osman.anathothonline.us/
200 OK 484 B IP
ASN #30633 LEASEWEB-USA-WDC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (484), with no line terminators
Hash 57166f6055a639d4e93d472443402dbf
1cadca3aba1ac312cf8495b3c96759db060c87a2
a85c4f09053972e9e1343f5bc4a264a20eb38996f4eef03e77c40010a4f9ee6d
GET / HTTP/1.1
Host: osman.anathothonline.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 484
content-type: text/html; charset=utf-8
date: Mon, 16 Jan 2023 03:33:51 GMT
server: nginx
set-cookie: sid=9848ace0-954e-11ed-a506-049faa268926; path=/; domain=.anathothonline.us; expires=Sat, 03 Feb 2091 06:47:58 GMT; max-age=2147483647; HttpOnly
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2258cd6b877a3aca8f4c84074e65ac4b
4e46c70941f8e497e8afc8d078644e7f81761a1c
faac4e0d123f2112b58953c104ea746cd53047fc1ada0ef5d669feecf78ddfff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FAAC4E0D123F2112B58953C104EA746CD53047FC1ADA0EF5D669FEECF78DDFFF"
Last-Modified: Sat, 14 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14051
Expires: Mon, 16 Jan 2023 07:28:02 GMT
Date: Mon, 16 Jan 2023 03:33:51 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3063227f59d1935298b0620fa7919145
478e1d8bef04b1f95381cac01829c03b6779d420
619281d3b9753bc6d2845786da75e8566687362769517aacf90f953ffbb8407c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "619281D3B9753BC6D2845786DA75E8566687362769517AACF90F953FFBB8407C"
Last-Modified: Sat, 14 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16018
Expires: Mon, 16 Jan 2023 08:00:49 GMT
Date: Mon, 16 Jan 2023 03:33:51 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f7bd85a261739c122eefb74ffddaec99
e2e059b0740592e8591d432249aafe5fcb8af23c
71bdd130b8d143f228542f678e91c98ab4e5844fb9f47b036e15372660be25fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "71BDD130B8D143F228542F678E91C98AB4E5844FB9F47B036E15372660BE25FD"
Last-Modified: Sat, 14 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15874
Expires: Mon, 16 Jan 2023 07:58:25 GMT
Date: Mon, 16 Jan 2023 03:33:51 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 16 Jan 2023 02:42:09 GMT
content-type: application/json
age: 3102
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: d6dZxwt9/pZvfCxs+VSUGAOd3e9P+/zwaKdIBv1MaqGgHCaXFBJ9X1/Ji9stJaXFmM4S2m85Qsw=
x-amz-request-id: 14BGS3BKFGY6RKZJ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 16 Jan 2023 02:44:25 GMT
age: 2966
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 03:33:51 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
osman.anathothonline.us/favicon.ico
404 Not Found 9 B URL HTTP/1.1 osman.anathothonline.us/favicon.ico
IP
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with no line terminators
Hash d8f4a1993546cc4b850cde3599e27aec
094b763b4cfcc0b05e5d040581cd513c3ca08067
907ba78b4545338d3539683e63ecb51cf51c10adc9dabd86e92bd52339f298b9
GET /favicon.ico HTTP/1.1
Host: osman.anathothonline.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://osman.anathothonline.us/
Cookie: sid=9848ace0-954e-11ed-a506-049faa268926
HTTP/1.1 404 Not Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 9
date: Mon, 16 Jan 2023 03:33:51 GMT
server: nginx
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 16 Jan 2023 03:33:46 GMT
age: 6
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
osman.anathothonline.us/?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY3Mzg0NzIzMSwiaWF0IjoxNjczODQwMDMxLCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIyc3RhcDh1dWZocnFjajdodG8xNW5pODkiLCJuYmYiOjE2NzM4NDAwMzEsInRzIjoxNjczODQwMDMxMzMzNzg5fQ.-qtqx9jPZoMrSybjLxC3JQHzjnN2mBMN5PYnxUIprVU&sid=9848ace0-954e-11ed-a506-049faa268926
302 Found 11 B URL HTTP/1.1 osman.anathothonline.us/?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY3Mzg0NzIzMSwiaWF0IjoxNjczODQwMDMxLCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIyc3RhcDh1dWZocnFjajdodG8xNW5pODkiLCJuYmYiOjE2NzM4NDAwMzEsInRzIjoxNjczODQwMDMxMzMzNzg5fQ.-qtqx9jPZoMrSybjLxC3JQHzjnN2mBMN5PYnxUIprVU&sid=9848ace0-954e-11ed-a506-049faa268926
IP
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with no line terminators
Hash 32682312d17c7cbf18e73594f5570319
60e22121bdd0bc71cdb2bae2a3aa577006b2eae9
e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47
GET /?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY3Mzg0NzIzMSwiaWF0IjoxNjczODQwMDMxLCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIyc3RhcDh1dWZocnFjajdodG8xNW5pODkiLCJuYmYiOjE2NzM4NDAwMzEsInRzIjoxNjczODQwMDMxMzMzNzg5fQ.-qtqx9jPZoMrSybjLxC3JQHzjnN2mBMN5PYnxUIprVU&sid=9848ace0-954e-11ed-a506-049faa268926 HTTP/1.1
Host: osman.anathothonline.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://osman.anathothonline.us/
Cookie: sid=9848ace0-954e-11ed-a506-049faa268926
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 11
date: Mon, 16 Jan 2023 03:33:51 GMT
location: http://btpnav.com/click?data=ck9yNFUydUh5R296YlJvdTJMcENzd0ZGM2x1RDV2ek9mVjRCczJ6eDE3YkRNZ3l4SVZtSDVzTjJWWVk0bkJMN2RtRTc3Z3FzR0RxbTVWVDBEeFh2dXNxNjItQTYydEI0cThaODNwQmhRcjZhZVFjZ0UyTVVRY0ZMamliM3QtQVFhakt3M2s2MzhlaWFKQ2Z1eHZvdnFBMg2&id=f2cae762-9038-4186-a2c8-4f8027895802
server: nginx
set-cookie: sid=9848ace0-954e-11ed-a506-049faa268926; path=/; domain=.anathothonline.us; expires=Sat, 03 Feb 2091 06:47:59 GMT; max-age=2147483647; HttpOnly
ocsp.digicert.com/
200 OK 471 B IP
Hash e5f9cfd32ba0e755eba2eba2bca5bc3c
012c01ac7a06da9f57e0e1c24658a4bd40e82518
ffd7fc715a11f6579f953c2f0f65128000733620fcc777cd0a4c5bb895c64ad2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5352
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 16 Jan 2023 03:33:52 GMT
Last-Modified: Mon, 16 Jan 2023 02:04:40 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
btpnav.com/click?data=ck9yNFUydUh5R296YlJvdTJMcENzd0ZGM2x1RDV2ek9mVjRCczJ6eDE3YkRNZ3l4SVZtSDVzTjJWWVk0bkJMN2RtRTc3Z3FzR0RxbTVWVDBEeFh2dXNxNjItQTYydEI0cThaODNwQmhRcjZhZVFjZ0UyTVVRY0ZMamliM3QtQVFhakt3M2s2MzhlaWFKQ2Z1eHZvdnFBMg2&id=f2cae762-9038-4186-a2c8-4f8027895802
200 OK 5.5 kB URL HTTP/1.1 btpnav.com/click?data=ck9yNFUydUh5R296YlJvdTJMcENzd0ZGM2x1RDV2ek9mVjRCczJ6eDE3YkRNZ3l4SVZtSDVzTjJWWVk0bkJMN2RtRTc3Z3FzR0RxbTVWVDBEeFh2dXNxNjItQTYydEI0cThaODNwQmhRcjZhZVFjZ0UyTVVRY0ZMamliM3QtQVFhakt3M2s2MzhlaWFKQ2Z1eHZvdnFBMg2&id=f2cae762-9038-4186-a2c8-4f8027895802
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (349), with CRLF line terminators
Hash 057aa30c5238df848086550dd640b869
88834c62e0a4170f97338496a4c020a6c64c9d73
c23b312b292ca6b48ef3e0a0f15b811a12197d2bbe5433d2e025a248e64543b0
GET /click?data=ck9yNFUydUh5R296YlJvdTJMcENzd0ZGM2x1RDV2ek9mVjRCczJ6eDE3YkRNZ3l4SVZtSDVzTjJWWVk0bkJMN2RtRTc3Z3FzR0RxbTVWVDBEeFh2dXNxNjItQTYydEI0cThaODNwQmhRcjZhZVFjZ0UyTVVRY0ZMamliM3QtQVFhakt3M2s2MzhlaWFKQ2Z1eHZvdnFBMg2&id=f2cae762-9038-4186-a2c8-4f8027895802 HTTP/1.1
Host: btpnav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://osman.anathothonline.us/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/10.0
X-AspNetMvc-Version: 5.2
X-AspNet-Version: 4.0.30319
Set-Cookie: EkbXyUXvJcJbVto=EkbXyUXvJcJbVto; path=/
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Mon, 16 Jan 2023 03:33:52 GMT
Content-Length: 5470
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: UflEtiJDSi4VfMaiySNTZw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: uPhDEnaNeuQwh9/5qfgejKT0UyM=
btpnav.com/Redirect/
302 Found 269 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash af0d658624eeb9054fe2fbedf0a30a22
994dc004f432cecbde656b6b4c2448e904843ec3
abf00329abccf465a20e9cbda3fbbf3ddff87debd971c8661c16338abfdd3638
POST /Redirect/ HTTP/1.1
Host: btpnav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded
Content-Length: 358
Origin: http://btpnav.com
Connection: keep-alive
Referer: http://btpnav.com/click?data=ck9yNFUydUh5R296YlJvdTJMcENzd0ZGM2x1RDV2ek9mVjRCczJ6eDE3YkRNZ3l4SVZtSDVzTjJWWVk0bkJMN2RtRTc3Z3FzR0RxbTVWVDBEeFh2dXNxNjItQTYydEI0cThaODNwQmhRcjZhZVFjZ0UyTVVRY0ZMamliM3QtQVFhakt3M2s2MzhlaWFKQ2Z1eHZvdnFBMg2&id=f2cae762-9038-4186-a2c8-4f8027895802
Cookie: EkbXyUXvJcJbVto=EkbXyUXvJcJbVto
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: http://chima-eoj.com/zcvisitor/9899d704-954e-11ed-a5ee-0a906d0d5bcd/fa8076ca-64e7-4648-95fb-59f8b6b1f6e1?campaignid=4fb4e190-e7f9-11ec-be3c-128084d1ce51
Server: Microsoft-IIS/10.0
X-AspNetMvc-Version: 5.2
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Mon, 16 Jan 2023 03:33:52 GMT
Content-Length: 269
chima-eoj.com/zcvisitor/9899d704-954e-11ed-a5ee-0a906d0d5bcd/fa8076ca-64e7-4648-95fb-59f8b6b1f6e1?campaignid=4fb4e190-e7f9-11ec-be3c-128084d1ce51
200 1.1 kB URL HTTP/1.1 chima-eoj.com/zcvisitor/9899d704-954e-11ed-a5ee-0a906d0d5bcd/fa8076ca-64e7-4648-95fb-59f8b6b1f6e1?campaignid=4fb4e190-e7f9-11ec-be3c-128084d1ce51
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 1e0f38d87b51550ae7241d475f8f8cb7
6a34a54ee97b1a6ff287ef223baea728ed9e396b
bbcf3ec296a88691163a08eed39b84ea9106d450f3f7ee5d97333448c2749b9a
GET /zcvisitor/9899d704-954e-11ed-a5ee-0a906d0d5bcd/fa8076ca-64e7-4648-95fb-59f8b6b1f6e1?campaignid=4fb4e190-e7f9-11ec-be3c-128084d1ce51 HTTP/1.1
Host: chima-eoj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://btpnav.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Date: Mon, 16 Jan 2023 03:33:52 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Server: rpoLyuCb
chima-eoj.com/zcredirect?visitid=9899d704-954e-11ed-a5ee-0a906d0d5bcd&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
200 354 B URL HTTP/1.1 chima-eoj.com/zcredirect?visitid=9899d704-954e-11ed-a5ee-0a906d0d5bcd&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 7998651243254dcf9571f71f51e504bb
37bdb28a25c863a0c718fa2339fb58ac255d4768
68b9e37263987d1c2a042df2376dca6923d4ab40550c023fb727dfe9d85df37a
GET /zcredirect?visitid=9899d704-954e-11ed-a5ee-0a906d0d5bcd&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false HTTP/1.1
Host: chima-eoj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chima-eoj.com/zcvisitor/9899d704-954e-11ed-a5ee-0a906d0d5bcd/fa8076ca-64e7-4648-95fb-59f8b6b1f6e1?campaignid=4fb4e190-e7f9-11ec-be3c-128084d1ce51
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Date: Mon, 16 Jan 2023 03:33:53 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
redirected: JS
Server: mVBgBhTD
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a7829e6b758f85c89a5512a016916f53
94bbce00d3da50284e3ecab276d3db73e2639a83
55cf368d1cb10c13c508025be29b76ee0bb28f43dd54b55ad4afa0542387367c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "55CF368D1CB10C13C508025BE29B76EE0BB28F43DD54B55AD4AFA0542387367C"
Last-Modified: Sat, 14 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=45
Expires: Mon, 16 Jan 2023 03:34:38 GMT
Date: Mon, 16 Jan 2023 03:33:53 GMT
Connection: keep-alive
clever-redirect.com/s/r6?s=623619497&s2=gamboge-moose&s3=sierra-lag-1x2x4mge78
200 OK 348 B URL HTTP/2 clever-redirect.com/s/r6?s=623619497&s2=gamboge-moose&s3=sierra-lag-1x2x4mge78
IP
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (348), with no line terminators
Hash 00c38b6d398bdc4099a02de27925c762
5513631c1c9db25442b010b077752d0f8f5d5935
4d6e6ba9db550ef6902f79c73c5a9476ff587eda63f56355895394e1f47616bf
GET /s/r6?s=623619497&s2=gamboge-moose&s3=sierra-lag-1x2x4mge78 HTTP/1.1
Host: clever-redirect.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://chima-eoj.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
referrer-policy: no-referrer
x-powered-by: PHP/7.4.27
set-cookie: a930ccb8583dbf8d1b08049b96c02a56=a913a763f088f0b59c0afec82906ab7f6c2c729fb9b14ef701aeed854d5b2043a%3A2%3A%7Bi%3A0%3Bs%3A32%3A%22a930ccb8583dbf8d1b08049b96c02a56%22%3Bi%3A1%3Bs%3A1%3A%221%22%3B%7D; expires=Tue, 17-Jan-2023 03:33:53 GMT; Max-Age=86400; path=/; HttpOnly
content-length: 348
content-type: text/html; charset=UTF-8
date: Mon, 16 Jan 2023 03:33:53 GMT
server: Apache/2.4.52 (codeit) OpenSSL/1.1.1m PHP/7.4.27
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dcb05aa71a05b68836ce66084076e67a
041a808632b4821e3f37ecd25402fc021c4032c1
5f868b2a120beb39f3f73cf04e760b3e51b60c68a2b28c95e82b4b73a3aee670
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5F868B2A120BEB39F3F73CF04E760B3E51B60C68A2B28C95E82B4B73A3AEE670"
Last-Modified: Sun, 15 Jan 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10499
Expires: Mon, 16 Jan 2023 06:28:52 GMT
Date: Mon, 16 Jan 2023 03:33:53 GMT
Connection: keep-alive
lookandfind.me/s/a?t=10&f=1&u=f4bdb01fc36e3f720c2a963a770625c6&m=derute.no&s1=623619497&s2=gamboge-moose&s3=sierra-lag-1x2x4mge78&s5=cf
200 OK 939 B URL HTTP/1.1 lookandfind.me/s/a?t=10&f=1&u=f4bdb01fc36e3f720c2a963a770625c6&m=derute.no&s1=623619497&s2=gamboge-moose&s3=sierra-lag-1x2x4mge78&s5=cf
IP
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document, ASCII text, with very long lines (939), with no line terminators
Hash a23c3e445d2dbd7dce99aeeb6e575ad2
03ae4de57de8d71f9f22338b596869f3226b8e21
d0099eafa7aa6f4a0654da8b79bff2f34ae93e9ce967a78cc61fbf1440748250
GET /s/a?t=10&f=1&u=f4bdb01fc36e3f720c2a963a770625c6&m=derute.no&s1=623619497&s2=gamboge-moose&s3=sierra-lag-1x2x4mge78&s5=cf HTTP/1.1
Host: lookandfind.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 16 Jan 2023 03:33:53 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1k
X-Powered-By: PHP/8.1.13
Set-Cookie: f8fafd43bd9040010314256810091a17=ab1b5e3649dfb10ae8ca0cead88abda0544f9334c19da51d153805d2e1167f92a%3A2%3A%7Bi%3A0%3Bs%3A32%3A%22f8fafd43bd9040010314256810091a17%22%3Bi%3A1%3Bs%3A1%3A%221%22%3B%7D; expires=Tue, 17-Jan-2023 03:33:53 GMT; Max-Age=86400; path=/; HttpOnly
Referrer-Policy: strict-origin-when-cross-origin
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 871ced6cfe919499937981d7534580e9
2e8c0fb97592bd7868be241ade707d1b38e49c34
35a05f202611c548fd0768c5f1b3d749a0dd50ade93e6df29940547480c5ec91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35A05F202611C548FD0768C5F1B3D749A0DD50ADE93E6DF29940547480C5EC91"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16366
Expires: Mon, 16 Jan 2023 08:06:39 GMT
Date: Mon, 16 Jan 2023 03:33:53 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 871ced6cfe919499937981d7534580e9
2e8c0fb97592bd7868be241ade707d1b38e49c34
35a05f202611c548fd0768c5f1b3d749a0dd50ade93e6df29940547480c5ec91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35A05F202611C548FD0768C5F1B3D749A0DD50ADE93E6DF29940547480C5EC91"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16366
Expires: Mon, 16 Jan 2023 08:06:39 GMT
Date: Mon, 16 Jan 2023 03:33:53 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 871ced6cfe919499937981d7534580e9
2e8c0fb97592bd7868be241ade707d1b38e49c34
35a05f202611c548fd0768c5f1b3d749a0dd50ade93e6df29940547480c5ec91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35A05F202611C548FD0768C5F1B3D749A0DD50ADE93E6DF29940547480C5EC91"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16366
Expires: Mon, 16 Jan 2023 08:06:39 GMT
Date: Mon, 16 Jan 2023 03:33:53 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 871ced6cfe919499937981d7534580e9
2e8c0fb97592bd7868be241ade707d1b38e49c34
35a05f202611c548fd0768c5f1b3d749a0dd50ade93e6df29940547480c5ec91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35A05F202611C548FD0768C5F1B3D749A0DD50ADE93E6DF29940547480C5EC91"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16366
Expires: Mon, 16 Jan 2023 08:06:39 GMT
Date: Mon, 16 Jan 2023 03:33:53 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 871ced6cfe919499937981d7534580e9
2e8c0fb97592bd7868be241ade707d1b38e49c34
35a05f202611c548fd0768c5f1b3d749a0dd50ade93e6df29940547480c5ec91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35A05F202611C548FD0768C5F1B3D749A0DD50ADE93E6DF29940547480C5EC91"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16366
Expires: Mon, 16 Jan 2023 08:06:39 GMT
Date: Mon, 16 Jan 2023 03:33:53 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6288fb14-98ed-45e9-92f6-6fabe4d7cf2f.jpeg
200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6288fb14-98ed-45e9-92f6-6fabe4d7cf2f.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a14364fe2ad784ef5db2ea66dcf18dba
3274bc2a0b6e41d6f44e31ab0e233f79677079d3
40ffbf3dd157214eb918c6babf69b94f657f354337001f0b7e06930bf6a47aae
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6288fb14-98ed-45e9-92f6-6fabe4d7cf2f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7291
x-amzn-requestid: 153fdafd-e094-4261-8202-065208ed543e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ezbOMGuxoAMFkJQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4725a-68ba19037f23dae033513080;Sampled=0
x-amzn-remapped-date: Sun, 15 Jan 2023 21:38:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dCzcLSv-R9QxYnx_d6iQJBWnYuZIIsHlwdKj4N_8yNlNHiSQ7RDDVQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 15 Jan 2023 21:45:02 GMT
age: 20931
etag: "3274bc2a0b6e41d6f44e31ab0e233f79677079d3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa81e129b-3fb3-4b30-a6fc-04ac1926b5c8.jpeg
200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa81e129b-3fb3-4b30-a6fc-04ac1926b5c8.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0c1d929710bbf5d3a500cff064fa28e5
f76fade4eba5e5740d1261a2bce7776719ee477f
bb0b45ede28406534c236881abe011a1b8162a1bcb4cbe61320c613fec5d0010
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa81e129b-3fb3-4b30-a6fc-04ac1926b5c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7986
x-amzn-requestid: 366be46e-97f4-4bdc-8341-5bf87438ad86
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ezbPvEezoAMF6ng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c47264-7eef208b3ec703b82d792537;Sampled=0
x-amzn-remapped-date: Sun, 15 Jan 2023 21:38:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _cMoPRYYqsc6B6TWFkmrfDMCleAW2jWn5FXGmjay279Bf3tppH60hQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sun, 15 Jan 2023 22:04:21 GMT
age: 19772
etag: "f76fade4eba5e5740d1261a2bce7776719ee477f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F77bcb8a1-6565-4283-8a46-f2624485b82c.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F77bcb8a1-6565-4283-8a46-f2624485b82c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 48e4d33d0e2d8dfc127917632a45ec79
7a124673f4e413bc58a429ae6fb72618f08938d2
1e195f91ce82097f1e0677f5b26db495dd93a714364b2086f618e8b477f05497
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F77bcb8a1-6565-4283-8a46-f2624485b82c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12703
x-amzn-requestid: df3a2816-a340-4aa7-bade-50d66b499da8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eq167Gc7oAMF-0w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c10378-6d3edaab0ddee58476197d69;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 07:08:40 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YRBVVanJq2UY_NaQv4BUy2gqwIzdys6SpR0FymDH67XK_rJ2LnGloQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 15 Jan 2023 18:45:53 GMT
age: 31680
etag: "7a124673f4e413bc58a429ae6fb72618f08938d2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96072c7b-d55b-46d5-990f-49db93101549.jpeg
200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96072c7b-d55b-46d5-990f-49db93101549.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 967f1203a41980b914f19374ecd15973
65806af5bd4421fbacb00cd32f6102ab3f4cf1f1
7fec48c42cda6aaa3f17ad1db30968b04ffea392ad949e646bba763e53508329
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96072c7b-d55b-46d5-990f-49db93101549.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8040
x-amzn-requestid: e95c2179-6659-4be8-b66b-3d68b314b602
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: exbCEH6bIAMFSlg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c3a540-4fde44af3f8fdb3622623542;Sampled=0
x-amzn-remapped-date: Sun, 15 Jan 2023 07:03:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7XVBWws74x6_i8ZvXHP413DfPGGfJ7L-Hck3K0KykZgZHxIF3ponUw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sun, 15 Jan 2023 07:59:05 GMT
age: 70488
etag: "65806af5bd4421fbacb00cd32f6102ab3f4cf1f1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F11096c9a-daab-44fd-bdba-e72808f67f65.jpeg
200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F11096c9a-daab-44fd-bdba-e72808f67f65.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d5b5c747b75121f322c4845a137d725a
6fd2ad86b28ad36b81e96df3e7f78f19e151d77b
aaf3622cdb5e7e5f5284145705759414c40ea3b60a055d1ae7c5f9048e708086
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F11096c9a-daab-44fd-bdba-e72808f67f65.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8395
x-amzn-requestid: b849f092-bdb9-4c1b-8000-f090773f8991
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ezbONHQuIAMF1lA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4725a-3c5bcf043d435e59609c5bd6;Sampled=0
x-amzn-remapped-date: Sun, 15 Jan 2023 21:38:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mL0GM1YfHTO-ct7mkACe8PECZ6a0p1PDMFmddGOz-cO4S6y7-v__5g==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 15 Jan 2023 21:54:19 GMT
age: 20374
etag: "6fd2ad86b28ad36b81e96df3e7f78f19e151d77b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5181f14-9549-4dff-a4a9-c17773a42b4e.jpeg
200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5181f14-9549-4dff-a4a9-c17773a42b4e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b0c34ff9641da8cced64a755b0cbb41d
4f62fe551694bf68fdeaed7e45d798bc8bbb0690
3e6988336060a9a15ef5387f0fc27bbcc3eb29a423b078960e8cbefe0d5f2777
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5181f14-9549-4dff-a4a9-c17773a42b4e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5018
x-amzn-requestid: 9d3f95cc-e040-4a3c-8534-3090e9833e34
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: etlLpEUFoAMFWFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c21be3-69f859c7601f75ea4afb4953;Sampled=0
x-amzn-remapped-date: Sat, 14 Jan 2023 03:05:07 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: h39Thg4Vg5QO6kGO2WWlt_DofqrTtIMAjv7c-ygcH1x86yIEGwf6PA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Sun, 15 Jan 2023 04:04:30 GMT
age: 84563
etag: "4f62fe551694bf68fdeaed7e45d798bc8bbb0690"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
lookandfind.me/s/r?u=https%3A%2F%2Fapi.yadore.com%2Fv2%2Fr%3Fe%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%3D%3D%26i%3D2SCMd0Hx18uqTEjj%26placementId%3D95e868552c923fbe1650cbe9a2e49187&h=a77058013022adb16ccdd8ccd7dae846
200 OK 867 B URL HTTP/1.1 lookandfind.me/s/r?u=https%3A%2F%2Fapi.yadore.com%2Fv2%2Fr%3Fe%3DVGdaWXRaOFMvMjlab0g1ZE1wVDhOdzMxMmVxWWY4MUpmaVMvUHJ1cFJBZ3lZbTVOMThjM1NpR1EwTDlJVnVyK1NvTHBqdWdmUW9uM2lKSE5uQTVMZ05YMjdzQ0J4MzJRajJDWnIrYSs1WUpWcWR4ekZTcmlYb2RKcEx3MXgzbE5BbnpCaTMzMkhaamY2Y3N6T20rcFpqSWloaUhMZFZjUUp1am1wRVN5UDhHWDUxa1VXOWpnb0xrZnBTTkVFdDBuZlB2QlNiZlF3Sk9RV3pGbDZPNDNTZVFXY1BRSWVsaTQrN1JySVorY0l5OHRsZjBmNXhpTDFOSkg4Q3pJbyttWXBYL3JydnpBWUloNnk3dFF0cityYUE3dHNSa1pvNk1YQWl4NDY4Ujd1bGdWbEFpVmFSN0dhMnhWdlVMWk8veVd4NjEvR3VZbUI4THV4WWQra2o1RlJDYysxeXAxT3ZOOVM0dWpkcEpGMTcwbk9rZHoyMTB5VzJFOWRxSjNOcWRLb0U0RlRla3A4YXlzN2JMRmZpL2pnSTJpQk9SbUxPQUgvYTMrTHc9PQ%3D%3D%26i%3D2SCMd0Hx18uqTEjj%26placementId%3D95e868552c923fbe1650cbe9a2e49187&h=a77058013022adb16ccdd8ccd7dae846
IP
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (867), with no line terminators
Hash e77c54473cc0b3aadab0d2a3d2953cb6
869b90b08ee0155feb6c2c99a24b6389d7ca67e8
9af5e0e28b6a6d9bb1adf5100b458fab3befdda61175008c491fb8edd40ab472
GET /s/r?u=https%3A%2F%2Fapi.yadore.com%2Fv2%2Fr%3Fe%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%3D%3D%26i%3D2SCMd0Hx18uqTEjj%26placementId%3D95e868552c923fbe1650cbe9a2e49187&h=a77058013022adb16ccdd8ccd7dae846 HTTP/1.1
Host: lookandfind.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: f8fafd43bd9040010314256810091a17=ab1b5e3649dfb10ae8ca0cead88abda0544f9334c19da51d153805d2e1167f92a%3A2%3A%7Bi%3A0%3Bs%3A32%3A%22f8fafd43bd9040010314256810091a17%22%3Bi%3A1%3Bs%3A1%3A%221%22%3B%7D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 16 Jan 2023 03:33:53 GMT
Server: Apache/2.4.37 (centos) OpenSSL/1.1.1k
X-Powered-By: PHP/8.1.13
Referrer-Policy: strict-origin-when-cross-origin
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f8aaf0bad19d2100b7f793c565aec4c5
68776c32024db5057243df199505c19382f47d22
c7a227144cf18f853773dd19c2d56bbe1755376bdd40ac8512a4f1ae676ce9e5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C7A227144CF18F853773DD19C2D56BBE1755376BDD40AC8512A4F1AE676CE9E5"
Last-Modified: Sat, 14 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20257
Expires: Mon, 16 Jan 2023 09:11:31 GMT
Date: Mon, 16 Jan 2023 03:33:54 GMT
Connection: keep-alive
status.thawte.com/
200 OK 471 B IP
Hash 32b1245c9d439d25f6dde53a8ab9bcbf
c3d296c7b4d367f5aae4603e82d3fad0287f21f7
104619edbb6583e3326271fbdae4988ca694280eac4833c54dd777156fb16712
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1426
Cache-Control: max-age=138034
Content-Type: application/ocsp-response
Date: Mon, 16 Jan 2023 03:33:54 GMT
Etag: "63c43842-1d7"
Expires: Tue, 17 Jan 2023 17:54:28 GMT
Last-Modified: Sun, 15 Jan 2023 17:30:42 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
no-go.kelkoogroup.net/offersearchGo?.ts=1673834325345&.sig=F2phz2g2ASaDc_Zf3KSbdO6VSZg-&affiliationId=96965886&comId=100536667&country=no&offerId=33672771f3e8b93f8e6fdb3bc55f30e6&service=37&tokenId=eef84b7f-8e19-45d1-adee-7c88767dc72d&wait=true&addedParams=true&custom1=b4c2dfc96e4fcf52407b9169f58da8c8fbb792545980a3c784f6e2040a69fd22&custom2=SRdytlITOR16&custom3=false
200 OK 36 kB URL HTTP/1.1 no-go.kelkoogroup.net/offersearchGo?.ts=1673834325345&.sig=F2phz2g2ASaDc_Zf3KSbdO6VSZg-&affiliationId=96965886&comId=100536667&country=no&offerId=33672771f3e8b93f8e6fdb3bc55f30e6&service=37&tokenId=eef84b7f-8e19-45d1-adee-7c88767dc72d&wait=true&addedParams=true&custom1=b4c2dfc96e4fcf52407b9169f58da8c8fbb792545980a3c784f6e2040a69fd22&custom2=SRdytlITOR16&custom3=false
IP
ASN #60781 LeaseWeb Netherlands B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (13002)
Hash 4d6e61cf0fb008851ebc91977d74ffcb
e44bc1e32669d7785f9f430ae1b6f5bcb776913c
152b264adf2cba04ca077596a881c412d75f42fc486cfd62a93092a79cbf02ce
GET /offersearchGo?.ts=1673834325345&.sig=F2phz2g2ASaDc_Zf3KSbdO6VSZg-&affiliationId=96965886&comId=100536667&country=no&offerId=33672771f3e8b93f8e6fdb3bc55f30e6&service=37&tokenId=eef84b7f-8e19-45d1-adee-7c88767dc72d&wait=true&addedParams=true&custom1=b4c2dfc96e4fcf52407b9169f58da8c8fbb792545980a3c784f6e2040a69fd22&custom2=SRdytlITOR16&custom3=false HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lookandfind.me/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
leadId: dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1673840034366_3935323
clickId: 107698111_1673840034359_2346114
country: no
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
Set-Cookie: datadome=4wDLhx9T1ciKQbqrSiJPMlxg_OkM4ypluyPvUkjKW746nkfvw9__q-9ae~JxqY3sddW3E2VnNmXLel5wBO9LsupD7FUCksrjBBNw~Hht27ksl88Gx~C46PRJb_BlNSxg; Max-Age=31536000; Expires=Tue, 16 Jan 2024 03:33:54 GMT; SameSite=Lax; Path=/; Domain=.kelkoogroup.net; Secure
kelkooID=a4c626f-185b8a40237-9fabd; Max-Age=31536000; Expires=Tue, 16 Jan 2024 03:33:54 GMT; SameSite=None; Path=/; Domain=kelkoogroup.net; Secure; HTTPOnly
X-DataDome: protected
Request-Time: PT0.017023S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: ALLOWALL
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Date: Mon, 16 Jan 2023 03:33:54 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 35631
no-go.kelkoogroup.net/fp?country=no&k=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&leadId=dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1673840034366_3935323&clickId=107698111_1673840034359_2346114
200 OK 0 B URL HTTP/1.1 no-go.kelkoogroup.net/fp?country=no&k=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&leadId=dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1673840034366_3935323&clickId=107698111_1673840034359_2346114
IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /fp?country=no&k=612f7a9541cd6ea61eb554c0e4cff43705260665475808a76906ef58456f84b04045d50a26fe20f7c601a29953d38bcca1f5be25f2ab7f80d29f8aaff826ade5d121f46b7edd481cb6d94ff273744ddb21e969e2f8e176c6d3169ad8c6652abd2139585e79b3ddc69112ad5d47c1db81141c18f22c7deb8e886ee505de19eb9702d3f1f2064277a88ada7ea8fabe703de531f9d71e752975653418cf8e0429df45939f9cb7f6d4e16bde3352ab66308b4f34205d7ea4e742ce367c0d17594cbcca6ffdc35da9a4755c112a01f7a4c19a726fd331e0a4c574bd0c7477763e48967d91caa42f01b58acc49f12ec2d1b820f8f0d72348cf5c842999580c163bc94d72c82908caa23b2f8fdbfd0591b2681938e3ba51ba01601ed4b006cc95c29f77af9c8ea8496aecf089206ad5e0d623a7d451c92aba084f62f7ccd3cbe21e4563fa02a0ce8032f65d4fc322d3f87c67cf56f77fd88287dd808007953005b1fc8393233cb382235609dec7d58a1c8978143b6beec60699f5290a79a17cfecb377d74f34fb9b9b75c69&leadId=dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1673840034366_3935323&clickId=107698111_1673840034359_2346114 HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/offersearchGo?.ts=1673834325345&.sig=F2phz2g2ASaDc_Zf3KSbdO6VSZg-&affiliationId=96965886&comId=100536667&country=no&offerId=33672771f3e8b93f8e6fdb3bc55f30e6&service=37&tokenId=eef84b7f-8e19-45d1-adee-7c88767dc72d&wait=true&addedParams=true&custom1=b4c2dfc96e4fcf52407b9169f58da8c8fbb792545980a3c784f6e2040a69fd22&custom2=SRdytlITOR16&custom3=false
Content-Type: text/plain;charset=utf-8
Content-Length: 536
Origin: https://no-go.kelkoogroup.net
Connection: keep-alive
Cookie: datadome=4wDLhx9T1ciKQbqrSiJPMlxg_OkM4ypluyPvUkjKW746nkfvw9__q-9ae~JxqY3sddW3E2VnNmXLel5wBO9LsupD7FUCksrjBBNw~Hht27ksl88Gx~C46PRJb_BlNSxg; kelkooID=a4c626f-185b8a40237-9fabd; _ga=GA1.2.1004255596.1673840035; _gid=GA1.2.878416620.1673840035
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Request-Time: PT0.002903S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: ALLOWALL
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Date: Mon, 16 Jan 2023 03:33:54 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 0
no-go.kelkoogroup.net/assets/images/p.png?country=no&k=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&leadId=dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1673840034366_3935323&clickId=107698111_1673840034359_2346114
200 OK 68 B URL HTTP/1.1 no-go.kelkoogroup.net/assets/images/p.png?country=no&k=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&leadId=dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1673840034366_3935323&clickId=107698111_1673840034359_2346114
IP
ASN #60781 LeaseWeb Netherlands B.V.
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash 91e42db1c66c0b276abf6234dc50b2eb
c1986af3c26609b8b7d8933f99c51c1a89e9ea6b
63ef318d96b5d0d0ceba6e04a4e622b1158335cdc67c49e27839132c6f655058
GET /assets/images/p.png?country=no&k=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&leadId=dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1673840034366_3935323&clickId=107698111_1673840034359_2346114 HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/offersearchGo?.ts=1673834325345&.sig=F2phz2g2ASaDc_Zf3KSbdO6VSZg-&affiliationId=96965886&comId=100536667&country=no&offerId=33672771f3e8b93f8e6fdb3bc55f30e6&service=37&tokenId=eef84b7f-8e19-45d1-adee-7c88767dc72d&wait=true&addedParams=true&custom1=b4c2dfc96e4fcf52407b9169f58da8c8fbb792545980a3c784f6e2040a69fd22&custom2=SRdytlITOR16&custom3=false
Connection: keep-alive
Cookie: datadome=4wDLhx9T1ciKQbqrSiJPMlxg_OkM4ypluyPvUkjKW746nkfvw9__q-9ae~JxqY3sddW3E2VnNmXLel5wBO9LsupD7FUCksrjBBNw~Hht27ksl88Gx~C46PRJb_BlNSxg; kelkooID=a4c626f-185b8a40237-9fabd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Request-Time: PT0.001567S
X-Robots-Tag: noindex,nofollow
Cache-Control: private, must-revalidate
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: ALLOWALL
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Date: Mon, 16 Jan 2023 03:33:54 GMT
Content-Type: image/png
Content-Length: 68
dd.kelkoogroup.net/tags.js
200 OK 43 kB URL HTTP/2 dd.kelkoogroup.net/tags.js
IP
File type ASCII text, with very long lines (65432)
Hash 415a2173b7594522994c0d8b20a61e84
25e995f3ba4c22c8f252550532609cecc9e8e80b
49c82e367a121c73a821d132f5e48c06490731203c241c779ae7c58bfab60da5
GET /tags.js HTTP/1.1
Host: dd.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/
Connection: keep-alive
Cookie: datadome=4wDLhx9T1ciKQbqrSiJPMlxg_OkM4ypluyPvUkjKW746nkfvw9__q-9ae~JxqY3sddW3E2VnNmXLel5wBO9LsupD7FUCksrjBBNw~Hht27ksl88Gx~C46PRJb_BlNSxg; kelkooID=a4c626f-185b8a40237-9fabd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: text/javascript
content-length: 42664
server: Apache
strict-transport-security: max-age=63072000; includeSubDomains; preload
last-modified: Wed, 07 Dec 2022 10:03:12 GMT
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
via: 1.1 2816426ad1adbedbdd23d4cdf80c2de2.cloudfront.net (CloudFront), 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
date: Mon, 16 Jan 2023 02:37:55 GMT
cache-control: max-age=3600, public
expires: Mon, 16 Jan 2023 03:36:38 GMT
etag: "32de8-5ef3a07422ee0-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA60-P2, OSL50-P1
x-amz-cf-id: yoYH3OGWzR_ug_hbS2Zj57-WX-N0MUqSvKlmNv7xze0uv6GfSeXi3w==
age: 3436
X-Firefox-Spdy: h2
no-go.kelkoogroup.net/redirect?country=no&k=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&leadId=dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1673840034366_3935323&clickId=107698111_1673840034359_2346114&url=https%3A%2F%2Fjdt8.net%2Fc%2F%3Fsi%3D17198%26li%3D1744473%26wi%3D325766%26pid%3D1ec614825f12f47ce0c7257f9cb0de61%26dl%3Dproducts%252Fkavu-kelowna-blue-bandana%26ws%3Ddc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1673840034366_3935323
303 See Other 0 B URL HTTP/1.1 no-go.kelkoogroup.net/redirect?country=no&k=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&leadId=dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1673840034366_3935323&clickId=107698111_1673840034359_2346114&url=https%3A%2F%2Fjdt8.net%2Fc%2F%3Fsi%3D17198%26li%3D1744473%26wi%3D325766%26pid%3D1ec614825f12f47ce0c7257f9cb0de61%26dl%3Dproducts%252Fkavu-kelowna-blue-bandana%26ws%3Ddc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1673840034366_3935323
IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect?country=no&k=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&leadId=dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1673840034366_3935323&clickId=107698111_1673840034359_2346114&url=https%3A%2F%2Fjdt8.net%2Fc%2F%3Fsi%3D17198%26li%3D1744473%26wi%3D325766%26pid%3D1ec614825f12f47ce0c7257f9cb0de61%26dl%3Dproducts%252Fkavu-kelowna-blue-bandana%26ws%3Ddc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1673840034366_3935323 HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/offersearchGo?.ts=1673834325345&.sig=F2phz2g2ASaDc_Zf3KSbdO6VSZg-&affiliationId=96965886&comId=100536667&country=no&offerId=33672771f3e8b93f8e6fdb3bc55f30e6&service=37&tokenId=eef84b7f-8e19-45d1-adee-7c88767dc72d&wait=true&addedParams=true&custom1=b4c2dfc96e4fcf52407b9169f58da8c8fbb792545980a3c784f6e2040a69fd22&custom2=SRdytlITOR16&custom3=false
Connection: keep-alive
Cookie: datadome=4wDLhx9T1ciKQbqrSiJPMlxg_OkM4ypluyPvUkjKW746nkfvw9__q-9ae~JxqY3sddW3E2VnNmXLel5wBO9LsupD7FUCksrjBBNw~Hht27ksl88Gx~C46PRJb_BlNSxg; kelkooID=a4c626f-185b8a40237-9fabd; _ga=GA1.2.1004255596.1673840035; _gid=GA1.2.878416620.1673840035
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 303 See Other
leadId: dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1673840034366_3935323
clickId: 107698111_1673840034359_2346114
country: no
Location: https://jdt8.net/c/?si=17198&li=1744473&wi=325766&pid=1ec614825f12f47ce0c7257f9cb0de61&dl=products%2Fkavu-kelowna-blue-bandana&ws=dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1673840034366_3935323
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
Set-Cookie: datadome=3sDXrId5onckOtKRQcw-BVcm3ss8G-wzbB3oINv2XH7CXb3r7hc_vOsDJIkdAgMw9zjIUGC_l0s8biETzyVxTOwyu9maxR_iJqiKLW8ig_9olg5feeUrqa9T27Rd~488; Max-Age=31536000; Expires=Tue, 16 Jan 2024 03:33:54 GMT; SameSite=Lax; Path=/; Domain=.kelkoogroup.net; Secure
X-DataDome: protected
Request-Time: PT0.011865S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: ALLOWALL
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Date: Mon, 16 Jan 2023 03:33:54 GMT
Content-Length: 0
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a813a061a05c54b0097af9696d4bcb2e
6a7c9a8587f67a9202d2220c8ab12dd283df0e54
be4722747d6b02daf5e954e7fefc2e99ca522b243db0e4395282af48b381f939
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 16 Jan 2023 03:33:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/collect?v=1&_v=j96&t=pageview&_s=1&dl=https%3A%2F%2Fno-go.kelkoogroup.net%2FoffersearchGo%3F.ts%3D1673834325345%26.sig%3DF2phz2g2ASaDc_Zf3KSbdO6VSZg-%26affiliationId%3D96965886%26comId%3D100536667%26country%3Dno%26offerId%3D33672771f3e8b93f8e6fdb3bc55f30e6%26service%3D37%26tokenId%3Deef84b7f-8e19-45d1-adee-7c88767dc72d%26wait%3Dtrue%26addedParams%3Dtrue%26custom1%3Db4c2dfc96e4fcf52407b9169f58da8c8fbb792545980a3c784f6e2040a69fd22%26custom2%3DSRdytlITOR16%26custom3%3Dfalse&dr=https%3A%2F%2Flookandfind.me%2F&dp=%2F96965886%7C100536667%7C&ul=en-us&de=UTF-8&dt=Du%20sendes%20videre%20til%20Derute.no&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=QACAAAABAAAAAC~&cid=1004255596.1673840035&tid=UA-168544891-6&_gid=878416620.1673840035&_r=1&cd1=96965886&cd2=dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1673840034366_3935323&cd3=100536667&cd4=a4c626f-185b8a40237-9fabd&cd5=&cd6=96965886%7C100536667%7C&z=1066156763
200 OK 35 B URL HTTP/2 www.google-analytics.com/collect?v=1&_v=j96&t=pageview&_s=1&dl=https%3A%2F%2Fno-go.kelkoogroup.net%2FoffersearchGo%3F.ts%3D1673834325345%26.sig%3DF2phz2g2ASaDc_Zf3KSbdO6VSZg-%26affiliationId%3D96965886%26comId%3D100536667%26country%3Dno%26offerId%3D33672771f3e8b93f8e6fdb3bc55f30e6%26service%3D37%26tokenId%3Deef84b7f-8e19-45d1-adee-7c88767dc72d%26wait%3Dtrue%26addedParams%3Dtrue%26custom1%3Db4c2dfc96e4fcf52407b9169f58da8c8fbb792545980a3c784f6e2040a69fd22%26custom2%3DSRdytlITOR16%26custom3%3Dfalse&dr=https%3A%2F%2Flookandfind.me%2F&dp=%2F96965886%7C100536667%7C&ul=en-us&de=UTF-8&dt=Du%20sendes%20videre%20til%20Derute.no&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=QACAAAABAAAAAC~&cid=1004255596.1673840035&tid=UA-168544891-6&_gid=878416620.1673840035&_r=1&cd1=96965886&cd2=dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1673840034366_3935323&cd3=100536667&cd4=a4c626f-185b8a40237-9fabd&cd5=&cd6=96965886%7C100536667%7C&z=1066156763
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
POST /collect?v=1&_v=j96&t=pageview&_s=1&dl=https%3A%2F%2Fno-go.kelkoogroup.net%2FoffersearchGo%3F.ts%3D1673834325345%26.sig%3DF2phz2g2ASaDc_Zf3KSbdO6VSZg-%26affiliationId%3D96965886%26comId%3D100536667%26country%3Dno%26offerId%3D33672771f3e8b93f8e6fdb3bc55f30e6%26service%3D37%26tokenId%3Deef84b7f-8e19-45d1-adee-7c88767dc72d%26wait%3Dtrue%26addedParams%3Dtrue%26custom1%3Db4c2dfc96e4fcf52407b9169f58da8c8fbb792545980a3c784f6e2040a69fd22%26custom2%3DSRdytlITOR16%26custom3%3Dfalse&dr=https%3A%2F%2Flookandfind.me%2F&dp=%2F96965886%7C100536667%7C&ul=en-us&de=UTF-8&dt=Du%20sendes%20videre%20til%20Derute.no&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=QACAAAABAAAAAC~&cid=1004255596.1673840035&tid=UA-168544891-6&_gid=878416620.1673840035&_r=1&cd1=96965886&cd2=dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1673840034366_3935323&cd3=100536667&cd4=a4c626f-185b8a40237-9fabd&cd5=&cd6=96965886%7C100536667%7C&z=1066156763 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://no-go.kelkoogroup.net
Connection: keep-alive
Referer: https://no-go.kelkoogroup.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
access-control-allow-origin: https://no-go.kelkoogroup.net
date: Mon, 16 Jan 2023 03:33:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
x-content-type-options: nosniff
access-control-allow-credentials: true
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a813a061a05c54b0097af9696d4bcb2e
6a7c9a8587f67a9202d2220c8ab12dd283df0e54
be4722747d6b02daf5e954e7fefc2e99ca522b243db0e4395282af48b381f939
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 16 Jan 2023 03:33:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jdt8.net/redirect/global.php?dai_url_domain=www.derute.no&dai_url_add=utm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_Kelkoo+NO&dai_url=products%2Fkavu-kelowna-blue-bandana
301 Moved Permanently 503 B URL HTTP/2 jdt8.net/redirect/global.php?dai_url_domain=www.derute.no&dai_url_add=utm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_Kelkoo+NO&dai_url=products%2Fkavu-kelowna-blue-bandana
IP
Hash ee4f628b24ae61ef1321ecd08c78c21d
ed0172587113d525410b8b6c49384326c1307f9b
6cba4077e99b67d52e389680ed8286eab9fa0df8e7f1dc2199fb908cd643a428
GET /redirect/global.php?dai_url_domain=www.derute.no&dai_url_add=utm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_Kelkoo+NO&dai_url=products%2Fkavu-kelowna-blue-bandana HTTP/1.1
Host: jdt8.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/
Connection: keep-alive
Cookie: dci=h56A0pIS8i33gaa; pdc=h56A0pIS8i33gaa; ci_17198=ZF4xNjczODQwMDM0LGRjaV5oNTZBMHBJUzhpMzNnYWE%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Mon, 16 Jan 2023 03:33:55 GMT
content-type: text/html; charset=UTF-8
location: https://www.derute.no/products/kavu-kelowna-blue-bandana?utm_source=daisycon&utm_medium=affiliate&utm_campaign=daisycon_Kelkoo NO
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-expose-headers: P3p, Cache-Control, Expires, Content-Length, Content-Type
cache-control: max-age=14400
expires: Mon, 16 Jan 2023 07:33:55 GMT
x-daisycon-cluster: ApacheContainer-8e4ba367da73-tracking.daisycon.com
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AuUo0QPkEnsTQgr2%2BoVUBM7OjKn9mnaq76aEc5OlIKj%2ByACY0agMMInQxFytnuLVulneNuPcHxFNrAs2QqHi87r27Yk9v5Tqsteiilzxnc54ibu%2F8FKhY53Frw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78a3cadc096ffabc-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.derute.no/products/kavu-kelowna-blue-bandana?utm_source=daisycon&utm_medium=affiliate&utm_campaign=daisycon_Kelkoo%20NO
301 Moved Permanently 704 B URL HTTP/2 www.derute.no/products/kavu-kelowna-blue-bandana?utm_source=daisycon&utm_medium=affiliate&utm_campaign=daisycon_Kelkoo%20NO
IP
Hash 55aecca59bba4fbfddbfc95aa907a662
a0f698c4be1fa9948fb2c94538e8b048b3132a3c
c69daf434ec87ad05f7893eafe45ac5b2804a7a7b978eb80ad4ea351be4a9cec
GET /products/kavu-kelowna-blue-bandana?utm_source=daisycon&utm_medium=affiliate&utm_campaign=daisycon_Kelkoo%20NO HTTP/1.1
Host: www.derute.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Mon, 16 Jan 2023 03:33:55 GMT
content-type: text/html; charset=utf-8
location: https://derute.no/products/kavu-kelowna-blue-bandana?utm_source=daisycon&utm_medium=affiliate&utm_campaign=daisycon_Kelkoo%20NO
x-sorting-hat-podid: 218
x-sorting-hat-shopid: 60729753819
x-storefront-renderer-rendered: 1
x-redirect-reason: canonical_host_redirection
x-frame-options: DENY
content-security-policy: block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
access-control-allow-origin: *
strict-transport-security: max-age=7889238
x-shopid: 60729753819
x-shardid: 218
vary: Accept
x-shopify-stage: production
x-dc: gcp-europe-north1,europe-west1,gcp-europe-west1
x-request-id: dc46b2ab-e1e0-4bf6-9797-7d54fe9dc566
x-content-type-options: nosniff
x-download-options: noopen
x-xss-protection: 1; mode=block
x-permitted-cross-domain-policies: none
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NZW9Fx6kq2%2BJV7%2BpDD1ra2eSkGuSPlpJfm0c3oqJY81awS5QkHDV8%2F%2FiYxQV%2FSggPamI2iHgWvK3esq8iRhYJ8SF%2FyLujS6YFDUYXSQFozll2UBbxhsKroLNRd6ufm8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: processing;dur=20, db;dur=5, asn;desc="50304", edge;desc="OSL", country;desc="NO", cfRequestDuration;dur=249.000072
server: cloudflare
cf-ray: 78a3caddde1ab50f-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c1fa3980caa6b7c866e6091750dcbac9
ba2278c51d82c70c641794dcd8f7b4d44aaf3154
43a1f98e08e225fbb14ef905265466032c2abf7246c1fc6c5e5d26bd608b7300
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "43A1F98E08E225FBB14EF905265466032C2ABF7246C1FC6C5E5D26BD608B7300"
Last-Modified: Sat, 14 Jan 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21583
Expires: Mon, 16 Jan 2023 09:33:38 GMT
Date: Mon, 16 Jan 2023 03:33:55 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c1fa3980caa6b7c866e6091750dcbac9
ba2278c51d82c70c641794dcd8f7b4d44aaf3154
43a1f98e08e225fbb14ef905265466032c2abf7246c1fc6c5e5d26bd608b7300
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "43A1F98E08E225FBB14EF905265466032C2ABF7246C1FC6C5E5D26BD608B7300"
Last-Modified: Sat, 14 Jan 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21582
Expires: Mon, 16 Jan 2023 09:33:38 GMT
Date: Mon, 16 Jan 2023 03:33:56 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 303aa276c0d0c0354c0a270c1b5e4e01
27cbbbcf35f104f858d7f3a53f3a3bc478e7d8e7
d3e2a95c4af1edddaaecbbf3252362f0ee3f4217db61d350c1ce52b9afc67ca4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3E2A95C4AF1EDDDAAECBBF3252362F0EE3F4217DB61D350C1CE52B9AFC67CA4"
Last-Modified: Sat, 14 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19104
Expires: Mon, 16 Jan 2023 08:52:20 GMT
Date: Mon, 16 Jan 2023 03:33:56 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 303aa276c0d0c0354c0a270c1b5e4e01
27cbbbcf35f104f858d7f3a53f3a3bc478e7d8e7
d3e2a95c4af1edddaaecbbf3252362f0ee3f4217db61d350c1ce52b9afc67ca4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3E2A95C4AF1EDDDAAECBBF3252362F0EE3F4217DB61D350C1CE52B9AFC67CA4"
Last-Modified: Sat, 14 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19103
Expires: Mon, 16 Jan 2023 08:52:20 GMT
Date: Mon, 16 Jan 2023 03:33:57 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 303aa276c0d0c0354c0a270c1b5e4e01
27cbbbcf35f104f858d7f3a53f3a3bc478e7d8e7
d3e2a95c4af1edddaaecbbf3252362f0ee3f4217db61d350c1ce52b9afc67ca4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3E2A95C4AF1EDDDAAECBBF3252362F0EE3F4217DB61D350C1CE52B9AFC67CA4"
Last-Modified: Sat, 14 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19103
Expires: Mon, 16 Jan 2023 08:52:20 GMT
Date: Mon, 16 Jan 2023 03:33:57 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 303aa276c0d0c0354c0a270c1b5e4e01
27cbbbcf35f104f858d7f3a53f3a3bc478e7d8e7
d3e2a95c4af1edddaaecbbf3252362f0ee3f4217db61d350c1ce52b9afc67ca4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3E2A95C4AF1EDDDAAECBBF3252362F0EE3F4217DB61D350C1CE52B9AFC67CA4"
Last-Modified: Sat, 14 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19103
Expires: Mon, 16 Jan 2023 08:52:20 GMT
Date: Mon, 16 Jan 2023 03:33:57 GMT
Connection: keep-alive
cdn.shopify.com/s/files/1/0607/2975/3819/files/shoes-2.jpg?v=1671339008
200 OK 20 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/files/shoes-2.jpg?v=1671339008
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash f069210feae26a80af7f403652e76dd9
c137cef3b61f3b3ae80fa5d45659a5e4d7d09de5
ddba01d22ea900135287f53ddd33766b302acf17d88d449f9a5781a0275711f7
GET /s/files/1/0607/2975/3819/files/shoes-2.jpg?v=1671339008 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:57 GMT
content-type: image/avif
content-length: 20050
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/files/shoes-2.jpg>; rel="canonical"
source-length: 68949
source-type: image/jpeg
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 9ddb0e99-b870-4f3e-a1ec-7438ac633a24
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Sun, 18 Dec 2022 04:50:18 GMT
cf-cache-status: HIT
age: 2500749
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ga%2FImoGErPW%2F5Ztl1OqmUqmEsKKHKra451l2DjIj5ZR3uXqNG3HmfNqVULpCczc696mv2%2F0CAnu62uStdNLk65b0iKRzbN5ybxDqYQ07dS43znhYBl39gb742zthBdgUvw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=684.000, imageryFetch;dur=19.885, imageryProcess;dur=663.073;desc="image", cfRequestDuration;dur=10.999918
server: cloudflare
cf-ray: 78a3cae76b37b523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/files/5758__forside_1600_x__0_940x_786fd53e-287f-4611-98ca-9551dad93c3d.webp?v=1670642639
200 OK 34 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/files/5758__forside_1600_x__0_940x_786fd53e-287f-4611-98ca-9551dad93c3d.webp?v=1670642639
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash 5fe0c8f8d59ea37dadf658dcde5a884a
8b0811abfa0763b3d43afd48e0d62c3b1531458b
250d4aaddd0465d45042a61262ca5a02cb18c924c194bd149723ce113f1f6d03
GET /s/files/1/0607/2975/3819/files/5758__forside_1600_x__0_940x_786fd53e-287f-4611-98ca-9551dad93c3d.webp?v=1670642639 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:57 GMT
content-type: image/webp
content-length: 34232
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/files/5758__forside_1600_x__0_940x_786fd53e-287f-4611-98ca-9551dad93c3d.webp>; rel="canonical"
source-length: 35444
source-type: image/webp
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: eaab5b2c-5303-4566-a3a0-524f40adb31a
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Sat, 10 Dec 2022 03:24:02 GMT
cf-cache-status: HIT
age: 3196918
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DHgnipnuBaalOnYhdGdzkZWKWK2MAs0UgjiHMtd0cEnlYLY8DZWaBO12R72A5xCwqHn%2FDmESHrugb2cbHaFhjhrT7XaNTK5ffqf9NlE1MlL65Uf%2BNql3wCqDOA45xF0MLg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=220.647, imageryFetch;dur=70.249, imageryProcess;dur=148.594;desc="image", cfRequestDuration;dur=11.999846
server: cloudflare
cf-ray: 78a3cae76b39b523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/files/vipps_1.png?v=1669627594
200 OK 3.2 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/files/vipps_1.png?v=1669627594
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash 766242474ac096a74469fed5a7f9e8be
d12bbe7f497444e236cf985f9dab604b5415e23d
456b5d3cb70d5198d27af075b8ee3e2e1c1af4caffe94d348da4fb6b1300d81c
GET /s/files/1/0607/2975/3819/files/vipps_1.png?v=1669627594 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:57 GMT
content-type: image/webp
content-length: 3228
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/files/vipps_1.png>; rel="canonical"
source-length: 10975
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 7f3d9f36-8d01-4127-aedb-b8d9b4260a64
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Mon, 28 Nov 2022 09:27:02 GMT
cf-cache-status: HIT
age: 4212412
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=82JaHzO469Di8rSdqZKgck4kV6ydZ3bdHiC%2Fkk4HClPxcRdyPHD0KD8pBsc%2FGqdKDQOXAY69A3dYoVx%2FQMVsV5wtPhfdZFacYwh4PsAt1vM7x9lEYuNHYroQjF83eqEsXA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=157.473, imageryFetch;dur=36.962, imageryProcess;dur=119.452;desc="image", cfRequestDuration;dur=11.000156
server: cloudflare
cf-ray: 78a3cae76b3db523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/files/Untitled_design_3_360x_471a90fd-7f85-4d67-835f-6a607d1572d9.webp?v=1670642543
200 OK 19 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/files/Untitled_design_3_360x_471a90fd-7f85-4d67-835f-6a607d1572d9.webp?v=1670642543
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash 025db0a6ba820ae8c106c10edb89a610
b51fb4f3668f10773749a0d41f19eae7b3178269
3304a716cee4cbe71fa50422c7c1478776477362f6bd183ce13131557898701c
GET /s/files/1/0607/2975/3819/files/Untitled_design_3_360x_471a90fd-7f85-4d67-835f-6a607d1572d9.webp?v=1670642543 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:57 GMT
content-type: image/webp
content-length: 19184
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/files/Untitled_design_3_360x_471a90fd-7f85-4d67-835f-6a607d1572d9.webp>; rel="canonical"
source-length: 19484
source-type: image/webp
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: c0cc8fb2-8e96-422e-8126-67210cc8ac41
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Sat, 10 Dec 2022 03:22:26 GMT
cf-cache-status: HIT
age: 3196918
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aK8XIY%2Bd8cZFlwTNZ6oSvAT18QCLCeyl792tPsxilq3fVjnLnkz%2B7b4iKDw%2F0CiduRusOxN9JdCZsgSUAqDmqLSvsuDGL7uxfsEAbNEcrBpfOQo2DDlkQSZ5nFm5HMfmVA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=1032.287, imageryFetch;dur=54.449, imageryProcess;dur=973.534;desc="image", cfRequestDuration;dur=13.000011
server: cloudflare
cf-ray: 78a3cae76b38b523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/files/Blogg_Slik_velger_du_toppturski_940x_65922d13-7779-4a07-94c4-219679e242d9.webp?v=1670642781
200 OK 76 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/files/Blogg_Slik_velger_du_toppturski_940x_65922d13-7779-4a07-94c4-219679e242d9.webp?v=1670642781
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash 645b496b487251681b52fed7e3e2e7b7
cdb88f8594def0ad2e68a87531c22bc86c5dffb8
8377773930e9618badd33e0fa4bf9667c4030d599c37e4b92fe6211b97f5e727
GET /s/files/1/0607/2975/3819/files/Blogg_Slik_velger_du_toppturski_940x_65922d13-7779-4a07-94c4-219679e242d9.webp?v=1670642781 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:57 GMT
content-type: image/webp
content-length: 75818
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/files/Blogg_Slik_velger_du_toppturski_940x_65922d13-7779-4a07-94c4-219679e242d9.webp>; rel="canonical"
source-length: 77870
source-type: image/webp
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 7e9552e5-07d3-444b-a686-324cc85bd534
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Sat, 10 Dec 2022 03:26:26 GMT
cf-cache-status: HIT
age: 3196918
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Gy4EXmPXCSXH%2FdE2ihChx7Ljf1yTWlfeP2A9Q0FM%2ByvMI%2BlY%2FEpULanoSn4lgu2WgKGVGJFp37pWMkivCUa2Y6SLRVAOev8Ef6jSbuZk9rXIGRWq%2Fth%2BivrZBpBFbNDckg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=209.525, imageryFetch;dur=18.197, imageryProcess;dur=188.536;desc="image", cfRequestDuration;dur=14.000177
server: cloudflare
cf-ray: 78a3cae76b3ab523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash f3ee298482e8025b16b90899b84c98d1
ce5050ce27200b3408a8e5113adcc7a8d14b4796
4c3dd7d296e502765b2de450a4ecb5f8c872ed477b464b9913d2633125680ff0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 16 Jan 2023 03:33:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.shopify.com/s/files/1/0607/2975/3819/files/rab02_360x_3a7e4c7b-1fe8-4cd5-9e69-d433712d9272.webp?v=1670593261
200 OK 31 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/files/rab02_360x_3a7e4c7b-1fe8-4cd5-9e69-d433712d9272.webp?v=1670593261
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash 5e2a8fd48c815097b7607faf85c18f27
1190e7959581c8058fd036781591917e5a153fe6
2f5141c88557f8a5a0de6fe52b75c6b1045f70aee15fd69290a47fff02a705db
GET /s/files/1/0607/2975/3819/files/rab02_360x_3a7e4c7b-1fe8-4cd5-9e69-d433712d9272.webp?v=1670593261 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:57 GMT
content-type: image/webp
content-length: 31376
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/files/rab02_360x_3a7e4c7b-1fe8-4cd5-9e69-d433712d9272.webp>; rel="canonical"
source-length: 32006
source-type: image/webp
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: ed26886e-cf19-48f6-a76f-080650a7c149
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Fri, 09 Dec 2022 13:41:04 GMT
cf-cache-status: HIT
age: 3196918
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=21Hv0gAHNPRi0VjvGfxFYwaA8CqfsZ6t0UYzWw%2F0XpIhz2tGPdYsXlsW78yMgIrK%2FaFX5efd7d%2BirsfElW6QI5BSBmxWA%2FwMFC2%2FHc5aGhvBsyaZXRZiKutIm5I77TutDw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=1225.779, imageryFetch;dur=29.981, imageryProcess;dur=1193.819;desc="image", cfRequestDuration;dur=11.000156
server: cloudflare
cf-ray: 78a3cae76b3bb523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/files/Klarna-Logo.png?v=1666957539
200 OK 29 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/files/Klarna-Logo.png?v=1666957539
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 3840 x 2160, 4-bit colormap, non-interlaced\012- data
Hash 494ca4626f1ae5caf8e836510ff66403
08be69ed39fb2a784fd0677891685ef809618ac5
d4874aac88a4f0c4879d474428c645223f8d843ea250e5d4eb8593cf19577aa4
GET /s/files/1/0607/2975/3819/files/Klarna-Logo.png?v=1666957539 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:57 GMT
content-type: image/png
content-length: 29305
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/files/Klarna-Logo.png>; rel="canonical"
source-length: 29197
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 60ae4966-6d81-4542-b4c4-76aeebff5582
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Mon, 31 Oct 2022 05:50:19 GMT
cf-cache-status: HIT
age: 6375192
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ryf%2F4hHzFQvfbAhND2%2BUVgLXepv%2Fy9C%2FSQKgspjzOWwPakrShCAle6G9FrlrllA5olkLEtKMBvdd0lQ95iBy%2Fza0PDW2tLbjrJewWfRkzk3kYFj%2FpgTyR1VLHshJetLPgw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=1445.792, imageryFetch;dur=95.318, imageryProcess;dur=1348.723;desc="image", cfRequestDuration;dur=11.000156
server: cloudflare
cf-ray: 78a3cae76b3cb523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/files/Hansi_600_x_600_NY_360x_360x_4889b2ef-8dbd-4852-bbe9-f9c482ae1976.jpg?v=1673262363
200 OK 21 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/files/Hansi_600_x_600_NY_360x_360x_4889b2ef-8dbd-4852-bbe9-f9c482ae1976.jpg?v=1673262363
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash c53cc2607d01e5f757bd64fdb2aae373
4100f1b8307c4d521cc0c2f6e69b94d896158b8a
e5d6e878080d214dc6c435c94a8b63ab99a527d6d23e74f51793ada150e5089e
GET /s/files/1/0607/2975/3819/files/Hansi_600_x_600_NY_360x_360x_4889b2ef-8dbd-4852-bbe9-f9c482ae1976.jpg?v=1673262363 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:57 GMT
content-type: image/webp
content-length: 20866
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/files/Hansi_600_x_600_NY_360x_360x_4889b2ef-8dbd-4852-bbe9-f9c482ae1976.jpg>; rel="canonical"
source-length: 23342
source-type: image/jpeg
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: baadb432-cd67-4c4f-8f3d-4f513d8b5b95
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Mon, 09 Jan 2023 11:08:11 GMT
cf-cache-status: HIT
age: 577546
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EWyDKX6Cf9K4GIUn%2F68mXvxfsrFGgXaenWK0V5284y2wo3hPAYWhlEb%2BNfQdB2Gh8v%2B1uTyq92aLONnFLLrojfVu6pAVmv9vCvXWoMKX%2FnZcoYfXbg6BoV65jXObKjfkmA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=74.166, imageryFetch;dur=30.069, imageryProcess;dur=42.518;desc="image", cfRequestDuration;dur=14.999866
server: cloudflare
cf-ray: 78a3cae76b36b523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/klaviyo.js?company_id=XL3hWq
200 OK 1.0 kB URL HTTP/2 static.klaviyo.com/onsite/js/klaviyo.js?company_id=XL3hWq
IP
File type ASCII text, with very long lines (2904)
Hash 17592a95477a6bdb7da47badba433262
b39135836f7b372efbd0a6bf694f7efb8d3584e7
ca0707608a3ee934877bfdbceea96b484685191a8e46135414c3318fd48099d3
GET /onsite/js/klaviyo.js?company_id=XL3hWq HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers:
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
allow: GET, OPTIONS
cache-control: max-age=1, stale-while-revalidate=10800
content-encoding: gzip
content-type: application/javascript
etag: W/"f956dcc3a992b3f22490c89e89b8a652"
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 16 Jan 2023 03:33:57 GMT
age: 191294
x-served-by: cache-lga13624-LGA, cache-bma1672-BMA
x-cache: MISS, HIT
x-cache-hits: 0, 1
x-timer: S1673840037.078616,VS0,VE1
vary: Accept-Encoding
content-length: 1039
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/sticky-add-to-cart.js?v=127096970077772512071669700385
200 OK 5.4 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/sticky-add-to-cart.js?v=127096970077772512071669700385
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash ab854bb160b960cd158ff6f6a63db445
3331b43697610efd60f5dd525fedf7a0888106f8
e073cd797c0190a66584fd139bef2ace19b5dbdf8e2cf1dcf16e56bc4fd5a685
GET /s/files/1/0607/2975/3819/t/36/assets/sticky-add-to-cart.js?v=127096970077772512071669700385 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:56 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/sticky-add-to-cart.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: f452e734-a072-407f-972d-b7cac2335698
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Tue, 29 Nov 2022 08:12:55 GMT
cf-cache-status: HIT
age: 4114764
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TSQ74PnFcQruRrWr4nE25KjRNiGCxVJWWS8UN1KSkjdSql2b3iMzYk9WHjpvoIFNMjLx2v%2BSTeTIxaZKMODTPIH8nKkzrFtLe%2FiSyvIi%2B0%2FD0c%2FL6UoIe6DVAFVlOUyZyA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=151.424, imageryFetch;dur=147.848, cfRequestDuration;dur=14.999866
server: cloudflare
cf-ray: 78a3cae71b18b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
d3hw6dc1ow8pp2.cloudfront.net/reviews-widget-plus-css-bundles/0-62-1/reviews-widget.d8a5045a9caed8d185ce92fa5a99d0da.css
200 OK 7.6 kB URL HTTP/2 d3hw6dc1ow8pp2.cloudfront.net/reviews-widget-plus-css-bundles/0-62-1/reviews-widget.d8a5045a9caed8d185ce92fa5a99d0da.css
IP
Hash be947ab5f101be395e122bf24864cae6
1476ccc76cdc771c0357c0829ecadcd669a41ba5
f839fe74873ab5bab889718fb6e7fdce5323800796c15af3b8b23251d3ad6282
GET /reviews-widget-plus-css-bundles/0-62-1/reviews-widget.d8a5045a9caed8d185ce92fa5a99d0da.css HTTP/1.1
Host: d3hw6dc1ow8pp2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
date: Mon, 16 Jan 2023 01:38:16 GMT
last-modified: Fri, 09 Dec 2022 03:30:41 GMT
etag: W/"d8a5045a9caed8d185ce92fa5a99d0da"
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xIjjvXsTHUpiOPG-pwabgQBpHuCGgeXIwumwabCD2Z-66HyHVUaWRg==
age: 6941
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/details-disclosure.js?v=93212506302784624691669700337
200 OK 857 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/details-disclosure.js?v=93212506302784624691669700337
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 3f98a91befbcd006c2af26dd0d6d687b
52087173b2c101c24a36e0032bcd3f3c017bb2cc
1f3ed79ad2a8bc77f1447d8da61761fd0409e23928063c748ee8b9be5350f705
GET /s/files/1/0607/2975/3819/t/36/assets/details-disclosure.js?v=93212506302784624691669700337 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:56 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/details-disclosure.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: e97fe487-bd2e-40b6-b94b-0b76c2386713
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Tue, 29 Nov 2022 05:41:03 GMT
cf-cache-status: HIT
age: 4114764
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DI4kh3vYbLLTQL3B14hlT8yVKJuy2FT7undoQ0DLbuPXIIt%2BBSGn38QkPkEDJswiXaIlWsorhGN%2FeuJmNoCz9eNZpXUnxTsd5%2F1DZOjkMwyJxAYJCwHH58E9pb86krMpqw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=52.306, imageryFetch;dur=51.520, cfRequestDuration;dur=11.999846
server: cloudflare
cf-ray: 78a3cae70b06b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
size-charts-relentless.herokuapp.com/css/size-charts-relentless.css
200 OK 1.5 kB URL HTTP/1.1 size-charts-relentless.herokuapp.com/css/size-charts-relentless.css
IP
Hash 0b644986bab8d450e414a01e0a68ed2f
34b6d464f169cd5b22695ca282cc393806234d6e
d264f1fd5a5d307a7404c6b1c591e329f2119bb473da694dd348c30360601684
GET /css/size-charts-relentless.css HTTP/1.1
Host: size-charts-relentless.herokuapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Fri, 13 Jan 2023 10:54:08 GMT
Etag: W/"14d6-185aac3f880"
Content-Type: text/css; charset=UTF-8
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Mon, 16 Jan 2023 03:33:57 GMT
Transfer-Encoding: chunked
Via: 1.1 vegur
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-sticky-add-to-cart.css?v=92870805084302887051669700329
200 OK 2.6 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-sticky-add-to-cart.css?v=92870805084302887051669700329
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (10088)
Hash 4dc70f3b8fcf9a4c576817d9cfe9c023
52d496f7c442752b6f0b8cc01d15d4ddc8989ca1
88ab818e8c7b4cab2b08886175e8682307703a9b061854a5241ca2c939715a85
GET /s/files/1/0607/2975/3819/t/36/assets/component-sticky-add-to-cart.css?v=92870805084302887051669700329 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:56 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-sticky-add-to-cart.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: bee7f2d4-bfe3-43b2-87f8-15145964cac0
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Tue, 29 Nov 2022 09:30:42 GMT
cf-cache-status: HIT
age: 4114764
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dDuVBd2QIqL5LQYFO16Qq7d%2BIetgLLu5JDQRAT4tXapPzvvYsTl60NSHxv%2FYkV0RhK40yvwg2VMHHBcRJrLLkyqEd8RTakBK0g0tMokOXbEP73YVoiOHzXdgrPQNzq5%2Fqg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=122.337, imageryFetch;dur=120.883, cfRequestDuration;dur=11.999846
server: cloudflare
cf-ray: 78a3cae71b15b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/tabs.js?v=91911188404400432181669700385
200 OK 26 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/tabs.js?v=91911188404400432181669700385
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with CRLF line terminators
Hash 17679388abb9e1b47fc3e29fffb1cbde
55e1e239c0b1e985ce18568b49002e4ba126117e
70678980bd647dda315bdf59361b6ad762a97743fed373a7f6a8a67e414e310c
GET /s/files/1/0607/2975/3819/t/36/assets/tabs.js?v=91911188404400432181669700385 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:56 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/tabs.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: ca81f153-18b8-4469-931f-1349580fd639
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Tue, 29 Nov 2022 09:30:42 GMT
cf-cache-status: HIT
age: 4114764
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ilP7nu9i81c7iQys%2BWtF1CgyUyVQ66TVcK4vrLarPiRceJu9THb%2F83O%2B0RdUawvC17g%2FPzrMqUIDtiS7uz99NKvUu%2BCbm4AsZ0l0Hhy8rDfZzPxO41an65xeFAss5ZiwVg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=61.101, imageryFetch;dur=60.125, cfRequestDuration;dur=13.000011
server: cloudflare
cf-ray: 78a3cae71b13b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
themeassets.aws-dns.uncomplicated.biz/shopify/der-ute.myshopify.com-catlist.css?cbi=1.9.06
200 OK 9.6 kB URL HTTP/2 themeassets.aws-dns.uncomplicated.biz/shopify/der-ute.myshopify.com-catlist.css?cbi=1.9.06
IP
Hash 5707db4fdbcb2a62429011bcff5b530a
fd6bd71d49c70c96b13877af58e6fc59ca8f9b65
052df04a7b32946cc1fdd88efa6ba7d19715189ae26c383f0fb8cb4e000ee078
GET /shopify/der-ute.myshopify.com-catlist.css?cbi=1.9.06 HTTP/1.1
Host: themeassets.aws-dns.uncomplicated.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 22 Nov 2022 13:01:03 GMT
server: AmazonS3
content-encoding: gzip
date: Sun, 15 Jan 2023 12:02:54 GMT
etag: W/"1ca3c6fc41bd1733122d5aeaf3ccd13b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lNAZ4oWsQ3kNXpeDzt72J4auyHFj9c7TmvLzcEqkrFrsiESPXLnpig==
age: 55864
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-list-payment.css?v=12987129764672296881669700296
200 OK 558 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-list-payment.css?v=12987129764672296881669700296
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (382)
Hash 43ff603e4ede5e9c82ae07dfb377ec00
a64ceb2b0a37ed5a8a6028a9aa601da280a69aeb
bf4d453d551a4347d91b0cf827c5c073640c1036a752e289fdad307b7b471491
GET /s/files/1/0607/2975/3819/t/36/assets/component-list-payment.css?v=12987129764672296881669700296 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:57 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-list-payment.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 9fadda1e-c986-4c2c-91f5-2c90fd51783b
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Tue, 29 Nov 2022 05:41:03 GMT
cf-cache-status: HIT
age: 4114765
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q4XnRm77Qn5rK2E9RS0LFiLACsHnadIjXRDvvmlvnTd5QS7h83mPhlvebAYn8zlVcWBZvuQeXHdexMugTN3rxfG0H4IQDc%2FYaj8%2FJ7%2BcibxyIRE0zt%2F2XaZJ3BW7VcwrLg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=30.662, imageryFetch;dur=29.992, cfRequestDuration;dur=10.999918
server: cloudflare
cf-ray: 78a3cae76b2fb523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sdk.loyaltylion.net/static/2/20230116/loader.js
200 OK 45 kB URL HTTP/2 sdk.loyaltylion.net/static/2/20230116/loader.js
IP
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Hash 6da3a9b58a9107ceaeadb3ae01d5e538
7502866f7e54f50762eafc060c70b810761c4a05
f8703c03b0ad85f69ccd8c20790ac3a8d227252db130533f92d231c74b894f1e
GET /static/2/20230116/loader.js HTTP/1.1
Host: sdk.loyaltylion.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://derute.no
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 44839
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-expose-headers: ETag
access-control-max-age: 86400
last-modified: Thu, 05 Jan 2023 17:26:07 GMT
content-encoding: br
accept-ranges: bytes
server: AmazonS3
date: Mon, 16 Jan 2023 03:33:25 GMT
cache-control: max-age=1200, s-maxage=300, must-revalidate
etag: "6da3a9b58a9107ceaeadb3ae01d5e538"
vary: Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: HVF_dPuQCqvCpQeOG2RHv8pab1RXR11dEwTpHknMkATcYnT6OkA_7A==
age: 139
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a813a061a05c54b0097af9696d4bcb2e
6a7c9a8587f67a9202d2220c8ab12dd283df0e54
be4722747d6b02daf5e954e7fefc2e99ca522b243db0e4395282af48b381f939
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 16 Jan 2023 03:33:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
navidiumcheckout.com/cdn/navidium-checker.js
200 OK 479 B URL HTTP/2 navidiumcheckout.com/cdn/navidium-checker.js
IP
Hash b80ea61dd24c2f848c281dcb15245b1e
a5327b22a96b3257ef2334dd4a76ba3211765962
579c888efff82b36a2d5d05b001c942b4447fec8e58eb23e4efb6ac6c46d5537
GET /cdn/navidium-checker.js HTTP/1.1
Host: navidiumcheckout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 23 Jan 2023 03:33:57 GMT
content-type: application/javascript
last-modified: Sun, 27 Nov 2022 05:30:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 479
date: Mon, 16 Jan 2023 03:33:57 GMT
server: LiteSpeed
x-frame-options: *
x-turbo-charged-by: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/Gem.js?v=143029309034175879391671530886
200 OK 93 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/Gem.js?v=143029309034175879391671530886
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (3357), with no line terminators
Hash 591aae5a8d24f98a7da386aa0ded487e
8624ed6154fb2b23edcc70e335c0771d06e53d4d
25d9428c2c389674cb462d6c8b3d0bb69a6d8c4572e5ee087654a2ca11cb2897
GET /s/files/1/0607/2975/3819/t/36/assets/Gem.js?v=143029309034175879391671530886 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:57 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/Gem.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 9fe80d2d-d315-449e-8816-b95ab9195342
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Tue, 20 Dec 2022 10:08:12 GMT
cf-cache-status: HIT
age: 2309142
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C3GnfnB1y6QIkg8pRoSSJRYX%2F5meOllql7rECmWY3EyK53BARFL10F9W4oNQDaRpkGEOHmxEKRACTUhLa29kihtZFBuV%2Bldatdcl%2F7aZGWz1cQfAoHQjWlyP0p4gvjFZZg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=54.677, imageryFetch;dur=54.154, cfRequestDuration;dur=12.000084
server: cloudflare
cf-ray: 78a3cae76b30b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/theme.js?v=173155865198476052261670825598
200 OK 81 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/theme.js?v=173155865198476052261670825598
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (420)
Hash 5bd209e354283a0f526031f14b39553e
1e2f6063eae8ade1eed9dccc1affb46574baf4d7
beb59b84f45c671ffa3f6d39e120b125310fb358e3b31539c9edb8e9c2604506
GET /s/files/1/0607/2975/3819/t/36/assets/theme.js?v=173155865198476052261670825598 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:57 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/theme.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 34c938b8-834c-4dfe-b936-f74b709f415a
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Mon, 12 Dec 2022 06:13:27 GMT
cf-cache-status: HIT
age: 3014426
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BZl2XuDb7VY63jqr5asXyBwAzkjX6QQQdPBTZfJ1lTKRbjmrdNu8bQ9%2FR6CFdXXQILYsKULkAMOlfnVZusmUA8YaAlBAtIfpMjGCAEHFTkmCxRAHS8kAzbHitRcxrmTCfg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=61.745, imageryFetch;dur=32.979, cfRequestDuration;dur=12.999773
server: cloudflare
cf-ray: 78a3cae76b32b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/boost-pfs-instant-search.js?v=30865323957819281091669700261
200 OK 45 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/boost-pfs-instant-search.js?v=30865323957819281091669700261
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (1616)
Hash 6cf15eade54204e7dd3d93eb2e8b8bc8
43a0fc9e661123c8212bebb4f8a21399350f6872
49c6fe269bb3fd4a7652f5721aaebc527a35c9e7ce2b37525bc9d4a0541b5e02
GET /s/files/1/0607/2975/3819/t/36/assets/boost-pfs-instant-search.js?v=30865323957819281091669700261 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:57 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/boost-pfs-instant-search.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 018944dc-1fd1-4923-9581-5f4a7cf81e8e
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Tue, 29 Nov 2022 05:41:03 GMT
cf-cache-status: HIT
age: 4114765
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KvIFUcRclDSDFFkZoVVfpflK2BRGuoUS1C42k67TCAtWuBYUfPe42DuWYcNVyp0wZTMDEd5eNwr%2FS86fg7hIcyUrU%2BcgLEe2rUZJKNmbRIOiuceemeKruyJyJT8jsVcUpw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=70.078, imageryFetch;dur=69.071, cfRequestDuration;dur=13.999939
server: cloudflare
cf-ray: 78a3cae76b34b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/signup_forms.16877f1b41e2305a0cb6.js?cb=1
200 OK 30 kB URL HTTP/2 static.klaviyo.com/onsite/js/signup_forms.16877f1b41e2305a0cb6.js?cb=1
IP
Hash 0a84c14ed4c278640f6d15c5dc8679d9
dd11c6cdc39111e33aaaf0ead9e5939a9d5581ed
1ffd8357b72b0833a01c82c00f02c7888a6a0e0039bc35ddceca5b46fe2ea8b6
GET /onsite/js/signup_forms.16877f1b41e2305a0cb6.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://derute.no
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: J1INdPGSGErRbbwbN26djFWyVP28wW+vi4F9ZAYjevO46qi9/4DTqO835YKdBMVhQfQwLCkoTE0=
x-amz-request-id: A9KDPMY34E0AGW2R
last-modified: Wed, 11 Jan 2023 17:07:32 GMT
etag: "e4c7cf534c566854ff279e37d723b7a5"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: a72PTap2UVfblk1vFysV_3TpWNRGgQ5A
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Mon, 16 Jan 2023 03:33:57 GMT
age: 193877
x-served-by: cache-lga21949-LGA, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 56318
vary: Accept-Encoding
content-length: 11347
X-Firefox-Spdy: h2
static.klaviyo.com/onsite/js/sharedUtils.3de4f7002f4cb2b9833f.js?cb=1
200 OK 14 kB URL HTTP/2 static.klaviyo.com/onsite/js/sharedUtils.3de4f7002f4cb2b9833f.js?cb=1
IP
File type Unicode text, UTF-8 text, with very long lines (36146), with no line terminators
Hash f32939851a20ce74d80fb5fa39fff073
734b7a9027ea89a333653e3dbccc8cdd4ec23029
dbafbcb2a692b78b0a88737f4f6c26177fc7c257271239338303e5c261a4f59f
GET /onsite/js/sharedUtils.3de4f7002f4cb2b9833f.js?cb=1 HTTP/1.1
Host: static.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://derute.no
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: rjXa6WzcApvwnCzg9VsgyIOa9Z/+AOdyUep+nz2C9l8Y9WmzTkf/3AyXkbcFBNADbgKH7kTMl9s=
x-amz-request-id: FA9HX3FB03RQ4E33
last-modified: Wed, 11 Jan 2023 17:07:32 GMT
etag: "41ee777bf771519f538138ed79a3786d"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: 9aF2q4NxY0Kun_gDXNyDk5ygoGoGgvoW
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Mon, 16 Jan 2023 03:33:57 GMT
age: 193877
x-served-by: cache-lga21943-LGA, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 81095
vary: Accept-Encoding
content-length: 13990
X-Firefox-Spdy: h2
static-tracking.klaviyo.com/onsite/js/static.afc80bee31dc9e622dc1.js?cb=1
200 OK 5.3 kB URL HTTP/2 static-tracking.klaviyo.com/onsite/js/static.afc80bee31dc9e622dc1.js?cb=1
IP
File type ASCII text, with very long lines (12659), with no line terminators
Hash 11ebf21f15c50424dd6beb159a12b25e
bdd433be7297384f5660dfe49154d266dda64432
c13b107bff92bbb4ed98886fa87d14faba7f3010b9f9d502eaf133e2321c51cb
GET /onsite/js/static.afc80bee31dc9e622dc1.js?cb=1 HTTP/1.1
Host: static-tracking.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://derute.no
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ZFZ8THkCuT87hlNdYT/1gE0cGMwUOTZwHkpxdf7ULnVqWD+3NU8uwHPgGM4vlbagxFgSA7mLY3o=
x-amz-request-id: 8QKB1CHS4E49FXPS
last-modified: Mon, 05 Dec 2022 14:41:22 GMT
etag: "9aa89eda5d828bf8fce2ee83e11483a0"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: jO5CINofch2U3rpuRhEwzIKTUk198WIK
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Mon, 16 Jan 2023 03:33:57 GMT
age: 191312
x-served-by: cache-lga21925-LGA, cache-bma1646-BMA
x-cache: MISS, HIT
x-cache-hits: 0, 74121
vary: Accept-Encoding
content-length: 5321
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/fancybox.js?v=10391612559617436071669700338
200 OK 33 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/fancybox.js?v=10391612559617436071669700338
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document, ASCII text, with very long lines (65536), with no line terminators
Hash d93c676463f1691eb1ece72b363e24bb
6d94350d1de285964af30d4a90f7af6f9df1adbe
9d09129ae6317d5a14d753f6ed9bb9af0a828cca091d62783384e2122b61e1f1
GET /s/files/1/0607/2975/3819/t/36/assets/fancybox.js?v=10391612559617436071669700338 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:57 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/fancybox.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 8cb26500-cbe8-476e-8e12-c301e82f39fd
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Tue, 29 Nov 2022 05:41:03 GMT
cf-cache-status: HIT
age: 4114765
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sz3cJdYvVkITL02kvYc7CV6MTeC9z42U8njjPFRSRA5rxBLwHQtZYeo%2BB92eMnFazbJ1JJXE8hFKqPeZfpS1e66WKFE9Ptj5qWvIcGacdSYfHhxwoeQMVSXo3A%2BkEDAwqg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=80.475, imageryFetch;dur=72.598, cfRequestDuration;dur=12.000084
server: cloudflare
cf-ray: 78a3cae76b2bb523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 9442f1d8864feb84a623305a281e4c56
45250ab44f89bf1a0f665da8b47da06dc1af2af0
2086a32de0797aa6146b8fe1d7422342dbc9f1da0d81093915f42b69a5dcbc65
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 16 Jan 2023 03:33:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-header-03.css?v=75095181253215946781671540931
200 OK 2.7 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-header-03.css?v=75095181253215946781671540931
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (10099)
Hash 6b918ba025b613e1f475859f26a302c5
63607016720297e35015a5e28d7d7487a0750a92
e6b306591fcb23390ebb0af2f9ea51c1d00fc6e7e3d0ab2cd044e1825d205a06
GET /s/files/1/0607/2975/3819/t/36/assets/component-header-03.css?v=75095181253215946781671540931 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:56 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-header-03.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 38cd333b-80f5-4ade-98d3-e1dfb055ef2c
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Tue, 20 Dec 2022 12:55:37 GMT
cf-cache-status: HIT
age: 2299099
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HR0n2X6e2oNNUe%2BU%2FQAN%2B49uRo3hjDfzLTZ7jG0QfIgWaXeWVqr7EY4QwNdE%2FmHikQ1fpsDLcmDQ0bMRwlkC6W%2FYhHivFXd8JUTVMEu1uFK%2Bu8dB4Z1nCywfelZnHLROeA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=59.973, imageryFetch;dur=58.740, cfRequestDuration;dur=9.999990
server: cloudflare
cf-ray: 78a3cae70b05b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 9442f1d8864feb84a623305a281e4c56
45250ab44f89bf1a0f665da8b47da06dc1af2af0
2086a32de0797aa6146b8fe1d7422342dbc9f1da0d81093915f42b69a5dcbc65
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 16 Jan 2023 03:33:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2
200 OK 34 kB URL HTTP/2 fonts.gstatic.com/s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 34112, version 1.0\012- data
Hash c21e7acd53a6d80fa451f1af92d9a492
4096e12b96fa2549e4f169044a49b6ec60214008
6a0d96c353719068401ebbedf7f58e3be1232756327243922b6ab9690a3591bd
GET /s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://derute.no
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34112
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 11 Jan 2023 19:42:16 GMT
expires: Thu, 11 Jan 2024 19:42:16 GMT
cache-control: public, max-age=31536000
age: 373901
last-modified: Wed, 07 Dec 2022 18:11:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 9442f1d8864feb84a623305a281e4c56
45250ab44f89bf1a0f665da8b47da06dc1af2af0
2086a32de0797aa6146b8fe1d7422342dbc9f1da0d81093915f42b69a5dcbc65
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 16 Jan 2023 03:33:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fast.a.klaviyo.com/custom-fonts/api/v1/company-fonts/onsite?company_id=XL3hWq
200 OK 460 B URL HTTP/2 fast.a.klaviyo.com/custom-fonts/api/v1/company-fonts/onsite?company_id=XL3hWq
IP
File type JSON data\012- , ASCII text, with very long lines (2364), with no line terminators
Hash 5a8a3df731910b090a5c058e894686e5
07f066168cfe6a26124570a9493c9e15aefbdef5
8a5bedf6cee3a80e71ef0ddc38e428bb5703c982d8bc500bdcdd443ca8762120
GET /custom-fonts/api/v1/company-fonts/onsite?company_id=XL3hWq HTTP/1.1
Host: fast.a.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://derute.no
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers:
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
allow: GET, HEAD, OPTIONS
cache-control: max-age=10
content-encoding: gzip
content-type: application/json; charset=utf-8
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 16 Jan 2023 03:33:57 GMT
age: 945064
x-served-by: cache-bos4673-BOS, cache-bma1641-BMA
x-cache: HIT, HIT
x-cache-hits: 25, 2
vary: Accept-Encoding, Cookie
strict-transport-security: max-age=900
content-length: 460
X-Firefox-Spdy: h2
static-forms.klaviyo.com/forms/api/v6/XL3hWq/full-forms
200 OK 4.9 kB URL HTTP/2 static-forms.klaviyo.com/forms/api/v6/XL3hWq/full-forms
IP
File type ASCII text, with very long lines (29699), with no line terminators
Hash 30ee534dc31736412335ab3c6fb0caf7
e527bfb89a88fa638efbfe57b67c34f00a6021aa
8ec23f14252bf3da8e068f52c5cf478a6ea0fef042d11f2b64a35a78d368309e
GET /forms/api/v6/XL3hWq/full-forms HTTP/1.1
Host: static-forms.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://derute.no
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: g0OLOGt3/Z/L6PLggZlBP0hR8Zlrw1TL+O8CnqbUGlJPpsxlM/92bec0AcaiDqCCtgIBSL0HMcw=
x-amz-request-id: QYW9N6K99DQSD5EP
last-modified: Tue, 10 Jan 2023 16:34:53 GMT
etag: "d2101d24ae03f62af1e1559f33cf0138"
cache-control: max-age=5
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: full-forms/shared full-forms/XL3hWq custom-fonts/XL3hWq
x-amz-version-id: Fgk_wWyZAZruviKbxjpNFW6Z9QY2ZI21
content-type: application/json
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Mon, 16 Jan 2023 03:33:57 GMT
via: 1.1 varnish
age: 471540
x-served-by: cache-bma1661-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673840038.888076,VS0,VE1
vary: Accept-Encoding
client-geo-continent: EU
client-geo-country: NO
access-control-expose-headers: client-geo-continent, client-geo-country
access-control-allow-origin: *
content-length: 4850
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/jquery.currencies.min.js?v=93165953928473677901669700356
200 OK 3.0 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/jquery.currencies.min.js?v=93165953928473677901669700356
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (14011), with no line terminators
Hash ea0c22272d09774f3fed9381f26d228c
4cfb7e836cfd4e4967660742bd272213300e6f72
37e8e4fd25e36422b9cbb0553d630b016c53edc5a04c7c43502d8a3c5bcd5667
GET /s/files/1/0607/2975/3819/t/36/assets/jquery.currencies.min.js?v=93165953928473677901669700356 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:56 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/jquery.currencies.min.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: cc45e108-0ab7-449e-8095-ef01770b980b
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Tue, 29 Nov 2022 05:41:03 GMT
cf-cache-status: HIT
age: 4114764
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xKeKiMTAWcLSxiT88AtJBU9uiOvKOpUeLQ4KPHZD47IpGe2WrTWxA75uonV5vcqEKfmZTwGNbrBx9PXcJXMCUgqlvGNzBUmPpn%2FRnnI9Eoz1KSAfB4%2FaOxQv3U5AIE6STQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=59.355, imageryFetch;dur=59.192, cfRequestDuration;dur=13.000011
server: cloudflare
cf-ray: 78a3cae70b08b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
api.fastbundle.co/v3/product-bundles/?shop=der-ute.myshopify.com&url=%2Fproducts%2Fkavu-kelowna-blue-bandana&product_id=7836149416155&is_preview=false&lang=nb
200 OK 2 B URL HTTP/2 api.fastbundle.co/v3/product-bundles/?shop=der-ute.myshopify.com&url=%2Fproducts%2Fkavu-kelowna-blue-bandana&product_id=7836149416155&is_preview=false&lang=nb
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
GET /v3/product-bundles/?shop=der-ute.myshopify.com&url=%2Fproducts%2Fkavu-kelowna-blue-bandana&product_id=7836149416155&is_preview=false&lang=nb HTTP/1.1
Host: api.fastbundle.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://derute.no/
Origin: https://derute.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:58 GMT
content-type: application/json
content-length: 2
allow: GET, HEAD, OPTIONS
x-frame-options: SAMEORIGIN
vary: Origin, Cookie
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GEqDO9BxqH7BSxOF9%2Fme4SOAEQSD7%2Ff7FvGrv%2BfMIpTu9VQnQLbzFZfriu4WtcBVRPGr3ZLkPmrcTXu0jhZcUu44RxO2QAt6AIpuLCerkA%2BpwNRXDgf5pnYa5bTbZ1V7AZj1wA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78a3caec4c18b50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
d3hw6dc1ow8pp2.cloudfront.net/reviews-widget-plus/fonts/oke-widget-icons.ttf
200 OK 22 kB URL HTTP/2 d3hw6dc1ow8pp2.cloudfront.net/reviews-widget-plus/fonts/oke-widget-icons.ttf
IP
Hash 64253e9e343d4d506c8b786dea11e362
994021268d845ce121e06b342133df895c6fbd15
8b9657a5afb06a5f0a27b4fe88f5b2522ccb58b2628c0cef543b593d5bf7047f
GET /reviews-widget-plus/fonts/oke-widget-icons.ttf HTTP/1.1
Host: d3hw6dc1ow8pp2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://derute.no
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: font/ttf
date: Mon, 16 Jan 2023 01:41:39 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 16 Jan 2023 01:36:46 GMT
etag: W/"fbb067ad33ff1212473eec14d7b29b85"
cache-control: max-age=604800
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QVMXJMrMLAckxKORshMYJvQeuiihP2ebdCDTootUkiKHE-3YK3f04w==
age: 6740
X-Firefox-Spdy: h2
triplewhale-pixel.web.app/_thid372.txt
200 OK 30 kB URL HTTP/2 triplewhale-pixel.web.app/_thid372.txt
IP
Hash 1df21f6c6bed596c293717c87531f2df
127d5d1e055c13195601f23c9ccf3a5b23c6723f
3f8c956c6df9ffdfda680d40712f82d69f397611558a1a09c17cb9b00f28cf90
GET /_thid372.txt HTTP/1.1
Host: triplewhale-pixel.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://derute.no
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-headers: *
access-control-allow-methods: GET, POST, DELETE, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3600
cache-control: max-age=3600
content-encoding: br
content-type: text/plain; charset=utf-8
etag: "901e977bb586c03557378cfa9dc1f0b1220c6e1b194b216ae25d8007cd401aaa-br"
last-modified: Sun, 01 Jan 2023 14:20:12 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 16 Jan 2023 03:33:58 GMT
x-served-by: cache-bma1675-BMA
x-cache: HIT
x-cache-hits: 5177
x-timer: S1673840038.346720,VS0,VE0
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 26230
X-Firefox-Spdy: h2
fonts.gstatic.com/s/rubik/v23/iJWEBXyIfDnIV7nEnX661A.woff2
200 OK 35 kB URL HTTP/2 fonts.gstatic.com/s/rubik/v23/iJWEBXyIfDnIV7nEnX661A.woff2
IP
Hash e9165b102c0e1c2073dc8bd392f526e1
2da43a1b81e4a8542ac4a6e7341148d4e98fe35d
dc8ef3dcd5b8076a40a87cc8c950ea4c2883e0a26d2e50ae68bb4729026183cf
GET /s/rubik/v23/iJWEBXyIfDnIV7nEnX661A.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://derute.no
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34700
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 12 Jan 2023 14:34:09 GMT
expires: Fri, 12 Jan 2024 14:34:09 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 Dec 2022 18:42:14 GMT
content-type: font/woff2
age: 305989
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash 799271d91e0f522e87e76e9f75a65cb6
055b837eaaac0c412708770880692a0c0d806b71
e686d29c4f74a0d45d9f5ebdb218ccc8d03648d24e598c524292d8dcebc39f13
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5531
Cache-Control: max-age=111892
Content-Type: application/ocsp-response
Date: Mon, 16 Jan 2023 03:33:58 GMT
Etag: "63c3c21f-118"
Expires: Tue, 17 Jan 2023 10:38:50 GMT
Last-Modified: Sun, 15 Jan 2023 09:06:39 GMT
Server: ECS (amb/6BA5)
X-Cache: HIT
Content-Length: 280
sc-static.net/scevent.min.js
200 OK 14 kB URL HTTP/2 sc-static.net/scevent.min.js
IP
Hash 6b9b6adcd07d93f3069bf5f43ac15712
adeab5267c44a41a052d178e665f71d893587106
29691bcf2ecfc30bce0beb6f16db26748429b913522f2273ed67e8753835ced1
GET /scevent.min.js HTTP/1.1
Host: sc-static.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 13268
server: CloudFront
date: Mon, 16 Jan 2023 03:33:58 GMT
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Content-Type
cache-control: private, s-maxage=0, max-age=600
set-cookie: X-AB=0d6e407936704bd380072f5891d28b0e;max-age=86400;expires=Tue, 17 Jan 2023 03:03:18 GMT;Path=/scevent.min.js; Secure; SameSite=None
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _s5eSQ1lVJNaj4DGKPjs86pmtBjBe5GBBxMMpWOkvloasL8pmrbEDA==
X-Firefox-Spdy: h2
config.gorgias.chat/gorgias-chat-bundle-loader.js?applicationId=23800
200 OK 19 kB URL HTTP/2 config.gorgias.chat/gorgias-chat-bundle-loader.js?applicationId=23800
IP
File type exported SGML document, ASCII text, with very long lines (399)
Hash e265f132a32dbc05700854291234267c
1f80e7a364330212554d83492a9b1c37d792e6be
3b52730e63cfa0f49f5a85839de383c7dbcb3bab7bbe4ce284a18ceef615d7db
GET /gorgias-chat-bundle-loader.js?applicationId=23800 HTTP/1.1
Host: config.gorgias.chat
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:58 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: no-cache
cf-bgj: minify
cf-polished: origSize=1471
content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
etag: W/"5bf-2pKdX6anv7aNPwkYoUW2EV2xdhw"
expect-ct: max-age=0
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
via: 1.1 google
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
cf-cache-status: HIT
age: 179727
vary: Accept-Encoding
server: cloudflare
cf-ray: 78a3caf18e3cb50c-OSL
content-encoding: br
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=CCU3GV3C77UDU62J7V70&lib=ttq
200 OK 3.1 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=CCU3GV3C77UDU62J7V70&lib=ttq
IP
ASN #20940 Akamai International B.V.
Hash 79c8a95824858361a24ef4a33dbeb366
e303e682cf3c1cfdaca71da9ac20d7841701ada8
c27a8a838aff773e1776196a99f2382a3c02a14c637c39af53bd7f0ce0adfe2b
GET /i18n/pixel/events.js?sdkid=CCU3GV3C77UDU62J7V70&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202301160333583A5DFDDFE38B3C375598
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf603288c19c2577690cc6f843a75ffc83c98a4524e3cf927c2b12eff3cb4e117ce8242d65bf6e821184af0aae8413a07d610d58f258c0adabc2d2001e55c97bd62cace3c62dc9ab8bcac9073a021fa702e8f6b78dfc07c4077136642903f4b7f465
content-encoding: gzip
content-length: 1148
x-origin-response-time: 8,104.112.235.198
x-akamai-request-id: 1959c528.30e79294
expires: Mon, 16 Jan 2023 03:33:58 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 16 Jan 2023 03:33:58 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
set-cookie: _ttp=2KOK9Z6nRqL5Xhzq9yCZT3KNCm5; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a104-112-235-198.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=143, origin; dur=8, inner; dur=3
x-parent-response-time: 151,23.36.79.28
X-Firefox-Spdy: h2
api.videoly.co/1/quchbox/0/2526/quch.js
200 OK 142 kB URL HTTP/2 api.videoly.co/1/quchbox/0/2526/quch.js
IP
File type Unicode text, UTF-8 text, with very long lines (65342), with no line terminators
Size 142 kB (141472 bytes)
Hash a38a749352a2cd764f57bf5cc2fe38c8
7b1e660e09e260da8aaa1cb9a80c5ff5bf51b18d
c8f9cf9769c85be82447ec4fb3a69c37469c6ff44228700325165b74fdaa49da
GET /1/quchbox/0/2526/quch.js HTTP/1.1
Host: api.videoly.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:59 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
access-control-allow-methods: GET,PUT,POST,OPTIONS
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=255866
etag: W/"3e77a-NPsVf/A7/s6WMFDH1r0FIoGCsNU"
via: 1.1 vegur
x-powered-by: Express
cache-control: max-age=1800
cf-cache-status: HIT
age: 62127
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oh37Z9vsRN55bzOE8Yv2sETEMP5siH615jJpMoZSfli8AdvJzTds3OVHCTzch2rU221FwZvMhL6nboaNHiOc4WRhUknOGPgSMbZ3%2F29GGosgV8ck%2FPALLwpSW%2FCXa74U"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78a3caf3bf09b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.rebuyengine.com/onsite/js/rebuy.js?shop=der-ute.myshopify.com
200 OK 1.3 kB URL HTTP/2 cdn.rebuyengine.com/onsite/js/rebuy.js?shop=der-ute.myshopify.com
IP
File type ASCII text, with very long lines (3010), with no line terminators
Hash b2e130927327129a29f06511abff5ed1
7f2b3faec3c39b54b1687aada096afb0b89f0266
23f5217ab4682feb8ebc5a40f2ea642aeac813774f1c08bdee957a19933ee897
GET /onsite/js/rebuy.js?shop=der-ute.myshopify.com HTTP/1.1
Host: cdn.rebuyengine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Sat, 14 Jan 2023 20:22:52 GMT
etag: W/"63c30f1c-bc2"
access-control-allow-origin: *
content-encoding: gzip
cache-control: max-age=0, stale-while-revalidate=1800
accept-ranges: bytes
date: Mon, 16 Jan 2023 03:33:59 GMT
via: 1.1 varnish
age: 4554
x-served-by: cache-bma1661-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673840039.062340,VS0,VE1
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 1250
X-Firefox-Spdy: h2
a.klaviyo.com/media/js/onsite/onsite.js
200 OK 124 kB URL HTTP/2 a.klaviyo.com/media/js/onsite/onsite.js
IP
Size 124 kB (124549 bytes)
Hash f9b4ade6de319068fbccb47789118d17
3c1d440bf129b810a965d4c20e048c9a90efeec2
da505c3134777aa3bf6810d3383cbf5a537493fd3179ea3b970e81c14b2d1cbf
GET /media/js/onsite/onsite.js HTTP/1.1
Host: a.klaviyo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:58 GMT
content-type: application/javascript
cf-ray: 78a3caf18cbffabc-OSL
cache-control: max-age=86400, public
content-encoding: gzip
etag: W/"63c1d6cb-19737"
expires: Tue, 17 Jan 2023 03:33:58 GMT
last-modified: Fri, 13 Jan 2023 22:10:19 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
x-robots-tag: noindex, nofollow
server: cloudflare
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/halo-faqs.js?v=148898715340272759011669700342
200 OK 203 kB URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/halo-faqs.js?v=148898715340272759011669700342
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Size 203 kB (202822 bytes)
Hash 0d83a3ca42917491744bc940aacd61f1
4b1c4ac9a35e997207d1d00720872c5ced710948
3f35669de869ad0178058816797b648b78805a55428d41bfd3f9f018d31bb104
GET /s/files/1/0607/2975/3819/t/36/assets/halo-faqs.js?v=148898715340272759011669700342 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:56 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/halo-faqs.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 5f5c1f75-cb6a-4a39-b18d-f6a80ed6224d
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Tue, 29 Nov 2022 08:12:55 GMT
cf-cache-status: HIT
age: 4114764
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZEEr0INTAASvRFNzFtiT9Ees98H16QKvY%2BVX7r7WrKZCu%2BsUyfgF2tXAF7Ksg4YNV%2BtnjNyPAI%2BzMKyuqwrypOWWExZFWCGCoOf2ToZK3gO9BF5RsTBd8ldwMetsjabxzw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=40.169, imageryFetch;dur=39.435, cfRequestDuration;dur=11.000156
server: cloudflare
cf-ray: 78a3cae71b14b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 31f62a5ecc9fb721a71a726a0f786957
2a996b29b8af5a9ddaf2fba33200620076183b66
c518e14cf65052265d3c9f5bd7297aab650454139141e47b77d8bb8be8d96c4d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C518E14CF65052265D3C9F5BD7297AAB650454139141E47B77D8BB8BE8D96C4D"
Last-Modified: Sat, 14 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3542
Expires: Mon, 16 Jan 2023 04:33:01 GMT
Date: Mon, 16 Jan 2023 03:33:59 GMT
Connection: keep-alive
analytics.tiktok.com/i18n/pixel/static/identify_c4832.js
200 OK 32 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/identify_c4832.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (32286)
Hash b9a74cc74eea748d12410f7909726e35
8d30b5a231daa1df8608d3ee468642cb0cc4eb2b
9f9a4afa3482da8d294c13d67baac9ff308bce21cf053fc827a9dff81f95abfc
GET /i18n/pixel/static/identify_c4832.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Cookie: _ttp=2KOK9Z6nRqL5Xhzq9yCZT3KNCm5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20230112175825D19F86481431D6BBCCFF
x-tt-trace-host: 012b38305f60bfa8a9f04bdd846fde846b507e69fff233d9a114d447ebe9f93c0f827e6bc0806bd5a24cf0439744099e1e4bba0637571d8edb56c6009f69fe5018b8e38bd5b93708ee64c377fa97874d18ceefbea8a477a7fa2bec40c3b56c69b1
content-encoding: gzip
date: Mon, 16 Jan 2023 03:33:59 GMT
content-length: 30917
x-cache: TCP_MEM_HIT from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: 30e7933c
X-Firefox-Spdy: h2
use1.fptls2.com/
200 OK 812 B IP
Hash e3a40cc6f7b9e49a9342bb877c651195
0207f611c8ad6585441af52ad310c1293c4cacee
17dfb79e0802bb75a91258f3501987eb946f667155acd1e0afe0a078423bd714
GET / HTTP/1.1
Host: use1.fptls2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://derute.no
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: max-age=2592000, immutable, private
strict-transport-security: max-age=63072000; includeSubDomains
content-type: text/plain; charset=utf-8
content-length: 208
date: Mon, 16 Jan 2023 03:33:59 GMT
X-Firefox-Spdy: h2
config.gorgias.chat/gorgias-chat-bundle.js?rev=8e46ee78&applicationId=23800
200 OK 150 kB URL HTTP/2 config.gorgias.chat/gorgias-chat-bundle.js?rev=8e46ee78&applicationId=23800
IP
File type ASCII text, with very long lines (44588)
Size 150 kB (150234 bytes)
Hash 1d27397b7966eef42cabc509030510d3
5e21a194271c8802ce7f3d8812d487e23c37d790
fd50849892c8fec20eba109ca0ec04a5a2305603f9754947ec1944d4d8255e00
GET /gorgias-chat-bundle.js?rev=8e46ee78&applicationId=23800 HTTP/1.1
Host: config.gorgias.chat
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:59 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=434573
content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
etag: W/"6a18d-MMwFWa0B4NJtUCjEFIrhLGyZJ6E"
expect-ct: max-age=0
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
via: 1.1 google
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
cf-cache-status: HIT
age: 179728
vary: Accept-Encoding
server: cloudflare
cf-ray: 78a3caf45f55b50c-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.rebuyengine.com/onsite/js/vendor-jquery.js?id=c82823c9ef1e8ec2caae
200 OK 31 kB URL HTTP/2 cdn.rebuyengine.com/onsite/js/vendor-jquery.js?id=c82823c9ef1e8ec2caae
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 3ce0d22c1ce6b7c6bc520e4e0f58914f
e2fe59415673f222a4e5e63806c18e43ef1c20ee
837c3b00ad0f2c3ad5e43db19b0bf8a89215f7eec338a210e3347d20b5f1cada
GET /onsite/js/vendor-jquery.js?id=c82823c9ef1e8ec2caae HTTP/1.1
Host: cdn.rebuyengine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Mon, 16 Jan 2023 01:40:17 GMT
etag: W/"63c4ab01-166d3"
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: max-age=1800, stale-while-revalidate=10800
referrer-policy: no-referrer-when-downgrade
content-encoding: gzip
accept-ranges: bytes
date: Mon, 16 Jan 2023 03:33:59 GMT
via: 1.1 varnish
age: 5288
x-served-by: cache-bma1661-BMA
x-cache: HIT
x-cache-hits: 13
x-timer: S1673840039.301190,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 30907
X-Firefox-Spdy: h2
cdn.rebuyengine.com/onsite/js/vendor-flickity.js?id=ff9329099d928219d935
200 OK 13 kB URL HTTP/2 cdn.rebuyengine.com/onsite/js/vendor-flickity.js?id=ff9329099d928219d935
IP
File type ASCII text, with very long lines (49474), with no line terminators
Hash 9e1333ae21a8ab46675aa5aa556575cf
9d41ab39d791cd1ae5baa997e0036971a4c4278b
29a69bdad440d1a410b8cd2e71858ba7c78fbaf8b116987988719f42b6d85408
GET /onsite/js/vendor-flickity.js?id=ff9329099d928219d935 HTTP/1.1
Host: cdn.rebuyengine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Mon, 16 Jan 2023 00:10:52 GMT
etag: W/"63c4960c-c142"
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: max-age=1800, stale-while-revalidate=10800
referrer-policy: no-referrer-when-downgrade
content-encoding: gzip
accept-ranges: bytes
date: Mon, 16 Jan 2023 03:33:59 GMT
via: 1.1 varnish
age: 5959
x-served-by: cache-bma1661-BMA
x-cache: HIT
x-cache-hits: 15
x-timer: S1673840039.307659,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 12957
X-Firefox-Spdy: h2
dapi.videoly.co/1/videos/0/2526/?productId=7836149416155&productTitle=Kavu%20Kelowna%20Blue%20Bandana&mpn=&ean=&SKU=7836149416155&brandName=&productPrice=¤cy=&categoryTree=&oos=0&maxItems=15&ytwv=&_b=Firefox&_bv=105.0&p=1&_w=1268&_h=939&_pl=nb&_cl=nb&tsltd=0&product_view_uuid=b7ba6b58-22f1-4b0f-bf7e-2d9721c57d09&hn=derute.no&href=https%3A%2F%2Fderute.no%2Fproducts%2Fkavu-kelowna-blue%C4%A7and%C4%ADa%3F%C4%8Bm_source%3D%C4%AFisycon%26%C4%B3_medium%3Daffilia%C4%8C%C5%84t%C4%B4campaign%C4%BC%C5%9D%C4%BF%C5%81n_K%C4%A1koo%2520NO&callback=_vdly52c4648659
200 OK 4.2 kB URL HTTP/2 dapi.videoly.co/1/videos/0/2526/?productId=7836149416155&productTitle=Kavu%20Kelowna%20Blue%20Bandana&mpn=&ean=&SKU=7836149416155&brandName=&productPrice=¤cy=&categoryTree=&oos=0&maxItems=15&ytwv=&_b=Firefox&_bv=105.0&p=1&_w=1268&_h=939&_pl=nb&_cl=nb&tsltd=0&product_view_uuid=b7ba6b58-22f1-4b0f-bf7e-2d9721c57d09&hn=derute.no&href=https%3A%2F%2Fderute.no%2Fproducts%2Fkavu-kelowna-blue%C4%A7and%C4%ADa%3F%C4%8Bm_source%3D%C4%AFisycon%26%C4%B3_medium%3Daffilia%C4%8C%C5%84t%C4%B4campaign%C4%BC%C5%9D%C4%BF%C5%81n_K%C4%A1koo%2520NO&callback=_vdly52c4648659
IP
File type ASCII text, with very long lines (330), with no line terminators
Hash 53cd78e6d510c74ff269a60e3f6e345e
de4f59b9ed6494140ecc07e97af7f28352e49ddf
0871765b7bb47bf03211beae628c2c0aa12141de78dba93e664f45b272a91853
GET /1/videos/0/2526/?productId=7836149416155&productTitle=Kavu%20Kelowna%20Blue%20Bandana&mpn=&ean=&SKU=7836149416155&brandName=&productPrice=¤cy=&categoryTree=&oos=0&maxItems=15&ytwv=&_b=Firefox&_bv=105.0&p=1&_w=1268&_h=939&_pl=nb&_cl=nb&tsltd=0&product_view_uuid=b7ba6b58-22f1-4b0f-bf7e-2d9721c57d09&hn=derute.no&href=https%3A%2F%2Fderute.no%2Fproducts%2Fkavu-kelowna-blue%C4%A7and%C4%ADa%3F%C4%8Bm_source%3D%C4%AFisycon%26%C4%B3_medium%3Daffilia%C4%8C%C5%84t%C4%B4campaign%C4%BC%C5%9D%C4%BF%C5%81n_K%C4%A1koo%2520NO&callback=_vdly52c4648659 HTTP/1.1
Host: dapi.videoly.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:59 GMT
content-type: text/javascript; charset=utf-8
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-methods: GET,PUT,POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
x-videoly-cached: 1
x-content-type-options: nosniff
etag: W/"14a-Uuee52mT2Z4qmQGR1k3UICtFu8Q"
set-cookie: vdly=s%3ASMUNADWPUl87-qkc_G5laShrosPY7KpC.F4i2GARbnkWsOgNlvKiIp7Y3hnD5M%2B%2FDwsUZ00iJd%2Fw; Path=/; Expires=Wed, 19 Apr 2023 03:33:59 GMT; HttpOnly; Secure; SameSite=None
via: 1.1 vegur
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RZr%2BiBjpjVXeIj8wIHLr4BZPLfiRqJ6U4jup663SfWbtqNM1mneD%2FdOIaL3Tyi98wCy0vW7mtRRWZ3YBl9T8A65cfzHBhs%2B%2Fp4FbbyInH%2FaNywtFAkUAHv4C06mQqcW0ag%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78a3caf51fa0b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.rebuyengine.com/api/v1/user/config?shop=der-ute.myshopify.com
200 OK 383 B URL HTTP/2 cdn.rebuyengine.com/api/v1/user/config?shop=der-ute.myshopify.com
IP
File type JSON data\012- , ASCII text, with very long lines (653), with no line terminators
Hash 6738bee38bb54370b6c3eb37a0b905c4
2d9a22bdab1c97310e7c1a31c27935c9bddf6f1a
4f3fe9458d5043894a843611be31e39e1d977e36d88146e9f3f3fdf193aee5bb
GET /api/v1/user/config?shop=der-ute.myshopify.com HTTP/1.1
Host: cdn.rebuyengine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://derute.no
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/json
x-powered-by: PHP/7.0.33
referrer-policy: no-referrer-when-downgrade
access-control-allow-headers: Content-Type
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-allow-private-network: true
content-encoding: gzip
cache-control: max-age=0, stale-while-revalidate=1800
accept-ranges: bytes
date: Mon, 16 Jan 2023 03:33:59 GMT
via: 1.1 varnish
age: 4120
x-served-by: cache-bma1661-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673840039.438340,VS0,VE1
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 383
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Mon, 16 Jan 2023 02:21:54 GMT
expires: Mon, 16 Jan 2023 04:21:54 GMT
cache-control: public, max-age=7200
age: 4325
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
200 OK 1.4 kB URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP
ASN #20940 Akamai International B.V.
Hash 483bd63318bdc9930503f6496811f030
6a6762da454f1a14dceaefc0a4e9f9c1ac9a2c30
37b31136e424545af6675781eec1d5f95965962b25f7764853ddbb055335e7f5
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 954
Origin: https://derute.no
Connection: keep-alive
Referer: https://derute.no/
Cookie: _ttp=2KOK9Z6nRqL5Xhzq9yCZT3KNCm5
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20230116033359E5BF6D00ECAE771FA219
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf603288c19c2577690cc6f843a75ffc83c9994d6b870ec92c839f7f74d5b1f47f5bb74652105d49ca26a75ef2beccecaf245a959d8778b4bd9d8a36d2515616c8e0433a1bfe7a943b29a01dac24141f0f013466898bdf3eebe81d4c3e63e35e9df5
x-origin-response-time: 41,104.112.235.175
x-akamai-request-id: 4e1280e0.30e79347
expires: Mon, 16 Jan 2023 03:33:59 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 16 Jan 2023 03:33:59 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-cache-remote: TCP_MISS from a104-112-235-175.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=145, origin; dur=41, inner; dur=13
x-parent-response-time: 184,23.36.79.28
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ce8d00c5fdc36c7feb7318020711d6c6
56b42148698741cd32886b0e8c8c164c1afa77f5
249817acd224df79d872906a1e7d1e63c08553520701a06106cce166421a2759
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 16 Jan 2023 03:33:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/fbevents.js
200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP
File type ASCII text, with very long lines (64348)
Hash 541db4f3f0ba067bfb58cdac34cb86f4
20e6883f068568888ce37c6b9ef8f5d12be257c0
83898f3b2da2a11996d2eb3a5115ef301255030fdf231b8bf7971916769bc7be
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: WOTkWs1mA8hV2kjYxkJLo1TnXtpErhN8abGgSHEZqoZegOMR1/atfFnF0xYaMbg/fcvuH8DqTZBt960hn2VjFQ==
content-length: 27815
x-fb-trip-id: 1904183273
date: Mon, 16 Jan 2023 03:33:59 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
bat.bing.com/bat.js
200 OK 12 kB IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39124), with no line terminators
Hash d925a898de26295fdebfc90203ef46fa
77dd3f5893b76530e08058d50e8f9aef017e80c7
8f4a413fec7e48f5ac290f4596fef33b6396e7fb31080ec0203a5ec817d140c8
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11460
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 05 Dec 2022 17:15:50 GMT
accept-ranges: bytes
etag: "027e538cd8d91:0"
vary: Accept-Encoding
set-cookie: MUID=174BE09C17D3663D335EF20716266775; domain=.bing.com; expires=Sat, 10-Feb-2024 03:33:59 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 1FBE272B5FB24738BAAAB69107B2BAC3 Ref B: OSL30EDGE0214 Ref C: 2023-01-16T03:33:59Z
date: Mon, 16 Jan 2023 03:33:58 GMT
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/952893107/?random=1673840039239&cv=11&fst=1673840039239&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fderute.no%2Fproducts%2Fkavu-kelowna-blue-bandana%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_Kelkoo%2520NO&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Kavu%20Kelowna%20Blue%20Bandana%20%E2%80%93%20Der%2FUte&value=539.0&auid=1665988771.1673840039&data=event%3Dview_item%3Bgoogle_business_vertical%3Dretail%3Bid%3D43393732346075&rfmt=3&fmt=4
200 OK 1.0 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/952893107/?random=1673840039239&cv=11&fst=1673840039239&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fderute.no%2Fproducts%2Fkavu-kelowna-blue-bandana%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_Kelkoo%2520NO&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Kavu%20Kelowna%20Blue%20Bandana%20%E2%80%93%20Der%2FUte&value=539.0&auid=1665988771.1673840039&data=event%3Dview_item%3Bgoogle_business_vertical%3Dretail%3Bid%3D43393732346075&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (2393), with no line terminators
Hash 565a1d15ded8ffaeae14366d37ba779e
a1096bcadbac66f8875166f78e4fd07402f1b1b0
fea143cc94d4089a0671d139aa7b0cf2bb47d1f098445947adeba8edb9f38524
GET /pagead/viewthroughconversion/952893107/?random=1673840039239&cv=11&fst=1673840039239&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fderute.no%2Fproducts%2Fkavu-kelowna-blue-bandana%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_Kelkoo%2520NO&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Kavu%20Kelowna%20Blue%20Bandana%20%E2%80%93%20Der%2FUte&value=539.0&auid=1665988771.1673840039&data=event%3Dview_item%3Bgoogle_business_vertical%3Dretail%3Bid%3D43393732346075&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 16 Jan 2023 03:33:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1032
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 16-Jan-2023 03:48:59 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash b5f0190d8fe5de30dace39e0050f6176
daf68b3b076b739ee0e668188b23e32c344f76db
8c760c2f726a661095ce9c9d744ae8206fe86f9aba5450d55d98e727a38f7e37
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5786
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 16 Jan 2023 03:33:59 GMT
Last-Modified: Mon, 16 Jan 2023 01:57:33 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
analytics.tiktok.com/api/v2/pixel
200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1118
Origin: https://derute.no
Connection: keep-alive
Referer: https://derute.no/
Cookie: _ttp=2KOK9Z6nRqL5Xhzq9yCZT3KNCm5
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20230116033359672DE1811A6915FB9FD2
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf603288c19c2577690cc6f843a75ffc83c98a4524e3cf927c2b12eff3cb4e117ce8d0ef9cbcea980648171e52fa252eadfd5f0f94932e41178a1d7ecfa4465a4fee61f938b0978ff77f4a614fcbc9329b2fa713c47aa4b0bc073ad62a6d57325046
x-origin-response-time: 123,104.112.235.198
x-akamai-request-id: 195a0aae.30e79346
expires: Mon, 16 Jan 2023 03:33:59 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 16 Jan 2023 03:33:59 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-cache-remote: TCP_MISS from a104-112-235-198.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=110, origin; dur=123, inner; dur=18
x-parent-response-time: 230,23.36.79.28
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-GCZ0EVJTRB>m=2oe1a1&_p=1716388347&cid=658552069.1673840039&ul=en-us&sr=1280x1024&_s=1&sid=1673840039&sct=1&seg=0&dl=https%3A%2F%2Fderute.no%2Fproducts%2Fkavu-kelowna-blue-bandana%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_Kelkoo%2520NO&dr=https%3A%2F%2Fno-go.kelkoogroup.net%2F&dt=Kavu%20Kelowna%20Blue%20Bandana%20%E2%80%93%20Der%2FUte&en=page_view&_fv=1&_nsi=1&_ss=1&up.user_type=visitor
204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-GCZ0EVJTRB>m=2oe1a1&_p=1716388347&cid=658552069.1673840039&ul=en-us&sr=1280x1024&_s=1&sid=1673840039&sct=1&seg=0&dl=https%3A%2F%2Fderute.no%2Fproducts%2Fkavu-kelowna-blue-bandana%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_Kelkoo%2520NO&dr=https%3A%2F%2Fno-go.kelkoogroup.net%2F&dt=Kavu%20Kelowna%20Blue%20Bandana%20%E2%80%93%20Der%2FUte&en=page_view&_fv=1&_nsi=1&_ss=1&up.user_type=visitor
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-GCZ0EVJTRB>m=2oe1a1&_p=1716388347&cid=658552069.1673840039&ul=en-us&sr=1280x1024&_s=1&sid=1673840039&sct=1&seg=0&dl=https%3A%2F%2Fderute.no%2Fproducts%2Fkavu-kelowna-blue-bandana%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_Kelkoo%2520NO&dr=https%3A%2F%2Fno-go.kelkoogroup.net%2F&dt=Kavu%20Kelowna%20Blue%20Bandana%20%E2%80%93%20Der%2FUte&en=page_view&_fv=1&_nsi=1&_ss=1&up.user_type=visitor HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://derute.no
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://derute.no
date: Mon, 16 Jan 2023 03:33:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ce8d00c5fdc36c7feb7318020711d6c6
56b42148698741cd32886b0e8c8c164c1afa77f5
249817acd224df79d872906a1e7d1e63c08553520701a06106cce166421a2759
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 16 Jan 2023 03:33:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
d3hw6dc1ow8pp2.cloudfront.net/reviews-widget-plus/js/okendo-reviews-styles.818f46dd.js
200 OK 123 B URL HTTP/2 d3hw6dc1ow8pp2.cloudfront.net/reviews-widget-plus/js/okendo-reviews-styles.818f46dd.js
IP
File type ASCII text, with no line terminators
Hash 6490e1df2c0f4fcdb5afd231c12e893e
b50240a298fdcd9b7b2501adc2045c5cf5d73384
e1040dac282475ea72326eb51e0048c9c1f929b31cab4e2e55c4a39a4980eb46
GET /reviews-widget-plus/js/okendo-reviews-styles.818f46dd.js HTTP/1.1
Host: d3hw6dc1ow8pp2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 123
last-modified: Mon, 16 Jan 2023 01:36:46 GMT
accept-ranges: bytes
server: AmazonS3
date: Mon, 16 Jan 2023 03:33:07 GMT
cache-control: max-age=300
etag: "6490e1df2c0f4fcdb5afd231c12e893e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xftu24wRG3dKOWUdH6c5cBVVDWIZUGJsK9fXqH5fYjeimLH9dXZ36Q==
age: 153
X-Firefox-Spdy: h2
d3hw6dc1ow8pp2.cloudfront.net/reviews-widget-plus/js/okendo-reviews-translation.ec6891b1.js
200 OK 9.4 kB URL HTTP/2 d3hw6dc1ow8pp2.cloudfront.net/reviews-widget-plus/js/okendo-reviews-translation.ec6891b1.js
IP
Hash 2f01b279b1a90be93e1e1d62ec835513
60dfc64d892353f4916d00ee1cac3b28a0b52ac8
7182da36bb4278e09791934a9cb223b02536051c34acdfc5b838f570e1196546
GET /reviews-widget-plus/js/okendo-reviews-translation.ec6891b1.js HTTP/1.1
Host: d3hw6dc1ow8pp2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 16 Jan 2023 01:36:46 GMT
server: AmazonS3
content-encoding: gzip
date: Mon, 16 Jan 2023 03:33:07 GMT
cache-control: max-age=300
etag: W/"7f82c09195e24d493fb279fa135d24bc"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RyS4ZPNuW_8vvnGsGekVF06rkmNNV9d1_Y5UfcaOu9Ergzln0UXeRw==
age: 214
X-Firefox-Spdy: h2
script.hotjar.com/modules.0a5831f9446624640839.js
200 OK 69 kB URL HTTP/2 script.hotjar.com/modules.0a5831f9446624640839.js
IP
File type Unicode text, UTF-8 text, with very long lines (47958)
Hash c190d47cd0259bc45c4cf36c6c1a261a
a4d82aab61799b506dcaa84753e481eea33547ad
8593a0bee7b36326e5243a3eb4f70618a602a1d3646e732567ce05f7cda2c7cb
GET /modules.0a5831f9446624640839.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68992
date: Thu, 12 Jan 2023 12:30:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "c190d47cd0259bc45c4cf36c6c1a261a"
last-modified: Thu, 12 Jan 2023 12:29:16 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2LHQ_1uuLtqrGLXAPRHLX2KDk1oOoS1To_C-LxU7qx9KTLJZ_RZTdA==
age: 313433
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6db0ab20925a64068987b60dd6f72f9a
38d0bea36fbf16ec63bec71cb3bbe743541458b1
74082ea963e7afe8094d2e187e40309b5848948822467c62f1ef0852ae688564
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 16 Jan 2023 03:33:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/1p-user-list/952893107/?random=1673840039239&cv=11&fst=1673838000000&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fderute.no%2Fproducts%2Fkavu-kelowna-blue-bandana%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_Kelkoo%2520NO&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Kavu%20Kelowna%20Blue%20Bandana%20%E2%80%93%20Der%2FUte&value=539.0&data=event%3Dview_item%3Bgoogle_business_vertical%3Dretail%3Bid%3D43393732346075&fmt=3&is_vtc=1&random=1837163194&rmt_tld=0&ipr=y
200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/952893107/?random=1673840039239&cv=11&fst=1673838000000&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fderute.no%2Fproducts%2Fkavu-kelowna-blue-bandana%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_Kelkoo%2520NO&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Kavu%20Kelowna%20Blue%20Bandana%20%E2%80%93%20Der%2FUte&value=539.0&data=event%3Dview_item%3Bgoogle_business_vertical%3Dretail%3Bid%3D43393732346075&fmt=3&is_vtc=1&random=1837163194&rmt_tld=0&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/952893107/?random=1673840039239&cv=11&fst=1673838000000&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fderute.no%2Fproducts%2Fkavu-kelowna-blue-bandana%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_Kelkoo%2520NO&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Kavu%20Kelowna%20Blue%20Bandana%20%E2%80%93%20Der%2FUte&value=539.0&data=event%3Dview_item%3Bgoogle_business_vertical%3Dretail%3Bid%3D43393732346075&fmt=3&is_vtc=1&random=1837163194&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 16 Jan 2023 03:33:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/952893107/?random=1673840039239&cv=11&fst=1673838000000&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fderute.no%2Fproducts%2Fkavu-kelowna-blue-bandana%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_Kelkoo%2520NO&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Kavu%20Kelowna%20Blue%20Bandana%20%E2%80%93%20Der%2FUte&value=539.0&data=event%3Dview_item%3Bgoogle_business_vertical%3Dretail%3Bid%3D43393732346075&fmt=3&is_vtc=1&random=1837163194&rmt_tld=1&ipr=y
200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/952893107/?random=1673840039239&cv=11&fst=1673838000000&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fderute.no%2Fproducts%2Fkavu-kelowna-blue-bandana%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_Kelkoo%2520NO&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Kavu%20Kelowna%20Blue%20Bandana%20%E2%80%93%20Der%2FUte&value=539.0&data=event%3Dview_item%3Bgoogle_business_vertical%3Dretail%3Bid%3D43393732346075&fmt=3&is_vtc=1&random=1837163194&rmt_tld=1&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/952893107/?random=1673840039239&cv=11&fst=1673838000000&bg=ffffff&guid=ON&async=1>m=2wg1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fderute.no%2Fproducts%2Fkavu-kelowna-blue-bandana%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_Kelkoo%2520NO&ref=https%3A%2F%2Fno-go.kelkoogroup.net%2F&tiba=Kavu%20Kelowna%20Blue%20Bandana%20%E2%80%93%20Der%2FUte&value=539.0&data=event%3Dview_item%3Bgoogle_business_vertical%3Dretail%3Bid%3D43393732346075&fmt=3&is_vtc=1&random=1837163194&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 16 Jan 2023 03:33:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 63931ff97eb1381a053be3c3e3e15109
936c6ff2f38aa0533a06f3e86a83fda70fb55082
190074a5719a32e42ef57a8a5a2f68c70f0f67204e0fc18bf77afad64a7d418f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 16 Jan 2023 03:33:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash f4b5649f5553a4164fe8f5d6a7861657
2f22cc9acb845ca7a81a104463ebf94d3059ccf1
06ac062617836f62efe6321ef5a013c24d2a04160670a7f6f2e04c78aaf7ca4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 16 Jan 2023 03:33:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
d3hw6dc1ow8pp2.cloudfront.net/reviews-widget-plus/js/modules/widget.94000201.js
200 OK 7.5 kB URL HTTP/2 d3hw6dc1ow8pp2.cloudfront.net/reviews-widget-plus/js/modules/widget.94000201.js
IP
File type ASCII text, with very long lines (33367), with no line terminators
Hash ff98dfd4ae68328dcc4195e0b58fe1e0
cb3995eecdd3559aa0c11c72839d051f2ecf1d21
749601527f22eb58b3341bdd9d3bfaff1e6446c4f83f30041e07f79ec18d33e0
GET /reviews-widget-plus/js/modules/widget.94000201.js HTTP/1.1
Host: d3hw6dc1ow8pp2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 16 Jan 2023 01:37:25 GMT
last-modified: Mon, 16 Jan 2023 01:36:46 GMT
etag: W/"97cd7f1339a7a7da03ee7aa99af2ce60"
cache-control: max-age=31536000
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: y5JayHxRsVNFthuF5hUP_SEZnql9mwm4KF3sVD7nboYf7LxENM9BRg==
age: 6996
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1890473734519624&ev=ViewContent&dl=https%3A%2F%2Fderute.no%2Fproducts%2Fkavu-kelowna-blue-bandana%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_Kelkoo%2520NO&rl=https%3A%2F%2Fno-go.kelkoogroup.net%2F&if=false&ts=1673840040799&cd[content_ids]=%5B7836149416155%5D&cd[content_type]=product_group&cd[content_name]=Kavu%20Kelowna%20Blue%20Bandana%20-%20XS&cd[content_category]=&cd[currency]=NOK&cd[value]=539.00&sw=1280&sh=1024&v=2.9.92&r=stable&a=shopify&ec=1&o=30&fbp=fb.1.1673840040796.1661937940&it=1673840040306&coo=false&eid=b8a42577-9FAD-4B5C-8A24-6CF5785B8D30&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1890473734519624&ev=ViewContent&dl=https%3A%2F%2Fderute.no%2Fproducts%2Fkavu-kelowna-blue-bandana%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_Kelkoo%2520NO&rl=https%3A%2F%2Fno-go.kelkoogroup.net%2F&if=false&ts=1673840040799&cd[content_ids]=%5B7836149416155%5D&cd[content_type]=product_group&cd[content_name]=Kavu%20Kelowna%20Blue%20Bandana%20-%20XS&cd[content_category]=&cd[currency]=NOK&cd[value]=539.00&sw=1280&sh=1024&v=2.9.92&r=stable&a=shopify&ec=1&o=30&fbp=fb.1.1673840040796.1661937940&it=1673840040306&coo=false&eid=b8a42577-9FAD-4B5C-8A24-6CF5785B8D30&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1890473734519624&ev=ViewContent&dl=https%3A%2F%2Fderute.no%2Fproducts%2Fkavu-kelowna-blue-bandana%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_Kelkoo%2520NO&rl=https%3A%2F%2Fno-go.kelkoogroup.net%2F&if=false&ts=1673840040799&cd[content_ids]=%5B7836149416155%5D&cd[content_type]=product_group&cd[content_name]=Kavu%20Kelowna%20Blue%20Bandana%20-%20XS&cd[content_category]=&cd[currency]=NOK&cd[value]=539.00&sw=1280&sh=1024&v=2.9.92&r=stable&a=shopify&ec=1&o=30&fbp=fb.1.1673840040796.1661937940&it=1673840040306&coo=false&eid=b8a42577-9FAD-4B5C-8A24-6CF5785B8D30&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Mon, 16 Jan 2023 03:34:00 GMT
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/animated.css?v=28572804752972487941669700255
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/animated.css?v=28572804752972487941669700255
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/2975/3819/t/36/assets/animated.css?v=28572804752972487941669700255 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:57 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/animated.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 4fbceb0c-c4a8-4bcf-a4e8-9169e8ccb0b3
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Tue, 29 Nov 2022 05:41:02 GMT
cf-cache-status: HIT
age: 4114765
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Aku55%2FjlGKZSfh8bTUMwvvZr3YATVdMQlnoDM%2Fn3b17Q0XHaG89KF5JFA5%2F3KDlTJ40qyoA1%2BqHK4kLrqR22Vz48P7PtjC47pgVWxWYdMxP2omX8bK2tsajgDpQh5FfQhw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=67.371, imageryFetch;dur=65.721, cfRequestDuration;dur=21.999836
server: cloudflare
cf-ray: 78a3cae7db66b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/boost-pfs-init.js?v=164080107980954591611669700260
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/boost-pfs-init.js?v=164080107980954591611669700260
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/2975/3819/t/36/assets/boost-pfs-init.js?v=164080107980954591611669700260 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:57 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/boost-pfs-init.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: d8aab099-945f-4e1e-b345-2fa3ee776e82
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Tue, 29 Nov 2022 05:41:03 GMT
cf-cache-status: HIT
age: 4114765
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7uOqC4nwC4vrlalnox4ZRbuvuDnlvRM5eHsCcghUZMFuOSV6eP6i8AHMuMWJijjk9nTPuBFaL2AbyAKJwWDeFFL56oBS%2BYONFQj1hm6jA9p3FRyB9uEZyNnckeuT%2FNtZAQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=46.324, imageryFetch;dur=45.480, cfRequestDuration;dur=10.999918
server: cloudflare
cf-ray: 78a3cae76b35b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
d3hw6dc1ow8pp2.cloudfront.net/reviews-widget-plus/js/okendo-reviews-core.9b4a72ad.js
200 OK 0 B URL HTTP/2 d3hw6dc1ow8pp2.cloudfront.net/reviews-widget-plus/js/okendo-reviews-core.9b4a72ad.js
IP
GET /reviews-widget-plus/js/okendo-reviews-core.9b4a72ad.js HTTP/1.1
Host: d3hw6dc1ow8pp2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 16 Jan 2023 01:36:46 GMT
server: AmazonS3
content-encoding: gzip
date: Mon, 16 Jan 2023 03:33:07 GMT
cache-control: max-age=300
etag: W/"564663cd17e2bd2f460d8b1f1cdc48e5"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yaRY-KF701ADAZAU9xRvyjRqVrtL7FeZhFxRHD45s7ZZZfQa4u96aA==
age: 180
X-Firefox-Spdy: h2
api.fastbundle.co/react-src/static/js/main.min.js?rgn=422748
200 OK 0 B URL HTTP/2 api.fastbundle.co/react-src/static/js/main.min.js?rgn=422748
IP
GET /react-src/static/js/main.min.js?rgn=422748 HTTP/1.1
Host: api.fastbundle.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:57 GMT
content-type: application/javascript
last-modified: Sun, 15 Jan 2023 07:28:52 GMT
etag: W/"63c3ab34-88fce"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4345
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6BWyjunfmBHGLmHh4dLM3xqLfUIcfwnhEUr7Jjy8%2FkCDJ3Zx4KDJGypr8IyEDDenCZP%2Bu%2FZzCh3lX%2BlG0fsVwHR1BMDRdepIb7bOWm1Neru1J2QbfumcUFkfITsWA3IWwHCN5g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78a3cae77c86b506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
api.fastbundle.co/v1/carts/8f2171de151629ede392878231d1612b/discounts/
200 OK 0 B URL HTTP/2 api.fastbundle.co/v1/carts/8f2171de151629ede392878231d1612b/discounts/
IP
OPTIONS /v1/carts/8f2171de151629ede392878231d1612b/discounts/ HTTP/1.1
Host: api.fastbundle.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: PATCH
Access-Control-Request-Headers: content-type
Referer: https://derute.no/
Origin: https://derute.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:58 GMT
content-type: text/html; charset=utf-8
vary: Origin
access-control-allow-origin: *
access-control-allow-headers: accept, accept-encoding, authorization, content-type, dnt, origin, user-agent, x-csrftoken, x-requested-with
access-control-allow-methods: DELETE, GET, OPTIONS, PATCH, POST, PUT
access-control-max-age: 86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5elaug8zMjQZxX%2FZ0i78t%2FABF89rzKUzJqKMOwE54eGj%2FTn1teiyU3kw2QgFQtYwxCCPAOAKFXWsYr3y5FQBzFqNxP%2F94suhVYOl0YcEnyZzGDq50g0Sgq5kLetWQqG7jPecRA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78a3caf21e5bb50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
d3hw6dc1ow8pp2.cloudfront.net/reviews-widget-plus/js/modules/shared-components.495379e0.js
200 OK 0 B URL HTTP/2 d3hw6dc1ow8pp2.cloudfront.net/reviews-widget-plus/js/modules/shared-components.495379e0.js
IP
GET /reviews-widget-plus/js/modules/shared-components.495379e0.js HTTP/1.1
Host: d3hw6dc1ow8pp2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 16 Jan 2023 01:37:25 GMT
last-modified: Mon, 16 Jan 2023 01:36:46 GMT
etag: W/"6fa64c2e7c3c7151039883b9a686f10a"
cache-control: max-age=31536000
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: l3UU75UfiLWt2EE9v4KsVgi2nairVxh8KMVxW66j2CJVX5aYlhgzfw==
age: 6996
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/compiled_assets/scripts.js?33545
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/compiled_assets/scripts.js?33545
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/2975/3819/t/36/compiled_assets/scripts.js?33545 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:56 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/compiled_assets/scripts.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 9b0569cc-bd03-4bc2-bd74-35b6c8306d47
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Mon, 16 Jan 2023 03:32:49 GMT
cf-cache-status: HIT
age: 55
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J220flHlse9EN4VYsXyg%2BfJkOmY6x7MqRepU1lyLztJVXDENxPXAU3UuxKN6m6J3LepTNtWEj6mpmLtlGfB4MwUTyL2psojtiRRf1x1XeEnI%2Fa%2B2QWrgCmspNyK8iFytow%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=32.840, imageryFetch;dur=28.186, cfRequestDuration;dur=152.999878
server: cloudflare
cf-ray: 78a3cae6eae7b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-loading-overlay.css?v=170491267859233445071669700298
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-loading-overlay.css?v=170491267859233445071669700298
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/2975/3819/t/36/assets/component-loading-overlay.css?v=170491267859233445071669700298 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:56 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-loading-overlay.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 89624e1d-b709-4712-83cb-16ee210c7310
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Tue, 29 Nov 2022 05:41:02 GMT
cf-cache-status: HIT
age: 4114764
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Fwk6vV0eLVUotN1rYlckq04qNdhw8K5PL%2B3nWPj4OP%2BpBqtifsXOw1kLey1QpvixagV2bVVkaW4qVj5C6GqOFvRMcPoZ3INk3dvgfawBZbN0wLv00hlzQWj806gxTVsXMQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=73.277, imageryFetch;dur=71.823, cfRequestDuration;dur=13.000011
server: cloudflare
cf-ray: 78a3cae6eaeeb523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-product-form.css?v=50937079636234071251673839963
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-product-form.css?v=50937079636234071251673839963
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/2975/3819/t/36/assets/component-product-form.css?v=50937079636234071251673839963 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:56 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-product-form.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 42c320bf-105a-46b7-ba27-1d56476c19ff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Mon, 16 Jan 2023 03:32:51 GMT
cf-cache-status: HIT
age: 54
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2S2T3Ww7sNyqf7HRTz8zlpVEL3Hx2ktMpWlMJ7NWWweFbO3IxlLQh6Ho1WDH3WYT1IfgyEiRBbx%2B7N6u39A6c%2F1gHaqmVXTZ4UU8AI37Oel2J2mjpRfXeg7q%2FPZmn2ZySA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=33.428, imageryFetch;dur=32.068, cfRequestDuration;dur=12.000322
server: cloudflare
cf-ray: 78a3cae71b11b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-card.css?v=89352494037164253351669700276
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-card.css?v=89352494037164253351669700276
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/2975/3819/t/36/assets/component-card.css?v=89352494037164253351669700276 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:56 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-card.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 0163762c-a4de-4275-abe1-e9f8abc30b20
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Tue, 29 Nov 2022 05:41:02 GMT
cf-cache-status: HIT
age: 4114764
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=COYFokd0rx0LquZXFobDWDhyxvBW7jhQHdSELHxDtdscKY7e0kK2Be%2BBo3Tg%2FFw9Jz5CNrVm6y68aTh%2BdrbC6nxhtSXbrpqkcPvefK%2F5ydw07lFgAcE%2BjpIooqX1gNoDqg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=60.452, imageryFetch;dur=55.258, cfRequestDuration;dur=10.000229
server: cloudflare
cf-ray: 78a3cae6eaedb523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-list-menu.css?v=96131612071846395241669700295
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-list-menu.css?v=96131612071846395241669700295
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/2975/3819/t/36/assets/component-list-menu.css?v=96131612071846395241669700295 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:56 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-list-menu.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 5a865177-985c-42f2-904c-cd4651c8c4d7
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Tue, 29 Nov 2022 05:41:02 GMT
cf-cache-status: HIT
age: 4114764
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XwruHkfRwHzsEH70UXwjhVKItT%2FGTUN1yOLGF9lTGRBm7TrxAxpc9RksVBaG8RRctN4DR0WqVFdgBn30mmzzoGETZtGE4fXDnmclHvX1aqYReUOFh3EIiqIiXsTbbwrAfw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=80.936, imageryFetch;dur=80.248, cfRequestDuration;dur=10.999918
server: cloudflare
cf-ray: 78a3cae70affb523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/extensions/47008d4f-992e-4c5c-8187-5c74b96687cc/1.2.0/assets/rebuy-extensions.js
200 OK 0 B URL HTTP/2 cdn.shopify.com/extensions/47008d4f-992e-4c5c-8187-5c74b96687cc/1.2.0/assets/rebuy-extensions.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /extensions/47008d4f-992e-4c5c-8187-5c74b96687cc/1.2.0/assets/rebuy-extensions.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:57 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/extensions/47008d4f-992e-4c5c-8187-5c74b96687cc/1.2.0/assets/rebuy-extensions.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 1ccbc500-56a2-4aa6-8a12-180f2479c583
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Fri, 26 Aug 2022 01:57:44 GMT
cf-cache-status: HIT
age: 12360841
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MDKK8rubBl7dfdUtRDlmiGG%2BVMmbDCPvJsk9CqmYBoGOXFjDuGNTEA%2FJQs5D04rJ8bGHdCcace2UL2jHktI2EnuewFOPfvnWczSWZsUQkGsadHrtgKQ7J74tnJXkKctASQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=57.437, imageryFetch;dur=57.317, cfRequestDuration;dur=10.999918
server: cloudflare
cf-ray: 78a3cae7db67b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
d3hw6dc1ow8pp2.cloudfront.net/reviews-widget-plus/js/modules/okendo-widget-init.345db78f.js
200 OK 0 B URL HTTP/2 d3hw6dc1ow8pp2.cloudfront.net/reviews-widget-plus/js/modules/okendo-widget-init.345db78f.js
IP
GET /reviews-widget-plus/js/modules/okendo-widget-init.345db78f.js HTTP/1.1
Host: d3hw6dc1ow8pp2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 16 Jan 2023 01:37:24 GMT
last-modified: Mon, 16 Jan 2023 01:36:46 GMT
etag: W/"68fa59c441429a7fbaa0d7b0f86f27c3"
cache-control: max-age=31536000
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: UlfkVMpU0GJZ3-PQiJswdavIsqT8KU18vRvGRsph0Y5XFpr0f24Z0A==
age: 6996
X-Firefox-Spdy: h2
d3hw6dc1ow8pp2.cloudfront.net/reviews-widget-plus/js/okendo-reviews-lib.a4f8bc25.js
200 OK 0 B URL HTTP/2 d3hw6dc1ow8pp2.cloudfront.net/reviews-widget-plus/js/okendo-reviews-lib.a4f8bc25.js
IP
GET /reviews-widget-plus/js/okendo-reviews-lib.a4f8bc25.js HTTP/1.1
Host: d3hw6dc1ow8pp2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 16 Jan 2023 01:36:46 GMT
server: AmazonS3
content-encoding: gzip
date: Mon, 16 Jan 2023 03:33:17 GMT
cache-control: max-age=300
etag: W/"c27ee18a5b34f9e2af316528fbfce400"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3ifX6bD33yfKbL11rtgmtz7v1JuGai5HfIQHpxvfgmK28bgnXX-PIg==
age: 183
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/lazysizes.min.js?v=122719776364282065531669700357
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/lazysizes.min.js?v=122719776364282065531669700357
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/2975/3819/t/36/assets/lazysizes.min.js?v=122719776364282065531669700357 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:56 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/lazysizes.min.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 1cb285a7-1631-4ff7-92f7-4d8b852734b7
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Tue, 29 Nov 2022 05:41:02 GMT
cf-cache-status: HIT
age: 4114764
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5KjSAFX%2BL3ZHm2ZwRltbXhAFK17pyb7ZnJg8ItmHyCgvRMey2eJSYfIbUuEpnzK%2B1pbmlV%2BSzV%2FBDCeKlvA4vJ97OKvben7vskbX1xJW6c3N%2BTMoL65tCJXvjd55LbiQOw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=67.752, imageryFetch;dur=67.606, cfRequestDuration;dur=13.000011
server: cloudflare
cf-ray: 78a3cae6faf3b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/vendor.js?v=167308307333113337551669700392
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/vendor.js?v=167308307333113337551669700392
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/2975/3819/t/36/assets/vendor.js?v=167308307333113337551669700392 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:56 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/vendor.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: b9e38572-f0b2-4c36-befc-0dedcfdf084e
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Tue, 29 Nov 2022 05:41:02 GMT
cf-cache-status: HIT
age: 4114764
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gzmdbYTp5l2KG88ei3eo4PtcRTTdQRv300apCtUlzL2aTFrCI%2F3vTaH1ieoqy6cfRpsmwwCLqmkqng5DusFdMrsl8e8j3n3AdvOLDz8zkwlAFIg35t4VayD8j1uNpwSMiQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=118.974, imageryFetch;dur=75.025, cfRequestDuration;dur=13.999939
server: cloudflare
cf-ray: 78a3cae6faf1b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-review.css?v=100129706126506303331669700321
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-review.css?v=100129706126506303331669700321
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/2975/3819/t/36/assets/component-review.css?v=100129706126506303331669700321 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:56 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-review.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: c336aaa6-a252-417d-927a-cd4d297f4912
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Tue, 29 Nov 2022 06:17:39 GMT
cf-cache-status: HIT
age: 4114764
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bIyN%2BUeq0Qs0oOy87425sihw%2FQm9GyDjMLMkRYrHhepB2S8p6HeMEzWb%2FotwVfv5YaRm9whj7Nbgg5w4haEXoeTRJXUFEzo1fHp2xc%2FIvzrPdazvbbOe9oKI6qIy%2FZdbiQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=52.575, imageryFetch;dur=52.011, cfRequestDuration;dur=16.000032
server: cloudflare
cf-ray: 78a3cae71b0bb523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-megamenu.css?v=164122376295328698421673333530
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-megamenu.css?v=164122376295328698421673333530
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/2975/3819/t/36/assets/component-megamenu.css?v=164122376295328698421673333530 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:56 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-megamenu.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: dce5cbdf-596e-4ec6-b0fb-4b3bd04df1e8
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Tue, 10 Jan 2023 06:52:25 GMT
cf-cache-status: HIT
age: 506491
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BRqJyhVsnd0icGr2VvTSPnEHFF2UvNrIs7IMs24TwYa3oPpr8keMsqd9BgktLrxWXhfGhHsBDU2%2FuyjaGvxudK2ydTyuzdB1gR8Ne2b3Agl6z5F92GWQCHyrPpXo4%2BDYow%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=90.372, imageryFetch;dur=87.550, cfRequestDuration;dur=19.000053
server: cloudflare
cf-ray: 78a3cae70b02b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/extensions/87d7bf09-4fc8-4442-9821-cfedc89b73d9/0.65.0/assets/appointo_bundle.js
200 OK 0 B URL HTTP/2 cdn.shopify.com/extensions/87d7bf09-4fc8-4442-9821-cfedc89b73d9/0.65.0/assets/appointo_bundle.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /extensions/87d7bf09-4fc8-4442-9821-cfedc89b73d9/0.65.0/assets/appointo_bundle.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:56 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/extensions/87d7bf09-4fc8-4442-9821-cfedc89b73d9/0.65.0/assets/appointo_bundle.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 08c9fcab-b243-445f-a283-06dd04d2a55d
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Fri, 13 Jan 2023 06:03:32 GMT
cf-cache-status: HIT
age: 250155
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L4rONyvXZitqF1UUkjCqwE402SaOIbopqm4KUVz8RNWwKwqcaRyd1hI%2BmylG708FoQc6Qt7DHubiAfnaVkorQNzNZer95TbfvAwK%2FW9iKzOQ7Q%2F0bRdgxk1Be5xaJQSF6A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=36.633, imageryFetch;dur=36.428, cfRequestDuration;dur=12.000084
server: cloudflare
cf-ray: 78a3cae6eaebb523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
d3hw6dc1ow8pp2.cloudfront.net/reviews-widget-plus/js/okendo-reviews.js
200 OK 0 B URL HTTP/2 d3hw6dc1ow8pp2.cloudfront.net/reviews-widget-plus/js/okendo-reviews.js
IP
GET /reviews-widget-plus/js/okendo-reviews.js HTTP/1.1
Host: d3hw6dc1ow8pp2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 16 Jan 2023 01:36:46 GMT
server: AmazonS3
content-encoding: gzip
date: Mon, 16 Jan 2023 03:33:59 GMT
cache-control: max-age=300
etag: W/"44902fbb051f3155c5c3e43a06b60f8d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: n1TyecC5CkXhsbxPGoBoB7Ez8Qz3TPyVjJdQKEWB6P3DysVCNlnwHg==
age: 6
X-Firefox-Spdy: h2
d3hw6dc1ow8pp2.cloudfront.net/reviews-widget-plus/js/review-templates/default.2b4c3a6f.js
200 OK 0 B URL HTTP/2 d3hw6dc1ow8pp2.cloudfront.net/reviews-widget-plus/js/review-templates/default.2b4c3a6f.js
IP
GET /reviews-widget-plus/js/review-templates/default.2b4c3a6f.js HTTP/1.1
Host: d3hw6dc1ow8pp2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 16 Jan 2023 01:37:27 GMT
last-modified: Mon, 16 Jan 2023 01:36:46 GMT
etag: W/"dcf8af78d2aad4b8f8fed7786dc79c13"
cache-control: max-age=31536000
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QKXqzr386PhnCjexZjL6j-JF0VV26ABnL9MNLh4ijiNf1YBKDSr5Dw==
age: 6994
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/base.css?v=14416609116313498581673500825
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/base.css?v=14416609116313498581673500825
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/2975/3819/t/36/assets/base.css?v=14416609116313498581673500825 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:57 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/base.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: d9675803-5ffa-4c56-a68f-284ae5dcf9f8
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Thu, 12 Jan 2023 05:20:33 GMT
cf-cache-status: HIT
age: 339193
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=g2Soje%2BL6OIdBNXmwuVhYa5lPq5sn1od2xXk9lmrm%2Fna6%2BdVyTNwmxOhA4T1jj1KtMK6Pc2mniRqxNMIgMlok1qQGLHJPx%2Fgh6q4SlcZQJKK5htTIptHwlFpXEkEdshfFg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=48.458, imageryFetch;dur=27.362, cfRequestDuration;dur=8.999825
server: cloudflare
cf-ray: 78a3cae7db64b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-menu-drawer.css?v=129825298568141628341669700303
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-menu-drawer.css?v=129825298568141628341669700303
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/2975/3819/t/36/assets/component-menu-drawer.css?v=129825298568141628341669700303 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:56 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-menu-drawer.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 00beb114-9611-4bd7-bb0f-be60796ceb8c
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Tue, 29 Nov 2022 05:41:02 GMT
cf-cache-status: HIT
age: 4114764
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7Zi9b0%2BulmAKf%2B5m7m2KrUH0Xy%2FYMRrNsFly0vGA2lMucal0uOCUFgY4XPlLimZC4UEDXLXN9B98ZCYlKqzI8Dz6u8pC0RWLI9w7hgCbijC76MKXLFqDWbhRierrDfHTKA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=75.262, imageryFetch;dur=74.027, cfRequestDuration;dur=13.999939
server: cloudflare
cf-ray: 78a3cae70b01b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-product.css?v=156031467220366110601673515856
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-product.css?v=156031467220366110601673515856
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/2975/3819/t/36/assets/component-product.css?v=156031467220366110601673515856 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:56 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-product.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: a112816e-da1f-4027-ad16-7fa3a17a9a74
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Thu, 12 Jan 2023 09:31:03 GMT
cf-cache-status: HIT
age: 324173
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PrCMm3plhvedXYXWNdNZewu2yrNC5W%2FZinJhQVfOzZhmY8SRbqrC9WHH4sBlzCcS09CY4yKsjTxflzBtsHgI9xN8Q5%2BQAVSFnQE9xx7ksvyOT%2BikIgedxbOyV6nbMEigdA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=76.092, imageryFetch;dur=70.702, cfRequestDuration;dur=10.999918
server: cloudflare
cf-ray: 78a3cae70b0ab523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/section-footer.css?v=160562083962657441711669700382
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/section-footer.css?v=160562083962657441711669700382
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/2975/3819/t/36/assets/section-footer.css?v=160562083962657441711669700382 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:57 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/section-footer.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 97fe732c-3a14-4364-b98e-71577b57766c
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Tue, 29 Nov 2022 05:41:03 GMT
cf-cache-status: HIT
age: 4114765
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XqgUDx03qnaCpdufWiTFKZ0PGoW%2F88NhQhDjpcURuth2kim2cwqSfkw%2B9TTbYv5ZFFxDW5Isz78LWDYMo2A5t2tYKzUnS7AOQqrhjj%2FswhizB08xll5n%2BgzkVudCbrowDw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=64.596, imageryFetch;dur=62.362, cfRequestDuration;dur=12.000084
server: cloudflare
cf-ray: 78a3cae76b2eb523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
api.yadore.com/v2/r?e=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&i=2SCMd0Hx18uqTEjj&placementId=95e868552c923fbe1650cbe9a2e49187
302 Found 0 B URL HTTP/2 api.yadore.com/v2/r?e=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&i=2SCMd0Hx18uqTEjj&placementId=95e868552c923fbe1650cbe9a2e49187
IP
ASN #24940 Hetzner Online GmbH
GET /v2/r?e=VGdaWXRaOFMvMjlab0g1ZE1wVDhOdzMxMmVxWWY4MUpmaVMvUHJ1cFJBZ3lZbTVOMThjM1NpR1EwTDlJVnVyK1NvTHBqdWdmUW9uM2lKSE5uQTVMZ05YMjdzQ0J4MzJRajJDWnIrYSs1WUpWcWR4ekZTcmlYb2RKcEx3MXgzbE5BbnpCaTMzMkhaamY2Y3N6T20rcFpqSWloaUhMZFZjUUp1am1wRVN5UDhHWDUxa1VXOWpnb0xrZnBTTkVFdDBuZlB2QlNiZlF3Sk9RV3pGbDZPNDNTZVFXY1BRSWVsaTQrN1JySVorY0l5OHRsZjBmNXhpTDFOSkg4Q3pJbyttWXBYL3JydnpBWUloNnk3dFF0cityYUE3dHNSa1pvNk1YQWl4NDY4Ujd1bGdWbEFpVmFSN0dhMnhWdlVMWk8veVd4NjEvR3VZbUI4THV4WWQra2o1RlJDYysxeXAxT3ZOOVM0dWpkcEpGMTcwbk9rZHoyMTB5VzJFOWRxSjNOcWRLb0U0RlRla3A4YXlzN2JMRmZpL2pnSTJpQk9SbUxPQUgvYTMrTHc9PQ==&i=2SCMd0Hx18uqTEjj&placementId=95e868552c923fbe1650cbe9a2e49187 HTTP/1.1
Host: api.yadore.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lookandfind.me/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
date: Mon, 16 Jan 2023 03:33:54 GMT
location: https://no-go.kelkoogroup.net/offersearchGo?.ts=1673834325345&.sig=F2phz2g2ASaDc_Zf3KSbdO6VSZg-&affiliationId=96965886&comId=100536667&country=no&offerId=33672771f3e8b93f8e6fdb3bc55f30e6&service=37&tokenId=eef84b7f-8e19-45d1-adee-7c88767dc72d&wait=true&addedParams=true&custom1=b4c2dfc96e4fcf52407b9169f58da8c8fbb792545980a3c784f6e2040a69fd22&custom2=SRdytlITOR16&custom3=false
server: nginx
x-powered-by: PHP/8.0.26
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/global.js?v=66512933729982330591669700339
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/global.js?v=66512933729982330591669700339
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/2975/3819/t/36/assets/global.js?v=66512933729982330591669700339 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:56 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/global.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 4d7d0fc2-8381-408a-a1f8-39807e8bd832
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Tue, 29 Nov 2022 05:41:02 GMT
cf-cache-status: HIT
age: 4114764
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iRTgKBza1mct0fLKx7aT04Q3tNGCdmsmj7QISNkKqQ1cPc9XetHN3bxI3D9qX%2BIJbeHhlFTpZTKcFIg4Cp0h8cixcc8NQDig9hSAdsrAxpS3VRJNpX237Xg91fAvaXlS%2Bw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=69.746, imageryFetch;dur=67.275, cfRequestDuration;dur=10.999918
server: cloudflare
cf-ray: 78a3cae6faf2b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-grid.css?v=156298940714121373541669700288
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-grid.css?v=156298940714121373541669700288
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/2975/3819/t/36/assets/component-grid.css?v=156298940714121373541669700288 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:56 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-grid.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: c8d99fee-ab5a-49eb-b562-c43ef9ff9bbb
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Tue, 29 Nov 2022 08:12:55 GMT
cf-cache-status: HIT
age: 4114764
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PHNxe8hhF4nHMWVdSLgHgqoCyt%2BZViW%2BPDF7Ww11hg8CgeD7yk5ar090l3wfBxgiraLIG5jxMW0BelbHKE9N2ZIpVv6UnaQ3tqDlzpQveZyN1eFDXzJV1rjGEgd2szLcxw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=126.980, imageryFetch;dur=126.067, cfRequestDuration;dur=12.000084
server: cloudflare
cf-ray: 78a3cae71b12b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/boost-pfs-core-instant-search.js?v=3873922760770690681669700258
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/boost-pfs-core-instant-search.js?v=3873922760770690681669700258
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/2975/3819/t/36/assets/boost-pfs-core-instant-search.js?v=3873922760770690681669700258 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:57 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/boost-pfs-core-instant-search.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 71d1eb85-bc96-4b9b-a71d-d6c80c8dae0d
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Tue, 29 Nov 2022 05:41:03 GMT
cf-cache-status: HIT
age: 4114765
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V9NWlaND31MMYwk%2FLbBWo5c3%2FD0vN25gcG1EIPSu6f%2Fbrl31dR7U5jjjuz5hH2JTC7ahMUlbeod9hBUN2NMQSRvZIy6YnEw7hu2uVb5BN23Q%2B3nlD8l8BDhfe%2B0LZXZbHg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=108.294, imageryFetch;dur=77.262, cfRequestDuration;dur=13.000011
server: cloudflare
cf-ray: 78a3cae76b33b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-loading-banner.css?v=172885044536444866371673351506
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-loading-banner.css?v=172885044536444866371673351506
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/2975/3819/t/36/assets/component-loading-banner.css?v=172885044536444866371673351506 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:56 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-loading-banner.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: e2f36e13-bc62-42c1-9c89-f391e7d5f30c
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Tue, 10 Jan 2023 11:51:50 GMT
cf-cache-status: HIT
age: 488525
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y5Rv%2FckgB4ru2CFlhjjB9ZcG3biao7wrZzcdsPTYqB82f2SZb3TkbTD7Z8K8LB1y0BJyJyvsKKtZgRJXFafjm1L7HvSTvWmP6xOVLGh4JkJZKPlvolMT8Hm94500oH3adQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=27.379, imageryFetch;dur=25.272, cfRequestDuration;dur=11.999846
server: cloudflare
cf-ray: 78a3cae6eaefb523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-badge.css?v=20633729062276667811669700271
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-badge.css?v=20633729062276667811669700271
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/2975/3819/t/36/assets/component-badge.css?v=20633729062276667811669700271 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:56 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-badge.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: d9275c5d-9e16-4dad-a818-ff8100153fc5
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Tue, 29 Nov 2022 05:41:03 GMT
cf-cache-status: HIT
age: 4114764
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NoGLpqb25rqerZh3TCyaLK2ivF2ewdTmGk8nB1Vzas%2Bu5xejH1LNoq8%2FJvzbEG8ZvySj7FpEqvTf62WEG%2Blutmy607ptV7xKiaI6JpT%2FpuLjfTdgQMCHN6j9XgEPelxyTQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=41.933, imageryFetch;dur=41.028, cfRequestDuration;dur=15.999794
server: cloudflare
cf-ray: 78a3cae71b0db523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-tab.css?v=92535113761159003121673515940
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-tab.css?v=92535113761159003121673515940
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/2975/3819/t/36/assets/component-tab.css?v=92535113761159003121673515940 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:56 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-tab.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 8d900d1a-197e-44be-84ee-0b6e4bea571b
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Thu, 12 Jan 2023 09:32:33 GMT
cf-cache-status: HIT
age: 324083
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lI%2BhgCxBgPpLz6XEME%2FgtOMaqfLPV0vDNMeXgY9nkozcPHUtcySACIntnivR4fu9dZ8qm%2FxeVeVs%2BginQQgypefOD5sVKHlTV%2FMzLXTQgVu45znDfX5BNrzxZ0K%2Bhtrodw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=107.434, imageryFetch;dur=106.236, cfRequestDuration;dur=16.999960
server: cloudflare
cf-ray: 78a3cae71b10b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
api.fastbundle.co/react-src/static/css/main.min.css?rgn=422748
200 OK 0 B URL HTTP/2 api.fastbundle.co/react-src/static/css/main.min.css?rgn=422748
IP
GET /react-src/static/css/main.min.css?rgn=422748 HTTP/1.1
Host: api.fastbundle.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:57 GMT
content-type: text/css
last-modified: Sun, 15 Jan 2023 07:28:52 GMT
etag: W/"63c3ab34-e1ce"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4345
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Mwi8e%2FiE%2BjzuJBrDqHvLgqlog3TIGPNUtBFbOJAX3xyeWHCaGaOelbppBC2M5UedaBgrIVSqPCZnUFCI1pmmT4M2uHpiOdO%2Fn0Rx5%2FNCVOrAjSqiAs%2FpFdPmw6gsUcfnFd9mSw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78a3cae7acb9b506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
themeassets.aws-dns.uncomplicated.biz/shopify/der-ute.myshopify.com-catlist.min.js?cbi=1.9.06
200 OK 0 B URL HTTP/2 themeassets.aws-dns.uncomplicated.biz/shopify/der-ute.myshopify.com-catlist.min.js?cbi=1.9.06
IP
GET /shopify/der-ute.myshopify.com-catlist.min.js?cbi=1.9.06 HTTP/1.1
Host: themeassets.aws-dns.uncomplicated.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
last-modified: Tue, 22 Nov 2022 13:01:03 GMT
server: AmazonS3
content-encoding: gzip
date: Sun, 15 Jan 2023 12:02:54 GMT
etag: W/"1599b9746b664bac4cbfe598d22bf0d2"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: M2nmYLFjGZ3wg_LhYyn_5j50gIC-iLEn9pmgiuZYndFFCZ7dS5l-1w==
age: 55864
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-search.css?v=131281909171482709291669700324
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-search.css?v=131281909171482709291669700324
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/2975/3819/t/36/assets/component-search.css?v=131281909171482709291669700324 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:56 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-search.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 5b4090ed-6395-49e9-9e2c-941f0f1cfb87
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Tue, 29 Nov 2022 05:41:02 GMT
cf-cache-status: HIT
age: 4114764
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LSuIQOAQNnaqAlqDgwfUsZPI5i7Y%2FFDENQMzUN3%2FwfDYZKPn31YifEoCZPiIj5pPCjnAv7Nan5KA4ORFQBROMNPENg8he1J05iFm2oSnrnPUeINd7rKUoyh9n5OxxeIvkA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=67.364, imageryFetch;dur=66.050, cfRequestDuration;dur=10.999918
server: cloudflare
cf-ray: 78a3cae70b00b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-menu-mobile.css?v=11112894427028959981669700304
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-menu-mobile.css?v=11112894427028959981669700304
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/2975/3819/t/36/assets/component-menu-mobile.css?v=11112894427028959981669700304 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:56 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-menu-mobile.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 8bae3e79-17fb-425b-88c2-a7cb8d55730b
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Tue, 29 Nov 2022 05:41:02 GMT
cf-cache-status: HIT
age: 4114764
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O5tAE2vVH1s0iamSDGKqyBhidopCDRU9cOgsnIwtmkx0d25G39wUwQVmI5hLz70M%2BHkro5zcH%2FvgPF40vQOl%2F8dpUQzH59IKCwND4QSwZS8ws%2F8FOP%2BYN12N7rBbMucmhQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=69.974, imageryFetch;dur=68.181, cfRequestDuration;dur=10.999918
server: cloudflare
cf-ray: 78a3cae70b03b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
api.fastbundle.co/scripts/cart.js?rgn=422748
200 OK 0 B URL HTTP/2 api.fastbundle.co/scripts/cart.js?rgn=422748
IP
GET /scripts/cart.js?rgn=422748 HTTP/1.1
Host: api.fastbundle.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:57 GMT
content-type: application/javascript
last-modified: Thu, 22 Dec 2022 07:19:42 GMT
etag: W/"63a4050e-a1c7"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4345
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Hzx1uHnljxc2c20LynZ%2BrBVLm019UGhKpIJiA0fsiOHwL8nn3zV5kKnO0cmuZWaQMKB%2FSkxCGKYHDZGT%2F%2FA8jf9UU%2BkRhdRaaki4UBbLJBgMTLAo9HZin5LFy5BtQyi0dHtW4w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78a3cae76c7db506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
d3hw6dc1ow8pp2.cloudfront.net/reviews-widget-plus/js/review-list/default.14e7037e.js
200 OK 0 B URL HTTP/2 d3hw6dc1ow8pp2.cloudfront.net/reviews-widget-plus/js/review-list/default.14e7037e.js
IP
GET /reviews-widget-plus/js/review-list/default.14e7037e.js HTTP/1.1
Host: d3hw6dc1ow8pp2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 16 Jan 2023 01:36:46 GMT
server: AmazonS3
content-encoding: gzip
date: Mon, 16 Jan 2023 03:33:16 GMT
cache-control: max-age=300
etag: W/"9cec50c1b20b9cb7764b2f343502066b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1e5VhDZs1mkiX02Egbbr33d17uTAGfy22VHBlFVneS5bUtzTH9-Brw==
age: 299
X-Firefox-Spdy: h2
jdt8.net/c/?si=17198&li=1744473&wi=325766&pid=1ec614825f12f47ce0c7257f9cb0de61&dl=products%2Fkavu-kelowna-blue-bandana&ws=dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1673840034366_3935323
301 Moved Permanently 0 B URL HTTP/2 jdt8.net/c/?si=17198&li=1744473&wi=325766&pid=1ec614825f12f47ce0c7257f9cb0de61&dl=products%2Fkavu-kelowna-blue-bandana&ws=dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1673840034366_3935323
IP
GET /c/?si=17198&li=1744473&wi=325766&pid=1ec614825f12f47ce0c7257f9cb0de61&dl=products%2Fkavu-kelowna-blue-bandana&ws=dc1-kls-prod-ls-01.prod.dc1.kelkoo.net_1673840034366_3935323 HTTP/1.1
Host: jdt8.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://no-go.kelkoogroup.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Mon, 16 Jan 2023 03:33:55 GMT
content-type: text/html; charset=UTF-8
location: https://jdt8.net/redirect/global.php?dai_url_domain=www.derute.no&dai_url_add=utm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_Kelkoo+NO&dai_url=products%2Fkavu-kelowna-blue-bandana
cache-control: no-store, no-cache, must-revalidate, max-age=14400
x-xss-protection: 0
set-cookie: dci=h56A0pIS8i33gaa; expires=Wed, 17-Jan-2024 03:33:54 GMT; Max-Age=31622400; path=/; domain=.jdt8.net; secure; HttpOnly; SameSite=None
pdc=h56A0pIS8i33gaa; expires=Wed, 17-Jan-2024 03:33:54 GMT; Max-Age=31622400; path=/; domain=.jdt8.net; secure; HttpOnly; SameSite=None
ci_17198=ZF4xNjczODQwMDM0LGRjaV5oNTZBMHBJUzhpMzNnYWE%3D; expires=Wed, 17-Jan-2024 03:33:54 GMT; Max-Age=31622400; path=/; domain=.jdt8.net; secure; HttpOnly; SameSite=None
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-expose-headers: P3p, Cache-Control, Expires, Content-Length, Content-Type
expires: Mon, 16 Jan 2023 07:33:54 GMT
x-daisycon-cluster: ApacheContainer-84826d4a5e3c-tracking.daisycon.com
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sAkZRL1%2BGDSBHjpKFdpJmtdb7lOkVA1FpFLa2xIYK3pnEZQ05swe3JLBZ4jWQJIBysU4mYL3w%2BE3T8IOt4QwcFyQsiLv8qwhUhIiMlO1PYmFM%2BZyKINsF2Wi9w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78a3cad8d8d4fabc-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/javascripts/currencies.js
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/javascripts/currencies.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/javascripts/currencies.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:56 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=90060
link: <https://cdn.shopify.com/s/javascripts/currencies.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 4911e358-5479-4f34-9784-e2921b294888
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Sat, 14 Jan 2023 20:57:05 GMT
cf-cache-status: HIT
age: 81078
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5%2FqbWxHRbrI6FNwgGKU4xEGdrNo1sEyVQ%2Ffhi%2BA2oiyDDSVbwdjA5%2Fw2HzliBD%2BaIJDgnVjPBw3uC3bS238Q%2FyanY7us14dLMUuVCkuCtr1t0hEimHPurowA8xzgl3PHDg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=47.801, imageryFetch;dur=46.502, cfRequestDuration;dur=11.000156
server: cloudflare
cf-ray: 78a3cae70b07b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Rubik:300,300i,400,400i,500,500i,600,600i,700,700i,800,800i&display=swap
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Rubik:300,300i,400,400i,500,500i,600,600i,700,700i,800,800i&display=swap
IP
GET /css?family=Rubik:300,300i,400,400i,500,500i,600,600i,700,700i,800,800i&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 16 Jan 2023 03:33:57 GMT
date: Mon, 16 Jan 2023 03:33:57 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
d3hw6dc1ow8pp2.cloudfront.net/reviews-widget-plus/js/locale-no-js.d7a735ea.js
200 OK 0 B URL HTTP/2 d3hw6dc1ow8pp2.cloudfront.net/reviews-widget-plus/js/locale-no-js.d7a735ea.js
IP
GET /reviews-widget-plus/js/locale-no-js.d7a735ea.js HTTP/1.1
Host: d3hw6dc1ow8pp2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 16 Jan 2023 01:36:46 GMT
server: AmazonS3
content-encoding: gzip
date: Mon, 16 Jan 2023 03:33:10 GMT
cache-control: max-age=300
etag: W/"30ffea6d24defafe7e2702eda84c85f5"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0h32MAJAd_q7bwQOa-z-3nnKUjpIO_bC5oeQ7q-2ox5M-azlLMeIxw==
age: 50
X-Firefox-Spdy: h2
d3hw6dc1ow8pp2.cloudfront.net/reviews-widget-plus/js/modules/okendo-widget.7800ee1a.js
200 OK 0 B URL HTTP/2 d3hw6dc1ow8pp2.cloudfront.net/reviews-widget-plus/js/modules/okendo-widget.7800ee1a.js
IP
GET /reviews-widget-plus/js/modules/okendo-widget.7800ee1a.js HTTP/1.1
Host: d3hw6dc1ow8pp2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 16 Jan 2023 01:37:25 GMT
last-modified: Mon, 16 Jan 2023 01:36:46 GMT
etag: W/"bf841c20d4596068e7c0bdb0e55aafbf"
cache-control: max-age=31536000
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9gS1Xvbrkh1fvSv_r6UtkBnvfsC85w9B1WMYFkaUk8MTWU6vkq95pg==
age: 6995
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-quick-cart.css?v=42485957334418103781669700317
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-quick-cart.css?v=42485957334418103781669700317
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/2975/3819/t/36/assets/component-quick-cart.css?v=42485957334418103781669700317 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:56 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-quick-cart.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: f445f648-6f04-449f-9f97-8eeaba08f961
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Tue, 29 Nov 2022 05:41:02 GMT
cf-cache-status: HIT
age: 4114764
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HnNjvr%2B%2Bbv6rtNdvV4Oplcd4bDBXrDEQMK0d0vlNzcRJ5RCgt1sK%2Bfi2ogfy2iS2FxTFyYRqJKHPXaOuIHVoNVGikFDoSkKw60IVlP1tHM2alq3gZfyaDRnk44zgMBCDug%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=85.794, imageryFetch;dur=84.214, cfRequestDuration;dur=11.999846
server: cloudflare
cf-ray: 78a3cae6faf0b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-price.css?v=139205013722916111901669700312
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-price.css?v=139205013722916111901669700312
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/2975/3819/t/36/assets/component-price.css?v=139205013722916111901669700312 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:56 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-price.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: ee173b9c-d7b7-4c07-aba3-5544dd1e81d2
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Tue, 29 Nov 2022 05:41:03 GMT
cf-cache-status: HIT
age: 4114764
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H%2B7AGtSjyu8sHYVg48gvXzOTfR8mpSGYHKJja%2Fb2cjG6lTc5E1PxI9xCx7ZPHrVcWC1eptJl8ms%2BQFhTetoEygKMjuhTo94aNDNzR7ZsuiQKnll%2BFMCeX%2FqNWjHpi76MTg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=72.333, imageryFetch;dur=71.618, cfRequestDuration;dur=14.999866
server: cloudflare
cf-ray: 78a3cae71b0cb523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/variants.js?v=4182375487274199951669700391
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/variants.js?v=4182375487274199951669700391
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/2975/3819/t/36/assets/variants.js?v=4182375487274199951669700391 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:56 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/variants.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: f8ce73f1-6d42-4139-a390-45df72ae2950
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Tue, 29 Nov 2022 08:12:55 GMT
cf-cache-status: HIT
age: 4114764
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JgIW6EBxRktTbxP8IIteb77nv08%2BR12BV1PjRknKbeBajFVc4FuBNv4JTTd6SK85AuihNeNq9tTcU5%2BkmFPaAiQr6HAwEB7n8La%2FjHQhIgkXGCGoFpM6w4AA3%2Bl2qPHHVg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=138.391, imageryFetch;dur=134.967, cfRequestDuration;dur=12.999773
server: cloudflare
cf-ray: 78a3cae71b16b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/gsap.js?v=177476545228473535991669700340
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/gsap.js?v=177476545228473535991669700340
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/2975/3819/t/36/assets/gsap.js?v=177476545228473535991669700340 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:57 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/gsap.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 2520ee80-05f0-46d5-836d-50c9cf9ff209
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Tue, 29 Nov 2022 08:12:55 GMT
cf-cache-status: HIT
age: 4114765
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qbhFWwkxZ7kbLRlYXpNnU8mj4zxSUda45VlYbd0skkLFMkCLFn5zrxF8MpYQXXKQl%2F2ztk72KpWLijseQXp8HzDnOTueF03wy5IwpShkHsuVJ4xd3rw8LT9WuhdhHLaQXQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=39.910, imageryFetch;dur=26.821, cfRequestDuration;dur=12.000084
server: cloudflare
cf-ray: 78a3cae76b2ab523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/recently-viewed-product.js?v=74570002958618614331669700362
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/recently-viewed-product.js?v=74570002958618614331669700362
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/2975/3819/t/36/assets/recently-viewed-product.js?v=74570002958618614331669700362 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:57 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/recently-viewed-product.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 4490c269-3736-4e0f-bcee-f6ab7d5f2b11
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Tue, 29 Nov 2022 05:41:03 GMT
cf-cache-status: HIT
age: 4114765
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wHR04ctVXBs%2BJ6TMNX2Z9T19Hn8EFU8s3sgw1Rfd7HSiH6az9BiJfPYxM5hUpLPC94%2BAwMSDKVX3o%2FCIFdHPXadEmvlWKWTMchz3KeK%2FeJDU3aF%2BlqwpK2ApJrCqlIafIQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=36.101, imageryFetch;dur=34.675, cfRequestDuration;dur=15.000105
server: cloudflare
cf-ray: 78a3cae76b2db523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/predictive-search.js?v=31478391494289611481669700359
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/predictive-search.js?v=31478391494289611481669700359
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/2975/3819/t/36/assets/predictive-search.js?v=31478391494289611481669700359 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:56 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/predictive-search.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: f2694886-d9da-41ae-bf4c-159fe8e06b34
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-central1
last-modified: Tue, 29 Nov 2022 05:41:03 GMT
cf-cache-status: HIT
age: 4114764
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J3w9XW4CxBxJXebzff7blZ3sNSeENVtk8ZMKGpDbNwxiye5Dsgx7tpgxskk9nuISzzW2IBYICP1w9UkRYduiZfMQf7oUY5CXtC2sAh3QtyL01GbiG4e0LE%2Bbkjevdd%2BZQA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=27.009, imageryFetch;dur=25.437, cfRequestDuration;dur=13.999939
server: cloudflare
cf-ray: 78a3cae6faf4b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-share.css?v=76433002869361427811669700326
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-share.css?v=76433002869361427811669700326
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/2975/3819/t/36/assets/component-share.css?v=76433002869361427811669700326 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:56 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-share.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: b2463137-277e-4786-9820-6cdf51938cea
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Tue, 29 Nov 2022 05:41:03 GMT
cf-cache-status: HIT
age: 4114764
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uPeRj%2F0j1MHxYVBSDNtxnJfl%2FarJ23alDCAcoOLAb3hI%2F%2FTzdIeeSPTrXq40RA7VNuaUWWLUH2PAM84UO6kMYnrr16YSwi%2BaomY1hX%2FAKlIPmmlKBZjqB559Ujhsavnzxg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=69.542, imageryFetch;dur=68.436, cfRequestDuration;dur=13.000011
server: cloudflare
cf-ray: 78a3cae71b0fb523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/custom-fields.css?v=144525121530756069341671593898
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/custom-fields.css?v=144525121530756069341671593898
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/2975/3819/t/36/assets/custom-fields.css?v=144525121530756069341671593898 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:57 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/custom-fields.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: d51eaa2b-15b8-4ae8-9fc5-692f5064e0d9
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Wed, 21 Dec 2022 03:38:29 GMT
cf-cache-status: HIT
age: 2245852
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mPQQ3HpGjgETClfg%2Bel%2BcLSe5ppwWf5KufcAlT%2B4PnSB2hu4ujdJiCNBOhy7%2F1DZHocH6JO9%2FRfC2jOT2gIb7RCTX1BqiHIZMS9pwdJSw5phLUMgOt%2FIWu4lRRFWpZ2p8A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=28.100, imageryFetch;dur=26.072, cfRequestDuration;dur=12.000084
server: cloudflare
cf-ray: 78a3cae7db62b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
derute.no/products/kavu-kelowna-blue-bandana?utm_source=daisycon&utm_medium=affiliate&utm_campaign=daisycon_Kelkoo%20NO
200 OK 0 B URL HTTP/2 derute.no/products/kavu-kelowna-blue-bandana?utm_source=daisycon&utm_medium=affiliate&utm_campaign=daisycon_Kelkoo%20NO
IP
GET /products/kavu-kelowna-blue-bandana?utm_source=daisycon&utm_medium=affiliate&utm_campaign=daisycon_Kelkoo%20NO HTTP/1.1
Host: derute.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no-go.kelkoogroup.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:56 GMT
content-type: text/html; charset=utf-8
x-sorting-hat-podid: 218
x-sorting-hat-shopid: 60729753819
x-storefront-renderer-rendered: 1
set-cookie: keep_alive=95996ea9-2fcb-46cd-9662-ffa9b54d5cbf; path=/; expires=Mon, 16 Jan 2023 04:03:55 GMT; HttpOnly; SameSite=Lax
secure_customer_sig=; path=/; expires=Tue, 16 Jan 2024 03:33:56 GMT; secure; HttpOnly; SameSite=Lax
localization=NO; path=/; expires=Tue, 16 Jan 2024 03:33:56 GMT; SameSite=Lax
_orig_referrer=https%3A%2F%2Fno-go.kelkoogroup.net%2F; Expires=Mon, 30-Jan-23 03:33:56 GMT; Domain=derute.no; Path=/; HttpOnly; SameSite=Lax
_landing_page=%2Fproducts%2Fkavu-kelowna-blue-bandana%3Futm_source%3Ddaisycon%26utm_medium%3Daffiliate%26utm_campaign%3Ddaisycon_Kelkoo%2520NO; Expires=Mon, 30-Jan-23 03:33:56 GMT; Domain=derute.no; Path=/; HttpOnly; SameSite=Lax
_y=781bc5b6-e9dd-4a5e-a1b1-0d7ad2c8cd11; Expires=Tue, 16-Jan-24 03:33:56 GMT; Domain=derute.no; Path=/; SameSite=Lax
_s=e41294ed-ed20-4d76-ba4b-40e6aae06894; Expires=Mon, 16-Jan-23 04:03:56 GMT; Domain=derute.no; Path=/; SameSite=Lax
_shopify_y=781bc5b6-e9dd-4a5e-a1b1-0d7ad2c8cd11; Expires=Tue, 16-Jan-24 03:33:56 GMT; Domain=derute.no; Path=/; SameSite=Lax
_shopify_s=e41294ed-ed20-4d76-ba4b-40e6aae06894; Expires=Mon, 16-Jan-23 04:03:56 GMT; Domain=derute.no; Path=/; SameSite=Lax
link: <https://cdn.shopify.com>; rel="preconnect", <https://cdn.shopify.com>; rel="preconnect"; crossorigin
x-alternate-cache-key: cacheable:3cd6d886e4817d39814d89dc14ccf7cc
x-cache: miss
x-frame-options: DENY
content-security-policy: block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
access-control-allow-origin: *
strict-transport-security: max-age=7889238
x-shopid: 60729753819
x-shardid: 218
vary: Accept
content-language: nb
x-shopify-stage: production
x-dc: gcp-europe-north1,europe-west1,gcp-europe-west1
x-request-id: fbdb64e5-2c1e-4b76-89f1-4dcc97063cad
x-content-type-options: nosniff
x-download-options: noopen
x-xss-protection: 1; mode=block
x-permitted-cross-domain-policies: none
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uU4lgac6PK%2BcyI%2B7HORZW7XADo6TpYezhRmiMTk0TzJNRI8iI6U9p8VGt8SxnMwLha7dqVIFR6F9lkxnl%2FUjCrxUIyt8W1SCUpDdI8wRAtZUr%2Bvp%2FryIepSv%2Bw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78a3cadf6a11b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
server-timing: processing;dur=875, db;dur=338, parse;dur=20, render;dur=568, asn;desc="50304", edge;desc="OSL", country;desc="NO", cfRequestDuration;dur=1096.999884, earlyhints
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-rte.css?v=87532232964001074821669700322
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-rte.css?v=87532232964001074821669700322
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/2975/3819/t/36/assets/component-rte.css?v=87532232964001074821669700322 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:56 GMT
content-type: text/css
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/component-rte.css>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 6df81bb9-2a5a-4a6f-ba84-cf5341689bb2
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Tue, 29 Nov 2022 05:41:03 GMT
cf-cache-status: HIT
age: 4114764
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YSbtLzt5eVve%2FL3gaxvOv61LfMG4c5V7i%2F%2FNT9sEdv2yFK0Bp1JEs7WfrMNz9zK1l7uykKHGWtEgP3ty3HoscFBTzlxdhsdNDBcChjSGWWDyRjp%2B1DKGJUNlsMriI7xUYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=38.405, imageryFetch;dur=36.188, cfRequestDuration;dur=13.000011
server: cloudflare
cf-ray: 78a3cae71b0eb523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/slider.min.js?v=101599096107726186071669702635
200 OK 0 B URL HTTP/2 cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/slider.min.js?v=101599096107726186071669702635
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /s/files/1/0607/2975/3819/t/36/assets/slider.min.js?v=101599096107726186071669702635 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://derute.no/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:57 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0607/2975/3819/t/36/assets/slider.min.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 2c304a5f-3bee-45df-8941-47ceaaa91ab2
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Tue, 29 Nov 2022 06:17:39 GMT
cf-cache-status: HIT
age: 4114765
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y3753cWNMWkhjh%2BdY8d4p%2BMfe4u%2B%2BTzszS4RhKBn0LmepxqoGSbsChRgKCy0UFFuvv41UdWis2ifQDAIzaLu%2BMopQHNlo%2FawB845CX4kY6F%2FiJrZkdDS6FktpMDnGyZsqw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=31.608, imageryFetch;dur=31.398, cfRequestDuration;dur=12.999773
server: cloudflare
cf-ray: 78a3cae76b31b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
api.fastbundle.co/v2/bundle-as-product-list/?shop=der-ute.myshopify.com
200 OK 0 B URL HTTP/2 api.fastbundle.co/v2/bundle-as-product-list/?shop=der-ute.myshopify.com
IP
GET /v2/bundle-as-product-list/?shop=der-ute.myshopify.com HTTP/1.1
Host: api.fastbundle.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://derute.no/
Origin: https://derute.no
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 16 Jan 2023 03:33:57 GMT
content-type: application/json
allow: GET, HEAD, OPTIONS
x-frame-options: SAMEORIGIN
vary: Origin, Cookie
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jwshaugM1l7xi7ziyf41GMvcsxPfY%2BedOXcZ4r3KloafiEvX1F5%2B7yz2cr7u0XqEABGRsT%2BcwhsIeYKSRndEObdBfpX7AWcrHuFRsN248lkDdKMZl7MHK3JVMcuPHLxe7whZtg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78a3caec4c16b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
162.210.196.168
192.99.158.241
104.18.3.187
188.114.96.1
5.9.110.29
93.184.220.29
23.36.79.32
31.13.72.12
95.211.116.26