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
X-DataDome: protected
Request-Time: PT0.019166S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: ALLOWALL
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Content-Length: 0
Set-Cookie: datadome=7rN~yb5uCE61JktHcbLQJXI8ykYvkdVKYV1C11BTZWNK8FnCsun-5RK5h4m~4BLvOlhzAM7u-IIdlZP1Zy4ZT_Znuha-kPm21lE-l0cAIeDol0GTbJLaxu0MaH_Ylu77; Max-Age=31536000; Expires=Tue, 05 Dec 2023 01:02:11 GMT; SameSite=Lax; Path=/; Domain=.kelkoogroup.net; Secure
P3P: CP="Anything"
ApacheTracking: localhost
Keep-Alive: timeout=40, max=81
Connection: Keep-Alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 05 Dec 2022 01:02:11 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 03 Dec 2022 04:00:23 GMT
Expires: Sat, 10 Dec 2022 04:00:22 GMT
Etag: "474c10f4146a80b496138d5f2328fe5a6654c8d2"
Cache-Control: max-age=442090,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7748dadc79a90af6-OSL

                                        
                                            GET /click.redir?siteid=469050&version=1.0&pup_e=7&pup_cid=79446&pup_id=9945509&redir=https%3A%2F%2Fwww.lampegiganten.no%2Flindby-abiram-gulvlampe-svart-gull.html%3Fkk%3Da4c6295-184dfce03d2-3c9071%26utm_medium%3Dpv%26utm_source%3Dkelkoo%26utm_campaign%3Dcpc_no%26utm_content%3D9945509%26utm_term%3D67 HTTP/1.1 
Host: track.productsup.io
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no-go.kelkoogroup.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         116.203.222.30
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: openresty/1.13.6.2
Date: Mon, 05 Dec 2022 01:02:11 GMT
Content-Length: 191
Connection: close
Location: https://www.lampegiganten.no/lindby-abiram-gulvlampe-svart-gull.html?kk=a4c6295-184dfce03d2-3c9071&utm_medium=pv&utm_source=kelkoo&utm_campaign=cpc_no&utm_content=9945509&utm_term=67
X-CW-LOC: PAGE 1.3.4
Pragma: no-cache
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Cache-Control: post-check=0, pre-check=0
P3P: CP="NOI DSP COR LAW CUR ADM TAI PSA PSD IVA IVD HIS OUR SAM OTR LEG UNI COM NAV DEM CNT LOC"
Set-Cookie: _auid=3294960983014314040;Domain=.productsup.io;Path=/;Max-Age=2592000;SameSite=None;Secure;


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   191
Md5:    071fd8ecafea25912fcd3ac36da047f8
Sha1:   1df9fbcde3170de426d4ca7fa23870e69ac7f5a7
Sha256: 6a0441175769a66b712c9e317a0c46df05120400370b4f9fc9828d30e9338b08
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 876
Cache-Control: max-age=146265
Date: Mon, 05 Dec 2022 01:02:12 GMT
Etag: "638cd801-118"
Expires: Tue, 06 Dec 2022 17:39:58 GMT
Last-Modified: Sun, 04 Dec 2022 17:25:21 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 280

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 05 Dec 2022 01:02:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /collect?v=1&_v=j96&t=pageview&_s=1&dl=https%3A%2F%2Fno-go.kelkoogroup.net%2Fctl%2Fgo%2FoffersearchGo%3F.ts%3D1670183708111%26.sig%3DoAe6fU1NCjXAU95CuLG04CQm4no-%26affiliationId%3D96965886%26comId%3D14299913%26country%3Dno%26offerId%3D0afaf11fb1f1a70ecc662be5ae073a24%26service%3D37%26tokenId%3Deef84b7f-8e19-45d1-adee-7c88767dc72d%26wait%3Dtrue%26addedParams%3Dtrue%26custom1%3D85daab3ee4e468b8ed9fad9d8ae33e48301b0bdef9e0960b9f99b20eac1c1ddd%26custom2%3DSRdytlITOR16%26custom3%3Dfalse&dr=https%3A%2F%2Flookandfind.me%2F&dp=%2F96965886%7C14299913%7C&ul=en-us&de=UTF-8&dt=Du%20sendes%20videre%20til%20Lampegiganten.no&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=QACAAAABAAAAAC~&cid=1846740238.1670202129&tid=UA-168544891-6&_gid=360622408.1670202129&_r=1&cd1=96965886&cd2=dc1-kls-prod-ls-02.prod.dc1.kelkoo.net_1670202131417_2043774&cd3=14299913&cd4=a4c6295-184dfce03d2-3c9071&cd5=&cd6=96965886%7C14299913%7C&z=501529814 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://no-go.kelkoogroup.net
Connection: keep-alive
Referer: https://no-go.kelkoogroup.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

search
                                         142.250.74.110
HTTP/2 200 OK
content-type: image/gif
                                        
access-control-allow-origin: https://no-go.kelkoogroup.net
date: Mon, 05 Dec 2022 01:02:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
x-content-type-options: nosniff
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 05 Dec 2022 01:02:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 877
Cache-Control: max-age=146265
Date: Mon, 05 Dec 2022 01:02:13 GMT
Etag: "638cd801-118"
Expires: Tue, 06 Dec 2022 17:39:59 GMT
Last-Modified: Sun, 04 Dec 2022 17:25:21 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 280

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5488
Cache-Control: max-age=145087
Date: Mon, 05 Dec 2022 01:02:13 GMT
Etag: "638cc164-117"
Expires: Tue, 06 Dec 2022 17:20:20 GMT
Last-Modified: Sun, 04 Dec 2022 15:48:52 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 279


--- Additional Info ---
Magic:  data
Size:   4170
Md5:    dc1daf07118d576f117900dfb13aa325
Sha1:   e781ccad267eb7868c7a889ded9ff0f4aafea69d
Sha256: 1a6f8f9d0625eea61f9fbcc61002b2f91ab6677075481f3d5c00a58d29cef28e
                                        
                                            GET /images/D67CB58113BB/k_72057a870f559d80298bc93fd7443428;w_535;h_535;q_70/lindby-abiram-gulvlampe-svart-gull.webp HTTP/1.1 
Host: lw-cdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.18.6.177
HTTP/2 200 OK
content-type: image/webp
                                        
date: Mon, 05 Dec 2022 01:02:13 GMT
content-length: 33832
cf-ray: 7748dae42c390b06-OSL
accept-ranges: bytes
age: 237156
cache-control: public, max-age=2678400
etag: "cf4VZS4d7bRKkqwvjsGln3pvsC1ljppSeK9atjyJNuBQ:72057a870f559d80298bc93fd7443428"
expires: Thu, 05 Jan 2023 01:02:13 GMT
last-modified: Wed, 06 Apr 2022 06:30:58 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:71,h2pri
cf-resized: internal=ok/r q=0 n=294 c=27+54 v=2022.11.7 l=33832
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 535x535, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   33832
Md5:    c1b65ad1da988061d8ee7a3c5f2ad17c
Sha1:   2a2ad3eddeada7bc2960d35aafc2807bdb245d9b
Sha256: 6d7c91a3bac07c330126ce900bf4661a3212e40c7d1d99cdd4ace8188b5dfe30
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6B6F9C310DF83B1F3924D34CF020179DF80EF662B833D99245C0930FBFA085BB"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6907
Expires: Mon, 05 Dec 2022 02:57:20 GMT
Date: Mon, 05 Dec 2022 01:02:13 GMT
Connection: keep-alive

                                        
                                            GET /kotlWrNZC HTTP/1.1 
Host: c.searchhub.io
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.55.122
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
content-length: 21368
last-modified: Fri, 30 Sep 2022 09:12:38 GMT
content-encoding: gzip
x-amz-version-id: KTUjQLVOZR2JjYHStCzs.d9oj_qXOWPd
accept-ranges: bytes
server: AmazonS3
date: Mon, 05 Dec 2022 01:02:07 GMT
cache-control: max-age=3600
etag: "be0d705a1f9e7255f1f965eaec74e358"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: V4KmOEYuNk88dQ_ZtrRtk5itE9KlO61zWVlxV1wSfluLye8y32pKyA==
age: 7
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   165475
Md5:    b30b5e7be43e5fa5b1561c8a3a4a5816
Sha1:   baf9f9d2ec0c5d3e2832174fb5d8fc9d572ffff0
Sha256: d04ce1f7a347a5be6730288f9f2b3ce50c7144c6e95def00b0079cd1c91d022e
                                        
                                            GET /delivery/cmp.php?id=18922&h=https%3A%2F%2Fwww.lampegiganten.no%2Flindby-abiram-gulvlampe-svart-gull.html%3Fkk%3Da4c6295-184dfce03d2-3c9071%26utm_medium%3Dpv%26utm_source%3Dkelkoo%26utm_campaign%3Dcpc_no%26utm_content%3D9945509%26utm_term%3D67&&l=en&o=1670202130521 HTTP/1.1 
Host: consentmanager.mgr.consensu.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lampegiganten.no
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         87.230.98.74
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Mon, 05 Dec 2022 01:02:13 GMT
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Pragma: no-cache
Access-Control-Allow-Origin: https://www.lampegiganten.no
Access-Control-Allow-Credentials: true
X-XSS-Protection: 0
Set-Cookie: __cmpcc=1; Expires=Thu, 04-Jan-2024 01:02:13 GMT; Path=/; SameSite=None; Secure
Last-Modified: Mon, 05 Dec 2022 01:02:13 GMT
Transfer-Encoding: chunked
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (411), with CRLF line terminators
Size:   641
Md5:    c70258c2a4b41f2bc84b93d46560b318
Sha1:   233d3a0a50c594c37e35d3e5c24dd0fa0c49a46f
Sha256: 3cb02bc69cfacf220911d5cdf5c786ca2412361f0afd70cddd622a18180ac052
                                        
                                            GET /js/144543E2E44F78B8/scarab-v2.js HTTP/1.1 
Host: cdn.scarabresearch.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         54.230.111.20
HTTP/1.1 200 OK
Content-Type: application/javascript;charset=utf-8
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
Timing-Allow-Origin: *
Cache-Control: max-age=3600,public
Date: Mon, 05 Dec 2022 00:43:21 GMT
ETag: "baaf36da68db2bb3c6aef5f9b1d4155a--gzip"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: KNRWnzBadErmcFBLDlqYk9O6XW3hGoEWK59d4XiMzus_dtvtXMhYrg==
Age: 1132


--- Additional Info ---
Magic:  C source, ASCII text, with very long lines (539)
Size:   22697
Md5:    472dbb246c2653170434ae38d2f7078c
Sha1:   a7de8fb6f8564329cb793b2a6cfbaad9b5d234c1
Sha256: 43460d13e78d334f375d1873e514d9205576ae991f24b27351d96125eed3fb78
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 05 Dec 2022 01:02:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   11118
Md5:    83138c33c5d7dafd3e29a6685f9d31cc
Sha1:   9eb74b8a8a51d5c1b387238fad8bf217ab6147dc
Sha256: e0bf5f222d71bf017148736c3a269ac556f55254a2b2be3d490a5b34a9ec274d
                                        
                                            GET /gtm.js?id=GTM-K6DHVZ HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 05 Dec 2022 01:02:13 GMT
expires: Mon, 05 Dec 2022 01:02:13 GMT
cache-control: private, max-age=900
last-modified: Mon, 05 Dec 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 101535
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (33665)
Size:   116240
Md5:    98a8aa2169c7d580384de1ef01deb646
Sha1:   911204af6b8fee1055a2f67f8724f5e677e785e9
Sha256: fa28674e9b8ad4c29f97c47cf19874db8500f1eae4c49000544ad123781a29dc
                                        
                                            GET /wpjs/wploader.js?ts=2761 HTTP/1.1 
Host: static.scarabresearch.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         54.230.111.36
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 10 Oct 2022 11:09:48 GMT
x-amz-version-id: DzVXMgBeksdrQfAKjc.ckmkVhMlLjwqT
Server: AmazonS3
Content-Encoding: gzip
Date: Sun, 04 Dec 2022 16:35:40 GMT
Cache-Control: max-age=86400
ETag: W/"1bb200ba7add3c5d4bfb6f3822bfe5af"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8thsB8d5OzoSBFsKhqGIRH7D7XJUs_gJ6vMF_-hs-tBgXo3pF0KEtA==
Age: 30394


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (26064)
Size:   11056
Md5:    2fc56d9a611d59d8961e74c4e8714e57
Sha1:   462e72a7259c4e557713d4a0f83b1dfa01445735
Sha256: 8e7522a5ad89315f9b9f6de63b9f538cdd001eccab8620b5d28f92840cac3ad8
                                        
                                            GET /wpjs/wpes6.js?ts=2761 HTTP/1.1 
Host: static.scarabresearch.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         54.230.111.36
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 10 Oct 2022 11:09:51 GMT
x-amz-version-id: B7kEOPd3f.UUaahYeIIXT30URW6wDjD.
Server: AmazonS3
Content-Encoding: gzip
Date: Sun, 04 Dec 2022 06:25:57 GMT
Cache-Control: max-age=86400
ETag: W/"aea14a7926cfb79f14472c23a4b1543b"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: e6Fws6XZyRcQ1L2tz96pf2wjbdx_rx3gsD2k7OUU0nWhKmLKQ6qVKw==
Age: 66976


--- Additional Info ---
Magic:  data
Size:   47553
Md5:    3daf23c51d65bfc279a248d7565dcc3c
Sha1:   c0a6f2fb3da1adfdfb8875cca75938dbaa3bce50
Sha256: b0a99e4aed3451d151c10dbc189315c5035d5e036b75134bb2f770a22961a232
                                        
                                            GET /images/DC0E1321C7B6/k_72057a870f559d80298bc93fd7443428;w_100;h_100;q_70/lindby-abiram-gulvlampe-svart-gull.webp HTTP/1.1 
Host: lw-cdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.18.6.177
HTTP/2 200 OK
content-type: image/webp
                                        
date: Mon, 05 Dec 2022 01:02:14 GMT
content-length: 1680
cf-ray: 7748daeafe730b06-OSL
accept-ranges: bytes
age: 33109
cache-control: public, max-age=2678400
etag: "cf4VZS4d7bRKkqwvjsGln3pvsCU3Xife1TzHtXP3JlDQ:72057a870f559d80298bc93fd7443428"
expires: Thu, 05 Jan 2023 01:02:14 GMT
last-modified: Wed, 06 Apr 2022 06:30:58 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:71,h2pri
cf-resized: internal=ok/h q=0 n=18 c=17+3 v=2022.12.0 l=1680
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   1680
Md5:    eee28f555847dfe3eb6fcb6c3c9f2795
Sha1:   445cf2196c02967b1c4020512778d0fbf4d52146
Sha256: 8d8b51446e14d42b8e56d738437ca6f68d1ddbd471584ba356c9ce04c9ba0b06
                                        
                                            GET /images/516C1A0BD88A/k_091c1401cbc48faea3963357b6108406;w_535;h_535;q_70/lindby-abiram-gulvlampe-svart-gull.webp HTTP/1.1 
Host: lw-cdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.18.6.177
HTTP/2 200 OK
content-type: image/webp
                                        
date: Mon, 05 Dec 2022 01:02:14 GMT
content-length: 33642
cf-ray: 7748daeaee700b06-OSL
accept-ranges: bytes
age: 17226
cache-control: public, max-age=2678400
etag: "cfWfPkHjR38EfCuA0oR4_m0dnY1ljppSeK9atjyJNuDQ:091c1401cbc48faea3963357b6108406"
expires: Thu, 05 Jan 2023 01:02:14 GMT
last-modified: Wed, 06 Apr 2022 06:30:59 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:71,h2pri
cf-resized: internal=ok/r q=0 n=320 c=31+63 v=2022.12.0 l=33642
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 535x535, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   33642
Md5:    b2a2e94103a9cab12e3e922febec6ad9
Sha1:   90c2af480dfee8b23264fb8edd32d6b0ade22798
Sha256: 89b4e971cfed2d6a9f33a250277471bb79337de31cffef83a888ef3e1b4303a0
                                        
                                            GET /images/07DA1160399F/k_091c1401cbc48faea3963357b6108406;w_100;h_100;q_70/lindby-abiram-gulvlampe-svart-gull.webp HTTP/1.1 
Host: lw-cdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.18.6.177
HTTP/2 200 OK
content-type: image/webp
                                        
date: Mon, 05 Dec 2022 01:02:14 GMT
content-length: 1576
cf-ray: 7748daeafe740b06-OSL
accept-ranges: bytes
age: 33109
cache-control: public, max-age=2678400
etag: "cfWfPkHjR38EfCuA0oR4_m0dnYU3Xife1TzHtXP3JlDQ:091c1401cbc48faea3963357b6108406"
expires: Thu, 05 Jan 2023 01:02:14 GMT
last-modified: Wed, 06 Apr 2022 06:30:59 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:71,h2pri
cf-resized: internal=ok/r q=0 n=310 c=16+3 v=2022.12.0 l=1576
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   42109
Md5:    60751cd109af53e4cfa366fa783c8b8c
Sha1:   46a60174b18d0e878e719eaf345bcb60c4690b3a
Sha256: d7a628315f1533249afbaac78df6ef8a71426a4329473babaecfb4cf0afe89bd
                                        
                                            GET /images/C3CB74FE331F/k_4e4073f5ec851300062162f7bb03661c;w_100;h_100;q_70/lindby-abiram-gulvlampe-svart-gull.webp HTTP/1.1 
Host: lw-cdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.18.6.177
HTTP/2 200 OK
content-type: image/webp
                                        
date: Mon, 05 Dec 2022 01:02:14 GMT
content-length: 804
cf-ray: 7748daeafe770b06-OSL
accept-ranges: bytes
age: 33109
cache-control: public, max-age=2678400
etag: "cfT2BMKR4d_kpscOttXRZ1KxZwU3Xife1TzHtXP3JlDQ:4e4073f5ec851300062162f7bb03661c"
expires: Thu, 05 Jan 2023 01:02:14 GMT
last-modified: Wed, 06 Apr 2022 06:31:01 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:71,h2pri
cf-resized: internal=ok/r q=0 n=348 c=10+2 v=2022.12.0 l=804
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   804
Md5:    c531c52fdc1f914d9dd00d2502f99c5d
Sha1:   0a726704b98cab3c42206b3b0620f448284a566c
Sha256: 20365f8852cc75ef14c5f8810a85ddf160ffa64296e099d6dd9c09e7aa187906
                                        
                                            GET /images/79BD882D67BA/k_63df12ea9905a0cb7a294dcea2f9ea79;w_100;h_100;q_70/lindby-abiram-gulvlampe-svart-gull.webp HTTP/1.1 
Host: lw-cdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.18.6.177
HTTP/2 200 OK
content-type: image/webp
                                        
date: Mon, 05 Dec 2022 01:02:14 GMT
content-length: 664
cf-ray: 7748daeafe750b06-OSL
accept-ranges: bytes
age: 33109
cache-control: public, max-age=2678400
etag: "cfI8Rwn7U_BLoVLok1hsPJIEuNU3Xife1TzHtXP3JlDQ:63df12ea9905a0cb7a294dcea2f9ea79"
expires: Thu, 05 Jan 2023 01:02:14 GMT
last-modified: Wed, 06 Apr 2022 06:30:59 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:71,h2pri
cf-resized: internal=ok/r q=0 n=312 c=5+2 v=2022.12.0 l=664
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   664
Md5:    6ac6c8d99591585331aff9cfcf0ca329
Sha1:   3bde4779c9503062a2839d5d400f23b6b99971c2
Sha256: d521ffea1c260629d722a66e80bcb242fab036128acda171876591f20758b740
                                        
                                            GET /images/2BB6BF6137BF/k_c472af24eb8cd962ad26a3cbab672def;w_100;h_100;q_70/lindby-abiram-gulvlampe-svart-gull.webp HTTP/1.1 
Host: lw-cdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.18.6.177
HTTP/2 200 OK
content-type: image/webp
                                        
date: Mon, 05 Dec 2022 01:02:14 GMT
content-length: 1192
cf-ray: 7748daeafe7b0b06-OSL
accept-ranges: bytes
age: 33109
cache-control: public, max-age=2678400
etag: "cfD7trHGR8ITDCwWZnylwCVt5nU3Xife1TzHtXP3JlDQ:c472af24eb8cd962ad26a3cbab672def"
expires: Thu, 05 Jan 2023 01:02:14 GMT
last-modified: Wed, 06 Apr 2022 06:31:02 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:71,h2pri
cf-resized: internal=ok/r q=0 n=299 c=5+2 v=2022.12.0 l=1192
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   1192
Md5:    deb74cefe40882ad67f5ea57d3024e67
Sha1:   ca2f30d526b294e8f8d30288a0b826b2fc464959
Sha256: 03bdcb559b17081fdc313f75dbfeeb32d7390923a9e6bb6c810ec6eeaed1805d
                                        
                                            GET /images/D8B3987E0997/k_a84cd7169a529336f3e65ba84700f8db;w_100;h_100;q_70/lindby-abiram-gulvlampe-svart-gull.webp HTTP/1.1 
Host: lw-cdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.18.6.177
HTTP/2 200 OK
content-type: image/webp
                                        
date: Mon, 05 Dec 2022 01:02:14 GMT
content-length: 918
cf-ray: 7748daeafe840b06-OSL
accept-ranges: bytes
age: 33109
cache-control: public, max-age=2678400
etag: "cfTA_g_1S0d4xUIccxLqk19uQMU3Xife1TzHtXP3JlDQ:a84cd7169a529336f3e65ba84700f8db"
expires: Thu, 05 Jan 2023 01:02:14 GMT
last-modified: Wed, 06 Apr 2022 06:31:04 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:71,h2pri
cf-resized: internal=ok/r q=0 n=350 c=8+2 v=2022.12.0 l=918
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   918
Md5:    e16f951fbe3a640e9c91bc2182b1c83a
Sha1:   0d405bed47ea8f0500f51a9d84b3abf83a957632
Sha256: a358926e535abd0c2ed19f0291b6fd2abd73ada33fdbc822cfc9ad02e151156d
                                        
                                            GET /images/A9E8070FB40B/k_08412c792bd2af4791e3f5b63756044c;w_100;h_100;q_70/lindby-abiram-gulvlampe-svart-gull.webp HTTP/1.1 
Host: lw-cdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.18.6.177
HTTP/2 200 OK
content-type: image/webp
                                        
date: Mon, 05 Dec 2022 01:02:14 GMT
content-length: 690
cf-ray: 7748daeafe760b06-OSL
accept-ranges: bytes
age: 33108
cache-control: public, max-age=2678400
etag: "cf_5sNEdgHPZFYdJ3DUvsEkcBvU3Xife1TzHtXP3JlDQ:08412c792bd2af4791e3f5b63756044c"
expires: Thu, 05 Jan 2023 01:02:14 GMT
last-modified: Wed, 06 Apr 2022 06:31:00 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:71,h2pri
cf-resized: internal=ok/r q=0 n=580 c=5+2 v=2022.12.0 l=690
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   690
Md5:    8337aaacde9b71eb1308e18de5dea12b
Sha1:   a8f6ea2bdf3a6842f90c0e63a98814dcaa5f92cb
Sha256: ac7c3849873ba30f6fc53bf52c50dc46eefabbc0e1e83ea94dff79188ebb2601
                                        
                                            GET /images/6AF2AE51045D/k_6abef710a87b74e5b1368fc860047927;w_100;h_100;q_70/lindby-abiram-gulvlampe-svart-gull.webp HTTP/1.1 
Host: lw-cdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.18.6.177
HTTP/2 200 OK
content-type: image/webp
                                        
date: Mon, 05 Dec 2022 01:02:14 GMT
content-length: 1142
cf-ray: 7748daeb0e890b06-OSL
accept-ranges: bytes
age: 33108
cache-control: public, max-age=2678400
etag: "cfwJzeQnLqVp1Mfu0-raikfBDyU3Xife1TzHtXP3JlDQ:6abef710a87b74e5b1368fc860047927"
expires: Thu, 05 Jan 2023 01:02:14 GMT
last-modified: Wed, 06 Apr 2022 06:31:04 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:71,h2pri
cf-resized: internal=ok/r q=0 n=302 c=7+2 v=2022.12.0 l=1142
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   1142
Md5:    8417d8879f58a822c0760cdf445d24f9
Sha1:   a4efe7076d868404e7df4fca710578d81449e3fd
Sha256: 0e2b664fa9e455ff39ba7a028fb22a993863b6f710f9b42df7df700a424a9479
                                        
                                            GET /images/331E16CD3E51/k_6819e71854d9b677b2f97d389fb22b8c;w_100;h_100;q_70/lindby-abiram-gulvlampe-svart-gull.webp HTTP/1.1 
Host: lw-cdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.18.6.177
HTTP/2 200 OK
content-type: image/webp
                                        
date: Mon, 05 Dec 2022 01:02:14 GMT
content-length: 1566
cf-ray: 7748daeafe7f0b06-OSL
accept-ranges: bytes
age: 33109
cache-control: public, max-age=2678400
etag: "cfoVqovV_hnD4YBKSDLFu9AVpNU3Xife1TzHtXP3JlDQ:6819e71854d9b677b2f97d389fb22b8c"
expires: Thu, 05 Jan 2023 01:02:14 GMT
last-modified: Wed, 06 Apr 2022 06:31:03 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:71,h2pri
cf-resized: internal=ok/r q=0 n=329 c=10+2 v=2022.12.0 l=1566
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   1566
Md5:    17e81baf6ede4d6e3300d0091016f134
Sha1:   7de1d4a7a9457dc0eab0e31ba04a4aed8c4a0596
Sha256: 260beaf3576f713d4a89b98d14c8cba3e3e522bcf4e6b8a736e588e35900c98d
                                        
                                            GET /delivery/cmp.php?__cmpcc=1&__cmpfcc=1&id=18922&o=1670202133&h=https%3A%2F%2Fwww.lampegiganten.no%2Flindby-abiram-gulvlampe-svart-gull.html%3Fkk%3Da4c6295-184dfce03d2-3c9071%26utm_medium%3Dpv%26utm_source%3Dkelkoo%26utm_campaign%3Dcpc_no%26utm_content%3D9945509%26utm_term%3D67&&l=en&odw=0&dlt=1&l=en HTTP/1.1 
Host: consentmanager.mgr.consensu.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         87.230.98.74
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Mon, 05 Dec 2022 01:02:14 GMT
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Pragma: no-cache
Access-Control-Allow-Origin: *
X-XSS-Protection: 0
Last-Modified: Mon, 05 Dec 2022 01:02:14 GMT
Transfer-Encoding: chunked
Content-Encoding: gzip


--- Additional Info ---
Magic:  data
Size:   15255
Md5:    1ff07cff97e30d6f6624a2bf91ade6c8
Sha1:   6765537fb38b9e2560fc68946ee08125d913a526
Sha256: c5c206c667807555d6eb2bcfad0daf636a7d46256a312aafe0a90bc2ffc075a5
                                        
                                            GET /rde_server/res/lampegigs/plugins/exec/prudsys/prudsys/event/productview?sid=6297cff463016deaf33370a4683837f9f4d13c2a&userid=6297cff463016deaf33370a4683837f9f4d13c2a&nl_campaign_id=NA&source=other&tracking=true&pid=9945509&total=2999.00 HTTP/1.1 
Host: lampenwelt.prudsys-rde.de
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         51.116.140.56
HTTP/1.1 200 OK
Content-Type: application/octet-stream
                                        
Date: Mon, 05 Dec 2022 01:02:14 GMT
Content-Length: 0
Connection: keep-alive
Server: Apache-Coyote/1.1
X-LB-SERVER-VERSION: 1.1.26
X-LB-SERVER-SRCHOST: 10.0.2.6
X-LB-SERVER-SRCPATH: rde_server
X-LB-SERVER-SRCPORT: 8080
X-LB-SERVER-SRCRDE: lampegigs
X-RE-SERVER-VERSION: 4.6.2
X-PLATFORM: RDE_SERVER
Access-Control-Allow-Origin: *

                                        
                                            GET /delivery/lang/langpurpose_no.min.js HTTP/1.1 
Host: cdn.consentmanager.mgr.consensu.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         185.76.9.14
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Mon, 05 Dec 2022 01:02:14 GMT
last-modified: Wed, 16 Nov 2022 00:23:31 GMT
vary: Accept-Encoding
cache-control: max-age=1800, public
etag: W/"63742d83-b692"
strict-transport-security: max-age=63072000; includeSubDomains
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-max-age: 1000
x-content-type-options: nosniff
x-accel-expires: @1670202495
server: CDN77-Turbo
x-77-nzt: AblMCQ0qJlb/nwUAAA
x-77-nzt-ray: c0a4cc2804e2d17b16438d633eb32b20
x-cache: HIT
x-age: 1439
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (46738), with no line terminators
Size:   7987
Md5:    09888884fb886e4cbaa17aff85fd170c
Sha1:   b206c892eda4f76f4744c2cc4fca6a24cc3d98b6
Sha256: c3ff8c77ec678b23359ea54cd9970dd3c77a0e06c270f8bcf596820f100a5bd0
                                        
                                            GET /delivery/info/?id=18922&did=1&cfdid=1&t=pv.d_ncs.d_ancs.d_bncs&h=https%3A%2F%2Fwww.lampegiganten.no%2Flindby-abiram-gulvlampe-svart-gull.html%3Fkk%3Da4c6295-184dfce03d2-3c9071%26utm_medium%3Dpv%26utm_source%3Dkelkoo%26utm_campaign%3Dcpc_no%26utm_content%3D9945509%26utm_term%3D67&o=1670202132089&l=NO&lv=37421&d=1&ct=14&e=&e2=&e3=&i=&sv=29&dv=30& HTTP/1.1 
Host: consentmanager.mgr.consensu.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         87.230.98.74
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Mon, 05 Dec 2022 01:02:14 GMT
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Pragma: no-cache
Access-Control-Allow-Origin: *
X-XSS-Protection: 0
Last-Modified: Mon, 05 Dec 2022 01:02:14 GMT
Content-Length: 43


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    6f81c41597d3f5a336f458822cc0c32a
Sha1:   8cd77a54b38f1fb376b45af2eaab8f5982523b8d
Sha256: 5704a2e9f2f7ce43a79f9b407f1aedcfd50223cbe8bd2f71ff8c5c819e469cbc
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "5A08919A4DCD8BD0BF81021230FDFFD6738BBB1451BF099E30ED8FFD1A5BECB3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6153
Expires: Mon, 05 Dec 2022 02:44:47 GMT
Date: Mon, 05 Dec 2022 01:02:14 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         143.204.42.165
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=93201
Date: Mon, 05 Dec 2022 01:02:14 GMT
Etag: "638bff41-1d7"
Expires: Tue, 06 Dec 2022 02:55:35 GMT
Last-Modified: Sun, 04 Dec 2022 02:00:33 GMT
Server: ECS (nyb/1D0A)
X-Cache: Miss from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 7B803m6wwntTXSzRyC1XX2EE-Xtaxszwq1jGcILSuEdLq1Z73KGa2A==
Age: 3302

                                        
                                            GET /delivery/info/?id=18922&did=1&cfdid=1&t=cv&h=https%3A%2F%2Fwww.lampegiganten.no%2Flindby-abiram-gulvlampe-svart-gull.html%3Fkk%3Da4c6295-184dfce03d2-3c9071%26utm_medium%3Dpv%26utm_source%3Dkelkoo%26utm_campaign%3Dcpc_no%26utm_content%3D9945509%26utm_term%3D67&o=1670202132092&l=NO&lv=37421&d=1&ct=14&e=&e2=&e3=&i=&sv=29&dv=30& HTTP/1.1 
Host: consentmanager.mgr.consensu.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         87.230.98.74
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Mon, 05 Dec 2022 01:02:14 GMT
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Pragma: no-cache
Access-Control-Allow-Origin: *
X-XSS-Protection: 0
Last-Modified: Mon, 05 Dec 2022 01:02:14 GMT
Content-Length: 43


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    6f81c41597d3f5a336f458822cc0c32a
Sha1:   8cd77a54b38f1fb376b45af2eaab8f5982523b8d
Sha256: 5704a2e9f2f7ce43a79f9b407f1aedcfd50223cbe8bd2f71ff8c5c819e469cbc
                                        
                                            GET /delivery/customdata/bV8xLndfMTg5MjIuZF8xNTg1MC54XzMwLnYucC50XzE1ODUw.js HTTP/1.1 
Host: cdn.consentmanager.mgr.consensu.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         185.76.9.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Mon, 05 Dec 2022 01:02:14 GMT
x-xss-protection: 0
expires: Mon, 05 Dec 2022 01:20:34 GMT
cache-control: public, max-age=1800
last-modified: Mon, 05 Dec 2022 00:50:34 GMT
vary: Accept-Encoding, Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains
access-control-allow-origin: *, *
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-max-age: 1000
x-content-type-options: nosniff
x-accel-expires: @1670203234
server: CDN77-Turbo
x-77-nzt: AblMCQ3pmGT/vAIAAA
x-77-nzt-ray: c0a4cc2804e2d17b16438d636d984e19
x-cache: HIT
x-age: 700
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (62265)
Size:   19097
Md5:    0c41734fe58241f74fc6b7f193360dad
Sha1:   488025f13cac6f4154b46231f531dd665e67ed49
Sha256: cee8890a90155ecb08579b0c3cef50453f3b997a7e01472f479bcd67e2da8350
                                        
                                            GET /images/E21268F83D7A/k_63df12ea9905a0cb7a294dcea2f9ea79;w_535;h_535;q_70/lindby-abiram-gulvlampe-svart-gull.webp HTTP/1.1 
Host: lw-cdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.18.6.177
HTTP/2 200 OK
content-type: image/webp
                                        
date: Mon, 05 Dec 2022 01:02:14 GMT
content-length: 5044
cf-ray: 7748daee1fd50b06-OSL
accept-ranges: bytes
age: 1494519
cache-control: public, max-age=2678400
etag: "cfI8Rwn7U_BLoVLok1hsPJIEuN1ljppSeK9atjyJNuBQ:63df12ea9905a0cb7a294dcea2f9ea79"
expires: Thu, 05 Jan 2023 01:02:14 GMT
last-modified: Wed, 06 Apr 2022 06:30:59 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:71,h2pri
cf-resized: internal=ok/r q=0 n=309 c=15+44 v=2022.11.4 l=5044
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 535x535, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   5044
Md5:    e732283f4c6e8c6a7e5736e7e795b09f
Sha1:   53c095672fb0b37143752e9b33f00c042bb99cbc
Sha256: 15776262fa2b1fefce2d581e131bb61aff5ce2f57ed17b13974094eb6659045e
                                        
                                            GET /images/EFA888B761FB/k_6abef710a87b74e5b1368fc860047927;w_535;h_535;q_70/lindby-abiram-gulvlampe-svart-gull.webp HTTP/1.1 
Host: lw-cdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.18.6.177
HTTP/2 200 OK
content-type: image/webp
                                        
date: Mon, 05 Dec 2022 01:02:14 GMT
content-length: 10864
cf-ray: 7748daee1fd40b06-OSL
accept-ranges: bytes
age: 1578532
cache-control: public, max-age=2678400
etag: "cfwJzeQnLqVp1Mfu0-raikfBDy1ljppSeK9atjyJNuBQ:6abef710a87b74e5b1368fc860047927"
expires: Thu, 05 Jan 2023 01:02:14 GMT
last-modified: Wed, 06 Apr 2022 06:31:04 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:71,h2pri
cf-resized: internal=ok/m q=0 n=462 c=17+52 v=2022.11.4 l=10864
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 535x535, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   10864
Md5:    2cef15f16de95731fb4eba525cbf7ab4
Sha1:   940984b984f1d59deeaac37726c4664183a11bec
Sha256: 0be96d71b320cd5c4734bae54519860181e903d2880f8a52505dd7a55fe6a621
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "08A69368777C257B936457BC66A35BD4F0A34A6D3A791263DB2643831351FD40"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2288
Expires: Mon, 05 Dec 2022 01:40:23 GMT
Date: Mon, 05 Dec 2022 01:02:15 GMT
Connection: keep-alive

                                        
                                            GET /searchhub-collector-lampenwelt?Version=2012-11-05&Action=SendMessage&MessageBody=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 HTTP/1.1 
Host: p.searchhub.io
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         18.158.39.189
HTTP/2 200 OK
content-type: image/gif
                                        
date: Mon, 05 Dec 2022 01:02:15 GMT
content-length: 32
set-cookie: INGRESSCOOKIE=1670202136.17.1549.880202|6a937b334db405d6776e177bae2d92cd; Path=/; Secure; HttpOnly
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   32
Md5:    776f5f447e5e03b50f3bc4d4ec78daaa
Sha1:   9d6f7182ae5f2995afc23231419013cd7dc7ade0
Sha256: 853b983923a033223e4f391790e6e86619b31d542b40e7e1e8221fb0d6957ab1
                                        
                                            GET /images/94CABF65B6E7/k_08412c792bd2af4791e3f5b63756044c;w_535;h_535;q_70/lindby-abiram-gulvlampe-svart-gull.webp HTTP/1.1 
Host: lw-cdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.18.6.177
HTTP/2 200 OK
content-type: image/webp
                                        
date: Mon, 05 Dec 2022 01:02:15 GMT
content-length: 6784
cf-ray: 7748daf119010b06-OSL
accept-ranges: bytes
age: 2439936
cache-control: public, max-age=2678400
etag: "cf3rzULNOM52G_TRgAyDUQbg:08412c792bd2af4791e3f5b63756044c"
expires: Thu, 05 Jan 2023 01:02:15 GMT
last-modified: Wed, 06 Apr 2022 06:31:00 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:71,h2pri
cf-resized: internal=ok/m q=0 n=402 c=13+40 v=2022.10.4 l=6784
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 535x535, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   6784
Md5:    13a9e278adcf71b12cebbd1a8727a891
Sha1:   8817649d24a30dc390dc982bc34bbc528acecdbb
Sha256: c50a6e0f94a1460c7ccd1908e556ec3a3c51ce437a49e0ca9a11f21a74450886
                                        
                                            GET /images/057920766AF2/k_a84cd7169a529336f3e65ba84700f8db;w_535;h_535;q_70/lindby-abiram-gulvlampe-svart-gull.webp HTTP/1.1 
Host: lw-cdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.18.6.177
HTTP/2 200 OK
content-type: image/webp
                                        
date: Mon, 05 Dec 2022 01:02:15 GMT
content-length: 9646
cf-ray: 7748daf1e9840b06-OSL
accept-ranges: bytes
age: 2287922
cache-control: public, max-age=2678400
etag: "cfTA_g_1S0d4xUIccxLqk19uQM1ljppSeK9atjyJNuBQ:a84cd7169a529336f3e65ba84700f8db"
expires: Thu, 05 Jan 2023 01:02:15 GMT
last-modified: Wed, 06 Apr 2022 06:31:04 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:71,h2pri
cf-resized: internal=ok/h q=0 n=11 c=18+51 v=2022.11.1 l=9646
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   10545
Md5:    80d2dd907bcc84c290235183a30e2fa1
Sha1:   e9827ec67ddd58d70ad3f8f4aaef2dddf7dec7b3
Sha256: 81606f3062af42175f88743c2f8b5158c1b367d430342060114c6488eb9cf478
                                        
                                            GET /web-emarsys-sdk/3.1.0/web-emarsys-service-worker.js HTTP/1.1 
Host: assets.emarsys.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Wed, 08 Sep 2021 12:47:07 GMT
If-None-Match: W/"b522e4a9ab5b30424e13e2987ee1a01c"
Cache-Control: max-age=0
TE: trailers

search
                                         54.230.111.75
HTTP/2 304 Not Modified
                                        
date: Thu, 22 Sep 2022 06:41:26 GMT
last-modified: Wed, 08 Sep 2021 12:47:07 GMT
etag: W/"b522e4a9ab5b30424e13e2987ee1a01c"
cache-control: max-age=315360000, no-transform, public
server: AmazonS3
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DFNi0MoQ-a7dH_bgOcXjsIEWBBODZDZ6kJPaFiVjGdTWVkcP16pgJw==
age: 6373251
X-Firefox-Spdy: h2

                                        
                                            GET /lindby-abiram-gulvlampe-svart-gull.html?kk=a4c6295-184dfce03d2-3c9071&utm_medium=pv&utm_source=kelkoo&utm_campaign=cpc_no&utm_content=9945509&utm_term=67 HTTP/1.1 
Host: www.lampegiganten.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         104.18.23.160
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Mon, 05 Dec 2022 01:02:12 GMT
p3p: CP="CAO PSA OUR"
x-frame-options: SAMEORIGIN
x-cache-doesi: 1, 1
x-build: 2459
x-content-type-options: : nosniff
x-xss-protection: : 1; mode=block
x-prefresh:
vary: Accept-Encoding
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
expires: Mon, 31 Mar 2008 10:00:00 GMT
age: 0
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7748dadd68b8b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /web-emarsys-sdk/3.1.0/web-emarsys-sdk.js HTTP/1.1 
Host: assets.emarsys.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         54.230.111.75
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Thu, 03 Nov 2022 00:53:47 GMT
last-modified: Wed, 08 Sep 2021 12:47:07 GMT
etag: W/"15e8de1995b888be945eb9bfc952e5f0"
cache-control: max-age=315360000, no-transform, public
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GinAxCVLyOTPwTxNZoXkhhdLkK2l8XIhOjVVUETW9esVpm8CpWCHVA==
age: 2765307
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /delivery/cmp_en.min.js HTTP/1.1 
Host: cdn.consentmanager.mgr.consensu.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lampegiganten.no
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         185.76.9.14
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Mon, 05 Dec 2022 01:02:13 GMT
vary: Accept-Encoding, Origin
last-modified: Mon, 21 Nov 2022 19:17:42 GMT
etag: W/"6e9ae-5edffe8d0e180"
cache-control: max-age=1800, public
strict-transport-security: max-age=63072000; includeSubDomains
access-control-allow-origin: https://www.lampegiganten.no
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-max-age: 1000
x-content-type-options: nosniff
x-accel-expires: @1670203074
server: CDN77-Turbo
x-77-nzt: AblMCQ2R0tj/WwMAAA
x-77-nzt-ray: c0a4cc28a1d5537715438d63359f000b
x-cache: HIT
x-age: 859
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /images/1B37EBB42839/k_72057a870f559d80298bc93fd7443428;w_1600;h_1600;q_100/lindby-abiram-gulvlampe-svart-gull.jpg HTTP/1.1 
Host: lw-cdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.18.6.177
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Mon, 05 Dec 2022 01:02:13 GMT
content-length: 3090911
cf-ray: 7748dae68ce40b06-OSL
accept-ranges: bytes
age: 123985
cache-control: public, max-age=2678400
etag: "cf4VZS4d7bRKkqwvjsGln3pvsCGE0YRelcwWj-B860DQ:72057a870f559d80298bc93fd7443428"
expires: Thu, 05 Jan 2023 01:02:13 GMT
last-modified: Wed, 06 Apr 2022 06:30:58 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:100,h2pri
cf-resized: internal=ok/h q=0 n=199 c=25+386 v=2022.12.0 l=3090911
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /web-emarsys-sdk/3.1.0/web-emarsys-service-worker.js HTTP/1.1 
Host: assets.emarsys.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

search
                                         54.230.111.75
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Thu, 22 Sep 2022 06:41:26 GMT
last-modified: Wed, 08 Sep 2021 12:47:07 GMT
etag: W/"b522e4a9ab5b30424e13e2987ee1a01c"
cache-control: max-age=315360000, no-transform, public
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DwodSMvPsI8aXL09SHrvTWzrAW0NZxqFFAlqG5NEU-hojzY_23HnoQ==
age: 6373250
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /customer/753054204/campaigns?url=https:%2F%2Fwww.lampegiganten.no%2Flindby-abiram-gulvlampe-svart-gull.html%3Fkk%3Da4c6295-184dfce03d2-3c9071%26utm_medium%3Dpv%26utm_source%3Dkelkoo%26utm_campaign%3Dcpc_no%26utm_content%3D9945509%26utm_term%3D67&prev_url=https:%2F%2Fno-go.kelkoogroup.net%2F&lang=nb&ca=&v=i:9945509&uli=false HTTP/1.1 
Host: webchannel-content.eservice.emarsys.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lampegiganten.no
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.30.199
HTTP/2 200 OK
content-type: application/json
                                        
date: Mon, 05 Dec 2022 01:02:14 GMT
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /delivery/cmplogo.svg HTTP/1.1 
Host: cdn.consentmanager.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lampegiganten.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         185.76.9.14
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Mon, 05 Dec 2022 01:02:14 GMT
last-modified: Tue, 08 Feb 2022 14:38:46 GMT
cache-control: max-age=86400, public
etag: W/"62028076-d0f"
strict-transport-security: max-age=63072000; includeSubDomains
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-max-age: 1000
x-content-type-options: nosniff
x-accel-expires: @1670268847
server: CDN77-Turbo
x-77-nzt: AblMCQ3/2Ez/50wAAA
x-77-nzt-ray: c0a4cc2804e2d17b16438d63f6a30b28
x-cache: HIT
x-age: 19687
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---